r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11691
Expires: Sun, 11 Sep 2022 21:48:47 GMT
Date: Sun, 11 Sep 2022 18:33:56 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 11 Sep 2022 18:07:47 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: frNJJu0TPTIlOjSoI0AppmFkY6PFx5Af23E7a8uENSjHAZ2EDGkvQA==
Age: 1569
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 11 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: C34_fpaq6mA9dnGIdnE0QurqpnjkLrqEn2M68BBryyDJq_sAdmhSaQ==
age: 40604
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 18:33:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 11 Sep 2022 17:56:07 GMT
Cache-Control: max-age=3600
Expires: Sun, 11 Sep 2022 18:19:36 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: B72grwfxhjyM4QH6PSSojmKe5nzcgImxz5Q8V7VK5mSkFbZy97TyuA==
Age: 2269
ocsp.digicert.com/
200 OK 471 B IP
Hash 26e829ba5f754918e20cbd316dc4348e
ba198501da0812dd11ca3b38a51325b5de6cfa60
4352c25d4af7637a8435b0df6d042fc606d37a348e966b99fecce8a853b8ebc0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6437
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:56 GMT
Last-Modified: Sun, 11 Sep 2022 16:46:39 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: t1CwjNp/i7Nmyuh8rxXT+w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /8/AGRL03Pj6kKX+q1Es5x2rouE=
netdna.bootstrapcdn.com/font-awesome/4.0.3/css/font-awesome.css
200 OK 4.7 kB URL HTTP/1.1 netdna.bootstrapcdn.com/font-awesome/4.0.3/css/font-awesome.css
IP
File type troff or preprocessor input, ASCII text, with very long lines (305)
Hash 09f17df615d193a0409fda81f54f582a
abd1f7828d7c6dc772e81d10847e06e69bfe790e
c27d9ba94138c2aa687443778b5729cc2fc446b368feccd9ac512ceaabc7e4d7
GET /font-awesome/4.0.3/css/font-awesome.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 18:33:57 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
CDN-EdgeStorageId: 601, 617, 617
Last-Modified: Mon, 25 Jan 2021 22:04:53 GMT
CDN-CachedAt: 2021-08-03 04:14:00
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: 6358afe6e12aefed963ad27f3935d6d1
Content-Encoding: gzip
CDN-Status: 200
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 8367923
Server: cloudflare
CF-RAY: 74927ea53de30afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.googleapis.com/earlyaccess/droidarabicnaskh.css
200 OK 290 B URL HTTP/1.1 fonts.googleapis.com/earlyaccess/droidarabicnaskh.css
IP
Hash c258b298af29d4b5158c761c0af0cd5d
302753856c98158f7fa8c40ee399339a9d2275fd
02f291fa7e9dfcbc591d3468e064b6d84b32b08c12e132d91463c76101b59d76
GET /earlyaccess/droidarabicnaskh.css HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 11 Sep 2022 18:33:57 GMT
Date: Sun, 11 Sep 2022 18:33:57 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/earlyaccess/droidarabickufi.css
200 OK 290 B URL HTTP/1.1 fonts.googleapis.com/earlyaccess/droidarabickufi.css
IP
Hash 64d204801b32b765afa0403fe99a26d4
4efd5cc356cc4b174641d17ffcaaaf659a1720ea
57b7cc6770200d685eb8935c2fcb322b7fd14ba07b85f76bc2a63567c6fc3820
GET /earlyaccess/droidarabickufi.css HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 11 Sep 2022 18:33:57 GMT
Date: Sun, 11 Sep 2022 18:33:57 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
code.jquery.com/jquery-1.10.2.min.js
200 OK 33 kB URL HTTP/1.1 code.jquery.com/jquery-1.10.2.min.js
IP
File type ASCII text, with very long lines (32072)
Hash 68cc08e82915da8b82fc6be74ab86365
4089530b0c00f6cbd1452d7f873be85454196fd1
6c63276db5e51f227be1c9bdaf73d76fa01040499944a8c8607db0c234f0575c
GET /jquery-1.10.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 18:33:57 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 32788
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 16 Feb 2022 10:50:39 GMT
Accept-Ranges: bytes
Server: nginx
ETag: W/"620cd6ff-16bb3"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1662921237.dop066.sk1.t,1662921237.cds243.sk1.c
massalih.blogspot.com/2014/08/blog-post_19.html
200 OK 50 kB URL HTTP/1.1 massalih.blogspot.com/2014/08/blog-post_19.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3884)
Hash 056dc658920919819268af7bec02e8bb
49fc7e98377d91fd5a80ea942b679c65e74e4011
1bf8d0817fd0af10ce114296d5da828bb0a30bf61e85d678b857450644d4e387
GET /2014/08/blog-post_19.html HTTP/1.1
Host: massalih.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sun, 11 Sep 2022 18:33:57 GMT
Date: Sun, 11 Sep 2022 18:33:57 GMT
Cache-Control: private, max-age=0
Last-Modified: Tue, 16 Aug 2022 11:23:31 GMT
ETag: W/"ad6538ffb6bc4a0c09918e1f5dcd5112c5e3725e8fcd4dc89876117637c23b86"
X-Robots-Tag: all,noarchive,notranslate
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 49651
Server: GSE
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0712a01881facad69129a07308dc8210
e608cf81282913cb0941a2d48b7274b2902ec7d4
0c1254ba63c04fb3f82027c2b1b5d89093bafc795db782cdc85be4f27ae2cb13
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 0c52f00dc203483501330b93da8673ea
bb58935fa272c810572d3290a9835e1390a8ef35
4cbe66c98fdaa1bdce29769a8dda769b7b46e14a8bdab5c61bba9e171ec925f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1875
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:57 GMT
Last-Modified: Sun, 11 Sep 2022 18:02:42 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 58 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
File type ASCII text, with very long lines (2903)
Hash 6f764eea1c9e520cff61acb8db3b9b09
c952c2eee38a98873bed84675b8b8182765527ad
cfe09802265275d35577584f38f2cd3bcac2cd9be8daf13107fbe1a0b6f9ef5a
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Sun, 11 Sep 2022 18:33:57 GMT
Expires: Sun, 11 Sep 2022 18:33:57 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 5211696707354593592
Vary: Accept-Encoding, Origin
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 57471
X-XSS-Protection: 0
massalih.blogspot.com/js/cookienotice.js
200 OK 2.0 kB URL HTTP/1.1 massalih.blogspot.com/js/cookienotice.js
IP
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: massalih.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/2014/08/blog-post_19.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Sun, 11 Sep 2022 18:33:57 GMT
Expires: Sun, 18 Sep 2022 18:33:57 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sun, 11 Sep 2022 16:52:07 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
connect.facebook.net/ar_AR/all.js
200 OK 1.7 kB URL HTTP/2 connect.facebook.net/ar_AR/all.js
IP
File type ASCII text, with very long lines (1961)
Hash 4a31eafaa7add4d0e91881ffe1ba0bc3
261b77ff09081047b5dbe4f1dfc5062fa6b2a0e4
9ed74e594f5d352316568b07120019dc1be9fe2c4f06f6044520b79a7797e0cd
GET /ar_AR/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://massalih.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 364c6e0c692124d94dd413233d7a0748
etag: "82c29b546d691dcfe6c8f1e9b39a6552"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 11 Sep 2022 18:44:49 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: SjHq+qet1NDpGIH/4boLww==
x-fb-debug: uNDT/yYLzgHgTLQ7rqA1Njgr825G6uqdQvgCX7Ss9S0vq0At4eJkgWgKlnTQneMYxNmmODHSC7VqO76A4Nsx0g==
priority: u=3,i
content-length: 1687
x-fb-trip-id: 1679558926
date: Sun, 11 Sep 2022 18:33:57 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
200 OK 20 kB URL HTTP/2 apis.google.com/js/platform.js
IP
File type ASCII text, with very long lines (1277)
Hash b5a31516be83fe4f962609045d824f88
939a49a9858bf23561279f9ca2d1941d3256c66f
edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://massalih.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Sun, 11 Sep 2022 18:33:57 GMT
expires: Sun, 11 Sep 2022 18:33:57 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "45721ba9c974fc6e"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5f137902618b69cb5009f804d05f41a5
7fd17db0ee59063fad57bd86e127f9419b1eb6ca
1266c38381304388041507749390e9adb4435d136d799b5a64879ab2948a9a02
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5b134f2125f2430cece17a69bb4a2711
f9ccd650a51a65fdb5472fccb8d936dde79fe93a
8e0c0e4fb61c38c1330cd65f4daa2218fd9184ac04c767098b973ecbd5f83700
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/jsbin/3262169375-comment_from_post_iframe.js
200 OK 6.5 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3262169375-comment_from_post_iframe.js
IP
File type ASCII text, with very long lines (1264)
Hash 30af015884191ce4fe52ce1e707baed9
faa1418efa036704d31eb90f4fbd82de456b81b7
0456cf81299c957c8e54dabb00b4d6d96b76be729b1e112d478b34ba56d8059d
GET /static/v1/jsbin/3262169375-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://massalih.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6499
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 14:54:37 GMT
expires: Sat, 09 Sep 2023 14:54:37 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 08 Sep 2022 15:01:24 GMT
content-type: text/javascript
age: 185960
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/3753684042-widgets.js
200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/3753684042-widgets.js
IP
File type ASCII text, with very long lines (2221)
Hash 9310029f33929201831992bd74c13953
092fc9b60b0fcc7e24b80eb89f40178e91effb98
ed0ad17efb3c922e7bc8feffa0a5718d2ad226c44f2bb183b6ad163684f3b982
GET /static/v1/widgets/3753684042-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://massalih.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 57039
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 01:53:39 GMT
expires: Fri, 08 Sep 2023 01:53:39 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Sep 2022 22:51:39 GMT
content-type: text/javascript
age: 319218
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2504215749-css_bundle_v2_rtl.css
200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2504215749-css_bundle_v2_rtl.css
IP
File type ASCII text, with very long lines (35994)
Hash 80ce34d529819878a4a26584e8eec719
34e44bf7d3e11ab0ee1faf2cc5d2c7f7b9f053e2
625e3271a91189e54e12bd29994e693f26d45d83de700ce5e7b3db033fd1606f
GET /static/v1/widgets/2504215749-css_bundle_v2_rtl.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://massalih.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7780
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 15:55:05 GMT
expires: Sat, 09 Sep 2023 15:55:05 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 09 Sep 2022 13:50:40 GMT
content-type: text/css
age: 182332
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/img/blogger_logo_round_35.png
200 OK 2.5 kB URL HTTP/1.1 www.blogger.com/img/blogger_logo_round_35.png
IP
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 838622483cbfed35380b4705f19d7cca
7de684136affc969a24d61927afc18905cf2fc36
183923f8c8c3960dce8ad9722cf55a30d19b321b721741bd9e2ab6ae1f1ae72a
GET /img/blogger_logo_round_35.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2531
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 08 Sep 2022 17:16:57 GMT
Expires: Thu, 15 Sep 2022 17:16:57 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 08 Sep 2022 06:52:30 GMT
Content-Type: image/png
Age: 263820
resources.blogblog.com/img/blank.gif
200 OK 43 B URL HTTP/1.1 resources.blogblog.com/img/blank.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /img/blank.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 43
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 09 Sep 2022 15:27:00 GMT
Expires: Fri, 16 Sep 2022 15:27:00 GMT
Cache-Control: public, max-age=604800
Last-Modified: Fri, 09 Sep 2022 06:49:03 GMT
Content-Type: image/gif
Age: 184017
ocsp.digicert.com/
200 OK 471 B IP
Hash 0c52f00dc203483501330b93da8673ea
bb58935fa272c810572d3290a9835e1390a8ef35
4cbe66c98fdaa1bdce29769a8dda769b7b46e14a8bdab5c61bba9e171ec925f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1875
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:57 GMT
Last-Modified: Sun, 11 Sep 2022 18:02:42 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6c2fea93ba89de81c2b01aaca1a87835
0a7f50001f709285bc10f6ef044ef39a60535bff
6cae8a5f9949975a3adedc41088196b8c9dd984e4023e54bbe655800a9478349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5f137902618b69cb5009f804d05f41a5
