goroh.pp.ua/%D1%82%D1%80%D0%B0%D0%BD%D1%81%D0%BA%D1%80%D0%B8%D0%BF%D1%86%D1%96%D1%8F/%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D1%82%D0%B1%D0%BE%D0%BB%23:~:text=[%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D0%B8%D0%B4%D0%B1%D0%BE%CC%81%D0%BB]
188.114.96.1301 Moved Permanently 0 B URL HTTP/1.1 goroh.pp.ua/%D1%82%D1%80%D0%B0%D0%BD%D1%81%D0%BA%D1%80%D0%B8%D0%BF%D1%86%D1%96%D1%8F/%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D1%82%D0%B1%D0%BE%D0%BB%23:~:text=[%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D0%B8%D0%B4%D0%B1%D0%BE%CC%81%D0%BB]
IP 188.114.96.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /%D1%82%D1%80%D0%B0%D0%BD%D1%81%D0%BA%D1%80%D0%B8%D0%BF%D1%86%D1%96%D1%8F/%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D1%82%D0%B1%D0%BE%D0%BB%23:~:text=[%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D0%B8%D0%B4%D0%B1%D0%BE%CC%81%D0%BB] HTTP/1.1
Host: goroh.pp.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 19:27:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 02 Feb 2023 20:27:01 GMT
Location: https://goroh.pp.ua/%D1%82%D1%80%D0%B0%D0%BD%D1%81%D0%BA%D1%80%D0%B8%D0%BF%D1%86%D1%96%D1%8F/%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D1%82%D0%B1%D0%BE%D0%BB%23:~:text=[%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D0%B8%D0%B4%D0%B1%D0%BE%CC%81%D0%BB]
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uTybttMPoTw9bSK0mGve2FS7xhCrtzQhsATIsaJJGPF0kX2IZ8hf%2Buh%2BO8g6IG%2BUPqaBGKr9KZSkhsc9q8Dp%2BduzuKwCzYhzRRM4ZoTsPjTF86rYteJ7EEUWq5O0wg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793552649bc2b506-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
184.51.252.197200 OK 503 B IP 184.51.252.197:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6183
Expires: Thu, 02 Feb 2023 21:10:05 GMT
Date: Thu, 02 Feb 2023 19:27:02 GMT
Connection: keep-alive
r3.o.lencr.org/
184.51.252.197200 OK 503 B IP 184.51.252.197:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2195
Expires: Thu, 02 Feb 2023 20:03:37 GMT
Date: Thu, 02 Feb 2023 19:27:02 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 18:43:31 GMT
content-type: application/json
age: 2611
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
184.51.252.197200 OK 503 B IP 184.51.252.197:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2723
Expires: Thu, 02 Feb 2023 20:12:25 GMT
Date: Thu, 02 Feb 2023 19:27:02 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xa7kPSkHAEZOAMUB/qcD6UBvyDqXKpMy+QBx+AAmtlXDHYLN6YEyAuPYED2BzmlQdAj3PgGhUX82Z3rkLCRWEQ==
x-amz-request-id: 46ETESVG1ZQKTDR5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 18:52:05 GMT
age: 2097
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 19:27:02 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 19:07:19 GMT
age: 1183
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-145685605-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-145685605-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash 8886205d9c06a2604cbf4addb14d9179
472fc48e07b54a6b3db2711c32d6ef98d5dbdb97
06f5724bfe09dad65bc0b92bc8f0d7d69afd510fb28a07465ef0fb16aecf842c
GET /gtag/js?id=UA-145685605-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goroh.pp.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 19:27:02 GMT
expires: Thu, 02 Feb 2023 19:27:02 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 18:21:29 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43942
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Nunito+Sans:400,400i,700,800&text=1234567890ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz%D0%90%D0%91%D0%92%D0%93%D2%90%D0%94%D0%95%D0%84%D0%96%D0%97%D0%98%D0%86%D0%87%D0%99%D0%9A%D0%9B%D0%9C%D0%9D%D0%9E%D0%9F%D0%A0%D0%A1%D0%A2%D0%A3%D0%A4%D0%A5%D0%A6%D0%A7%D0%A8%D0%A9%D0%AC%D0%AE%D0%AF%D0%B0%D0%B1%D0%B2%D0%B3%D2%91%D0%B4%D0%B5%D1%94%D0%B6%D0%B7%D0%B8%D1%96%D1%97%D0%B9%D0%BA%D0%BB%D0%BC%D0%BD%D0%BE%D0%BF%D1%80%D1%81%D1%82%D1%83%D1%84%D1%85%D1%86%D1%87%D1%88%D1%89%D1%8C%D1%8E%D1%8F%CC%81%D1%9E()%C2%AB%C2%BB{}[]:;%E2%80%9B%27.,?!%22%C3%A6%CA%A4%C9%99%C9%AA%C9%9C%CA%83%C9%94%CA%8A%CA%8C%C5%8B%C3%B0%CE%B8
142.250.74.106200 OK 2.2 kB URL HTTP/2 fonts.googleapis.com/css?family=Nunito+Sans:400,400i,700,800&text=1234567890ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz%D0%90%D0%91%D0%92%D0%93%D2%90%D0%94%D0%95%D0%84%D0%96%D0%97%D0%98%D0%86%D0%87%D0%99%D0%9A%D0%9B%D0%9C%D0%9D%D0%9E%D0%9F%D0%A0%D0%A1%D0%A2%D0%A3%D0%A4%D0%A5%D0%A6%D0%A7%D0%A8%D0%A9%D0%AC%D0%AE%D0%AF%D0%B0%D0%B1%D0%B2%D0%B3%D2%91%D0%B4%D0%B5%D1%94%D0%B6%D0%B7%D0%B8%D1%96%D1%97%D0%B9%D0%BA%D0%BB%D0%BC%D0%BD%D0%BE%D0%BF%D1%80%D1%81%D1%82%D1%83%D1%84%D1%85%D1%86%D1%87%D1%88%D1%89%D1%8C%D1%8E%D1%8F%CC%81%D1%9E()%C2%AB%C2%BB{}[]:;%E2%80%9B%27.,?!%22%C3%A6%CA%A4%C9%99%C9%AA%C9%9C%CA%83%C9%94%CA%8A%CA%8C%C5%8B%C3%B0%CE%B8
IP 142.250.74.106:0
Hash 7d6090fd7fede1d3a511ddea9402196a
281e6d437e4bb4a5a01fbada31ce58e5d8810ba8
2c6d25d7f0cc878f054186cf8e11755da8c95f82ffc38f373495df356ae7fa31
GET /css?family=Nunito+Sans:400,400i,700,800&text=1234567890ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz%D0%90%D0%91%D0%92%D0%93%D2%90%D0%94%D0%95%D0%84%D0%96%D0%97%D0%98%D0%86%D0%87%D0%99%D0%9A%D0%9B%D0%9C%D0%9D%D0%9E%D0%9F%D0%A0%D0%A1%D0%A2%D0%A3%D0%A4%D0%A5%D0%A6%D0%A7%D0%A8%D0%A9%D0%AC%D0%AE%D0%AF%D0%B0%D0%B1%D0%B2%D0%B3%D2%91%D0%B4%D0%B5%D1%94%D0%B6%D0%B7%D0%B8%D1%96%D1%97%D0%B9%D0%BA%D0%BB%D0%BC%D0%BD%D0%BE%D0%BF%D1%80%D1%81%D1%82%D1%83%D1%84%D1%85%D1%86%D1%87%D1%88%D1%89%D1%8C%D1%8E%D1%8F%CC%81%D1%9E()%C2%AB%C2%BB{}[]:;%E2%80%9B%27.,?!%22%C3%A6%CA%A4%C9%99%C9%AA%C9%9C%CA%83%C9%94%CA%8A%CA%8C%C5%8B%C3%B0%CE%B8 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goroh.pp.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 19:27:02 GMT
date: Thu, 02 Feb 2023 19:27:02 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
184.51.252.197200 OK 503 B IP 184.51.252.197:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6878
Expires: Thu, 02 Feb 2023 21:21:40 GMT
Date: Thu, 02 Feb 2023 19:27:02 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/l/font?kit=pe03MImSLYBIv1o4X1M8cc8aBf5vQYQrdrNY447w928NjaiCrI01F8xHu6WQixjAGRVqktLAruc_KaEqeeQmyBtQSTIe7i59apVfzmg6tPH0wxYMYL1h2mV1FvsveMTiTH_hBhGq1uA2-sJBTHjIaaLmkaWeZQO0CJ8agp3m83OUfGWErrEZPZ1wF8pD9m0Cu4sEDxl9utnhufy8FyXp-PivYx2Fjbx4gdVIEB4AH_JjW-DjQjnmpFs0gz67WwyZYHaefovMANen7NRQihkmLO6ZlB3Nbk22at9aUNmjx0iXw0c367rkDwux_gxf3gLiX-7z6WWHsoKNXQYrBQy9kEflASlNcUIzNoYAFkucdcNIcxtN54Bi4JWJaAccUJJfVAITLuOI82_DYVG69ZMWj0WNWtSyPOaFIFFScFIqADtPwF-51so-axWnsFKQRRD7a5lp5uBX1eDTLsNZZt6fjRFgcpT7v5bv-cGR8dT4K0CDHAZYLhWm4Vn4ZMVyhXSsp6zOsrv9TefM4JQvFwIC2PpdephVKmXRB2s1AaOjvVQjRri7-QSDtTkrm7zRzI_ruZw2Pr49WI3xHDmYeGGFS1VRsMeX424bu0Myt0RValFXSHHaVoGzCIRWiLVITZ_FE1yIKu2ERSM&skey=455d87138f5ce23c&v=v12
142.250.74.67200 OK 18 kB URL HTTP/2 fonts.gstatic.com/l/font?kit=pe03MImSLYBIv1o4X1M8cc8aBf5vQYQrdrNY447w928NjaiCrI01F8xHu6WQixjAGRVqktLAruc_KaEqeeQmyBtQSTIe7i59apVfzmg6tPH0wxYMYL1h2mV1FvsveMTiTH_hBhGq1uA2-sJBTHjIaaLmkaWeZQO0CJ8agp3m83OUfGWErrEZPZ1wF8pD9m0Cu4sEDxl9utnhufy8FyXp-PivYx2Fjbx4gdVIEB4AH_JjW-DjQjnmpFs0gz67WwyZYHaefovMANen7NRQihkmLO6ZlB3Nbk22at9aUNmjx0iXw0c367rkDwux_gxf3gLiX-7z6WWHsoKNXQYrBQy9kEflASlNcUIzNoYAFkucdcNIcxtN54Bi4JWJaAccUJJfVAITLuOI82_DYVG69ZMWj0WNWtSyPOaFIFFScFIqADtPwF-51so-axWnsFKQRRD7a5lp5uBX1eDTLsNZZt6fjRFgcpT7v5bv-cGR8dT4K0CDHAZYLhWm4Vn4ZMVyhXSsp6zOsrv9TefM4JQvFwIC2PpdephVKmXRB2s1AaOjvVQjRri7-QSDtTkrm7zRzI_ruZw2Pr49WI3xHDmYeGGFS1VRsMeX424bu0Myt0RValFXSHHaVoGzCIRWiLVITZ_FE1yIKu2ERSM&skey=455d87138f5ce23c&v=v12
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 17736, version 1.0\012- data
Hash 4b02b054cd308ad1b87a769c015925a4
ecf6b5142c323e60135b549a1da7075cf529149a