7fd17db0ee59063fad57bd86e127f9419b1eb6ca
1266c38381304388041507749390e9adb4435d136d799b5a64879ab2948a9a02
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-907ZrC3z7uA/UlwzCwgWDVI/AAAAAAAADLA/3amDfIaJ3C0/s1600/bgbloggeram.png
200 OK 6.4 kB URL HTTP/1.1 1.bp.blogspot.com/-907ZrC3z7uA/UlwzCwgWDVI/AAAAAAAADLA/3amDfIaJ3C0/s1600/bgbloggeram.png
IP
File type PNG image data, 80 x 80, 8-bit/color RGB, non-interlaced\012- data
Hash 4bc30f3b72b4a8163f30e706d54843cd
d0ebc0f8d1e4cfdd82ced29b7a73e292667cf0d7
70d17e7ddb92e95d3052d87fbd676b3756154cc484df1fcdf9bc64352622f37b
GET /-907ZrC3z7uA/UlwzCwgWDVI/AAAAAAAADLA/3amDfIaJ3C0/s1600/bgbloggeram.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bgbloggeram.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 6388
X-XSS-Protection: 0
Date: Sun, 11 Sep 2022 14:35:50 GMT
Expires: Fri, 09 Sep 2022 04:30:44 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 14287
ETag: "vcb1"
Content-Type: image/png
cobalten.com/apu.php?zoneid=659548
403 Forbidden 967 B URL HTTP/1.1 cobalten.com/apu.php?zoneid=659548
IP
File type ASCII text, with very long lines (800)
Hash 77ba22add32dddb0b6e2cf671a7b7729
3cf307d61785acc2fe1bbf3cc883439f07bb2a26
1e4fa4f053245a14336be32d239cd4bcbbbf6032ceeb5f06a5f7681da26b451b
GET /apu.php?zoneid=659548 HTTP/1.1
Host: cobalten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://massalih.blogspot.com/
Connection: keep-alive
HTTP/1.1 403 Forbidden
Server: nginx
Date: Sun, 11 Sep 2022 18:33:57 GMT
Content-Type: application/javascript
Content-Length: 967
Connection: keep-alive
X-Trace-Id: 4684d1b836533fab0f550626119b9b9a
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Timing-Allow-Origin: *
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c3d8032059a24d14d00c2ee5d8840c01
62efae1ea6aaea612a12d42b6e5b65d24be11437
2319fe90c8b4d3cc41ec9cce275c82d19fb764015196bd1c52dfb9c5d85b9b0b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/ea/droidarabicnaskh/v7/DroidNaskh-Regular.woff2
200 OK 39 kB URL HTTP/1.1 fonts.gstatic.com/ea/droidarabicnaskh/v7/DroidNaskh-Regular.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 39220, version 1.0\012- data
Hash 7a296cb107508f675d6379a568b635f4
44f744aef0571689f6747cb26dda6289957a3751
68b4ac5833d4474ef046db5c1495c5b70c16f6fe6f219656dbb7129b8faeed20
GET /ea/droidarabicnaskh/v7/DroidNaskh-Regular.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://massalih.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 39220
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 11 Sep 2022 14:45:16 GMT
Expires: Mon, 11 Sep 2023 14:45:16 GMT
Cache-Control: public, max-age=31536000
Age: 13721
Last-Modified: Wed, 13 Aug 2014 16:50:04 GMT
Content-Type: font/woff2
fonts.gstatic.com/ea/droidarabicnaskh/v7/DroidNaskh-Bold.woff2
200 OK 41 kB URL HTTP/1.1 fonts.gstatic.com/ea/droidarabicnaskh/v7/DroidNaskh-Bold.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 41252, version 1.0\012- data
Hash 827765ced4b6d367803d4ef34633dc05
0ce49124ea2b7f356029c86cd00e5fae272f5e99
0a6b3b2583f0b9ea7da829409bcde3dc1641adb9092100bf2e1415d61cde46d6
GET /ea/droidarabicnaskh/v7/DroidNaskh-Bold.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://massalih.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 41252
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Sep 2022 10:43:01 GMT
Expires: Wed, 06 Sep 2023 10:43:01 GMT
Cache-Control: public, max-age=31536000
Age: 460256
Last-Modified: Wed, 13 Aug 2014 16:50:04 GMT
Content-Type: font/woff2
netdna.bootstrapcdn.com/font-awesome/4.0.3/fonts/fontawesome-webfont.woff?v=4.0.3
200 OK 44 kB URL HTTP/1.1 netdna.bootstrapcdn.com/font-awesome/4.0.3/fonts/fontawesome-webfont.woff?v=4.0.3
IP
File type Web Open Font Format, TrueType, length 44432, version 1.0\012- data
Hash 3293616ec0c605c7c2db25829a0a509e
04c3bf56d87a0828935bd6b4aee859995f321693
0fd28fece9ebd606b8b071460ebd3fc2ed7bc7a66ef91c8834f11dfacab4a849
GET /font-awesome/4.0.3/fonts/fontawesome-webfont.woff?v=4.0.3 HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://massalih.blogspot.com
Connection: keep-alive
Referer: http://netdna.bootstrapcdn.com/
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 18:33:57 GMT
Content-Type: font/woff
Content-Length: 44432
Connection: keep-alive
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
ETag: "3293616ec0c605c7c2db25829a0a509e"
Last-Modified: Mon, 25 Jan 2021 22:04:53 GMT
CDN-CachedAt: 08/20/2022 02:30:35
CDN-ProxyVer: 1.02
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: 7bc4bda84f0b4c503be0704848874a64
CDN-Cache: HIT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74927ea71ed0fac4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 57b75ea93de540716c45f1397781431a
431cc2c684385c4e46facd7210b5ac49b9dd09cc
4581d7dd422dc110fa7cfe667297cdb75d92a02ce7226db6db89448befa5b780
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
massalih.blogspot.com/feeds/posts/default/-/%D9%85%D9%88%D8%A7%D9%82%D8%B9%20%D8%AD%D9%83%D9%88%D9%85%D9%8A%D8%A9?alt=json-in-script&callback=related_results_labels_thumbs&max-results=5
200 OK 3.7 kB URL HTTP/1.1 massalih.blogspot.com/feeds/posts/default/-/%D9%85%D9%88%D8%A7%D9%82%D8%B9%20%D8%AD%D9%83%D9%88%D9%85%D9%8A%D8%A9?alt=json-in-script&callback=related_results_labels_thumbs&max-results=5
IP
File type Unicode text, UTF-8 text, with very long lines (24427)
Hash bec66c60f299658e80e262f966808e95
a7fce4beff85351059dea30dbb282a22b170bbff
6fcfc73b0e9ea2994ec87a666644dcb43975fc7e90a220a3b3fcd7267fe5a2d5
GET /feeds/posts/default/-/%D9%85%D9%88%D8%A7%D9%82%D8%B9%20%D8%AD%D9%83%D9%88%D9%85%D9%8A%D8%A9?alt=json-in-script&callback=related_results_labels_thumbs&max-results=5 HTTP/1.1
Host: massalih.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/2014/08/blog-post_19.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"40f3998873a26164c65274a96586a7b9d1273512aa2d17b38224a2009b0fae10"
Date: Sun, 11 Sep 2022 18:33:57 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Sun, 11 Sep 2022 18:33:58 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 16 Aug 2022 11:23:31 GMT
Content-Encoding: gzip
Content-Length: 3715
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 55d14c90ec16748861894ce8f82eafcd
f3ebe8972971c1201c1ec7c533f019f79c36cde5
fa0dc0f0a76f3407dad8dae59a4817ef6b1371fcaa930448373d64720a036698
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 55d14c90ec16748861894ce8f82eafcd
f3ebe8972971c1201c1ec7c533f019f79c36cde5
fa0dc0f0a76f3407dad8dae59a4817ef6b1371fcaa930448373d64720a036698
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20220907/r20190131/zrt_lookup.html
200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220907/r20190131/zrt_lookup.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 09a8bd805dba1307ae0bd76a0c9ca73d
bdc16e7610abae944da47ff3a0e5fea818241fb0
e3978f36e9c5f0b909ed64015db629e2c64b46e75d165c6d1d146fcb792cdbde
GET /pagead/html/r20220907/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://massalih.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4412
x-xss-protection: 0
date: Sat, 10 Sep 2022 20:32:48 GMT
expires: Sat, 24 Sep 2022 20:32:48 GMT
cache-control: public, max-age=1209600
age: 79269
etag: 8616628553774171045
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209060101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-6483571945343225&plah=massalih.blogspot.com
200 OK 124 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209060101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-6483571945343225&plah=massalih.blogspot.com
IP
File type ASCII text, with very long lines (4492)
Size 124 kB (124239 bytes)
Hash dcf015ecc6584c81309a97d0149a92da
5ecbeb1cd6979cefb2665d338fcca955d552458b
9004e14e522de2586322d81ebabbc93f7571c8d847280013f4781682e5e5d2c2
GET /pagead/managed/js/adsense/m202209060101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-6483571945343225&plah=massalih.blogspot.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://massalih.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 11 Sep 2022 18:33:57 GMT
expires: Sun, 11 Sep 2022 18:33:57 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 5827527036260371241
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 124239
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 55d14c90ec16748861894ce8f82eafcd
f3ebe8972971c1201c1ec7c533f019f79c36cde5
fa0dc0f0a76f3407dad8dae59a4817ef6b1371fcaa930448373d64720a036698
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-q1Yk3XHk9Ms/V1Ay1BgvVsI/AAAAAAAABHQ/XZhYKKM36nEacYSs5SGut2N2FeShIaDdgCK4B/s1600/%25D9%2585%25D8%25B5%25D8%25A7%25D9%2584%25D8%25AD%2B%25D8%25A7%25D9%2584%25D8%25AC%25D8%25B2%25D8%25A7%25D8%25A6%25D8%25B1.png
200 OK 7.5 kB URL HTTP/1.1 2.bp.blogspot.com/-q1Yk3XHk9Ms/V1Ay1BgvVsI/AAAAAAAABHQ/XZhYKKM36nEacYSs5SGut2N2FeShIaDdgCK4B/s1600/%25D9%2585%25D8%25B5%25D8%25A7%25D9%2584%25D8%25AD%2B%25D8%25A7%25D9%2584%25D8%25AC%25D8%25B2%25D8%25A7%25D8%25A6%25D8%25B1.png
IP
File type PNG image data, 240 x 90, 8-bit/color RGB, non-interlaced\012- data
Hash 9f4481e959676fb4d43cb398edd2576f
8e1a81f660b7f3b050a695543a225f0ef9137253
d2319156ee2433f47bf4337deccc4b7503028b65a3290483bf6365f953191985
GET /-q1Yk3XHk9Ms/V1Ay1BgvVsI/AAAAAAAABHQ/XZhYKKM36nEacYSs5SGut2N2FeShIaDdgCK4B/s1600/%25D9%2585%25D8%25B5%25D8%25A7%25D9%2584%25D8%25AD%2B%25D8%25A7%25D9%2584%25D8%25AC%25D8%25B2%25D8%25A7%25D8%25A6%25D8%25B1.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v475"
Expires: Mon, 12 Sep 2022 18:33:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="_____ _______.png";filename*=UTF-8''%D9%85%D8%B5%D8%A7%D9%84%D8%AD%20%D8%A7%D9%84%D8%AC%D8%B2%D8%A7%D8%A6%D8%B1.png
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Sep 2022 18:33:57 GMT
Server: fife
Content-Length: 7472
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d0ea6bf4cc7ee5b4483912776c47dacc
bd1333224cc1beead423969ce903b4a67c13bbf8
46521d14873cd9553052ab9bd601d74ca8278f44d97e3964ff7681b938d953eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d0ea6bf4cc7ee5b4483912776c47dacc
bd1333224cc1beead423969ce903b4a67c13bbf8
46521d14873cd9553052ab9bd601d74ca8278f44d97e3964ff7681b938d953eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-H9GItUIfLZk/U-06HHEV14I/AAAAAAAAA9k/cl9vMevUNKQ/w72-h72-p-k-no-nu/%D8%A7%D9%84%D8%B3%D9%83%D9%86%2B%D9%88%D8%A7%D9%84%D8%B9%D9%85%D8%B1%D8%A7%D9%86.jpg
200 OK 3.0 kB URL HTTP/1.1 3.bp.blogspot.com/-H9GItUIfLZk/U-06HHEV14I/AAAAAAAAA9k/cl9vMevUNKQ/w72-h72-p-k-no-nu/%D8%A7%D9%84%D8%B3%D9%83%D9%86%2B%D9%88%D8%A7%D9%84%D8%B9%D9%85%D8%B1%D8%A7%D9%86.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 0bf09c67520ce9c7653fc19c56b87d6e
246c48a53af89b11abfecb8eb4690ac184b060ec
069f4e5321515566a809801f5cf9f52154f6524ca5bfbb79a30595e41e87b200
GET /-H9GItUIfLZk/U-06HHEV14I/AAAAAAAAA9k/cl9vMevUNKQ/w72-h72-p-k-no-nu/%D8%A7%D9%84%D8%B3%D9%83%D9%86%2B%D9%88%D8%A7%D9%84%D8%B9%D9%85%D8%B1%D8%A7%D9%86.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3da"
Expires: Mon, 12 Sep 2022 18:33:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="_____ ________.jpg";filename*=UTF-8''%D8%A7%D9%84%D8%B3%D9%83%D9%86%20%D9%88%D8%A7%D9%84%D8%B9%D9%85%D8%B1%D8%A7%D9%86.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Sep 2022 18:33:57 GMT
Server: fife
Content-Length: 3011
X-XSS-Protection: 0
3.bp.blogspot.com/-H9GItUIfLZk/U-06HHEV14I/AAAAAAAAA9k/cl9vMevUNKQ/s1600/%D8%A7%D9%84%D8%B3%D9%83%D9%86%2B%D9%88%D8%A7%D9%84%D8%B9%D9%85%D8%B1%D8%A7%D9%86.jpg
200 OK 24 kB URL HTTP/1.1 3.bp.blogspot.com/-H9GItUIfLZk/U-06HHEV14I/AAAAAAAAA9k/cl9vMevUNKQ/s1600/%D8%A7%D9%84%D8%B3%D9%83%D9%86%2B%D9%88%D8%A7%D9%84%D8%B9%D9%85%D8%B1%D8%A7%D9%86.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 526x350, components 3\012- data
Hash b953282b3cd0ff6d0bdda9c3bce318fd
44a4c6be1705dad8733943149afc644868f01bbf
6cab23161d92f674921d6960cd6affae4628bd8d95b6a62974dea4e4d3d563f8
GET /-H9GItUIfLZk/U-06HHEV14I/AAAAAAAAA9k/cl9vMevUNKQ/s1600/%D8%A7%D9%84%D8%B3%D9%83%D9%86%2B%D9%88%D8%A7%D9%84%D8%B9%D9%85%D8%B1%D8%A7%D9%86.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3da"
Expires: Mon, 12 Sep 2022 18:33:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="_____ ________.jpg";filename*=UTF-8''%D8%A7%D9%84%D8%B3%D9%83%D9%86%20%D9%88%D8%A7%D9%84%D8%B9%D9%85%D8%B1%D8%A7%D9%86.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Sep 2022 18:33:57 GMT
Server: fife
Content-Length: 23833
X-XSS-Protection: 0
go.pub2srv.com/apu.php?zoneid=659548
302 Moved Temporarily 138 B URL HTTP/1.1 go.pub2srv.com/apu.php?zoneid=659548
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
Analyzer Verdict Alert fortinet Malware
GET /apu.php?zoneid=659548 HTTP/1.1
Host: go.pub2srv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sun, 11 Sep 2022 18:33:57 GMT
Content-Type: text/html
Content-Length: 138
Connection: keep-alive
Location: http://cobalten.com/apu.php?zoneid=659548
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *
4.bp.blogspot.com/--jgJ0spSAf8/U-5eYPznvDI/AAAAAAAABAI/O5o-puuVnz0/w72-h72-p-k-no-nu/%D9%88%D8%B2%D8%A7%D8%B1%D8%A9%2B%D8%A7%D9%84%D8%B4%D8%A4%D9%88%D9%86%2B%D8%A7%D9%84%D8%AF%D9%8A%D9%86%D9%8A%D8%A9%2B%D9%88%2B%D8%A7%D9%84%D8%A3%D9%88%D9%82%D8%A7%D9%81.jpg
200 OK 3.1 kB URL HTTP/1.1 4.bp.blogspot.com/--jgJ0spSAf8/U-5eYPznvDI/AAAAAAAABAI/O5o-puuVnz0/w72-h72-p-k-no-nu/%D9%88%D8%B2%D8%A7%D8%B1%D8%A9%2B%D8%A7%D9%84%D8%B4%D8%A4%D9%88%D9%86%2B%D8%A7%D9%84%D8%AF%D9%8A%D9%86%D9%8A%D8%A9%2B%D9%88%2B%D8%A7%D9%84%D8%A3%D9%88%D9%82%D8%A7%D9%81.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 9533dee7dabdadfd16968b81008ad9f3
d601e7a742aadbec48d8eed6238ff8c5dabc2461
1f0fe6f23e607f09621ce5e4f7dda74341168740f9413fe9eb041c2db94a594e
GET /--jgJ0spSAf8/U-5eYPznvDI/AAAAAAAABAI/O5o-puuVnz0/w72-h72-p-k-no-nu/%D9%88%D8%B2%D8%A7%D8%B1%D8%A9%2B%D8%A7%D9%84%D8%B4%D8%A4%D9%88%D9%86%2B%D8%A7%D9%84%D8%AF%D9%8A%D9%86%D9%8A%D8%A9%2B%D9%88%2B%D8%A7%D9%84%D8%A3%D9%88%D9%82%D8%A7%D9%81.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v403"
Expires: Mon, 12 Sep 2022 18:33:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="_____ ______ _______ _ _______.jpg";filename*=UTF-8''%D9%88%D8%B2%D8%A7%D8%B1%D8%A9%20%D8%A7%D9%84%D8%B4%D8%A4%D9%88%D9%86%20%D8%A7%D9%84%D8%AF%D9%8A%D9%86%D9%8A%D8%A9%20%D9%88%20%D8%A7%D9%84%D8%A3%D9%88%D9%82%D8%A7%D9%81.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Sep 2022 18:33:57 GMT
Server: fife
Content-Length: 3120
X-XSS-Protection: 0
cobalten.com/apu.php?zoneid=659548
403 Forbidden 967 B URL HTTP/1.1 cobalten.com/apu.php?zoneid=659548
IP
File type ASCII text, with very long lines (800)
Hash 77ba22add32dddb0b6e2cf671a7b7729
3cf307d61785acc2fe1bbf3cc883439f07bb2a26
1e4fa4f053245a14336be32d239cd4bcbbbf6032ceeb5f06a5f7681da26b451b
GET /apu.php?zoneid=659548 HTTP/1.1
Host: cobalten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://massalih.blogspot.com/
Connection: keep-alive
HTTP/1.1 403 Forbidden
Server: nginx
Date: Sun, 11 Sep 2022 18:33:57 GMT
Content-Type: application/javascript
Content-Length: 967
Connection: keep-alive
X-Trace-Id: eb398db7e925f0a9e29bc942fd8b4175
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Timing-Allow-Origin: *
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 437c7ccd2c357dd83d6b9a5118d4b402
e0002389b286a960b454a92aeb3d1a1e08317ff2
9a5b3bdb7765ea21d7147a0c8022198a1be6c8256fa594b53732cf59e86532b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/dyn-css/authorization.css?targetBlogID=6843355690704660122&zx=bcbcab69-4a8e-4f99-8362-7f8aa117e979
200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=6843355690704660122&zx=bcbcab69-4a8e-4f99-8362-7f8aa117e979
IP
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=6843355690704660122&zx=bcbcab69-4a8e-4f99-8362-7f8aa117e979 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://massalih.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 11 Sep 2022 18:33:58 GMT
last-modified: Sun, 11 Sep 2022 18:33:58 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=massalih.blogspot.com
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=massalih.blogspot.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=massalih.blogspot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://massalih.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 11 Sep 2022 18:33:58 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 25e12d7b35a1a6efb4bc97945209072e
72b67424bbd3042de531de92a57bfd97036e9526
3836fa49727f6b0cff300e4aaa480a76848ceda64f98d1a6e4e4986284fcd1ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d278a4d2d9653a14270b74094bcab8cf
ba4b9fc06cae469867bd831d8017b147a1f53d30
a482809494678e6648a72cefe816c4eb0822d010b5453c3e5084eb529c4d886d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=massalih.blogspot.com
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=massalih.blogspot.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=massalih.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://massalih.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 11 Sep 2022 18:33:58 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=massalih.blogspot.com&callback=_gfp_s_&client=ca-pub-6483571945343225
200 OK 201 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=massalih.blogspot.com&callback=_gfp_s_&client=ca-pub-6483571945343225
IP
File type ASCII text, with no line terminators
Hash 9dde378a3cf10256fec0c13d1b806c94
e8242fc2ea0d6691d24f30ebd949a780ae3edec9
6596c5710250ed8ff5fe33f69214cc2e89ba4b6fba8e51327dd2e3935792192f
GET /gampad/cookie.js?domain=massalih.blogspot.com&callback=_gfp_s_&client=ca-pub-6483571945343225 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://massalih.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 11 Sep 2022 18:33:58 GMT
server: cafe
cache-control: private
content-length: 201
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
4.bp.blogspot.com/-p2PDSpX7n_g/U-5kktqkG9I/AAAAAAAABAk/vdH363rlc6Y/s1600/%D9%88%D8%B2%D8%A7%D8%B1%D8%A9%2B%D8%A7%D9%84%D8%AA%D8%B1%D8%A8%D9%8A%D8%A9%2B%D8%A7%D9%84%D9%88%D8%B7%D9%86%D9%8A%D8%A9.jpg
200 OK 25 kB URL HTTP/1.1 4.bp.blogspot.com/-p2PDSpX7n_g/U-5kktqkG9I/AAAAAAAABAk/vdH363rlc6Y/s1600/%D9%88%D8%B2%D8%A7%D8%B1%D8%A9%2B%D8%A7%D9%84%D8%AA%D8%B1%D8%A8%D9%8A%D8%A9%2B%D8%A7%D9%84%D9%88%D8%B7%D9%86%D9%8A%D8%A9.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 411x350, components 3\012- data
Hash ce919005a6911cb24cc3953998adaf84
dc5cd3e4365ec0861d3012a7f99ad22a3f9c7dea
8dfccc954e2f02e73ce4d3e800a6e0bd927d773cf1e8ec1c2d858e4f9819106c
GET /-p2PDSpX7n_g/U-5kktqkG9I/AAAAAAAABAk/vdH363rlc6Y/s1600/%D9%88%D8%B2%D8%A7%D8%B1%D8%A9%2B%D8%A7%D9%84%D8%AA%D8%B1%D8%A8%D9%8A%D8%A9%2B%D8%A7%D9%84%D9%88%D8%B7%D9%86%D9%8A%D8%A9.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v409"
Expires: Mon, 12 Sep 2022 18:33:58 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="_____ _______ _______.jpg";filename*=UTF-8''%D9%88%D8%B2%D8%A7%D8%B1%D8%A9%20%D8%A7%D9%84%D8%AA%D8%B1%D8%A8%D9%8A%D8%A9%20%D8%A7%D9%84%D9%88%D8%B7%D9%86%D9%8A%D8%A9.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 11 Sep 2022 18:33:58 GMT
Server: fife
Content-Length: 24719
X-XSS-Protection: 0
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-56097246-10&cid=685870023.1662921227&jid=1667857960&gjid=995266548&_gid=493369026.1662921227&_u=IEBAAEAAAAAAAC~&z=1819451571
200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-56097246-10&cid=685870023.1662921227&jid=1667857960&gjid=995266548&_gid=493369026.1662921227&_u=IEBAAEAAAAAAAC~&z=1819451571
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-56097246-10&cid=685870023.1662921227&jid=1667857960&gjid=995266548&_gid=493369026.1662921227&_u=IEBAAEAAAAAAAC~&z=1819451571 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://massalih.blogspot.com
Connection: keep-alive
Referer: http://massalih.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://massalih.blogspot.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 11 Sep 2022 18:33:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cc16b956392846e1100a913453575c87
09e81e2f60ab04ca565b73ed9060380a2229cf30
3a3eecb77d71c4f1c3d706f33f33e8df527b3653906d0086089c2e5b45fd25e9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ae01.alicdn.com/kf/HTB1ku9aJXXXXXXfXVXXq6xXFXXXM/en-320x480.jpg
200 OK 33 kB URL HTTP/1.1 ae01.alicdn.com/kf/HTB1ku9aJXXXXXXfXVXXq6xXFXXXM/en-320x480.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x480, components 3\012- data
Hash cb68cba88cb094669b13b64888bbf0ee
81aa984dadef96bf1bd07941c9988d8f70e2a504
58cc3c04cae56a637cca9eda3c95deb817c9f9628bb5cd786b73e367138f4791
GET /kf/HTB1ku9aJXXXXXXfXVXXq6xXFXXXM/en-320x480.jpg HTTP/1.1
Host: ae01.alicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/
HTTP/1.1 200 OK
Server: Akamai Image Server
Last-Modified: Mon, 05 Aug 2019 15:34:47 GMT
Access-Control-Allow-Origin: *
Content-Type: image/jpeg
Content-Length: 33223
Cache-Control: private, max-age=300
Expires: Sun, 11 Sep 2022 18:38:58 GMT
Date: Sun, 11 Sep 2022 18:33:58 GMT
Connection: keep-alive
From-Req-Dns-Type: NA
Network_Info: NO_OSLO_50304
SERVED-FROM: 95.101.11.157
Timing-Allow-Origin: *
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d278a4d2d9653a14270b74094bcab8cf
ba4b9fc06cae469867bd831d8017b147a1f53d30
a482809494678e6648a72cefe816c4eb0822d010b5453c3e5084eb529c4d886d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-rWmJpUPaqa4/WATV4qzsS_I/AAAAAAAAAbY/ewILCzPCNGIqk684TRrvV9QGsmzdUSX6gCLcB/s400/ccp.jpg
200 OK 35 kB URL HTTP/2 1.bp.blogspot.com/-rWmJpUPaqa4/WATV4qzsS_I/AAAAAAAAAbY/ewILCzPCNGIqk684TRrvV9QGsmzdUSX6gCLcB/s400/ccp.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x245, components 3\012- data
Hash 48e1dfadb74b829bd55b8c85abd39a61
793ca20e8d2074630578ca401869dc2ba7a9532a
c6b881f3843cdeada5a14bf767b92de578a5b94591846066347bb44db1c97743
GET /-rWmJpUPaqa4/WATV4qzsS_I/AAAAAAAAAbY/ewILCzPCNGIqk684TRrvV9QGsmzdUSX6gCLcB/s400/ccp.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://massalih.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1b7"
expires: Mon, 12 Sep 2022 18:33:58 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ccp.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 11 Sep 2022 18:33:58 GMT
server: fife
content-length: 35166
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d0ea6bf4cc7ee5b4483912776c47dacc
bd1333224cc1beead423969ce903b4a67c13bbf8
46521d14873cd9553052ab9bd601d74ca8278f44d97e3964ff7681b938d953eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
9d4b5a77d96d82660314-9686ac12afb8298fa3e1009ec0e80674.r84.cf5.rackcdn.com/56_Bill-336x260.png
200 OK 70 kB URL HTTP/1.1 9d4b5a77d96d82660314-9686ac12afb8298fa3e1009ec0e80674.r84.cf5.rackcdn.com/56_Bill-336x260.png
IP
ASN #1299 Telia Company AB
File type PNG image data, 336 x 260, 8-bit/color RGBA, non-interlaced\012- data
Hash c29cd1573d641e16130b3ee2b4f54a48
5f54f102ca72d87d83e5117e2d16a90ae59059b4
3b3acdd15704b4d28b9af60a1f3e5ac3ba77cc6985a36921dad1441d5fe9e51a
GET /56_Bill-336x260.png HTTP/1.1
Host: 9d4b5a77d96d82660314-9686ac12afb8298fa3e1009ec0e80674.r84.cf5.rackcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/
HTTP/1.1 200 OK
Last-Modified: Sun, 06 Sep 2015 11:38:07 GMT
ETag: c29cd1573d641e16130b3ee2b4f54a48
X-Trans-Id: tx913c994f0bfb4b879ba79-0062920159iad3
Unused62: 8096267
Content-Length: 69665
Accept-Ranges: bytes
X-Timestamp: 1441539486.45971
Content-Type: image/png
Cache-Control: public, max-age=259145
Expires: Wed, 14 Sep 2022 18:33:03 GMT
Date: Sun, 11 Sep 2022 18:33:58 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8996
Expires: Sun, 11 Sep 2022 21:03:54 GMT
Date: Sun, 11 Sep 2022 18:33:58 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8996
Expires: Sun, 11 Sep 2022 21:03:54 GMT
Date: Sun, 11 Sep 2022 18:33:58 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8996
Expires: Sun, 11 Sep 2022 21:03:54 GMT
Date: Sun, 11 Sep 2022 18:33:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e407da4d97d497925b1ab523fd416787
166741631fb93d109b18dde6d316b3fa3276aa8f
707460c02438da6114e35e0b6569d42c0f3fb747f8cb51002f4d52bedbcffa61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8485
x-amzn-requestid: a56c9282-2786-4ae7-9fc2-0468bcc820a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FM1oAMFZ2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-753cc4f121c9b77d22bb82b5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mfmj40aUc8l5RPk56M-pbqTwhde_HzYcmN5MDrfv-WFPhbpoShWYNw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:57:28 GMT