a704058593912a150b331f58ff19eae7a100383cc647f6f88d1098c8dc928d8c
GET /l/font?kit=pe03MImSLYBIv1o4X1M8cc8aBf5vQYQrdrNY447w928NjaiCrI01F8xHu6WQixjAGRVqktLAruc_KaEqeeQmyBtQSTIe7i59apVfzmg6tPH0wxYMYL1h2mV1FvsveMTiTH_hBhGq1uA2-sJBTHjIaaLmkaWeZQO0CJ8agp3m83OUfGWErrEZPZ1wF8pD9m0Cu4sEDxl9utnhufy8FyXp-PivYx2Fjbx4gdVIEB4AH_JjW-DjQjnmpFs0gz67WwyZYHaefovMANen7NRQihkmLO6ZlB3Nbk22at9aUNmjx0iXw0c367rkDwux_gxf3gLiX-7z6WWHsoKNXQYrBQy9kEflASlNcUIzNoYAFkucdcNIcxtN54Bi4JWJaAccUJJfVAITLuOI82_DYVG69ZMWj0WNWtSyPOaFIFFScFIqADtPwF-51so-axWnsFKQRRD7a5lp5uBX1eDTLsNZZt6fjRFgcpT7v5bv-cGR8dT4K0CDHAZYLhWm4Vn4ZMVyhXSsp6zOsrv9TefM4JQvFwIC2PpdephVKmXRB2s1AaOjvVQjRri7-QSDtTkrm7zRzI_ruZw2Pr49WI3xHDmYeGGFS1VRsMeX424bu0Myt0RValFXSHHaVoGzCIRWiLVITZ_FE1yIKu2ERSM&skey=455d87138f5ce23c&v=v12 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://goroh.pp.ua
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
content-length: 17736
content-disposition: attachment; filename="font.woff2"; filename*=UTF-8''font.woff2
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
date: Thu, 02 Feb 2023 08:16:19 GMT
expires: Thu, 02 Feb 2023 08:16:19 GMT
cache-control: private, max-age=86400
age: 40243
last-modified: Thu, 22 Sep 2022 05:27:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/l/font?kit=pe0qMImSLYBIv1o4X1M8cfe_MQ5pUnYPf7hT5Zft62wIiq2BoYI4FMo8wtmVjB3DFBpnkdfHq-QiNrwpfOMjyxZfRDEa1RdDb5JazWU1ufLxxBMPfaJ82WByE_gid8nhSMcxuWjClZhxuIgGBDKGIe6owenLNVrhV8ZE3f-4lBHxGw_hxtt3VfEeZKYzhRhywv57dmcCxqCgwrv6VWKquqjsMk3f3Oci6Y4heGNpYY4kJKGlDHit6hF_0nTrClPJPin3IOOlfb_bkasu2GR5fJ3G5m63Eh7COoIPALr1jSjXigF3hfqvZ0H8ukQrhk2KDL-nujPT5dTRClh3RVL80AWkQmsJMgd3cMNHUAPbPIsCOlAHq8svrNvEJ0lsH-MvJnNgXJf7hhu1FCbMjeRv9zn0JKjNQob6QTEwETFIZFgqpDncsaxWDHzP2jv7L3yQBvUHi484hY6Df5AJNI3K30U1JcCt6M-5oZjMqYuldR_DQkQYa1fhpB-_KYM9yzXg5O-d8OqvDraOo9VtV0NHmL4YNdwbZSifSyZCTdXUyCJXM9vPm2fk119-8K_RzI7ruZU2Pr89WJLxHDiYeG6FS1RRseyX428buFQyt0VValZXSHDaVoizCIVWiK9ITabFE12LENk&skey=60bfdc605ddb00b1&v=v12
142.250.74.67200 OK 18 kB URL HTTP/2 fonts.gstatic.com/l/font?kit=pe0qMImSLYBIv1o4X1M8cfe_MQ5pUnYPf7hT5Zft62wIiq2BoYI4FMo8wtmVjB3DFBpnkdfHq-QiNrwpfOMjyxZfRDEa1RdDb5JazWU1ufLxxBMPfaJ82WByE_gid8nhSMcxuWjClZhxuIgGBDKGIe6owenLNVrhV8ZE3f-4lBHxGw_hxtt3VfEeZKYzhRhywv57dmcCxqCgwrv6VWKquqjsMk3f3Oci6Y4heGNpYY4kJKGlDHit6hF_0nTrClPJPin3IOOlfb_bkasu2GR5fJ3G5m63Eh7COoIPALr1jSjXigF3hfqvZ0H8ukQrhk2KDL-nujPT5dTRClh3RVL80AWkQmsJMgd3cMNHUAPbPIsCOlAHq8svrNvEJ0lsH-MvJnNgXJf7hhu1FCbMjeRv9zn0JKjNQob6QTEwETFIZFgqpDncsaxWDHzP2jv7L3yQBvUHi484hY6Df5AJNI3K30U1JcCt6M-5oZjMqYuldR_DQkQYa1fhpB-_KYM9yzXg5O-d8OqvDraOo9VtV0NHmL4YNdwbZSifSyZCTdXUyCJXM9vPm2fk119-8K_RzI7ruZU2Pr89WJLxHDiYeG6FS1RRseyX428buFQyt0VValZXSHDaVoizCIVWiK9ITabFE12LENk&skey=60bfdc605ddb00b1&v=v12
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 17520, version 1.0\012- data
Hash 9da0f0056385c44bc41d3f4e4a2801d7
daaec67e2b5fda29ef3d19a1332b1f32f6d829a0
d547bcf0f8bf51c3c8c5c0d3561306f9d79e31f5ac232788738b72508ed26e0e
GET /l/font?kit=pe0qMImSLYBIv1o4X1M8cfe_MQ5pUnYPf7hT5Zft62wIiq2BoYI4FMo8wtmVjB3DFBpnkdfHq-QiNrwpfOMjyxZfRDEa1RdDb5JazWU1ufLxxBMPfaJ82WByE_gid8nhSMcxuWjClZhxuIgGBDKGIe6owenLNVrhV8ZE3f-4lBHxGw_hxtt3VfEeZKYzhRhywv57dmcCxqCgwrv6VWKquqjsMk3f3Oci6Y4heGNpYY4kJKGlDHit6hF_0nTrClPJPin3IOOlfb_bkasu2GR5fJ3G5m63Eh7COoIPALr1jSjXigF3hfqvZ0H8ukQrhk2KDL-nujPT5dTRClh3RVL80AWkQmsJMgd3cMNHUAPbPIsCOlAHq8svrNvEJ0lsH-MvJnNgXJf7hhu1FCbMjeRv9zn0JKjNQob6QTEwETFIZFgqpDncsaxWDHzP2jv7L3yQBvUHi484hY6Df5AJNI3K30U1JcCt6M-5oZjMqYuldR_DQkQYa1fhpB-_KYM9yzXg5O-d8OqvDraOo9VtV0NHmL4YNdwbZSifSyZCTdXUyCJXM9vPm2fk119-8K_RzI7ruZU2Pr89WJLxHDiYeG6FS1RRseyX428buFQyt0VValZXSHDaVoizCIVWiK9ITabFE12LENk&skey=60bfdc605ddb00b1&v=v12 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://goroh.pp.ua
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
content-length: 17520
content-disposition: attachment; filename="font.woff2"; filename*=UTF-8''font.woff2
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
date: Thu, 02 Feb 2023 09:25:07 GMT
expires: Thu, 02 Feb 2023 09:25:07 GMT
cache-control: private, max-age=86400
age: 36115
last-modified: Thu, 22 Sep 2022 05:27:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/l/font?kit=pe0oMImSLYBIv1o4X1M8cce4I9tYo1cJdbZX4ovy6W4OjK-Dr4w6Fs9Gv9uTih_BGhRlk9HBqeY8KL4reuUhyRhRRjMd7yhBaZRYz2s7u_D3whENY7x-22Z0EfosecvjT37nuXjDr5h0uIUGBjKAIeyo3enONVbhUcZF3cO4kRHzGwDhxNtxVfMee6YwhR1yzv59dmYCxKedwrr6UGKrurvsM03U3OYi2o4geHdpYo8dJKalA3io6hB_yXTqClzJPynAIOKlaL_akags9WR2fLHG526_HDfCN4IKAIz2pCjeigd3rfyKZ0b8tEYbmHSKDr-gujHT5NTaClp3W1L90AakQ2sOMgZ3c8NGUAzbPYsBOlEHrMsurNjEJklTH-IvJXNhXJD7hxu2FCfMguRu9zz0JqjMQpn6QDEzETBIY1grpDrcsKxZDH3P2Tv6L3uQB_UEi445uo6Cf5MJNY3N30Q1JsCs6MC5oJjJqYmldB_dQkYYbFfjpB6_IoM_yDvg5e6N8OmvHLaPo9ZtVkNCmL8YPtwaZSufSiZ5TdTUyyJWM8zPmmfh115M_eiI0siyptpvKPFkT8OoFGjBcTHcTQoIt5nPzhtDlzdpjycOUzMMdhSBaeXoPukNv9kTYOmeBxPTP6DmXg&skey=8952ce414dafd5f2&v=v12
142.250.74.67200 OK 18 kB URL HTTP/2 fonts.gstatic.com/l/font?kit=pe0oMImSLYBIv1o4X1M8cce4I9tYo1cJdbZX4ovy6W4OjK-Dr4w6Fs9Gv9uTih_BGhRlk9HBqeY8KL4reuUhyRhRRjMd7yhBaZRYz2s7u_D3whENY7x-22Z0EfosecvjT37nuXjDr5h0uIUGBjKAIeyo3enONVbhUcZF3cO4kRHzGwDhxNtxVfMee6YwhR1yzv59dmYCxKedwrr6UGKrurvsM03U3OYi2o4geHdpYo8dJKalA3io6hB_yXTqClzJPynAIOKlaL_akags9WR2fLHG526_HDfCN4IKAIz2pCjeigd3rfyKZ0b8tEYbmHSKDr-gujHT5NTaClp3W1L90AakQ2sOMgZ3c8NGUAzbPYsBOlEHrMsurNjEJklTH-IvJXNhXJD7hxu2FCfMguRu9zz0JqjMQpn6QDEzETBIY1grpDrcsKxZDH3P2Tv6L3uQB_UEi445uo6Cf5MJNY3N30Q1JsCs6MC5oJjJqYmldB_dQkYYbFfjpB6_IoM_yDvg5e6N8OmvHLaPo9ZtVkNCmL8YPtwaZSufSiZ5TdTUyyJWM8zPmmfh115M_eiI0siyptpvKPFkT8OoFGjBcTHcTQoIt5nPzhtDlzdpjycOUzMMdhSBaeXoPukNv9kTYOmeBxPTP6DmXg&skey=8952ce414dafd5f2&v=v12
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 18388, version 1.0\012- data
Hash 11c68be50ac583095ce8f48ef96609b3
e552c43f6626ac8eb523e662da35b94a702daf34
0114138e4ac4c4ee867476afc278c243696da522fab0a34776d7d68ca07e3c2c
GET /l/font?kit=pe0oMImSLYBIv1o4X1M8cce4I9tYo1cJdbZX4ovy6W4OjK-Dr4w6Fs9Gv9uTih_BGhRlk9HBqeY8KL4reuUhyRhRRjMd7yhBaZRYz2s7u_D3whENY7x-22Z0EfosecvjT37nuXjDr5h0uIUGBjKAIeyo3enONVbhUcZF3cO4kRHzGwDhxNtxVfMee6YwhR1yzv59dmYCxKedwrr6UGKrurvsM03U3OYi2o4geHdpYo8dJKalA3io6hB_yXTqClzJPynAIOKlaL_akags9WR2fLHG526_HDfCN4IKAIz2pCjeigd3rfyKZ0b8tEYbmHSKDr-gujHT5NTaClp3W1L90AakQ2sOMgZ3c8NGUAzbPYsBOlEHrMsurNjEJklTH-IvJXNhXJD7hxu2FCfMguRu9zz0JqjMQpn6QDEzETBIY1grpDrcsKxZDH3P2Tv6L3uQB_UEi445uo6Cf5MJNY3N30Q1JsCs6MC5oJjJqYmldB_dQkYYbFfjpB6_IoM_yDvg5e6N8OmvHLaPo9ZtVkNCmL8YPtwaZSufSiZ5TdTUyyJWM8zPmmfh115M_eiI0siyptpvKPFkT8OoFGjBcTHcTQoIt5nPzhtDlzdpjycOUzMMdhSBaeXoPukNv9kTYOmeBxPTP6DmXg&skey=8952ce414dafd5f2&v=v12 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://goroh.pp.ua
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
content-length: 18388
content-disposition: attachment; filename="font.woff2"; filename*=UTF-8''font.woff2
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
date: Thu, 02 Feb 2023 16:11:14 GMT
expires: Thu, 02 Feb 2023 16:11:14 GMT
cache-control: private, max-age=86400
age: 11748
last-modified: Thu, 22 Sep 2022 05:27:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
216.58.207.226200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 216.58.207.226:0
File type ASCII text, with very long lines (3649)
Hash 1ab8aa5afbfe8c408f3d4c5f3bb8499a
78f14af03610dc47c5de87ce46e9dac51725d600
f4fb2cb3ebda50ab142697d77b3a1ff10f4cf50af3f0f60a7afda824ca12a5ec
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goroh.pp.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 02 Feb 2023 19:27:02 GMT
expires: Thu, 02 Feb 2023 19:27:02 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 4794258452898907031
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49911