age: 74190
etag: "166741631fb93d109b18dde6d316b3fa3276aa8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66c0f84d-aba2-4ce6-9e03-ee51e1c347be.jpeg
200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66c0f84d-aba2-4ce6-9e03-ee51e1c347be.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57d797a1c3f6589746a1135bdb19f54f
7aa14fcd982a5cee38d58fc3c89edc4a8daf4c97
ff8855ca951f53ed5f3886cc81a7f28384d41288edeca4fdc621250e4d01c6fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66c0f84d-aba2-4ce6-9e03-ee51e1c347be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6889
x-amzn-requestid: c82ac543-90cd-4aeb-a65b-7e1bbbacc407
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ2UEE-3IAMFYBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d0419-427a29067c9c92ec0db6567f;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:39:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BPWrjstB3xKeYzHK9eQoJL8ORgRFsqjmNxu0j10epBANBtZCRU-m2g==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:43:06 GMT
age: 75052
etag: "7aa14fcd982a5cee38d58fc3c89edc4a8daf4c97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4ec2646c56c4c522f0744768ad20342b
ad1d9eee90556a359547dc7cbb6758aee2c804cd
0bf9eaa4420bf6290535fd23895c6c723c7de6b849995ba83774532862cfe8b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7635
x-amzn-requestid: dbd07cc7-d0f6-4500-83c6-b19fa9fa2e3d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xt5xDEfUIAMFYXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630f09a0-3771b23118f3711e5caca699;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 07:11:28 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ILut4hEDJbs6jNr3wpPST1HgAYMabIT7cdZebRFETn8lL_QfS92KBA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 00:50:01 GMT
age: 63837
etag: "ad1d9eee90556a359547dc7cbb6758aee2c804cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d72ce1b-951e-4f1f-97b1-db99c399d5f9.jpeg
200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d72ce1b-951e-4f1f-97b1-db99c399d5f9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eee5b4d617dab6f10d7053f5c4f4e98e
6c728c56797ba921e8001919df4d36e56dd37e54
76a53e2c81ec8da2bc469760b2c57098d587c6a36fa70e5b7c743a224a47d362
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d72ce1b-951e-4f1f-97b1-db99c399d5f9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8171
x-amzn-requestid: 39c8c044-5287-47bb-8731-5706c27a73e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0feFFtkIAMF9NA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311ac59-246e1b7e019965f74db95df0;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 07:10:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FVraudPaXgrkcCLGkaxntfC3h4XtbSfnRgzyp72Wgwb-WgWkDwjYPw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 08:44:26 GMT
age: 35372
etag: "6c728c56797ba921e8001919df4d36e56dd37e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc91b46a1-040b-46aa-a7a1-af67f0058b83.jpeg
200 OK 24 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc91b46a1-040b-46aa-a7a1-af67f0058b83.jpeg
IP
File type gzip compressed data, max compression\012- data
Hash c6c6687beddc5f41061262f01742d4e5
0b9c6dfa2ac5d3b33caf7c27dbfd5dc911e61b78
3a4ac7ea962c4af7e8f7a7e88783e98ce064973f33b5d63772cdab6f35edd324
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc91b46a1-040b-46aa-a7a1-af67f0058b83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7519
x-amzn-requestid: bef8445b-1f8b-4c00-a9ad-b32fdefe3d13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3zXoHOhIAMFfNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312ff63-1a6c3ef64362a4d052a761ae;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 07:16:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Pzv2DSpqnXB0UP3C5EF-YUzRmveFwmal_8YyRfEuHuhZ1FcUWgHocg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 10:22:00 GMT
age: 29518
etag: "b3491a6f12c97c8e1848a206a185fae29213c1e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79f019c6-c6f0-4468-b319-ffe5379d4a42.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79f019c6-c6f0-4468-b319-ffe5379d4a42.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b290c3f75a769f5cb0f36b5c84436c9b
22e386713ccb95ca1cf9aa367a5ad02bd1664954
e311757ae3bc5b821a9c1d4d654250b1ac936228eb4a600aa1e5b391d25adaaf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79f019c6-c6f0-4468-b319-ffe5379d4a42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10611
x-amzn-requestid: f034fbd9-c83e-4a29-84ff-674629759818
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3yN3E8PoAMFwfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312fd8b-63dd86ec10dbc2fb7dc0e5de;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 07:08:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -Fht5R4_rLcLWqglaPldh1846mPs_JS6_L3G_mi5G2iQbmkCPopvuQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 07:27:02 GMT
age: 40016
etag: "22e386713ccb95ca1cf9aa367a5ad02bd1664954"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
4.bp.blogspot.com/-M0dUDvThQBU/WNJgUWbRJ2I/AAAAAAAAAhw/1ipugVmm1aIMvki-Vgbzbsf2szxp1S-rQCLcB/s640/cnepd.png
200 OK 107 kB URL HTTP/2 4.bp.blogspot.com/-M0dUDvThQBU/WNJgUWbRJ2I/AAAAAAAAAhw/1ipugVmm1aIMvki-Vgbzbsf2szxp1S-rQCLcB/s640/cnepd.png
IP
File type PNG image data, 640 x 618, 8-bit/color RGBA, non-interlaced\012- data
Size 107 kB (107392 bytes)
Hash f7560888970ab8f95521384575cf3de2
616d0ff18ff9858adacc965d68fdf337dda51730
e64bca0333e88e69d5b3bf1715955c24244220d78f0de7208ae522506f11a58f
GET /-M0dUDvThQBU/WNJgUWbRJ2I/AAAAAAAAAhw/1ipugVmm1aIMvki-Vgbzbsf2szxp1S-rQCLcB/s640/cnepd.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://massalih.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v21d"
expires: Mon, 12 Sep 2022 18:33:58 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="cnepd.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 11 Sep 2022 18:33:58 GMT
server: fife
content-length: 107392
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9453c8a7d5ed756714b1216e4e2d9993
a957832f103b2daf61597f508f5c1d4035f71d37
11b2b84b427b9b4edb9f12d6fb2b48c5d8e3d904652e9eb01bf12b074ac4c452
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9453c8a7d5ed756714b1216e4e2d9993
a957832f103b2daf61597f508f5c1d4035f71d37
11b2b84b427b9b4edb9f12d6fb2b48c5d8e3d904652e9eb01bf12b074ac4c452
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 314 B IP
Hash 4e77e334341d94c8381719fbeb35b9a3
b7c6e6ff92e33e6d90d0ec53e4042d5b044e57f5
3f9fed174ae3e831e7d8cbc0c1b7f90a47f92b39d0a37ca46359804651a31887
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5823
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:58 GMT
Last-Modified: Sun, 11 Sep 2022 16:56:55 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 314
s10.histats.com/js15_giftop_as.js
200 OK 4.6 kB URL HTTP/1.1 s10.histats.com/js15_giftop_as.js
IP
File type HTML document, ASCII text, with very long lines (11651), with no line terminators
Hash 95c75e6e128cb4d7751663bd11a17785
77ba2868f3e759bc868ce9ad1a24bb02b0935141
d90556dfb37a24f62eebd8e272864657adfe8f2f436436e2dd0842de00cf29d7
GET /js15_giftop_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/
HTTP/1.1 200 OK
date: Sun, 11 Sep 2022 18:17:17 GMT
last-modified: Thu, 16 Apr 2020 10:44:17 GMT
x-request-id: 1020431261
etag: W/"1692744674"
content-type: application/javascript; charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-grace: full
x-cdn-pop: rbx1
x-cdn-pop-ip: 51.254.41.128/25
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4608
x-iplb-request-id: 5B5A2A9A:A0AB_2E69C9F0:0050_631E2A16_2D3004:22D3F
x-iplb-instance: 32943
tpc.googlesyndication.com/pagead/js/r20220907/r20110914/client/window_focus_fy2021.js
200 OK 1.4 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220907/r20110914/client/window_focus_fy2021.js
IP
File type ASCII text, with very long lines (1120)
Hash 80cd5cb3c635786273462df0f5f46e1a
419d5c86598430982672063ef04bb4966c94b9e8
f7f4c535ed4b9713150261c1c37ad1c2a883d08aef0ed2d6ce38736dd28d7301
GET /pagead/js/r20220907/r20110914/client/window_focus_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1359
x-xss-protection: 0
date: Sun, 11 Sep 2022 18:25:09 GMT
expires: Sun, 25 Sep 2022 18:25:09 GMT
cache-control: public, max-age=1209600
etag: 1484984001845508991
content-type: text/javascript; charset=UTF-8
age: 529
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
200 OK 45 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP
File type ASCII text, with very long lines (3498)
Hash 60c04c5917deba3fc2fb2039e25ab536
7c2ec9926e7bd594d40dde19e1422eade4737a7f
4860de2971d6a44b1788448ecba341ae352fb7a9f9f9964fb5c49424e6251729
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 44740
date: Sun, 11 Sep 2022 18:33:58 GMT
expires: Sun, 11 Sep 2022 18:33:58 GMT
cache-control: private, max-age=3000
etag: "1662550240112033"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220907/r20110914/client/qs_click_protection_fy2021.js
200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220907/r20110914/client/qs_click_protection_fy2021.js
IP
File type ASCII text, with very long lines (2184)
Hash 8fc1754beb27cdbcdf59d08c7fd0da07
485b36af1848b751ad094159766683b1f2cca286
b5d49fee775dbfd484dd3932044616a903a115033a0e5401c75da40775dd3789
GET /pagead/js/r20220907/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7592
x-xss-protection: 0
date: Sun, 11 Sep 2022 18:24:15 GMT
expires: Sun, 25 Sep 2022 18:24:15 GMT
cache-control: public, max-age=1209600
etag: 7248493764890666469
content-type: text/javascript; charset=UTF-8
age: 583
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash da7b1c24eee0db0c23872933557b7521
b8bc1215b4073784c048587e51a40152bd88c8ed
6ba38b5c68971135ed3f1fbe7afa658ce883240142a4244ce7d84fa251a64c3f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
200 OK 670 B URL HTTP/2 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP
File type ASCII text, with very long lines (1034), with no line terminators
Hash 24fb827545f0df82ba9ce873507284b7
9b19dbdd1f7e262643f5c8937bd71b8b4bbf51e9
8c9289a263ad355d61c55a414ea621a8019e6355e2532825d03d39e0e59292b0
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sun, 11 Sep 2022 18:33:58 GMT
date: Sun, 11 Sep 2022 18:33:58 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 670
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
massalih.blogspot.com/favicon.ico
200 OK 505 B URL HTTP/1.1 massalih.blogspot.com/favicon.ico
IP
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash ea79383f5aa24590067f7ea2151da517
bdf0e1b3b1c649bcd0968b0154332d8866bb5670
fe3291b0218ee08023985300f90a51023e12c7d2bec0cc6a338b83dc50b83ad3
GET /favicon.ico HTTP/1.1
Host: massalih.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://massalih.blogspot.com/2014/08/blog-post_19.html
Cookie: _ga=GA1.3.685870023.1662921227; _gid=GA1.3.493369026.1662921227; _gat_blogger=1
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Sun, 11 Sep 2022 18:33:58 GMT
Date: Sun, 11 Sep 2022 18:33:58 GMT
Cache-Control: private, max-age=86400
Last-Modified: Tue, 16 Aug 2022 11:23:31 GMT
ETag: W/"ad6538ffb6bc4a0c09918e1f5dcd5112c5e3725e8fcd4dc89876117637c23b86"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 505
Server: GSE
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 314 B IP
Hash 5530ca9ec5d6adc6f2b878536e1ffbc1
12bd83955111ca2416b424eb58e3e5af296bea1e
09cf80859d7d70b080168d00f11f85a576c7a95393de0d81a0d1552e00c0f20f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2898
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:58 GMT
Last-Modified: Sun, 11 Sep 2022 17:45:40 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 314
www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
200 OK 157 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
IP
File type ASCII text, with very long lines (539)
Size 157 kB (157166 bytes)
Hash 026df0dfed2314af108e700900288961
51c2a55bca7d65c549ef138d1294cac2aa98dd96
24eefc59f5d298ce40bdd33c8157ad14631984159fca8e5980037366c44c2b34