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/l/font?kit=pe03MImSLYBIv1o4X1M8cc8GBv5vQYQrdrNY447w928NjaiCrI01F8xHu6WQixjAGRVqktLAruc_KaEqeeQmyBtQSTIe7i59apVfzmg6tPH0wxYMYL1h2mV1FvsveMTiTH_hBhGq1uA2-sJBTHjIaaLmkaWeZQO0CJ8agp3m83OUfGWErrEZPZ1wF8pD9m0Cu4sEDxl9utnhufy8FyXp-PivYx2Fjbx4gdVIEB4AH_JjW-DjQjnmpFs0gz67WwyZYHaefovMANen7NRQihkmLO6ZlB3Nbk22at9aUNmjx0iXw0c367rkDwux_gxf3gLiX-7z6WWHsoKNXQYrBQy9kEflASlNcUIzNoYAFkucdcNIcxtN54Bi4JWJaAccUJJfVAITLuOI82_DYVG69ZMWj0WNWtSyPOaFIFFScFIqADtPwF-51so-axWnsFKQRRD7a5lp5uBX1eDTLsNZZt6fjRFgcpT7v5bv-cGR8dT4K0CDHAZYLhWm4Vn4ZMVyhXSsp6zOsrv9TefM4JQvFwIC2PpdephVKmXRB2s1AaOjvVQjRri7-QSDtTkrm7zRzI_ruZw2Pr49WI3xHDmYeGGFS1VRsMeX424bu0Myt0RValFXSHHaVoGzCIRWiLVITZ_FE1yIKu2ERSM&skey=cc2992921884e495&v=v12
142.250.74.67200 OK 18 kB URL HTTP/2 fonts.gstatic.com/l/font?kit=pe03MImSLYBIv1o4X1M8cc8GBv5vQYQrdrNY447w928NjaiCrI01F8xHu6WQixjAGRVqktLAruc_KaEqeeQmyBtQSTIe7i59apVfzmg6tPH0wxYMYL1h2mV1FvsveMTiTH_hBhGq1uA2-sJBTHjIaaLmkaWeZQO0CJ8agp3m83OUfGWErrEZPZ1wF8pD9m0Cu4sEDxl9utnhufy8FyXp-PivYx2Fjbx4gdVIEB4AH_JjW-DjQjnmpFs0gz67WwyZYHaefovMANen7NRQihkmLO6ZlB3Nbk22at9aUNmjx0iXw0c367rkDwux_gxf3gLiX-7z6WWHsoKNXQYrBQy9kEflASlNcUIzNoYAFkucdcNIcxtN54Bi4JWJaAccUJJfVAITLuOI82_DYVG69ZMWj0WNWtSyPOaFIFFScFIqADtPwF-51so-axWnsFKQRRD7a5lp5uBX1eDTLsNZZt6fjRFgcpT7v5bv-cGR8dT4K0CDHAZYLhWm4Vn4ZMVyhXSsp6zOsrv9TefM4JQvFwIC2PpdephVKmXRB2s1AaOjvVQjRri7-QSDtTkrm7zRzI_ruZw2Pr49WI3xHDmYeGGFS1VRsMeX424bu0Myt0RValFXSHHaVoGzCIRWiLVITZ_FE1yIKu2ERSM&skey=cc2992921884e495&v=v12
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 17676, version 1.0\012- data
Hash c874e1b6000e1e6489bfc268efa5f053
5f0ef77af9bc11e7b4c3b693ccb0e2c91ce383f1
32a1873e03567492d5bc422049a61826bbb464bc1a1e9b71d32b2f0fccdcf651
GET /l/font?kit=pe03MImSLYBIv1o4X1M8cc8GBv5vQYQrdrNY447w928NjaiCrI01F8xHu6WQixjAGRVqktLAruc_KaEqeeQmyBtQSTIe7i59apVfzmg6tPH0wxYMYL1h2mV1FvsveMTiTH_hBhGq1uA2-sJBTHjIaaLmkaWeZQO0CJ8agp3m83OUfGWErrEZPZ1wF8pD9m0Cu4sEDxl9utnhufy8FyXp-PivYx2Fjbx4gdVIEB4AH_JjW-DjQjnmpFs0gz67WwyZYHaefovMANen7NRQihkmLO6ZlB3Nbk22at9aUNmjx0iXw0c367rkDwux_gxf3gLiX-7z6WWHsoKNXQYrBQy9kEflASlNcUIzNoYAFkucdcNIcxtN54Bi4JWJaAccUJJfVAITLuOI82_DYVG69ZMWj0WNWtSyPOaFIFFScFIqADtPwF-51so-axWnsFKQRRD7a5lp5uBX1eDTLsNZZt6fjRFgcpT7v5bv-cGR8dT4K0CDHAZYLhWm4Vn4ZMVyhXSsp6zOsrv9TefM4JQvFwIC2PpdephVKmXRB2s1AaOjvVQjRri7-QSDtTkrm7zRzI_ruZw2Pr49WI3xHDmYeGGFS1VRsMeX424bu0Myt0RValFXSHHaVoGzCIRWiLVITZ_FE1yIKu2ERSM&skey=cc2992921884e495&v=v12 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://goroh.pp.ua
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
content-length: 17676
content-disposition: attachment; filename="font.woff2"; filename*=UTF-8''font.woff2
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
date: Thu, 02 Feb 2023 08:16:19 GMT
expires: Thu, 02 Feb 2023 08:16:19 GMT
cache-control: private, max-age=86400
age: 40243
last-modified: Thu, 22 Sep 2022 05:27:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goroh.pp.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Feb 2023 17:44:08 GMT
expires: Thu, 02 Feb 2023 19:44:08 GMT
cache-control: public, max-age=7200
age: 6175
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20230131/r20190131/zrt_lookup.html
142.250.74.66200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230131/r20190131/zrt_lookup.html
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20230131/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goroh.pp.ua/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:39:37 GMT
expires: Thu, 16 Feb 2023 00:39:37 GMT
cache-control: public, max-age=1209600
age: 67646
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=2088361350&t=pageview&_s=1&dl=https%3A%2F%2Fgoroh.pp.ua%2F%25D1%2582%25D1%2580%25D0%25B0%25D0%25BD%25D1%2581%25D0%25BA%25D1%2580%25D0%25B8%25D0%25BF%25D1%2586%25D1%2596%25D1%258F%2F%25D0%25B1%25D0%25B0%25D1%2581%25D0%25BA%25D0%25B5%25D1%2582%25D0%25B1%25D0%25BE%25D0%25BB%2523%3A~%3Atext%3D%5B%25D0%25B1%25D0%25B0%25D1%2581%25D0%25BA%25D0%25B5%25D0%25B8%25D0%25B4%25D0%25B1%25D0%25BE%25CC%2581%25D0%25BB%5D&ul=en-us&de=UTF-8&dt=404%20%E2%80%94%20%D0%A1%D0%BB%D0%BE%D0%B2%D0%BE%20%C2%AB%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D1%82%D0%B1%D0%BE%D0%BB%23%3A~%3Atext%3D%5B%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D0%B8%D0%B4%D0%B1%D0%BE%CC%81%D0%BB%5D%C2%BB%20%D0%BD%D0%B5%20%D0%B7%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD%D0%BE%20%7C%20%D0%93%D0%BE%D1%80%D0%BE%D1%85%20%E2%80%94%20%D1%83%D0%BA%D1%80%D0%B0%D1%97%D0%BD%D1%81%D1%8C%D0%BA%D1%96%20%D1%81%D0%BB%D0%BE%D0%B2%D0%BD%D0%B8%D0%BA%D0%B8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=291301506&gjid=1395103042&cid=1715771692.1675366051&tid=UA-145685605-1&_gid=172236726.1675366051&_r=1&_slc=1>m=2ou210&z=986666394
142.250.74.110200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=2088361350&t=pageview&_s=1&dl=https%3A%2F%2Fgoroh.pp.ua%2F%25D1%2582%25D1%2580%25D0%25B0%25D0%25BD%25D1%2581%25D0%25BA%25D1%2580%25D0%25B8%25D0%25BF%25D1%2586%25D1%2596%25D1%258F%2F%25D0%25B1%25D0%25B0%25D1%2581%25D0%25BA%25D0%25B5%25D1%2582%25D0%25B1%25D0%25BE%25D0%25BB%2523%3A~%3Atext%3D%5B%25D0%25B1%25D0%25B0%25D1%2581%25D0%25BA%25D0%25B5%25D0%25B8%25D0%25B4%25D0%25B1%25D0%25BE%25CC%2581%25D0%25BB%5D&ul=en-us&de=UTF-8&dt=404%20%E2%80%94%20%D0%A1%D0%BB%D0%BE%D0%B2%D0%BE%20%C2%AB%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D1%82%D0%B1%D0%BE%D0%BB%23%3A~%3Atext%3D%5B%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D0%B8%D0%B4%D0%B1%D0%BE%CC%81%D0%BB%5D%C2%BB%20%D0%BD%D0%B5%20%D0%B7%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD%D0%BE%20%7C%20%D0%93%D0%BE%D1%80%D0%BE%D1%85%20%E2%80%94%20%D1%83%D0%BA%D1%80%D0%B0%D1%97%D0%BD%D1%81%D1%8C%D0%BA%D1%96%20%D1%81%D0%BB%D0%BE%D0%B2%D0%BD%D0%B8%D0%BA%D0%B8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=291301506&gjid=1395103042&cid=1715771692.1675366051&tid=UA-145685605-1&_gid=172236726.1675366051&_r=1&_slc=1>m=2ou210&z=986666394
IP 142.250.74.110:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=2088361350&t=pageview&_s=1&dl=https%3A%2F%2Fgoroh.pp.ua%2F%25D1%2582%25D1%2580%25D0%25B0%25D0%25BD%25D1%2581%25D0%25BA%25D1%2580%25D0%25B8%25D0%25BF%25D1%2586%25D1%2596%25D1%258F%2F%25D0%25B1%25D0%25B0%25D1%2581%25D0%25BA%25D0%25B5%25D1%2582%25D0%25B1%25D0%25BE%25D0%25BB%2523%3A~%3Atext%3D%5B%25D0%25B1%25D0%25B0%25D1%2581%25D0%25BA%25D0%25B5%25D0%25B8%25D0%25B4%25D0%25B1%25D0%25BE%25CC%2581%25D0%25BB%5D&ul=en-us&de=UTF-8&dt=404%20%E2%80%94%20%D0%A1%D0%BB%D0%BE%D0%B2%D0%BE%20%C2%AB%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D1%82%D0%B1%D0%BE%D0%BB%23%3A~%3Atext%3D%5B%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D0%B8%D0%B4%D0%B1%D0%BE%CC%81%D0%BB%5D%C2%BB%20%D0%BD%D0%B5%20%D0%B7%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD%D0%BE%20%7C%20%D0%93%D0%BE%D1%80%D0%BE%D1%85%20%E2%80%94%20%D1%83%D0%BA%D1%80%D0%B0%D1%97%D0%BD%D1%81%D1%8C%D0%BA%D1%96%20%D1%81%D0%BB%D0%BE%D0%B2%D0%BD%D0%B8%D0%BA%D0%B8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=291301506&gjid=1395103042&cid=1715771692.1675366051&tid=UA-145685605-1&_gid=172236726.1675366051&_r=1&_slc=1>m=2ou210&z=986666394 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://goroh.pp.ua
Connection: keep-alive
Referer: https://goroh.pp.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://goroh.pp.ua
date: Thu, 02 Feb 2023 19:27:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.82.137.1101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.82.137.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NFkWosmCQxOoswQnMMvX8g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 35AZQV7M2zl3bz2Pgkd3I/n6I3c=
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash f44095f8ebc7d211f4ee24d88a703128
97263cb2c5d0237c08bee075fb75c8bddefddf2c