GET /recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157166
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 17:23:20 GMT
expires: Wed, 06 Sep 2023 17:23:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Sep 2022 00:04:24 GMT
content-type: text/javascript
age: 436238
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=krTUDrOzWdgFWp2DYgICAAAA4ZSAHCfyHR6eRCtUEBUqHmO5ft6ATE4MdDjpzAASAAA&wp=Yx4qFgADnJoK5gDzAAwu-5ClXGZTwS0fStYCEw
200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=krTUDrOzWdgFWp2DYgICAAAA4ZSAHCfyHR6eRCtUEBUqHmO5ft6ATE4MdDjpzAASAAA&wp=Yx4qFgADnJoK5gDzAAwu-5ClXGZTwS0fStYCEw
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=krTUDrOzWdgFWp2DYgICAAAA4ZSAHCfyHR6eRCtUEBUqHmO5ft6ATE4MdDjpzAASAAA&wp=Yx4qFgADnJoK5gDzAAwu-5ClXGZTwS0fStYCEw HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 252986
date: Sun, 11 Sep 2022 18:33:58 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
200 OK 4.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
IP
File type ASCII text, with very long lines (2171)
Hash 44c72b9bddfecacc9114e84d685dd085
38f3ff57b9b64a38fc2153eb30564b7fc1c86349
c82afd4f2d89288b4b79244f0c24264810b11326670710ac8e28e7bfc87c7991
GET /ajax/libs/webfont/1.6.28/webfontloader.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 18:33:58 GMT
content-type: application/javascript; charset=utf-8
content-length: 4420
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04030-30d9"
last-modified: Mon, 04 May 2020 16:17:52 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 1555333
expires: Fri, 01 Sep 2023 18:33:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bGq0Btq4wCruqOmqoD%2B1aKcdrg9SmnK7JTL%2FY3M4uqNBcjpqBJchh4%2FfvUoTvblWoGwzdfcO2RLSXCHUCX6ESWuXK0MICieDvEu9R0k6DNsfswx2TFPsJczspUBhwnpNmFXsewS%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74927eaf3c25b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 314 B IP
Hash b2a12548e31dba5e77d49d5ff0477c60
9184ba303d60ff012688e96597b077991543d1eb
b512ac01de1ff418799f4d820e7541313378788bc322cacb216407d0057700b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3500
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:59 GMT
Etag: "631cc425-139"
Last-Modified: Sun, 11 Sep 2022 17:35:39 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
200 OK 314 B IP
Hash b2a12548e31dba5e77d49d5ff0477c60
9184ba303d60ff012688e96597b077991543d1eb
b512ac01de1ff418799f4d820e7541313378788bc322cacb216407d0057700b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3500
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:59 GMT
Etag: "631cc425-139"
Last-Modified: Sun, 11 Sep 2022 17:35:39 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
200 OK 314 B IP
Hash b2a12548e31dba5e77d49d5ff0477c60
9184ba303d60ff012688e96597b077991543d1eb
b512ac01de1ff418799f4d820e7541313378788bc322cacb216407d0057700b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3500
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:59 GMT
Etag: "631cc425-139"
Last-Modified: Sun, 11 Sep 2022 17:35:39 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
200 OK 312 B IP
Hash 96e8dbfad474f3ea460d9606539e666b
e1a0b67031564d2f69a72ee18612071e2b72d1c6
c5c9bd0c8ddeef560eba5b735b9ef3fd686461b95fe2d97fe06f03e94b87f100
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2512
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:59 GMT
Last-Modified: Sun, 11 Sep 2022 17:52:07 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
200 OK 314 B IP
Hash b2a12548e31dba5e77d49d5ff0477c60
9184ba303d60ff012688e96597b077991543d1eb
b512ac01de1ff418799f4d820e7541313378788bc322cacb216407d0057700b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3489
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:59 GMT
Last-Modified: Sun, 11 Sep 2022 17:35:50 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 314
static.criteo.net/flash/icon/back_button2.svg
200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 18:33:59 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Wed, 06 Sep 2023 18:33:59 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f9586374bb1bef58a7f21c55bdcccbcf
f4dfc53e23c579b828c19a2ab88d095b05d7b8df
545d01bc8dd9ba4d616be5179a3ae220c605bfba00982fd639835ca09a4dc56f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "545D01BC8DD9BA4D616BE5179A3AE220C605BFBA00982FD639835CA09A4DC56F"
Last-Modified: Fri, 09 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2662
Expires: Sun, 11 Sep 2022 19:18:21 GMT
Date: Sun, 11 Sep 2022 18:33:59 GMT
Connection: keep-alive
static.criteo.net/flash/icon/close_button.svg
200 OK 308 B URL HTTP/2 static.criteo.net/flash/icon/close_button.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 1bfe2e290ec4440da74a2e2c249eae2b
0b888a3f9e27d1554f2e21d51e7a1c223d00dbd4
8ec89605fe3d580e9539c7b858e8f69ba4e26fe06377ebe04585397de23a7395
GET /flash/icon/close_button.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 18:33:59 GMT
content-type: image/svg+xml
content-length: 308
last-modified: Fri, 14 Feb 2020 13:51:32 GMT
etag: "5e46a5e4-134"
expires: Wed, 06 Sep 2023 18:33:59 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/dt/4ef456fb9fb14ec5a2da96fe450c24b3_homepagebaukasten-bold.woff
200 OK 20 kB URL HTTP/2 static.criteo.net/design/dt/4ef456fb9fb14ec5a2da96fe450c24b3_homepagebaukasten-bold.woff
IP
File type Web Open Font Format, CFF, length 19492, version 1.0\012- data
Hash fe16408343054418c53b45c76a1892f2
b2f898a889e2164ba7bb7d6676b5a294eb97817b
3b42d14795d22866ea7e9bd3b4259fa75e510bcbbf7ab1861acb9ce2290128f2
GET /design/dt/4ef456fb9fb14ec5a2da96fe450c24b3_homepagebaukasten-bold.woff HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 18:33:59 GMT
content-type: text/plain; charset=UTF-8
content-length: 19492
last-modified: Mon, 06 Jul 2020 12:29:00 GMT
etag: "5f03190c-4c24"
expires: Wed, 06 Sep 2023 18:33:59 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 65deebab57142db522e6c874673bdd9f
bfd022181afaec5035f868ccd05fac58113f81dc
7470143c8bd79f00190a3766ebaa9c632d0aa47693fc4c146f097873865da327
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=krTUDrOzWdACmAKdg2ICAgAAAMnr3YNsrMaznkQrVBAVKh5j1LSEqdkoGmZYPzIAEgAA&wp=Yx4qFgAD54sFkUunAAiRSi3BqP3vI42HijstNA
200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=krTUDrOzWdACmAKdg2ICAgAAAMnr3YNsrMaznkQrVBAVKh5j1LSEqdkoGmZYPzIAEgAA&wp=Yx4qFgAD54sFkUunAAiRSi3BqP3vI42HijstNA
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=krTUDrOzWdACmAKdg2ICAgAAAMnr3YNsrMaznkQrVBAVKh5j1LSEqdkoGmZYPzIAEgAA&wp=Yx4qFgAD54sFkUunAAiRSi3BqP3vI42HijstNA HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 203658
date: Sun, 11 Sep 2022 18:33:58 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=krTUDrOzWdACmAKdg2ICAgAAAMnr3YNsrMaznkQrVBAWKh5jBlR4ZEE4QGQv9kEAEgAA&wp=Yx4qFgAECuMKsoMNAA9t7Wx4NcZEsQ1XIv8vWQ
200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=krTUDrOzWdACmAKdg2ICAgAAAMnr3YNsrMaznkQrVBAWKh5jBlR4ZEE4QGQv9kEAEgAA&wp=Yx4qFgAECuMKsoMNAA9t7Wx4NcZEsQ1XIv8vWQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=krTUDrOzWdACmAKdg2ICAgAAAMnr3YNsrMaznkQrVBAWKh5jBlR4ZEE4QGQv9kEAEgAA&wp=Yx4qFgAECuMKsoMNAA9t7Wx4NcZEsQ1XIv8vWQ HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 711518
date: Sun, 11 Sep 2022 18:33:58 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 65deebab57142db522e6c874673bdd9f
bfd022181afaec5035f868ccd05fac58113f81dc
7470143c8bd79f00190a3766ebaa9c632d0aa47693fc4c146f097873865da327
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 313 B IP
Hash 0936f389cbb316534e39b7bba83cadb9
9ca7b0d979d188725ca843940d80e1eafebf9649
3bbc574acddf8df1424abd3ad0db13eb85dae80f6d49bec6671551fc418cd030
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1090
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:59 GMT
Last-Modified: Sun, 11 Sep 2022 18:15:49 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
ads.eu.criteo.com/delivery/r/afr.php?z=Yx4qFgAECuMKsoMNAA9t7Wx4NcZEsQ1XIv8vWQ&u=%7CWuAaFyZ6f0xaAljegKi%2BXILydvQBD7xF5VliMbCp%2BaA%3D%7C&c1=0n2XosTo5ckbeNFvq0zVIcsyhyT3WKD0PIixkNz--ZUG2JILUkurhSkBmqMNl2IWHL9APLQJ6z1MiR3q3hC869Q2spDmDGDhANmzJuXrRVuaCc4EAK-Ui8yR5cDHxPmMV_zFyqaulhC5Ir8jXSOT8hl2zQQ8neVClmKa_-ZPpSp-Ys3nKuwC9CRsmAm4GUSKU31uSZoM4pSNkXklEQTh8tfrfx1cld_xf3Y651YOwCHKgnaOAwNvMj4G6Zj06FaOLGHqnoD3uIbH7SqOGnR9jlRcoF2_SVAm-Anw56KY9sYspL4QqsskUdE3bZeU3PMrKvONRh8TJcx_jPlQtA8n6N89QloLDhSYKZWoIuqzovi3huhptDVwUl8UJrKdVvHlgHQxtIYjVGykDj0BQSKFzC1DLXhQnV9rRb3NnTZqo-jzPipeUu2HGizO8aOgJafJYTbGYPpWoMYXShikFjzIGKqON1Gg4wNwLsoprXfmODRaBHMVGebN1PNmjPGKvTpZUGr8zfrYrM83AhTfYGB10q6zeJLHPibhEecwgK1UL5Co8NsK4zLbkvwfoiSrisnvqid4cAWemSw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCBDkRFioeY-OVEI2GygXt272IBMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNjQ4MzU3MTk0NTM0MzIyNaAB1bbS6gPIAQmpAoa-xJ3d2LA-qAMBqgSEAk_QydnhPff1aewLEAEznWdfNgQzwh-ScipJWBqbbghKUOM-UaPLYBU7Ayg6GVxGv6wIhZr263vlZvLiIFAaCoF2laTHpQuII4qsqXcfhmM8FoSKwOkyARp8h4KXCG-hx-3p7UjHt9qZusixZ7pLURI0HNcLhPwsH_nr0tyYn9HjDpmMEm7eIhR3OBdrCd7BvH0KspaYtdtZ6dlVcxwd00vo17nwrpXzxz9Emt7HERG5rukj_2PzgO1IVH9MsaMGdg8s1sLxCQ4hyEzpt0DcmCz7pbUbDu0BsodAqSko7ZJ2LhJWmv9TJwrhuJKZEri-lv6CwzlSEzVi3J3Cf_IxTVrkJDUpgAbxuP6E6ra1t4QBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_1BiV59e3Bw8AfmaHbom_44dR7j3g%26client%3Dca-pub-6483571945343225%26adurl%3D
200 OK 53 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Yx4qFgAECuMKsoMNAA9t7Wx4NcZEsQ1XIv8vWQ&u=%7CWuAaFyZ6f0xaAljegKi%2BXILydvQBD7xF5VliMbCp%2BaA%3D%7C&c1=0n2XosTo5ckbeNFvq0zVIcsyhyT3WKD0PIixkNz--ZUG2JILUkurhSkBmqMNl2IWHL9APLQJ6z1MiR3q3hC869Q2spDmDGDhANmzJuXrRVuaCc4EAK-Ui8yR5cDHxPmMV_zFyqaulhC5Ir8jXSOT8hl2zQQ8neVClmKa_-ZPpSp-Ys3nKuwC9CRsmAm4GUSKU31uSZoM4pSNkXklEQTh8tfrfx1cld_xf3Y651YOwCHKgnaOAwNvMj4G6Zj06FaOLGHqnoD3uIbH7SqOGnR9jlRcoF2_SVAm-Anw56KY9sYspL4QqsskUdE3bZeU3PMrKvONRh8TJcx_jPlQtA8n6N89QloLDhSYKZWoIuqzovi3huhptDVwUl8UJrKdVvHlgHQxtIYjVGykDj0BQSKFzC1DLXhQnV9rRb3NnTZqo-jzPipeUu2HGizO8aOgJafJYTbGYPpWoMYXShikFjzIGKqON1Gg4wNwLsoprXfmODRaBHMVGebN1PNmjPGKvTpZUGr8zfrYrM83AhTfYGB10q6zeJLHPibhEecwgK1UL5Co8NsK4zLbkvwfoiSrisnvqid4cAWemSw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCBDkRFioeY-OVEI2GygXt272IBMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNjQ4MzU3MTk0NTM0MzIyNaAB1bbS6gPIAQmpAoa-xJ3d2LA-qAMBqgSEAk_QydnhPff1aewLEAEznWdfNgQzwh-ScipJWBqbbghKUOM-UaPLYBU7Ayg6GVxGv6wIhZr263vlZvLiIFAaCoF2laTHpQuII4qsqXcfhmM8FoSKwOkyARp8h4KXCG-hx-3p7UjHt9qZusixZ7pLURI0HNcLhPwsH_nr0tyYn9HjDpmMEm7eIhR3OBdrCd7BvH0KspaYtdtZ6dlVcxwd00vo17nwrpXzxz9Emt7HERG5rukj_2PzgO1IVH9MsaMGdg8s1sLxCQ4hyEzpt0DcmCz7pbUbDu0BsodAqSko7ZJ2LhJWmv9TJwrhuJKZEri-lv6CwzlSEzVi3J3Cf_IxTVrkJDUpgAbxuP6E6ra1t4QBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_1BiV59e3Bw8AfmaHbom_44dR7j3g%26client%3Dca-pub-6483571945343225%26adurl%3D
IP
Hash 96163e90042151e867828a51e9a6f782
c178183b7093c2bd716b61afc242a6ef0954e472
461f6db72586d2df2c74c03d26205e27f46aed1c1c7fb740fd8ecc56f0e8db3a
GET /delivery/r/afr.php?z=Yx4qFgAECuMKsoMNAA9t7Wx4NcZEsQ1XIv8vWQ&u=%7CWuAaFyZ6f0xaAljegKi%2BXILydvQBD7xF5VliMbCp%2BaA%3D%7C&c1=0n2XosTo5ckbeNFvq0zVIcsyhyT3WKD0PIixkNz--ZUG2JILUkurhSkBmqMNl2IWHL9APLQJ6z1MiR3q3hC869Q2spDmDGDhANmzJuXrRVuaCc4EAK-Ui8yR5cDHxPmMV_zFyqaulhC5Ir8jXSOT8hl2zQQ8neVClmKa_-ZPpSp-Ys3nKuwC9CRsmAm4GUSKU31uSZoM4pSNkXklEQTh8tfrfx1cld_xf3Y651YOwCHKgnaOAwNvMj4G6Zj06FaOLGHqnoD3uIbH7SqOGnR9jlRcoF2_SVAm-Anw56KY9sYspL4QqsskUdE3bZeU3PMrKvONRh8TJcx_jPlQtA8n6N89QloLDhSYKZWoIuqzovi3huhptDVwUl8UJrKdVvHlgHQxtIYjVGykDj0BQSKFzC1DLXhQnV9rRb3NnTZqo-jzPipeUu2HGizO8aOgJafJYTbGYPpWoMYXShikFjzIGKqON1Gg4wNwLsoprXfmODRaBHMVGebN1PNmjPGKvTpZUGr8zfrYrM83AhTfYGB10q6zeJLHPibhEecwgK1UL5Co8NsK4zLbkvwfoiSrisnvqid4cAWemSw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCBDkRFioeY-OVEI2GygXt272IBMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNjQ4MzU3MTk0NTM0MzIyNaAB1bbS6gPIAQmpAoa-xJ3d2LA-qAMBqgSEAk_QydnhPff1aewLEAEznWdfNgQzwh-ScipJWBqbbghKUOM-UaPLYBU7Ayg6GVxGv6wIhZr263vlZvLiIFAaCoF2laTHpQuII4qsqXcfhmM8FoSKwOkyARp8h4KXCG-hx-3p7UjHt9qZusixZ7pLURI0HNcLhPwsH_nr0tyYn9HjDpmMEm7eIhR3OBdrCd7BvH0KspaYtdtZ6dlVcxwd00vo17nwrpXzxz9Emt7HERG5rukj_2PzgO1IVH9MsaMGdg8s1sLxCQ4hyEzpt0DcmCz7pbUbDu0BsodAqSko7ZJ2LhJWmv9TJwrhuJKZEri-lv6CwzlSEzVi3J3Cf_IxTVrkJDUpgAbxuP6E6ra1t4QBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_1BiV59e3Bw8AfmaHbom_44dR7j3g%26client%3Dca-pub-6483571945343225%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 18:33:58 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=doOOBEllMVH4RXTlHlaP7byOFSgv0QHR6XTia08RoMN84oBRn_Q1OopA8Wpfc6tFASvMRsNVtaCWsagXJUUru-Y0Vbv85wkGdCOEbtALtlHZBl6heDi2JI6LaHMm6o-pWnDb7ukLw8ZDJmPae8o36JTbG-0w4jIGD2Eoqd6RdQMZF8bT2zWian_kjS8cfFEQcwwZIDox1611gUFqZ3FmyTwbdHR40XNB8-iYVAqNzLPgJAkJQLdVTPwcisrUPNb4NUMNLw"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 115135194
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 0936f389cbb316534e39b7bba83cadb9
9ca7b0d979d188725ca843940d80e1eafebf9649
3bbc574acddf8df1424abd3ad0db13eb85dae80f6d49bec6671551fc418cd030
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6577
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 18:33:59 GMT
Last-Modified: Sun, 11 Sep 2022 16:44:22 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 313
static.criteo.net/flash/icon/adchoices_en.svg
200 OK 1.4 kB URL HTTP/2 static.criteo.net/flash/icon/adchoices_en.svg
IP
Hash d78c5980f5ed15130ed6316cc9b0ea90
f82e307330c5cb0f44b77c7ebb153545f0836947
278912ae404045a4728a7aa0599b8124ab458d31d3f7e49caf625242ac6abf3b
GET /flash/icon/adchoices_en.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 18:33:59 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:27:58 GMT
etag: W/"5e42b9ee-759"
expires: Wed, 06 Sep 2023 18:33:59 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy_small.svg
200 OK 24 kB URL HTTP/2 static.criteo.net/flash/icon/privacy_small.svg
IP
Hash e9d64b01ad98c9ddbc8f582d8a9c0f4c
0c5ba210ee75fa580ddbe797f4d1c84df703126c
38b4d6630603df2e989e527eace4002ff9338d638c40cf5e7e16d1cc99054487
GET /flash/icon/privacy_small.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 18:33:59 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:30:28 GMT
etag: W/"5e42ba84-6aa"
expires: Wed, 06 Sep 2023 18:33:59 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
s4i.histats.com/stats/i/3506007.gif?3506007&@f16&@g1&@h1&@i1&@j1662921227565&@k0&@l1&@m%D9%85%D9%88%D9%82%D8%B9%20%D9%88%D8%B2%D8%A7%D8%B1%D8%A9%20%D8%A7%D9%84%D8%B3%D9%83%D9%86%20%D9%88%D8%A7%D9%84%D8%B9%D9%85%D8%B1%D8%A7%D9%86%20%D9%88%D8%A7%D9%84%D9%85%D8%AF%D9%8A%D9%86%D8%A9%20-%20%D9%85%D8%B5%D8%A7%D9%84%D8%AD%20%D8%A7%D9%84%D8%AC%D8%B2%D8%A7%D8%A6%D8%B1&@n0&@o1000&@q0&@r0&@s10052&@ten-US&@u1280&@b1:-90639052&@b3:1662921228&@b4:js15_giftop_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fmassalih.blogspot.com%2F2014%2F08%2Fblog-post_19.html&@w
200 OK 1.5 kB URL HTTP/1.1 s4i.histats.com/stats/i/3506007.gif?3506007&@f16&@g1&@h1&@i1&@j1662921227565&@k0&@l1&@m%D9%85%D9%88%D9%82%D8%B9%20%D9%88%D8%B2%D8%A7%D8%B1%D8%A9%20%D8%A7%D9%84%D8%B3%D9%83%D9%86%20%D9%88%D8%A7%D9%84%D8%B9%D9%85%D8%B1%D8%A7%D9%86%20%D9%88%D8%A7%D9%84%D9%85%D8%AF%D9%8A%D9%86%D8%A9%20-%20%D9%85%D8%B5%D8%A7%D9%84%D8%AD%20%D8%A7%D9%84%D8%AC%D8%B2%D8%A7%D8%A6%D8%B1&@n0&@o1000&@q0&@r0&@s10052&@ten-US&@u1280&@b1:-90639052&@b3:1662921228&@b4:js15_giftop_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fmassalih.blogspot.com%2F2014%2F08%2Fblog-post_19.html&@w
IP
File type PNG image data, 76 x 47, 8-bit/color RGBA, non-interlaced\012- data
Hash bfa34604b7d9cc30ecc3eeebd7cb47c6
633df03088a291413c314da897eba3325abda0d3
5afe1d554001910f650c6f80225675ca91f31d9d97e702d10aadb38c44e78cc2
GET /stats/i/3506007.gif?3506007&@f16&@g1&@h1&@i1&@j1662921227565&@k0&@l1&@m%D9%85%D9%88%D9%82%D8%B9%20%D9%88%D8%B2%D8%A7%D8%B1%D8%A9%20%D8%A7%D9%84%D8%B3%D9%83%D9%86%20%D9%88%D8%A7%D9%84%D8%B9%D9%85%D8%B1%D8%A7%D9%86%20%D9%88%D8%A7%D9%84%D9%85%D8%AF%D9%8A%D9%86%D8%A9%20-%20%D9%85%D8%B5%D8%A7%D9%84%D8%AD%20%D8%A7%D9%84%D8%AC%D8%B2%D8%A7%D8%A6%D8%B1&@n0&@o1000&@q0&@r0&@s10052&@ten-US&@u1280&@b1:-90639052&@b3:1662921228&@b4:js15_giftop_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fmassalih.blogspot.com%2F2014%2F08%2Fblog-post_19.html&@w HTTP/1.1
Host: s4i.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://massalih.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 18:33:59 GMT
Content-Type: image/png
Content-Length: 1451
Connection: close
ETag: 620728326
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fa%2Fe%2Fb%2Ff%2Faebf7318b7e595e477c330b05d05f2c8de7dddd9_2TT_400_1.png%3Fcb%3D202236&v=3&w=800&s=FJfPV4KGmSEJILVAC0pPhyIC&b=400
200 OK 19 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fa%2Fe%2Fb%2Ff%2Faebf7318b7e595e477c330b05d05f2c8de7dddd9_2TT_400_1.png%3Fcb%3D202236&v=3&w=800&s=FJfPV4KGmSEJILVAC0pPhyIC&b=400
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash d9e29f3fa1c12a493e29670e88d7088c
d7e7e9a44f7379145ff2f8a5f90327898e853195
d9ed6ba899d7a2afccc533a33e528feca16450cf7d8266ef183036db2ecf76da
GET /img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fa%2Fe%2Fb%2Ff%2Faebf7318b7e595e477c330b05d05f2c8de7dddd9_2TT_400_1.png%3Fcb%3D202236&v=3&w=800&s=FJfPV4KGmSEJILVAC0pPhyIC&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30978454
expires: Tue, 05 Sep 2023 07:41:33 GMT
date: Sun, 11 Sep 2022 18:33:59 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 19188
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:400,700,700italic,400italic&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
200 OK 11 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:400,700,700italic,400italic&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
IP
Hash d7fe3e7dd0a7a6100a0fc941f4d84157
5eac3b0f4874f361f9495f4703b1c84868815aa7
a2939a3ecba8e72777229d56219928d9fc9b0e7bb00adc0fb885c0794d6aff3f
GET /css?family=Montserrat:400,700,700italic,400italic&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 11 Sep 2022 18:33:59 GMT
date: Sun, 11 Sep 2022 18:33:59 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F0%2Fe%2F0%2Ff%2F0e0ff71827b61ad5536e6ee70cb7edccae44b6c7_2_PIA_210323_0_10.png%3Fcb%3D202236&v=3&w=800&s=ItsbUkaWYW7D7hrbRb2Ia8Am&b=400
200 OK 18 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F0%2Fe%2F0%2Ff%2F0e0ff71827b61ad5536e6ee70cb7edccae44b6c7_2_PIA_210323_0_10.png%3Fcb%3D202236&v=3&w=800&s=ItsbUkaWYW7D7hrbRb2Ia8Am&b=400
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash c648ae525b209ab296c101e51d20e6eb
1ecc4b6bb6e1b9e997f776284ccc29ec58a12ef5
94f485db40e435bcf8a2ff7cd8796aafa3228c500b6863f2401d0bd5176742de
GET /img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F0%2Fe%2F0%2Ff%2F0e0ff71827b61ad5536e6ee70cb7edccae44b6c7_2_PIA_210323_0_10.png%3Fcb%3D202236&v=3&w=800&s=ItsbUkaWYW7D7hrbRb2Ia8Am&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30979269
expires: Tue, 05 Sep 2023 07:55:07 GMT
date: Sun, 11 Sep 2022 18:33:57 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 17526
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fe%2F9%2F0%2F2%2Fe902b9e15a29627713271683aa9ee06a4f9d6f8f_2_PIA_102694_0_50.png%3Fcb%3D202236&v=3&w=400&s=1hPC1SdWnz3WRQxiIX81_WGQ&b=400
200 OK 33 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fe%2F9%2F0%2F2%2Fe902b9e15a29627713271683aa9ee06a4f9d6f8f_2_PIA_102694_0_50.png%3Fcb%3D202236&v=3&w=400&s=1hPC1SdWnz3WRQxiIX81_WGQ&b=400
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4a275284d53361c47da5af67e28c240f
7f8b83b8253de325affa449829d489edb875e4f7
ebfc50484c6ca398e32e54265690241622a0d1e5dab8057cc25d85a7df05ee18
GET /img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fe%2F9%2F0%2F2%2Fe902b9e15a29627713271683aa9ee06a4f9d6f8f_2_PIA_102694_0_50.png%3Fcb%3D202236&v=3&w=400&s=1hPC1SdWnz3WRQxiIX81_WGQ&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30978672
expires: Tue, 05 Sep 2023 07:45:11 GMT
date: Sun, 11 Sep 2022 18:33:59 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 32578
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=92&m=0&partner=26192&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F26192%2F180503%2Fd4d982f84da647c68f39b27364c2e67f_logo_darkbg-rollover_horizontal.png&v=3&w=668&s=-B3TqQnFP9fixb9koVX4VKIu
200 OK 9.9 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=92&m=0&partner=26192&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F26192%2F180503%2Fd4d982f84da647c68f39b27364c2e67f_logo_darkbg-rollover_horizontal.png&v=3&w=668&s=-B3TqQnFP9fixb9koVX4VKIu
IP
File type PNG image data, 375 x 92, 8-bit/color RGBA, non-interlaced\012- data
Hash 5a57a694a622ee93f16654822c816d8a
8179f50370fe0c6f3dbef2fbc2724b013354cc98
d444311023cb6d523addc5bfb51513476d2bf6194dbb4e3e72902049403c8f6b
GET /img/img?h=92&m=0&partner=26192&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F26192%2F180503%2Fd4d982f84da647c68f39b27364c2e67f_logo_darkbg-rollover_horizontal.png&v=3&w=668&s=-B3TqQnFP9fixb9koVX4VKIu HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29489708
expires: Sat, 19 Aug 2023 02:09:08 GMT
date: Sun, 11 Sep 2022 18:33:59 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 9866
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F3%2F2%2F7%2F0%2F3270ef902a84be6cdab3dbc8d8fbd5eecab2131b_131341381693932455farth_llare.PNG%3Fcb%3D202236&v=3&w=400&s=T5juySPqY_j13UvDgXPvUAFl&b=400
200 OK 26 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F3%2F2%2F7%2F0%2F3270ef902a84be6cdab3dbc8d8fbd5eecab2131b_131341381693932455farth_llare.PNG%3Fcb%3D202236&v=3&w=400&s=T5juySPqY_j13UvDgXPvUAFl&b=400
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 66914b124dbfc9e831cea91e978ed9b1
2e84295ae2d00ca03512764d5333caf0d82342ac
9d8c47dfc5c3adbd1415f7cfd7ce8cff0d1937052022f4c03936c2d08d8d71b3
GET /img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F3%2F2%2F7%2F0%2F3270ef902a84be6cdab3dbc8d8fbd5eecab2131b_131341381693932455farth_llare.PNG%3Fcb%3D202236&v=3&w=400&s=T5juySPqY_j13UvDgXPvUAFl&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30978236
expires: Tue, 05 Sep 2023 07:37:55 GMT
date: Sun, 11 Sep 2022 18:33:58 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 26118
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fa%2Fe%2Fb%2Ff%2Faebf7318b7e595e477c330b05d05f2c8de7dddd9_2TT_400_1.png%3Fcb%3D202236&v=3&w=400&s=NNTMSGWD1Zi8vRiba_tFXeEg&b=400
200 OK 19 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fa%2Fe%2Fb%2Ff%2Faebf7318b7e595e477c330b05d05f2c8de7dddd9_2TT_400_1.png%3Fcb%3D202236&v=3&w=400&s=NNTMSGWD1Zi8vRiba_tFXeEg&b=400
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash d9e29f3fa1c12a493e29670e88d7088c
d7e7e9a44f7379145ff2f8a5f90327898e853195
d9ed6ba899d7a2afccc533a33e528feca16450cf7d8266ef183036db2ecf76da
GET /img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fa%2Fe%2Fb%2Ff%2Faebf7318b7e595e477c330b05d05f2c8de7dddd9_2TT_400_1.png%3Fcb%3D202236&v=3&w=400&s=NNTMSGWD1Zi8vRiba_tFXeEg&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30978454
expires: Tue, 05 Sep 2023 07:41:33 GMT
date: Sun, 11 Sep 2022 18:33:58 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 19188
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F0%2F8%2F6%2Ff%2F086f80b8f77321ba32becd5b2611ad613f5f599a_2_9033_2_43_Nov292017_1.PNG%3Fcb%3D202236&v=3&w=400&s=pvvrL4wguoj6eK5teXqhpm5s&b=400
200 OK 23 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F0%2F8%2F6%2Ff%2F086f80b8f77321ba32becd5b2611ad613f5f599a_2_9033_2_43_Nov292017_1.PNG%3Fcb%3D202236&v=3&w=400&s=pvvrL4wguoj6eK5teXqhpm5s&b=400
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 94f4ee770c96a1a37b818524f1802ecb
a43ae5f56b0c304d1ee159618b2fd7786ff967ed
3d65c542c8bae3a604c43fb265cb0ae62115386fce6598edfb4a728784c7e0ae
GET /img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F0%2F8%2F6%2Ff%2F086f80b8f77321ba32becd5b2611ad613f5f599a_2_9033_2_43_Nov292017_1.PNG%3Fcb%3D202236&v=3&w=400&s=pvvrL4wguoj6eK5teXqhpm5s&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30978166
expires: Tue, 05 Sep 2023 07:36:45 GMT
date: Sun, 11 Sep 2022 18:33:59 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 22904
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=DHpPK_GmlTcJ7C5QPzGxms_KfbtVENnT79XcANf4_4Y6VzoRBMjrL8PDUtClHE4df2XszYwaP5VJVcmvhyuNhgkmD8Dd8ZB-ZsFaXNvyBwo_Fbhcvy_pKSLsyPVLNNg5XWu5wXHmYMyji8g6QDObedQcCf9JsRzODQKCdJNToZWMTQq3-UdXD4YH0g4SHy80SWWpfNZvFVl9zVtuoEtSzcNkGZzyrYx__055TuCGBPQx8hPtrpTk_mRpSo-4TO8TCZG7-vfZP4VnIdNaDEux3cD9-4JyiwuyE3wAc2-739g-J9woad37c4QJTbjPcUMzPGhax0Mm3Yv37iS3CcKv4rC32rwMIRDbmMwYCSmX7Piq3xIjChlmD2uIIArJMtLPgKmLk5hWdcqHVyYVM5iQikww0ulh7gOeK4wAD1qGNCgEuhrOE5h5bfS5MJhRPOYQTtnIlQ