1183ec38cb48e7986d42d545c968616fe9f996f73849f1da6c111eb4ccfbb529
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash f44095f8ebc7d211f4ee24d88a703128
97263cb2c5d0237c08bee075fb75c8bddefddf2c
1183ec38cb48e7986d42d545c968616fe9f996f73849f1da6c111eb4ccfbb529
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=goroh.pp.ua
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=goroh.pp.ua
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=goroh.pp.ua HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goroh.pp.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 02 Feb 2023 19:27:03 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=goroh.pp.ua
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=goroh.pp.ua
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=goroh.pp.ua HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goroh.pp.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 02 Feb 2023 19:27:03 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-145685605-1&cid=1715771692.1675366051&jid=291301506&gjid=1395103042&_gid=172236726.1675366051&_u=YEBAAUAAAAAAACAAI~&z=48133062
173.194.221.156200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-145685605-1&cid=1715771692.1675366051&jid=291301506&gjid=1395103042&_gid=172236726.1675366051&_u=YEBAAUAAAAAAACAAI~&z=48133062
IP 173.194.221.156:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-145685605-1&cid=1715771692.1675366051&jid=291301506&gjid=1395103042&_gid=172236726.1675366051&_u=YEBAAUAAAAAAACAAI~&z=48133062 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://goroh.pp.ua
Connection: keep-alive
Referer: https://goroh.pp.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://goroh.pp.ua
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 02 Feb 2023 19:27:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash b204f3abe06417a75a9703b1ed69bb37
f636ae39c412c40c3737e9c3c99a5e2e30a7e861
209edba54e970905fc4efd62b8736ef3f5d5021ccb82ea63e7ebfe0baf3e1896
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20230131/r20110914/client/qs_click_protection_fy2021.js
172.217.21.161200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230131/r20110914/client/qs_click_protection_fy2021.js
IP 172.217.21.161:0
File type ASCII text, with very long lines (1605)
Hash aeaebc4fec11dcafa566897f3b2aa937
7b4507c8793c1ce833dccaeb7dbc956c1fd06668
c23b4a16d9468c0018f502492594408fc809fc0fe003aed2f1145ba3dca87bae
GET /pagead/js/r20230131/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7647
x-xss-protection: 0
date: Wed, 01 Feb 2023 22:18:58 GMT
expires: Wed, 15 Feb 2023 22:18:58 GMT
cache-control: public, max-age=1209600
age: 76085
etag: 2161395064574532456
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash b22fd1db625ddb97833837ec103a2778
99d46c444151154c63a20d4f241232112acc568f
7a6d821ed7d1cc280eecd30fe97ed1f4fceea4535dcdd7faf33215008d6fbcdd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4292
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:03 GMT
Last-Modified: Thu, 02 Feb 2023 18:15:32 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 314
cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
104.17.25.14200 OK 4.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (2171)
Hash 44c72b9bddfecacc9114e84d685dd085
38f3ff57b9b64a38fc2153eb30564b7fc1c86349
c82afd4f2d89288b4b79244f0c24264810b11326670710ac8e28e7bfc87c7991
GET /ajax/libs/webfont/1.6.28/webfontloader.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 19:27:03 GMT
content-type: application/javascript; charset=utf-8
content-length: 4420
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04030-30d9"
last-modified: Mon, 04 May 2020 16:17:52 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 592700
expires: Tue, 23 Jan 2024 19:27:03 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zqy3x0pSOx1goWwmIMBVA%2FK%2BMlC%2Fdndi6hykDQommuGBtEX6OMnOTR3mOKdjdTdl1crTkaiqHpRBTRDxNFfBAJGuUjvGu8GLSRvOsP35dtXumtZnl%2BZMCvGZq9dK%2FvGT3VmrDkMG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79355271da6efac0-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash f8d8478f6fd65ccb723aafc9fa19ac4b
de1c2b7881907cc7c06c816b365da09df429ba7a
e4f4422c14320af3bf6e865e98d42ab5e8f5ef06a41c10f42670ae2d533e534a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6279
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:04 GMT
Last-Modified: Thu, 02 Feb 2023 17:42:25 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash f8d8478f6fd65ccb723aafc9fa19ac4b
de1c2b7881907cc7c06c816b365da09df429ba7a
e4f4422c14320af3bf6e865e98d42ab5e8f5ef06a41c10f42670ae2d533e534a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6279
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:04 GMT
Last-Modified: Thu, 02 Feb 2023 17:42:25 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash f8d8478f6fd65ccb723aafc9fa19ac4b
de1c2b7881907cc7c06c816b365da09df429ba7a
e4f4422c14320af3bf6e865e98d42ab5e8f5ef06a41c10f42670ae2d533e534a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6279
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:04 GMT
Last-Modified: Thu, 02 Feb 2023 17:42:25 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash f8d8478f6fd65ccb723aafc9fa19ac4b
de1c2b7881907cc7c06c816b365da09df429ba7a
e4f4422c14320af3bf6e865e98d42ab5e8f5ef06a41c10f42670ae2d533e534a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6246
Cache-Control: max-age=88943
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:04 GMT
Etag: "63daae91-139"
Expires: Fri, 03 Feb 2023 20:09:27 GMT
Last-Modified: Wed, 01 Feb 2023 18:25:21 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 34057df66622b763fac26c84b1e33814
096d78a127fbb9dbae567b216c18acb32fdc1721
91bcc8cff97b409a7e83150dbf206d85af01f08f1c8b47372ee2c62a162c7bfb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5572
Cache-Control: max-age=89298
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:04 GMT
Etag: "63dab296-13a"
Expires: Fri, 03 Feb 2023 20:15:22 GMT
Last-Modified: Wed, 01 Feb 2023 18:42:30 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 314
static.criteo.net/flash/icon/close_button.svg
178.250.0.130200 OK 308 B URL HTTP/2 static.criteo.net/flash/icon/close_button.svg
IP 178.250.0.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 1bfe2e290ec4440da74a2e2c249eae2b
0b888a3f9e27d1554f2e21d51e7a1c223d00dbd4
8ec89605fe3d580e9539c7b858e8f69ba4e26fe06377ebe04585397de23a7395
GET /flash/icon/close_button.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 19:27:04 GMT
content-type: image/svg+xml
content-length: 308
last-modified: Fri, 14 Feb 2020 13:51:32 GMT
etag: "5e46a5e4-134"
expires: Sun, 28 Jan 2024 19:27:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/back_button2.svg
178.250.0.130200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP 178.250.0.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 19:27:04 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Sun, 28 Jan 2024 19:27:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/dt/f342bdd505994d4ebb138128d448f553_avenirnextltpro.woff
178.250.0.130200 OK 21 kB URL HTTP/2 static.criteo.net/design/dt/f342bdd505994d4ebb138128d448f553_avenirnextltpro.woff
IP 178.250.0.130:0
File type Web Open Font Format, TrueType, length 21444, version 1.100\012- data
Hash 20be5fdc3302b5f3d13fca2690afc5ef
1e75a45c81ca3ab4aee08f53c828f60daa21ff58
ed53eeea7846fe89ec2d53b5bf89b34ca78854854abdb469697c63509cc2e0ec
GET /design/dt/f342bdd505994d4ebb138128d448f553_avenirnextltpro.woff HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 19:27:04 GMT
content-type: text/plain; charset=UTF-8
content-length: 21444
last-modified: Tue, 11 Jun 2019 14:25:37 GMT
etag: "5cffb9e1-53c4"