200 OK 74 kB URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=DHpPK_GmlTcJ7C5QPzGxms_KfbtVENnT79XcANf4_4Y6VzoRBMjrL8PDUtClHE4df2XszYwaP5VJVcmvhyuNhgkmD8Dd8ZB-ZsFaXNvyBwo_Fbhcvy_pKSLsyPVLNNg5XWu5wXHmYMyji8g6QDObedQcCf9JsRzODQKCdJNToZWMTQq3-UdXD4YH0g4SHy80SWWpfNZvFVl9zVtuoEtSzcNkGZzyrYx__055TuCGBPQx8hPtrpTk_mRpSo-4TO8TCZG7-vfZP4VnIdNaDEux3cD9-4JyiwuyE3wAc2-739g-J9woad37c4QJTbjPcUMzPGhax0Mm3Yv37iS3CcKv4rC32rwMIRDbmMwYCSmX7Piq3xIjChlmD2uIIArJMtLPgKmLk5hWdcqHVyYVM5iQikww0ulh7gOeK4wAD1qGNCgEuhrOE5h5bfS5MJhRPOYQTtnIlQ
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash db013a89d4cb170dfc82833b6dab00d5
c206e7352f8ffa529ddfdf131e4eb80aedcd088d
78fc4c29b2503958e8d7d897103fef1cbc61f08e7554804ef309340055057d93
GET /delivery/lg.php?cppv=3&cpp=DHpPK_GmlTcJ7C5QPzGxms_KfbtVENnT79XcANf4_4Y6VzoRBMjrL8PDUtClHE4df2XszYwaP5VJVcmvhyuNhgkmD8Dd8ZB-ZsFaXNvyBwo_Fbhcvy_pKSLsyPVLNNg5XWu5wXHmYMyji8g6QDObedQcCf9JsRzODQKCdJNToZWMTQq3-UdXD4YH0g4SHy80SWWpfNZvFVl9zVtuoEtSzcNkGZzyrYx__055TuCGBPQx8hPtrpTk_mRpSo-4TO8TCZG7-vfZP4VnIdNaDEux3cD9-4JyiwuyE3wAc2-739g-J9woad37c4QJTbjPcUMzPGhax0Mm3Yv37iS3CcKv4rC32rwMIRDbmMwYCSmX7Piq3xIjChlmD2uIIArJMtLPgKmLk5hWdcqHVyYVM5iQikww0ulh7gOeK4wAD1qGNCgEuhrOE5h5bfS5MJhRPOYQTtnIlQ HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 18:33:58 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2979749
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=92&m=0&partner=26192&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F26191%2F161101%2Fc671e3b446504cceaddfb1b262872e63_logo_horizontal_dark.png&v=3&w=668&s=vPUbf9G98x2xFUAlKRzlTp4E
200 OK 9.9 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=92&m=0&partner=26192&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F26191%2F161101%2Fc671e3b446504cceaddfb1b262872e63_logo_horizontal_dark.png&v=3&w=668&s=vPUbf9G98x2xFUAlKRzlTp4E
IP
File type PNG image data, 375 x 92, 8-bit/color RGBA, non-interlaced\012- data
Hash 5a57a694a622ee93f16654822c816d8a
8179f50370fe0c6f3dbef2fbc2724b013354cc98
d444311023cb6d523addc5bfb51513476d2bf6194dbb4e3e72902049403c8f6b
GET /img/img?h=92&m=0&partner=26192&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F26191%2F161101%2Fc671e3b446504cceaddfb1b262872e63_logo_horizontal_dark.png&v=3&w=668&s=vPUbf9G98x2xFUAlKRzlTp4E HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29673491
expires: Mon, 21 Aug 2023 05:12:10 GMT
date: Sun, 11 Sep 2022 18:33:59 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 9866
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F4%2Fc%2F7%2F3%2F4c730cc2013ee37b10467a09b8779ef1d9cf50f0_2_PIA_127304_0_10.PNG%3Fcb%3D202236&v=3&w=400&s=WJkDCWn77NEwGl1x7azyRliC&b=400
200 OK 83 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F4%2Fc%2F7%2F3%2F4c730cc2013ee37b10467a09b8779ef1d9cf50f0_2_PIA_127304_0_10.PNG%3Fcb%3D202236&v=3&w=400&s=WJkDCWn77NEwGl1x7azyRliC&b=400
IP
File type PNG image data, 571 x 400, 8-bit colormap, non-interlaced\012- data
Hash a616e9d00870b398cacda1e47947e717
c68161b7d9b69ae203767cda6321eed9e221bd73
84bad6eeed792dd4e9a1b13a3b05a02db4a681c4e7c80869fe985b8b5781df94
GET /img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F4%2Fc%2F7%2F3%2F4c730cc2013ee37b10467a09b8779ef1d9cf50f0_2_PIA_127304_0_10.PNG%3Fcb%3D202236&v=3&w=400&s=WJkDCWn77NEwGl1x7azyRliC&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30978863
expires: Tue, 05 Sep 2023 07:48:23 GMT
date: Sun, 11 Sep 2022 18:33:59 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 82556
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 16:40:18 GMT
expires: Fri, 08 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 266021
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 22:18:58 GMT
expires: Tue, 05 Sep 2023 22:18:58 GMT
cache-control: public, max-age=31536000
age: 504901
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Sun, 11 Sep 2022 18:33:59 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+982; expires=Tue, 10-Sep-2024 18:33:59 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sun, 11 Sep 2022 18:33:59 GMT
cache-control: private
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 2974
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sun, 11 Sep 2022 18:33:59 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+469; expires=Tue, 10-Sep-2024 18:33:59 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sun, 11 Sep 2022 18:33:59 GMT
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/styles__ltr.css
200 OK 24 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/styles__ltr.css
IP
File type ASCII text, with very long lines (52762), with no line terminators
Hash f2d649025c814be9c33f166a5e04fe88
26bf59de631415927ba2c6c9e44fe9c763f95313
f95ec963b7657097e1ef827fc07d96eda5b63f7d3e17b5a1b5eeb7a8d0b67921
GET /recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24251
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 11 Sep 2022 08:20:51 GMT
expires: Mon, 11 Sep 2023 08:20:51 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Sep 2022 00:04:24 GMT
content-type: text/css
age: 36788
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
200 OK 157 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
IP
File type ASCII text, with very long lines (539)
Size 157 kB (157166 bytes)
Hash 026df0dfed2314af108e700900288961
51c2a55bca7d65c549ef138d1294cac2aa98dd96
24eefc59f5d298ce40bdd33c8157ad14631984159fca8e5980037366c44c2b34
GET /recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157166
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 17:23:20 GMT
expires: Wed, 06 Sep 2023 17:23:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Sep 2022 00:04:24 GMT
content-type: text/javascript
age: 436239
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=scQoh0llMVH4RXTl36hokAuZyZkGznRUQW2aJGpG6rCnHCLIodl7pVPK3SFWtkFCoUQGZhWOb0hVnuZYn4NgzgLEDWkqY5zit1r6EPkH0q-parheUBthPDx6WAUHvcgOO8OFizmGKhUjwTZzoTixZh916C3q5xDlgKqMArz97AUpqxHkn0Z534moqbkV1j38IfoHxLsMx0vV1HivMHlGFeQGTq80woIdaH8lJMHz20cgXkcDVfqPUgbBKNbUgjOSdPDdvKZ23C323Ncn&sds=2&rev=82694&sendBeacon=true
200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=scQoh0llMVH4RXTl36hokAuZyZkGznRUQW2aJGpG6rCnHCLIodl7pVPK3SFWtkFCoUQGZhWOb0hVnuZYn4NgzgLEDWkqY5zit1r6EPkH0q-parheUBthPDx6WAUHvcgOO8OFizmGKhUjwTZzoTixZh916C3q5xDlgKqMArz97AUpqxHkn0Z534moqbkV1j38IfoHxLsMx0vV1HivMHlGFeQGTq80woIdaH8lJMHz20cgXkcDVfqPUgbBKNbUgjOSdPDdvKZ23C323Ncn&sds=2&rev=82694&sendBeacon=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=scQoh0llMVH4RXTl36hokAuZyZkGznRUQW2aJGpG6rCnHCLIodl7pVPK3SFWtkFCoUQGZhWOb0hVnuZYn4NgzgLEDWkqY5zit1r6EPkH0q-parheUBthPDx6WAUHvcgOO8OFizmGKhUjwTZzoTixZh916C3q5xDlgKqMArz97AUpqxHkn0Z534moqbkV1j38IfoHxLsMx0vV1HivMHlGFeQGTq80woIdaH8lJMHz20cgXkcDVfqPUgbBKNbUgjOSdPDdvKZ23C323Ncn&sds=2&rev=82694&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 18:33:59 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/api2/logo_48.png
200 OK 2.2 kB URL HTTP/2 www.gstatic.com/recaptcha/api2/logo_48.png
IP
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 20:02:15 GMT
expires: Mon, 12 Sep 2022 20:02:15 GMT
cache-control: public, max-age=604800
age: 513104
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 12:31:58 GMT
expires: Sun, 10 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 108121
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 00:48:31 GMT
expires: Sat, 09 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 236728
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=JwepJEllMVH4RXTl5bOiPDMbV0TYDFC7RINUmqs80cKmmIFvIBSS5pCS4b8aGuIuOrm7eLoPMxf4ls0nAjed1SmExnOQKKeqEhFAHOizytyvLwk_G4LQBuCApHdc7LhGSD5EkCDZx-0CRQoOZCcOeVI4ROz5jNA1QDNywSI8lVt-tHLEsfAWPDDUcCJSyMnRvL0sLweZkCDTGR4oQXNmkfzskdnClSsg-sjAll5vjchagOnxDZushIOEnxzB6nPd8dJRnpJy_ZusSN0f&sds=2&rev=82694&sendBeacon=true
200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=JwepJEllMVH4RXTl5bOiPDMbV0TYDFC7RINUmqs80cKmmIFvIBSS5pCS4b8aGuIuOrm7eLoPMxf4ls0nAjed1SmExnOQKKeqEhFAHOizytyvLwk_G4LQBuCApHdc7LhGSD5EkCDZx-0CRQoOZCcOeVI4ROz5jNA1QDNywSI8lVt-tHLEsfAWPDDUcCJSyMnRvL0sLweZkCDTGR4oQXNmkfzskdnClSsg-sjAll5vjchagOnxDZushIOEnxzB6nPd8dJRnpJy_ZusSN0f&sds=2&rev=82694&sendBeacon=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=JwepJEllMVH4RXTl5bOiPDMbV0TYDFC7RINUmqs80cKmmIFvIBSS5pCS4b8aGuIuOrm7eLoPMxf4ls0nAjed1SmExnOQKKeqEhFAHOizytyvLwk_G4LQBuCApHdc7LhGSD5EkCDZx-0CRQoOZCcOeVI4ROz5jNA1QDNywSI8lVt-tHLEsfAWPDDUcCJSyMnRvL0sLweZkCDTGR4oQXNmkfzskdnClSsg-sjAll5vjchagOnxDZushIOEnxzB6nPd8dJRnpJy_ZusSN0f&sds=2&rev=82694&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 18:33:59 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=doOOBEllMVH4RXTlHlaP7byOFSgv0QHR6XTia08RoMN84oBRn_Q1OopA8Wpfc6tFASvMRsNVtaCWsagXJUUru-Y0Vbv85wkGdCOEbtALtlHZBl6heDi2JI6LaHMm6o-pWnDb7ukLw8ZDJmPae8o36JTbG-0w4jIGD2Eoqd6RdQMZF8bT2zWian_kjS8cfFEQcwwZIDox1611gUFqZ3FmyTwbdHR40XNB8-iYVAqNzLPgJAkJQLdVTPwcisrUPNb4NUMNLw&sds=2&rev=82694&sendBeacon=true
200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=doOOBEllMVH4RXTlHlaP7byOFSgv0QHR6XTia08RoMN84oBRn_Q1OopA8Wpfc6tFASvMRsNVtaCWsagXJUUru-Y0Vbv85wkGdCOEbtALtlHZBl6heDi2JI6LaHMm6o-pWnDb7ukLw8ZDJmPae8o36JTbG-0w4jIGD2Eoqd6RdQMZF8bT2zWian_kjS8cfFEQcwwZIDox1611gUFqZ3FmyTwbdHR40XNB8-iYVAqNzLPgJAkJQLdVTPwcisrUPNb4NUMNLw&sds=2&rev=82694&sendBeacon=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=doOOBEllMVH4RXTlHlaP7byOFSgv0QHR6XTia08RoMN84oBRn_Q1OopA8Wpfc6tFASvMRsNVtaCWsagXJUUru-Y0Vbv85wkGdCOEbtALtlHZBl6heDi2JI6LaHMm6o-pWnDb7ukLw8ZDJmPae8o36JTbG-0w4jIGD2Eoqd6RdQMZF8bT2zWian_kjS8cfFEQcwwZIDox1611gUFqZ3FmyTwbdHR40XNB8-iYVAqNzLPgJAkJQLdVTPwcisrUPNb4NUMNLw&sds=2&rev=82694&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 18:33:59 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.facebook.com/plugins/comments.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df27c1c00e4748c%26domain%3Dmassalih.blogspot.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fmassalih.blogspot.com%252Ff218494cb1b0ed8%26relation%3Dparent.parent&color_scheme=light&container_width=0&height=100&href=http%3A%2F%2Fmassalih.blogspot.com%2F2014%2F08%2Fblog-post_19.html&locale=ar_AR&numposts=10&sdk=joey&width=750
200 OK 0 B URL HTTP/2 www.facebook.com/plugins/comments.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df27c1c00e4748c%26domain%3Dmassalih.blogspot.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fmassalih.blogspot.com%252Ff218494cb1b0ed8%26relation%3Dparent.parent&color_scheme=light&container_width=0&height=100&href=http%3A%2F%2Fmassalih.blogspot.com%2F2014%2F08%2Fblog-post_19.html&locale=ar_AR&numposts=10&sdk=joey&width=750
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/comments.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df27c1c00e4748c%26domain%3Dmassalih.blogspot.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fmassalih.blogspot.com%252Ff218494cb1b0ed8%26relation%3Dparent.parent&color_scheme=light&container_width=0&height=100&href=http%3A%2F%2Fmassalih.blogspot.com%2F2014%2F08%2Fblog-post_19.html&locale=ar_AR&numposts=10&sdk=joey&width=750 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://massalih.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: kgRUvlM630sA6VurSgfed84L/qbTRZVQJoNvaEn5tD9srzhXH+fRDqebYuiKe9Hu8eN1yU/R6w6egfC9ja6/Pw==
content-length: 0
date: Sun, 11 Sep 2022 18:34:00 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=scQoh0llMVH4RXTl36hokAuZyZkGznRUQW2aJGpG6rCnHCLIodl7pVPK3SFWtkFCoUQGZhWOb0hVnuZYn4NgzgLEDWkqY5zit1r6EPkH0q-parheUBthPDx6WAUHvcgOO8OFizmGKhUjwTZzoTixZh916C3q5xDlgKqMArz97AUpqxHkn0Z534moqbkV1j38IfoHxLsMx0vV1HivMHlGFeQGTq80woIdaH8lJMHz20cgXkcDVfqPUgbBKNbUgjOSdPDdvKZ23C323Ncn&sds=2&rev=82694&sendBeacon=true