expires: Sun, 28 Jan 2024 19:27:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/dt/010ccf751ef748128c521a75a966b8f1_bauer-bodoni-condensed-bold.woff
178.250.0.130200 OK 19 kB URL HTTP/2 static.criteo.net/design/dt/010ccf751ef748128c521a75a966b8f1_bauer-bodoni-condensed-bold.woff
IP 178.250.0.130:0
File type Web Open Font Format, CFF, length 19060, version 3.1\012- data
Hash c9425392bd0018132c74733dd7b2dbf8
a47dd39ae0b16c90e8e15d66302f932e367851bf
389eb0c986cfdb90b468d3c2f068b5bcb6753bb9ece0581e1bba0b8087a92b74
GET /design/dt/010ccf751ef748128c521a75a966b8f1_bauer-bodoni-condensed-bold.woff HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 19:27:04 GMT
content-type: text/plain; charset=UTF-8
content-length: 19060
last-modified: Tue, 21 Jun 2022 20:54:03 GMT
etag: "62b22feb-4a74"
expires: Sun, 28 Jan 2024 19:27:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/dt/1662e641d7d74eeb886a0ffc41a660df_avenirnextltpro-regular.woff
178.250.0.130200 OK 34 kB URL HTTP/2 static.criteo.net/design/dt/1662e641d7d74eeb886a0ffc41a660df_avenirnextltpro-regular.woff
IP 178.250.0.130:0
File type Web Open Font Format, CFF, length 34384, version 1.100\012- data
Hash 6ca898ae5c32e1195b576276384b72b1
05e67b45b9e1dcc4e64f02c619978ee7297f3752
38784db79bb7cb8998e180cff575a3d42741bbdbbeda1aad281c653089b193b1
GET /design/dt/1662e641d7d74eeb886a0ffc41a660df_avenirnextltpro-regular.woff HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 19:27:04 GMT
content-type: text/plain; charset=UTF-8
content-length: 34384
last-modified: Tue, 11 Jun 2019 14:25:37 GMT
etag: "5cffb9e1-8650"
expires: Sun, 28 Jan 2024 19:27:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 92b9ab9af772f1ae2449575c2171d4ac
39567e6caebcecbe906d201db141fad4c11e1113
266d6137bffc63a30540b67b64b862849953361bc0e7506df3b0f34bf6aa39c2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5446
Cache-Control: max-age=146071
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:04 GMT
Etag: "63db90d9-13a"
Expires: Sat, 04 Feb 2023 12:01:35 GMT
Last-Modified: Thu, 02 Feb 2023 10:30:49 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 92b9ab9af772f1ae2449575c2171d4ac
39567e6caebcecbe906d201db141fad4c11e1113
266d6137bffc63a30540b67b64b862849953361bc0e7506df3b0f34bf6aa39c2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5330
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:04 GMT
Last-Modified: Thu, 02 Feb 2023 17:58:14 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 92b9ab9af772f1ae2449575c2171d4ac
39567e6caebcecbe906d201db141fad4c11e1113
266d6137bffc63a30540b67b64b862849953361bc0e7506df3b0f34bf6aa39c2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5300
Cache-Control: max-age=145925
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:04 GMT
Etag: "63db90d9-13a"
Expires: Sat, 04 Feb 2023 11:59:09 GMT
Last-Modified: Thu, 02 Feb 2023 10:30:49 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 314
pix.eu.criteo.net/img/img?h=104&m=0&partner=49287&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F49287%2F230130%2F458aeb5261a3477fa0fa2e35b99cbba6_logo_n_horizontal.png&v=3&w=596&s=8lLEuLWuMgUxsMGXuM5Bx3-L
178.250.0.139200 OK 7.7 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=104&m=0&partner=49287&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F49287%2F230130%2F458aeb5261a3477fa0fa2e35b99cbba6_logo_n_horizontal.png&v=3&w=596&s=8lLEuLWuMgUxsMGXuM5Bx3-L
IP 178.250.0.139:0
File type PNG image data, 312 x 104, 8-bit/color RGBA, non-interlaced\012- data
Hash 4ebf2919b402f4b6657d39611afc7c2c
52302d0c97e71af2d60212641034fe95a47dcca2
4f1e2b8d644e853ba2e299358ce11ce17b7c128bff692cd45277dc52909b326d
GET /img/img?h=104&m=0&partner=49287&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F49287%2F230130%2F458aeb5261a3477fa0fa2e35b99cbba6_logo_n_horizontal.png&v=3&w=596&s=8lLEuLWuMgUxsMGXuM5Bx3-L HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30845906
expires: Thu, 25 Jan 2024 19:45:30 GMT
date: Thu, 02 Feb 2023 19:27:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7708
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000023129%2Fretina_detail.jpg&v=3&w=800&s=f4n-N0mJxif8wHkp72xhQxE4&b=400
178.250.0.139200 OK 6.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000023129%2Fretina_detail.jpg&v=3&w=800&s=f4n-N0mJxif8wHkp72xhQxE4&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 249x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3e6e3078831163ee0e72ac0205313627
1b7f347d3fd7808049ddfc7d01aff37a3bc8c197
05ab6a0fe86bec37499ec494d213bc864c4172bb917834b4aaad8f71d4077b0a
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000023129%2Fretina_detail.jpg&v=3&w=800&s=f4n-N0mJxif8wHkp72xhQxE4&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=1961473
expires: Sat, 25 Feb 2023 12:18:18 GMT
date: Thu, 02 Feb 2023 19:27:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6322
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000023318%2Fretina_detail.jpg&v=3&w=800&s=U6Bey4hvU_qVfaFGDaIhJT01&b=400
178.250.0.139200 OK 18 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000023318%2Fretina_detail.jpg&v=3&w=800&s=U6Bey4hvU_qVfaFGDaIhJT01&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x295, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash af7365564dbb3e1f563760458b7322c6
82e0432712cc9e405add323820ac604e905664a5
d50139ecd80ce92ddc892ae171bfa286b09fa329e53c98d2f8214432d9f8e06b
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000023318%2Fretina_detail.jpg&v=3&w=800&s=U6Bey4hvU_qVfaFGDaIhJT01&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=1973138
expires: Sat, 25 Feb 2023 15:32:43 GMT
date: Thu, 02 Feb 2023 19:27:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 18130
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000023435%2Fretina_detail.jpg&v=3&w=800&s=8FR2ghpl-yE1xR-qCJmAzpn3&b=400
178.250.0.139200 OK 15 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000023435%2Fretina_detail.jpg&v=3&w=800&s=8FR2ghpl-yE1xR-qCJmAzpn3&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 386x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7713b54fb2a73f1c3832980dc43f6f7c
a77ba5746e9c335d79554a475b24e3ac2d6c7118
0e4124be219885bd0cc402a71dcface8c652e4ba62a7e053638d59061947220b
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000023435%2Fretina_detail.jpg&v=3&w=800&s=8FR2ghpl-yE1xR-qCJmAzpn3&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=1985434
expires: Sat, 25 Feb 2023 18:57:38 GMT
date: Thu, 02 Feb 2023 19:27:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 14610
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000020292%2Fretina_detail.jpg&v=3&w=800&s=kvtCqAg40kIKzfodsS9Dd-z4&b=400
178.250.0.139200 OK 12 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000020292%2Fretina_detail.jpg&v=3&w=800&s=kvtCqAg40kIKzfodsS9Dd-z4&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x253, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bdd8a50cfb537ad6416e6efae0d440b5
d7744e33d98df1be46b96cfe05a48ac440fca2b8
70f2b3f32f2bf905c0a0de627014748ae0d546117a37891e5d13f731c145bfb1
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000020292%2Fretina_detail.jpg&v=3&w=800&s=kvtCqAg40kIKzfodsS9Dd-z4&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2126710
expires: Mon, 27 Feb 2023 10:12:14 GMT
date: Thu, 02 Feb 2023 19:27:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 11914
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000024966%2Fretina_detail.jpg&v=3&w=800&s=puxGngOS5rB6aoMI0Q8aBXvw&b=400
178.250.0.139200 OK 15 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000024966%2Fretina_detail.jpg&v=3&w=800&s=puxGngOS5rB6aoMI0Q8aBXvw&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x275, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 161f83240f51a71d99dd2a7dbe5a9435
17fe96165c1ca116b3eebb9945d8aea7b9147736
32b65ee1dfa84a291996eba00b8868e0c1a7a4e60f2ca5581c26922dea692674
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000024966%2Fretina_detail.jpg&v=3&w=800&s=puxGngOS5rB6aoMI0Q8aBXvw&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=1135009
expires: Wed, 15 Feb 2023 22:43:53 GMT
date: Thu, 02 Feb 2023 19:27:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 15352
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000023055%2Fretina_detail.jpg&v=3&w=800&s=zjddcc9xTD2F5ZRSXyMzZNCc&b=400
178.250.0.139200 OK 19 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000023055%2Fretina_detail.jpg&v=3&w=800&s=zjddcc9xTD2F5ZRSXyMzZNCc&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x302, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c95295f1fa8407b7c6d7c5d3a253529c
11dd4ab44f3ed9abf1e27a22752edb7798819a0c
f311c3ac3509cabc94322519359f421b60122569d7690159bb0600e6da0bd5ef
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000023055%2Fretina_detail.jpg&v=3&w=800&s=zjddcc9xTD2F5ZRSXyMzZNCc&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=1972452
expires: Sat, 25 Feb 2023 15:21:17 GMT
date: Thu, 02 Feb 2023 19:27:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 18776
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000018718%2Fretina_detail.jpg&v=3&w=800&s=51S4Fky-1rVLlIP6QKRVcnNh&b=400
178.250.0.139200 OK 5.8 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000018718%2Fretina_detail.jpg&v=3&w=800&s=51S4Fky-1rVLlIP6QKRVcnNh&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x245, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash df390b72071dd3828b5cea98d7d22496
d46de5621aade673181fe6e12435a4057081a36e
4f67c85901ca5b4c34471e5d1e5e669a470a6cc2856a9bbf1267bdfd257ea672
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000018718%2Fretina_detail.jpg&v=3&w=800&s=51S4Fky-1rVLlIP6QKRVcnNh&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2025312
expires: Sun, 26 Feb 2023 06:02:17 GMT
date: Thu, 02 Feb 2023 19:27:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5784
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000026176%2Fretina_detail.jpg&v=3&w=800&s=Cffx7P17Bf3DkOYDB4QqEMbR&b=400
178.250.0.139200 OK 8.7 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000026176%2Fretina_detail.jpg&v=3&w=800&s=Cffx7P17Bf3DkOYDB4QqEMbR&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 253x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash efeed0a5ff978bdb48993a95d4889210
de2a1f241ac678a4f34e3e6380c1cdb3ffd784d8
db4303dcf9961afe866e80720c5df4296c802462f322e1964a1fb1a9226bd075
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000026176%2Fretina_detail.jpg&v=3&w=800&s=Cffx7P17Bf3DkOYDB4QqEMbR&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=739320
expires: Sat, 11 Feb 2023 08:49:04 GMT
date: Thu, 02 Feb 2023 19:27:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8708
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000020998%2Fretina_detail.jpg&v=3&w=800&s=ht0jU-d7mGQ67fv963pJMXva&b=400
178.250.0.139200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000020998%2Fretina_detail.jpg&v=3&w=800&s=ht0jU-d7mGQ67fv963pJMXva&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x288, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 667fb0b4c67f0a2de8948699be61782f
539c23674411a81c7980b1e1f67f96fd86d863a0
2ccf5826587f4ddc6021bbef0d21ab5f5ca0ae2e62f546635570cfb74bc1b5e7
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000020998%2Fretina_detail.jpg&v=3&w=800&s=ht0jU-d7mGQ67fv963pJMXva&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=1938825
expires: Sat, 25 Feb 2023 06:00:50 GMT
date: Thu, 02 Feb 2023 19:27:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 11256
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000022746%2Fretina_detail.jpg&v=3&w=800&s=c0K0m6uOtd0JXSDzaC2JWs66&b=400
178.250.0.139200 OK 9.5 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000022746%2Fretina_detail.jpg&v=3&w=800&s=c0K0m6uOtd0JXSDzaC2JWs66&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 377x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ca378fd3a99e5d2bf9468663a76c9916
d40bb1f05c7e3a46693bf7a4e9cdf28595f05d88
7c43ef13ada3e12962a1ff4074fed759cccd660edabf49a5cafc50a89370c16f
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000022746%2Fretina_detail.jpg&v=3&w=800&s=c0K0m6uOtd0JXSDzaC2JWs66&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=2062469
expires: Sun, 26 Feb 2023 16:21:34 GMT
date: Thu, 02 Feb 2023 19:27:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 9472
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000025998%2Fretina_detail.jpg&v=3&w=800&s=-5TtZM-_1tMSy5qlWzwavD9O&b=400
178.250.0.139200 OK 9.9 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000025998%2Fretina_detail.jpg&v=3&w=800&s=-5TtZM-_1tMSy5qlWzwavD9O&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x279, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a652943c15856210328ac00f6e0206c5
7591a8d2766873d55faff57715835f426313e62e
e2e688bf72f6b70b1abab9228c0ea77a5d44dfec8f3faecff914bf344cf3fd28
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000025998%2Fretina_detail.jpg&v=3&w=800&s=-5TtZM-_1tMSy5qlWzwavD9O&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=583638
expires: Thu, 09 Feb 2023 13:34:22 GMT
date: Thu, 02 Feb 2023 19:27:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 9852
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000021485%2Fretina_detail.jpg&v=3&w=800&s=_jRHy_mP4O_HRPjFmXHXeYTb&b=400
178.250.0.139200 OK 18 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000021485%2Fretina_detail.jpg&v=3&w=800&s=_jRHy_mP4O_HRPjFmXHXeYTb&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x357, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4ac6afbde7879b904c752879d06aed5a
72cf3f3a28f09b79b0eb0deb8a200b9e0d403bce
bf1cfe8254e0ce679c37439bd084ef67f15e62972221e75db6f8d832eba9cad0
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000021485%2Fretina_detail.jpg&v=3&w=800&s=_jRHy_mP4O_HRPjFmXHXeYTb&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=2125389
expires: Mon, 27 Feb 2023 09:50:13 GMT
date: Thu, 02 Feb 2023 19:27:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 17612
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
r3.o.lencr.org/
184.51.252.197200 OK 503 B IP 184.51.252.197:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7569
Expires: Thu, 02 Feb 2023 21:33:13 GMT
Date: Thu, 02 Feb 2023 19:27:04 GMT
Connection: keep-alive
r3.o.lencr.org/
184.51.252.197200 OK 503 B IP 184.51.252.197:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7569
Expires: Thu, 02 Feb 2023 21:33:13 GMT
Date: Thu, 02 Feb 2023 19:27:04 GMT
Connection: keep-alive
r3.o.lencr.org/
184.51.252.197200 OK 503 B IP 184.51.252.197:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7569
Expires: Thu, 02 Feb 2023 21:33:13 GMT
Date: Thu, 02 Feb 2023 19:27:04 GMT
Connection: keep-alive
r3.o.lencr.org/
184.51.252.197200 OK 503 B IP 184.51.252.197:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7569
Expires: Thu, 02 Feb 2023 21:33:13 GMT
Date: Thu, 02 Feb 2023 19:27:04 GMT
Connection: keep-alive
r3.o.lencr.org/
184.51.252.197200 OK 503 B IP 184.51.252.197:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7569
Expires: Thu, 02 Feb 2023 21:33:13 GMT
Date: Thu, 02 Feb 2023 19:27:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:07 GMT
age: 76497
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XyDZc0F-b0rxwoS5wvSXBuBfYE7JljMmuXseBjLOBk4HvxU5gE7Oqg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:55 GMT
age: 76089
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f85742f336de59ca88f7f964a8b33f4
0fc7177f8cb06421a8807e93989f651bda743567
fbd5fd39c39c218b0fa956f8cb8050cbdbfcb109a92303f6175d73cc8c339526
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8642
x-amzn-requestid: 79840c68-3e99-428d-9c01-9e4a93a34486
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdUzH1-oAMFiwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc1e-5bb93c5126aaff474900da63;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Mc8C-oesi4njIn2K2f56GKuyt6erRJAqCU-B4InhTD8oIoqo4s5-Fg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:43 GMT
age: 76101
etag: "0fc7177f8cb06421a8807e93989f651bda743567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:28:37 GMT
age: 43107
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 86qoRJHXcrnBGi3REMF5q3ANzKdqEs5F3yFUBmiIt6SCbBVnhGe2Kw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:58:57 GMT
age: 77287
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bb5b89e738516f4862491eec286bf6d
8fb46b9ca85f2c578eb2a56d0007859183e12209
7f164a37b675bf39f8473392b07a2a383397da003303965fb190fd4f455bb43b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15051
x-amzn-requestid: 72a3f2ae-538e-40dc-9496-86c28334ba0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc6jGTAIAMFy4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb76-72178ed13a2e70d462785b90;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CKTfQzCvXa4oL6Lm2n8Rw_9Uhj69YfgpDTP9s0zoaX5qW1vcqWIXDA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:46:26 GMT
age: 78038
etag: "8fb46b9ca85f2c578eb2a56d0007859183e12209"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=UIR5YgV-AXfGtE7KJ7YHFXnQ3ZBP3hrFwthBaXcDIe_G1Oqnd85khXrO9l8cZLq3J3qciTcerdM5aPvvvIzpjKuDW8xr8dSmTiWNxnbO7G-cYECKuOsCB49aJ0TeRfO_X8Oq3SIbDNrTimsNuK1wH78vhOSR2jaj0vaYtmfzsQgcwDaVdaTPG4DPSjwsa1gTKHmqASDTGsg46W1JNoJ0RUs2Be4z1eP3ZvyliGxijRPSSHOFFcsgfWny0HQ&sds=2&rev=84569&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=UIR5YgV-AXfGtE7KJ7YHFXnQ3ZBP3hrFwthBaXcDIe_G1Oqnd85khXrO9l8cZLq3J3qciTcerdM5aPvvvIzpjKuDW8xr8dSmTiWNxnbO7G-cYECKuOsCB49aJ0TeRfO_X8Oq3SIbDNrTimsNuK1wH78vhOSR2jaj0vaYtmfzsQgcwDaVdaTPG4DPSjwsa1gTKHmqASDTGsg46W1JNoJ0RUs2Be4z1eP3ZvyliGxijRPSSHOFFcsgfWny0HQ&sds=2&rev=84569&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=UIR5YgV-AXfGtE7KJ7YHFXnQ3ZBP3hrFwthBaXcDIe_G1Oqnd85khXrO9l8cZLq3J3qciTcerdM5aPvvvIzpjKuDW8xr8dSmTiWNxnbO7G-cYECKuOsCB49aJ0TeRfO_X8Oq3SIbDNrTimsNuK1wH78vhOSR2jaj0vaYtmfzsQgcwDaVdaTPG4DPSjwsa1gTKHmqASDTGsg46W1JNoJ0RUs2Be4z1eP3ZvyliGxijRPSSHOFFcsgfWny0HQ&sds=2&rev=84569&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 19:27:04 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kOfnDbOzWawC2ASdg2ICAgAAAE8-FKJyZoA0EIcO3GOFmzW_wrDLJAks7AASAAAKDkFRVURBZ1lCQWdFQkFn&wp=Y9wOhwAGKM4KsocWAAThchIEfbkJ4EM6JbAfGQ
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kOfnDbOzWawC2ASdg2ICAgAAAE8-FKJyZoA0EIcO3GOFmzW_wrDLJAks7AASAAAKDkFRVURBZ1lCQWdFQkFn&wp=Y9wOhwAGKM4KsocWAAThchIEfbkJ4EM6JbAfGQ
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kOfnDbOzWawC2ASdg2ICAgAAAE8-FKJyZoA0EIcO3GOFmzW_wrDLJAks7AASAAAKDkFRVURBZ1lCQWdFQkFn&wp=Y9wOhwAGKM4KsocWAAThchIEfbkJ4EM6JbAfGQ HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 364941
date: Thu, 02 Feb 2023 19:27:04 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=UIR5YgV-AXfGtE7KJ7YHFXnQ3ZBP3hrFwthBaXcDIe_G1Oqnd85khXrO9l8cZLq3J3qciTcerdM5aPvvvIzpjKuDW8xr8dSmTiWNxnbO7G-cYECKuOsCB49aJ0TeRfO_X8Oq3SIbDNrTimsNuK1wH78vhOSR2jaj0vaYtmfzsQgcwDaVdaTPG4DPSjwsa1gTKHmqASDTGsg46W1JNoJ0RUs2Be4z1eP3ZvyliGxijRPSSHOFFcsgfWny0HQ&sds=2&rev=84569&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=UIR5YgV-AXfGtE7KJ7YHFXnQ3ZBP3hrFwthBaXcDIe_G1Oqnd85khXrO9l8cZLq3J3qciTcerdM5aPvvvIzpjKuDW8xr8dSmTiWNxnbO7G-cYECKuOsCB49aJ0TeRfO_X8Oq3SIbDNrTimsNuK1wH78vhOSR2jaj0vaYtmfzsQgcwDaVdaTPG4DPSjwsa1gTKHmqASDTGsg46W1JNoJ0RUs2Be4z1eP3ZvyliGxijRPSSHOFFcsgfWny0HQ&sds=2&rev=84569&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=UIR5YgV-AXfGtE7KJ7YHFXnQ3ZBP3hrFwthBaXcDIe_G1Oqnd85khXrO9l8cZLq3J3qciTcerdM5aPvvvIzpjKuDW8xr8dSmTiWNxnbO7G-cYECKuOsCB49aJ0TeRfO_X8Oq3SIbDNrTimsNuK1wH78vhOSR2jaj0vaYtmfzsQgcwDaVdaTPG4DPSjwsa1gTKHmqASDTGsg46W1JNoJ0RUs2Be4z1eP3ZvyliGxijRPSSHOFFcsgfWny0HQ&sds=2&rev=84569&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 19:27:05 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 4cf0ccf2909be74efd7a89dbe4228ffb
b4993da334b48312584d116a3de4be4cd71962cf
e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:27:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
216.58.207.228200 OK 513 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 216.58.207.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 2db27b43c28098adffb043edc42f05b7
4b637ac1c263b2b0c27687903cce4122079d510c
371d256469e5060f76f7b841d27b2ca84eb1ad736bd27a90b34956886a808e96
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://goroh.pp.ua/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Thu, 02 Feb 2023 19:27:06 GMT
date: Thu, 02 Feb 2023 19:27:06 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-hVE1Z18aSZ5dYGxg-2ltUw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 513
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/criteo_logo_2021.svg
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/criteo_logo_2021.svg
IP 178.250.0.130:0
GET /flash/icon/criteo_logo_2021.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 19:27:04 GMT
content-type: image/svg+xml
last-modified: Thu, 27 May 2021 13:21:59 GMT
etag: W/"60af9cf7-891"
expires: Sun, 28 Jan 2024 19:27:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
goroh.pp.ua/%D1%82%D1%80%D0%B0%D0%BD%D1%81%D0%BA%D1%80%D0%B8%D0%BF%D1%86%D1%96%D1%8F/%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D1%82%D0%B1%D0%BE%D0%BB%23:~:text=[%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D0%B8%D0%B4%D0%B1%D0%BE%CC%81%D0%BB]
188.114.96.1404 Not Found 0 B URL HTTP/2 goroh.pp.ua/%D1%82%D1%80%D0%B0%D0%BD%D1%81%D0%BA%D1%80%D0%B8%D0%BF%D1%86%D1%96%D1%8F/%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D1%82%D0%B1%D0%BE%D0%BB%23:~:text=[%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D0%B8%D0%B4%D0%B1%D0%BE%CC%81%D0%BB]
IP 188.114.96.1:0
GET /%D1%82%D1%80%D0%B0%D0%BD%D1%81%D0%BA%D1%80%D0%B8%D0%BF%D1%86%D1%96%D1%8F/%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D1%82%D0%B1%D0%BE%D0%BB%23:~:text=[%D0%B1%D0%B0%D1%81%D0%BA%D0%B5%D0%B8%D0%B4%D0%B1%D0%BE%CC%81%D0%BB] HTTP/1.1
Host: goroh.pp.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
date: Thu, 02 Feb 2023 19:27:02 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PHsrFQKhHLssuwSowX8IDgAoEMm%2BOy2yURdx1dKYSlgdUK6M6M1VkGhnmub6m2gSJ9F%2BhplBxz9s%2BV0RDQNozQK6FE4wqSdJanbEr9RPfYu7Uu1LoP6mF38LLa%2FmrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793552668d5d0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y9wOhwAGKM4KsocWAAThchIEfbkJ4EM6JbAfGQ&u=%7CnemHJi2YjlWRXXorMSf60ZoyS4lKGYSgn7OVoWgUKQw%3D%7C&c1=TEbw32HdmhlTb08vzaRE0-J3aJQULXRb6S19EAZ80X2gBTzv4Dq5xOVMP8QFYlxLAvHqM-c_UzTxnYZ1Pyk9dqtzit5akVTS90-bce6yVQ1mmYCHlLdfqoI5u4OxfqOxYnC1O2tQ3NdQyKZFwwOtxEHX17nj3UqiMpAfn6CtCn7Dk0iGUeDeki8rW5Zlia687YpNtQCnGvVYK-6r-qxfgXHXdC5nJSSED2IfWCze4iZM4pQ8bFsRMBR9JWobiX_WBSvi8Bk81biFl1T0YWVS17lVmrW9051SdfN2sgZjfgHMPuhCt1VPvw3flg5IK5sGeiEeHCQFBhsQ2PESmiSZeio4gCZEqrpoStFmoVZsaIuDT45dTeUmnPyh01RkdjU1H1gyL2OWvVqtl8As_VH6sp8Nb8c4hSbXCFJ5TpGNuwC4Mv2MaRiCf8MSy-N5tiKB526tMmKO1Wwti_GrSVXPiHlUKzixJHxVHOAa96G-GZtDzsSLnce-nFb_MuUk8t7XejRcMaCP17n2k1maoX1YiVdR0ZeW52GudSX6ImMm43vvjlJUYn46rafJnEnjOuIi4eDmp3gL9TM&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCiwV8hw7cY87RGJaOygXywpOoBsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzk0MzkzNzM0Mjc5MDIyM8gBCakC1nVqsHJusj6oAwGqBP0CT9A9DqbbqmdqNONZgdAqVmH0Lvn3aNov9fLInuUU0Hc2OD1VmxLpdmGFx9RrNsDzXyHURAqAxWzMD0zYrWp3G5S83aetUoDYtELoWKwSk-XlC189Uk0GwVhDi_JxyJXgbfDG9eeHDW6-y6V1H324X7bWVj61jV_5-cj5DKIpuxByXFCh-ET9N0EGDSDnfL5Ub5St3DlEGZl3NXRCyHmkpNjoGuA9rSIRVZX1wVH8PDiazZe-yNKnCb66QcZnc_gFhlUPVD18PbeQMCQQrwnQnu1ZJeapPmTfXYIJ99reSgMv8ukI24ieY73QWKHaebXh-YCTpZG1pvU7pYdCGUutBYjWN72yjzYfQ9xcwN8ILJ1hk5n_m5sKd1etAC9K89N1a6NpHE4uwefGSrtUJegXdeWWZ43cus1ua-CZ8pViqhNL-TX4x73DvXLGHCJCq2YY2EkwmnX831mE5XiePT5MQ4FQjT_-zaM9dhvNDIyOqyb7uJSIuvh4bwbhF3RKgAb-19uxzNXYw9sBoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YAQEAEyAqoCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_24xIJxhApGwhuZKEIcOt6qBp1f5w%26client%3Dca-pub-7943937342790223%26adurl%3D
178.250.2.65200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y9wOhwAGKM4KsocWAAThchIEfbkJ4EM6JbAfGQ&u=%7CnemHJi2YjlWRXXorMSf60ZoyS4lKGYSgn7OVoWgUKQw%3D%7C&c1=TEbw32HdmhlTb08vzaRE0-J3aJQULXRb6S19EAZ80X2gBTzv4Dq5xOVMP8QFYlxLAvHqM-c_UzTxnYZ1Pyk9dqtzit5akVTS90-bce6yVQ1mmYCHlLdfqoI5u4OxfqOxYnC1O2tQ3NdQyKZFwwOtxEHX17nj3UqiMpAfn6CtCn7Dk0iGUeDeki8rW5Zlia687YpNtQCnGvVYK-6r-qxfgXHXdC5nJSSED2IfWCze4iZM4pQ8bFsRMBR9JWobiX_WBSvi8Bk81biFl1T0YWVS17lVmrW9051SdfN2sgZjfgHMPuhCt1VPvw3flg5IK5sGeiEeHCQFBhsQ2PESmiSZeio4gCZEqrpoStFmoVZsaIuDT45dTeUmnPyh01RkdjU1H1gyL2OWvVqtl8As_VH6sp8Nb8c4hSbXCFJ5TpGNuwC4Mv2MaRiCf8MSy-N5tiKB526tMmKO1Wwti_GrSVXPiHlUKzixJHxVHOAa96G-GZtDzsSLnce-nFb_MuUk8t7XejRcMaCP17n2k1maoX1YiVdR0ZeW52GudSX6ImMm43vvjlJUYn46rafJnEnjOuIi4eDmp3gL9TM&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCiwV8hw7cY87RGJaOygXywpOoBsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzk0MzkzNzM0Mjc5MDIyM8gBCakC1nVqsHJusj6oAwGqBP0CT9A9DqbbqmdqNONZgdAqVmH0Lvn3aNov9fLInuUU0Hc2OD1VmxLpdmGFx9RrNsDzXyHURAqAxWzMD0zYrWp3G5S83aetUoDYtELoWKwSk-XlC189Uk0GwVhDi_JxyJXgbfDG9eeHDW6-y6V1H324X7bWVj61jV_5-cj5DKIpuxByXFCh-ET9N0EGDSDnfL5Ub5St3DlEGZl3NXRCyHmkpNjoGuA9rSIRVZX1wVH8PDiazZe-yNKnCb66QcZnc_gFhlUPVD18PbeQMCQQrwnQnu1ZJeapPmTfXYIJ99reSgMv8ukI24ieY73QWKHaebXh-YCTpZG1pvU7pYdCGUutBYjWN72yjzYfQ9xcwN8ILJ1hk5n_m5sKd1etAC9K89N1a6NpHE4uwefGSrtUJegXdeWWZ43cus1ua-CZ8pViqhNL-TX4x73DvXLGHCJCq2YY2EkwmnX831mE5XiePT5MQ4FQjT_-zaM9dhvNDIyOqyb7uJSIuvh4bwbhF3RKgAb-19uxzNXYw9sBoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YAQEAEyAqoCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_24xIJxhApGwhuZKEIcOt6qBp1f5w%26client%3Dca-pub-7943937342790223%26adurl%3D
IP 178.250.2.65:0
GET /delivery/r/afr.php?z=Y9wOhwAGKM4KsocWAAThchIEfbkJ4EM6JbAfGQ&u=%7CnemHJi2YjlWRXXorMSf60ZoyS4lKGYSgn7OVoWgUKQw%3D%7C&c1=TEbw32HdmhlTb08vzaRE0-J3aJQULXRb6S19EAZ80X2gBTzv4Dq5xOVMP8QFYlxLAvHqM-c_UzTxnYZ1Pyk9dqtzit5akVTS90-bce6yVQ1mmYCHlLdfqoI5u4OxfqOxYnC1O2tQ3NdQyKZFwwOtxEHX17nj3UqiMpAfn6CtCn7Dk0iGUeDeki8rW5Zlia687YpNtQCnGvVYK-6r-qxfgXHXdC5nJSSED2IfWCze4iZM4pQ8bFsRMBR9JWobiX_WBSvi8Bk81biFl1T0YWVS17lVmrW9051SdfN2sgZjfgHMPuhCt1VPvw3flg5IK5sGeiEeHCQFBhsQ2PESmiSZeio4gCZEqrpoStFmoVZsaIuDT45dTeUmnPyh01RkdjU1H1gyL2OWvVqtl8As_VH6sp8Nb8c4hSbXCFJ5TpGNuwC4Mv2MaRiCf8MSy-N5tiKB526tMmKO1Wwti_GrSVXPiHlUKzixJHxVHOAa96G-GZtDzsSLnce-nFb_MuUk8t7XejRcMaCP17n2k1maoX1YiVdR0ZeW52GudSX6ImMm43vvjlJUYn46rafJnEnjOuIi4eDmp3gL9TM&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCiwV8hw7cY87RGJaOygXywpOoBsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzk0MzkzNzM0Mjc5MDIyM8gBCakC1nVqsHJusj6oAwGqBP0CT9A9DqbbqmdqNONZgdAqVmH0Lvn3aNov9fLInuUU0Hc2OD1VmxLpdmGFx9RrNsDzXyHURAqAxWzMD0zYrWp3G5S83aetUoDYtELoWKwSk-XlC189Uk0GwVhDi_JxyJXgbfDG9eeHDW6-y6V1H324X7bWVj61jV_5-cj5DKIpuxByXFCh-ET9N0EGDSDnfL5Ub5St3DlEGZl3NXRCyHmkpNjoGuA9rSIRVZX1wVH8PDiazZe-yNKnCb66QcZnc_gFhlUPVD18PbeQMCQQrwnQnu1ZJeapPmTfXYIJ99reSgMv8ukI24ieY73QWKHaebXh-YCTpZG1pvU7pYdCGUutBYjWN72yjzYfQ9xcwN8ILJ1hk5n_m5sKd1etAC9K89N1a6NpHE4uwefGSrtUJegXdeWWZ43cus1ua-CZ8pViqhNL-TX4x73DvXLGHCJCq2YY2EkwmnX831mE5XiePT5MQ4FQjT_-zaM9dhvNDIyOqyb7uJSIuvh4bwbhF3RKgAb-19uxzNXYw9sBoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YAQEAEyAqoCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_24xIJxhApGwhuZKEIcOt6qBp1f5w%26client%3Dca-pub-7943937342790223%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 19:27:03 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=UIR5YgV-AXfGtE7KJ7YHFXnQ3ZBP3hrFwthBaXcDIe_G1Oqnd85khXrO9l8cZLq3J3qciTcerdM5aPvvvIzpjKuDW8xr8dSmTiWNxnbO7G-cYECKuOsCB49aJ0TeRfO_X8Oq3SIbDNrTimsNuK1wH78vhOSR2jaj0vaYtmfzsQgcwDaVdaTPG4DPSjwsa1gTKHmqASDTGsg46W1JNoJ0RUs2Be4z1eP3ZvyliGxijRPSSHOFFcsgfWny0HQ"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 149609279
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/adchoices_en.svg
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/adchoices_en.svg
IP 178.250.0.130:0
GET /flash/icon/adchoices_en.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 19:27:04 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:27:58 GMT
etag: W/"5e42b9ee-759"
expires: Sun, 28 Jan 2024 19:27:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy_small.svg
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/privacy_small.svg
IP 178.250.0.130:0
GET /flash/icon/privacy_small.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 19:27:04 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:30:28 GMT
etag: W/"5e42ba84-6aa"
expires: Sun, 28 Jan 2024 19:27:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/animejs/animejs.js
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/animejs/animejs.js
IP 178.250.0.130:0
GET /animejs/animejs.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 19:27:04 GMT
content-type: text/javascript
last-modified: Tue, 26 Mar 2019 17:44:11 GMT
etag: W/"5c9a64eb-3181"
expires: Sun, 28 Jan 2024 19:27:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=6iJqXf_tgtRZSadEdVDr8Gxc-Pq5YMVOc85GhU-1xctanqTG6CS-RlFWu-k2Q8c9AFS7RghSpIEcyhcB684tJ4Kj_CAOD3sdILg523rDL5IDxlM2UVBs7grknHOv14PBzSO3D-nqzcJV4Mm_XKK0pHXtDccBuFL3YQu9ORLMmQleOStG3rVXHrBp7yhItuFN4WEyMnRzld_nWJCJ7ZeIBePIsK399HrODHs5QliAfq3gunISASkO2M8jgb8HjRPwmwKkYCFu5lgY0rxx86_gcy1KGvwFxT9tx_pLHai5AOMNte6CaBzMXRUtw1IxwxLU5s6u1tflVjIcLoX2QfTG6T0m-_RBlQknZ-oYKh3CgE_DevzhFltnmKVjdvRAQTErzelr-N4Y3vcKpbRR6KzxZSIg_eX_bvalCYaY3HP1DLMnfUfx
178.250.2.148200 OK 0 B URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=6iJqXf_tgtRZSadEdVDr8Gxc-Pq5YMVOc85GhU-1xctanqTG6CS-RlFWu-k2Q8c9AFS7RghSpIEcyhcB684tJ4Kj_CAOD3sdILg523rDL5IDxlM2UVBs7grknHOv14PBzSO3D-nqzcJV4Mm_XKK0pHXtDccBuFL3YQu9ORLMmQleOStG3rVXHrBp7yhItuFN4WEyMnRzld_nWJCJ7ZeIBePIsK399HrODHs5QliAfq3gunISASkO2M8jgb8HjRPwmwKkYCFu5lgY0rxx86_gcy1KGvwFxT9tx_pLHai5AOMNte6CaBzMXRUtw1IxwxLU5s6u1tflVjIcLoX2QfTG6T0m-_RBlQknZ-oYKh3CgE_DevzhFltnmKVjdvRAQTErzelr-N4Y3vcKpbRR6KzxZSIg_eX_bvalCYaY3HP1DLMnfUfx
IP 178.250.2.148:0
GET /delivery/lg.php?cppv=3&cpp=6iJqXf_tgtRZSadEdVDr8Gxc-Pq5YMVOc85GhU-1xctanqTG6CS-RlFWu-k2Q8c9AFS7RghSpIEcyhcB684tJ4Kj_CAOD3sdILg523rDL5IDxlM2UVBs7grknHOv14PBzSO3D-nqzcJV4Mm_XKK0pHXtDccBuFL3YQu9ORLMmQleOStG3rVXHrBp7yhItuFN4WEyMnRzld_nWJCJ7ZeIBePIsK399HrODHs5QliAfq3gunISASkO2M8jgb8HjRPwmwKkYCFu5lgY0rxx86_gcy1KGvwFxT9tx_pLHai5AOMNte6CaBzMXRUtw1IxwxLU5s6u1tflVjIcLoX2QfTG6T0m-_RBlQknZ-oYKh3CgE_DevzhFltnmKVjdvRAQTErzelr-N4Y3vcKpbRR6KzxZSIg_eX_bvalCYaY3HP1DLMnfUfx HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 19:27:03 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2062899
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy.svg
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/privacy.svg
IP 178.250.0.130:0
GET /flash/icon/privacy.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 19:27:04 GMT
content-type: image/svg+xml
last-modified: Wed, 19 Feb 2020 10:57:21 GMT
etag: W/"5e4d1491-646"
expires: Sun, 28 Jan 2024 19:27:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2