200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=scQoh0llMVH4RXTl36hokAuZyZkGznRUQW2aJGpG6rCnHCLIodl7pVPK3SFWtkFCoUQGZhWOb0hVnuZYn4NgzgLEDWkqY5zit1r6EPkH0q-parheUBthPDx6WAUHvcgOO8OFizmGKhUjwTZzoTixZh916C3q5xDlgKqMArz97AUpqxHkn0Z534moqbkV1j38IfoHxLsMx0vV1HivMHlGFeQGTq80woIdaH8lJMHz20cgXkcDVfqPUgbBKNbUgjOSdPDdvKZ23C323Ncn&sds=2&rev=82694&sendBeacon=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=scQoh0llMVH4RXTl36hokAuZyZkGznRUQW2aJGpG6rCnHCLIodl7pVPK3SFWtkFCoUQGZhWOb0hVnuZYn4NgzgLEDWkqY5zit1r6EPkH0q-parheUBthPDx6WAUHvcgOO8OFizmGKhUjwTZzoTixZh916C3q5xDlgKqMArz97AUpqxHkn0Z534moqbkV1j38IfoHxLsMx0vV1HivMHlGFeQGTq80woIdaH8lJMHz20cgXkcDVfqPUgbBKNbUgjOSdPDdvKZ23C323Ncn&sds=2&rev=82694&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 18:34:00 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=doOOBEllMVH4RXTlHlaP7byOFSgv0QHR6XTia08RoMN84oBRn_Q1OopA8Wpfc6tFASvMRsNVtaCWsagXJUUru-Y0Vbv85wkGdCOEbtALtlHZBl6heDi2JI6LaHMm6o-pWnDb7ukLw8ZDJmPae8o36JTbG-0w4jIGD2Eoqd6RdQMZF8bT2zWian_kjS8cfFEQcwwZIDox1611gUFqZ3FmyTwbdHR40XNB8-iYVAqNzLPgJAkJQLdVTPwcisrUPNb4NUMNLw&sds=2&rev=82694&sendBeacon=true
200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=doOOBEllMVH4RXTlHlaP7byOFSgv0QHR6XTia08RoMN84oBRn_Q1OopA8Wpfc6tFASvMRsNVtaCWsagXJUUru-Y0Vbv85wkGdCOEbtALtlHZBl6heDi2JI6LaHMm6o-pWnDb7ukLw8ZDJmPae8o36JTbG-0w4jIGD2Eoqd6RdQMZF8bT2zWian_kjS8cfFEQcwwZIDox1611gUFqZ3FmyTwbdHR40XNB8-iYVAqNzLPgJAkJQLdVTPwcisrUPNb4NUMNLw&sds=2&rev=82694&sendBeacon=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=doOOBEllMVH4RXTlHlaP7byOFSgv0QHR6XTia08RoMN84oBRn_Q1OopA8Wpfc6tFASvMRsNVtaCWsagXJUUru-Y0Vbv85wkGdCOEbtALtlHZBl6heDi2JI6LaHMm6o-pWnDb7ukLw8ZDJmPae8o36JTbG-0w4jIGD2Eoqd6RdQMZF8bT2zWian_kjS8cfFEQcwwZIDox1611gUFqZ3FmyTwbdHR40XNB8-iYVAqNzLPgJAkJQLdVTPwcisrUPNb4NUMNLw&sds=2&rev=82694&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 18:34:00 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=JwepJEllMVH4RXTl5bOiPDMbV0TYDFC7RINUmqs80cKmmIFvIBSS5pCS4b8aGuIuOrm7eLoPMxf4ls0nAjed1SmExnOQKKeqEhFAHOizytyvLwk_G4LQBuCApHdc7LhGSD5EkCDZx-0CRQoOZCcOeVI4ROz5jNA1QDNywSI8lVt-tHLEsfAWPDDUcCJSyMnRvL0sLweZkCDTGR4oQXNmkfzskdnClSsg-sjAll5vjchagOnxDZushIOEnxzB6nPd8dJRnpJy_ZusSN0f&sds=2&rev=82694&sendBeacon=true
200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=JwepJEllMVH4RXTl5bOiPDMbV0TYDFC7RINUmqs80cKmmIFvIBSS5pCS4b8aGuIuOrm7eLoPMxf4ls0nAjed1SmExnOQKKeqEhFAHOizytyvLwk_G4LQBuCApHdc7LhGSD5EkCDZx-0CRQoOZCcOeVI4ROz5jNA1QDNywSI8lVt-tHLEsfAWPDDUcCJSyMnRvL0sLweZkCDTGR4oQXNmkfzskdnClSsg-sjAll5vjchagOnxDZushIOEnxzB6nPd8dJRnpJy_ZusSN0f&sds=2&rev=82694&sendBeacon=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=JwepJEllMVH4RXTl5bOiPDMbV0TYDFC7RINUmqs80cKmmIFvIBSS5pCS4b8aGuIuOrm7eLoPMxf4ls0nAjed1SmExnOQKKeqEhFAHOizytyvLwk_G4LQBuCApHdc7LhGSD5EkCDZx-0CRQoOZCcOeVI4ROz5jNA1QDNywSI8lVt-tHLEsfAWPDDUcCJSyMnRvL0sLweZkCDTGR4oQXNmkfzskdnClSsg-sjAll5vjchagOnxDZushIOEnxzB6nPd8dJRnpJy_ZusSN0f&sds=2&rev=82694&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 18:34:00 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/animejs/animejs.js
200 OK 0 B URL HTTP/2 static.criteo.net/animejs/animejs.js
IP
GET /animejs/animejs.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 18:33:59 GMT
content-type: text/javascript
last-modified: Tue, 26 Mar 2019 17:44:11 GMT
etag: W/"5c9a64eb-3181"
expires: Wed, 06 Sep 2023 18:33:59 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=6JkJoyr5UvFiskhqreC1VX6r_8O3d9HLDErSGh3pVlM9n_mzFcmWqBnZtXk6ieXPRUde_sek6yaD92lCMkcqRcfrEZJuAYTluYJAwyiZV051qISJIfDIOj4QmqAXhJKL4aziOG17vPwXfld-US5Zio6zNxGemzOqVVNDaciHV95snThLKmdWb9BJfsePyDrmdSoVoUc5V9h1xDohjCHD2hh6MTqTbZAfYfc_htpddgJRfhxD3l9pvauEQhHbZHZ8bjAB8VYpAe0Yq26_15FCCmtPlAL3Jrs-blQsAHGg1evSzVfZzasS30OgREBDHvHhQJhSdtXFA7X4Ia79NaghQGbx_Te03NjsmvoHlp9fXagSmozrDe5kfExTclAja-dA9qBBM-YKQ4m-Qr5I12ifdFkO-w8J28Mh1qMp9giVE3xPbpAQRSFPdEqnRSbe997zc38p4A
200 OK 0 B URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=6JkJoyr5UvFiskhqreC1VX6r_8O3d9HLDErSGh3pVlM9n_mzFcmWqBnZtXk6ieXPRUde_sek6yaD92lCMkcqRcfrEZJuAYTluYJAwyiZV051qISJIfDIOj4QmqAXhJKL4aziOG17vPwXfld-US5Zio6zNxGemzOqVVNDaciHV95snThLKmdWb9BJfsePyDrmdSoVoUc5V9h1xDohjCHD2hh6MTqTbZAfYfc_htpddgJRfhxD3l9pvauEQhHbZHZ8bjAB8VYpAe0Yq26_15FCCmtPlAL3Jrs-blQsAHGg1evSzVfZzasS30OgREBDHvHhQJhSdtXFA7X4Ia79NaghQGbx_Te03NjsmvoHlp9fXagSmozrDe5kfExTclAja-dA9qBBM-YKQ4m-Qr5I12ifdFkO-w8J28Mh1qMp9giVE3xPbpAQRSFPdEqnRSbe997zc38p4A
IP
GET /delivery/lg.php?cppv=3&cpp=6JkJoyr5UvFiskhqreC1VX6r_8O3d9HLDErSGh3pVlM9n_mzFcmWqBnZtXk6ieXPRUde_sek6yaD92lCMkcqRcfrEZJuAYTluYJAwyiZV051qISJIfDIOj4QmqAXhJKL4aziOG17vPwXfld-US5Zio6zNxGemzOqVVNDaciHV95snThLKmdWb9BJfsePyDrmdSoVoUc5V9h1xDohjCHD2hh6MTqTbZAfYfc_htpddgJRfhxD3l9pvauEQhHbZHZ8bjAB8VYpAe0Yq26_15FCCmtPlAL3Jrs-blQsAHGg1evSzVfZzasS30OgREBDHvHhQJhSdtXFA7X4Ia79NaghQGbx_Te03NjsmvoHlp9fXagSmozrDe5kfExTclAja-dA9qBBM-YKQ4m-Qr5I12ifdFkO-w8J28Mh1qMp9giVE3xPbpAQRSFPdEqnRSbe997zc38p4A HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 18:33:58 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3311972
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=WLF9qfGmlTcJ7C5QPzGxms_Kfbt6hOa4HghHjtPQTUkD8PnOb0EUB6wjtjlGbO9gWQuvsY6KQy4Ou1MH1YjHp_22T23yryACYz5hsNpmHxkEcOmDuynIfSum2RjLx1dMb01QVgW0pI7lG4EX1MXyZNVNtmEblCNU4U7bwLk9i9P-KzEKKHTV8cy4U3w-CRHCm1ISXiCezqvOtwhWXN_eHDUdUx6Y9bHWIp6CWtv7_FZgXo_IfW_vIAYWcfe0asl8rzebgGmqfdAQ-4lMUdiTL8iivN7nQjgHUHPli7Zt5y_Cdj_vjWE0Ky1od-fn7uXpQE6IqY88zItved34JCnCQ7fNIuQBG6ACY7RI0mK1h0AxVNZNhiLI-REI2evYIEntdmklIeBAMHpkv5O7sw443JEw9UtFvzkePxmPTEH3YVg1Ad2w6LmnFCtAhWjPxWSXP3PamQ
200 OK 0 B URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=WLF9qfGmlTcJ7C5QPzGxms_Kfbt6hOa4HghHjtPQTUkD8PnOb0EUB6wjtjlGbO9gWQuvsY6KQy4Ou1MH1YjHp_22T23yryACYz5hsNpmHxkEcOmDuynIfSum2RjLx1dMb01QVgW0pI7lG4EX1MXyZNVNtmEblCNU4U7bwLk9i9P-KzEKKHTV8cy4U3w-CRHCm1ISXiCezqvOtwhWXN_eHDUdUx6Y9bHWIp6CWtv7_FZgXo_IfW_vIAYWcfe0asl8rzebgGmqfdAQ-4lMUdiTL8iivN7nQjgHUHPli7Zt5y_Cdj_vjWE0Ky1od-fn7uXpQE6IqY88zItved34JCnCQ7fNIuQBG6ACY7RI0mK1h0AxVNZNhiLI-REI2evYIEntdmklIeBAMHpkv5O7sw443JEw9UtFvzkePxmPTEH3YVg1Ad2w6LmnFCtAhWjPxWSXP3PamQ
IP
GET /delivery/lg.php?cppv=3&cpp=WLF9qfGmlTcJ7C5QPzGxms_Kfbt6hOa4HghHjtPQTUkD8PnOb0EUB6wjtjlGbO9gWQuvsY6KQy4Ou1MH1YjHp_22T23yryACYz5hsNpmHxkEcOmDuynIfSum2RjLx1dMb01QVgW0pI7lG4EX1MXyZNVNtmEblCNU4U7bwLk9i9P-KzEKKHTV8cy4U3w-CRHCm1ISXiCezqvOtwhWXN_eHDUdUx6Y9bHWIp6CWtv7_FZgXo_IfW_vIAYWcfe0asl8rzebgGmqfdAQ-4lMUdiTL8iivN7nQjgHUHPli7Zt5y_Cdj_vjWE0Ky1od-fn7uXpQE6IqY88zItved34JCnCQ7fNIuQBG6ACY7RI0mK1h0AxVNZNhiLI-REI2evYIEntdmklIeBAMHpkv5O7sw443JEw9UtFvzkePxmPTEH3YVg1Ad2w6LmnFCtAhWjPxWSXP3PamQ HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 18:33:59 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3024058
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Yx4qFgAD54sFkUunAAiRSi3BqP3vI42HijstNA&u=%7CWuAaFyZ6f0zyAxOV6HDniJ1AxfsMCofN3SnUSjDyk1Q%3D%7C&c1=0n2XosTo5ckbeNFvq0zVIcsyhyT3WKD0PIixkNz--ZUG2JILUkurhSkBmqMNl2IWHL9APLQJ6z1MiR3q3hC869Q2spDmDGDhANmzJuXrRVuaCc4EAK-Ui9_vkLafnMRVCEIs_9I7Io7Z1vPZ3941Ht94sFasaOOKXAW_XKIzOAp5yZ0GYxPu73sJUrmcSLK2uvch-af5LWPBH-M2sfdOb8v63mvwH1mQvtv59tB0vlGVoJBl_A9otIOkETpdNayLlEOkHcJZpVJyrUG9gpvoLFlr3RuVw1WzPLfTU6ocdac0hqfpKlsmFy_snDtZP0IAdHekjSEhVlI7BXTR2f7Eqq7U0p09aZ3NcrAY2P5FFsvSKhqgnhybWIXizGH-5fjBaUtfxWy0xrnkM210czer37lR40RobR0TQLKgninbHltr2al0VVpi-izgoFIzg3B71aS8nBLMeWcM1ouvq5kelkW3qFNCuvdJUy5P12j8_qOHRbcy9WbsqJ_Tvu0gqxK511hbxSEJWV55ooek6ugDsjk3PgGJ2z9Cj1BX4SRIgd0L4a8AcVeiIbQtQv36ed99HUvhFDJdzY8&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCo8N6FioeY4vPD6eXxdwPyqKi4ALJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTY0ODM1NzE5NDUzNDMyMjWgAdW20uoDyAEJqQKGvsSd3diwPqgDAaoEiQJP0FcJoRCwuQDCBdw_ZTgntBw3-k-5QNQVkj0kFwmb2tHF_GiHlPJ0No6wWiv0JtEbWnPKX74TcOfb7LUfDP7CKjNY1t5pQwRrz4aknpX_oEQqx1bOjJzUakfwn3nSfN1XC9Y26qyPyktiGIfbWWr4CEVzlDwlDoX0J_0S-Y_MFTkPNFGJbdJGPO6vHC6cIKs7kOHNZsnHs_rvMJtLFqe3D6RZoojhLVddSCfp9S0MeffDthQPNxPGKtepOPfjd2sFiXFlOPqH_HTz93wAewK-mpNCNn6vO5E9jOjVei6Jpav9DHM90SfxuQEXZdim4xjDX9ebvM8UCbmRm9yC40nquaT9rkRje9MCgAbxuP6E6ra1t4QBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_06n7QtEGmXVCFnk4NkyTnBPH5TpA%26client%3Dca-pub-6483571945343225%26adurl%3D
200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Yx4qFgAD54sFkUunAAiRSi3BqP3vI42HijstNA&u=%7CWuAaFyZ6f0zyAxOV6HDniJ1AxfsMCofN3SnUSjDyk1Q%3D%7C&c1=0n2XosTo5ckbeNFvq0zVIcsyhyT3WKD0PIixkNz--ZUG2JILUkurhSkBmqMNl2IWHL9APLQJ6z1MiR3q3hC869Q2spDmDGDhANmzJuXrRVuaCc4EAK-Ui9_vkLafnMRVCEIs_9I7Io7Z1vPZ3941Ht94sFasaOOKXAW_XKIzOAp5yZ0GYxPu73sJUrmcSLK2uvch-af5LWPBH-M2sfdOb8v63mvwH1mQvtv59tB0vlGVoJBl_A9otIOkETpdNayLlEOkHcJZpVJyrUG9gpvoLFlr3RuVw1WzPLfTU6ocdac0hqfpKlsmFy_snDtZP0IAdHekjSEhVlI7BXTR2f7Eqq7U0p09aZ3NcrAY2P5FFsvSKhqgnhybWIXizGH-5fjBaUtfxWy0xrnkM210czer37lR40RobR0TQLKgninbHltr2al0VVpi-izgoFIzg3B71aS8nBLMeWcM1ouvq5kelkW3qFNCuvdJUy5P12j8_qOHRbcy9WbsqJ_Tvu0gqxK511hbxSEJWV55ooek6ugDsjk3PgGJ2z9Cj1BX4SRIgd0L4a8AcVeiIbQtQv36ed99HUvhFDJdzY8&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCo8N6FioeY4vPD6eXxdwPyqKi4ALJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTY0ODM1NzE5NDUzNDMyMjWgAdW20uoDyAEJqQKGvsSd3diwPqgDAaoEiQJP0FcJoRCwuQDCBdw_ZTgntBw3-k-5QNQVkj0kFwmb2tHF_GiHlPJ0No6wWiv0JtEbWnPKX74TcOfb7LUfDP7CKjNY1t5pQwRrz4aknpX_oEQqx1bOjJzUakfwn3nSfN1XC9Y26qyPyktiGIfbWWr4CEVzlDwlDoX0J_0S-Y_MFTkPNFGJbdJGPO6vHC6cIKs7kOHNZsnHs_rvMJtLFqe3D6RZoojhLVddSCfp9S0MeffDthQPNxPGKtepOPfjd2sFiXFlOPqH_HTz93wAewK-mpNCNn6vO5E9jOjVei6Jpav9DHM90SfxuQEXZdim4xjDX9ebvM8UCbmRm9yC40nquaT9rkRje9MCgAbxuP6E6ra1t4QBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_06n7QtEGmXVCFnk4NkyTnBPH5TpA%26client%3Dca-pub-6483571945343225%26adurl%3D
IP
GET /delivery/r/afr.php?z=Yx4qFgAD54sFkUunAAiRSi3BqP3vI42HijstNA&u=%7CWuAaFyZ6f0zyAxOV6HDniJ1AxfsMCofN3SnUSjDyk1Q%3D%7C&c1=0n2XosTo5ckbeNFvq0zVIcsyhyT3WKD0PIixkNz--ZUG2JILUkurhSkBmqMNl2IWHL9APLQJ6z1MiR3q3hC869Q2spDmDGDhANmzJuXrRVuaCc4EAK-Ui9_vkLafnMRVCEIs_9I7Io7Z1vPZ3941Ht94sFasaOOKXAW_XKIzOAp5yZ0GYxPu73sJUrmcSLK2uvch-af5LWPBH-M2sfdOb8v63mvwH1mQvtv59tB0vlGVoJBl_A9otIOkETpdNayLlEOkHcJZpVJyrUG9gpvoLFlr3RuVw1WzPLfTU6ocdac0hqfpKlsmFy_snDtZP0IAdHekjSEhVlI7BXTR2f7Eqq7U0p09aZ3NcrAY2P5FFsvSKhqgnhybWIXizGH-5fjBaUtfxWy0xrnkM210czer37lR40RobR0TQLKgninbHltr2al0VVpi-izgoFIzg3B71aS8nBLMeWcM1ouvq5kelkW3qFNCuvdJUy5P12j8_qOHRbcy9WbsqJ_Tvu0gqxK511hbxSEJWV55ooek6ugDsjk3PgGJ2z9Cj1BX4SRIgd0L4a8AcVeiIbQtQv36ed99HUvhFDJdzY8&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCo8N6FioeY4vPD6eXxdwPyqKi4ALJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTY0ODM1NzE5NDUzNDMyMjWgAdW20uoDyAEJqQKGvsSd3diwPqgDAaoEiQJP0FcJoRCwuQDCBdw_ZTgntBw3-k-5QNQVkj0kFwmb2tHF_GiHlPJ0No6wWiv0JtEbWnPKX74TcOfb7LUfDP7CKjNY1t5pQwRrz4aknpX_oEQqx1bOjJzUakfwn3nSfN1XC9Y26qyPyktiGIfbWWr4CEVzlDwlDoX0J_0S-Y_MFTkPNFGJbdJGPO6vHC6cIKs7kOHNZsnHs_rvMJtLFqe3D6RZoojhLVddSCfp9S0MeffDthQPNxPGKtepOPfjd2sFiXFlOPqH_HTz93wAewK-mpNCNn6vO5E9jOjVei6Jpav9DHM90SfxuQEXZdim4xjDX9ebvM8UCbmRm9yC40nquaT9rkRje9MCgAbxuP6E6ra1t4QBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_06n7QtEGmXVCFnk4NkyTnBPH5TpA%26client%3Dca-pub-6483571945343225%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 18:33:58 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=JwepJEllMVH4RXTl5bOiPDMbV0TYDFC7RINUmqs80cKmmIFvIBSS5pCS4b8aGuIuOrm7eLoPMxf4ls0nAjed1SmExnOQKKeqEhFAHOizytyvLwk_G4LQBuCApHdc7LhGSD5EkCDZx-0CRQoOZCcOeVI4ROz5jNA1QDNywSI8lVt-tHLEsfAWPDDUcCJSyMnRvL0sLweZkCDTGR4oQXNmkfzskdnClSsg-sjAll5vjchagOnxDZushIOEnxzB6nPd8dJRnpJy_ZusSN0f"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 110330424
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Yx4qFgADnJoK5gDzAAwu-5ClXGZTwS0fStYCEw&u=%7CWuAaFyZ6f0zP8pj6Ib8gDywFd7hujoRKfoWKVlOm1sw%3D%7C&c1=s9Ouqadr9PMXEEf9T3KSp2NRawDp88DGRxIbKBsnzqArCsrrW4KW4hx-EgXbL4Mwe3KVO4lXRTKUcQv-kdQey6jppJCl6cS1Z-X4mgxb8DWkx2XUZnodjklEKtfYMx-KVo77_wT2v58wAVeVcpbP_cTA_Bu5PCf_X00oAAeGSf224XwIHtk7k0Rd5okcPtXhxFtWDyNYyZEDVwu8fFAcXd_JK5EkdOKjztRiv2rFv6bmmXUuUHD-L9c3S9RayFVQ3ph6nI8FGDPejqvKP1yLi7QKZNg-ulaukDm6XVPOTTn3N9g8qNe90lFZro_4ZK4JOj4X7jG1Lyskr9D7g4EkdhRVBFrprg0M2Ld50p7lIVQgt-CkiITm4PeDvDRWNS7otnF8BHSfWKf09CkIhwMFXo1u0FYXElh70UgK6nmxg7we5de2H7IDvAuQdFPvsJ_K2EkRvsFdCPKcQAblg4ELh4REm04lZKmXK_ink_Owqcc14M_SsmUVbhJG4JRFlOuzS6ij7Vnabwh_VFiPrLI_XVqx5aVPGev6gSXD8QfhvgvGREtGdE0sJUzNr7Ku_0jlWX5B_CJ75G4&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCpALTFioeY5q5DvOBmAf73bCYAcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNjQ4MzU3MTk0NTM0MzIyNaAB1bbS6gPIAQmpAoa-xJ3d2LA-qAMBqgSCAk_Q62JBo5-8RDc-OYihmSp_EXQz1Z7qXWwuEQe1zhXONRVnWt6RwSttqmbbU5rGI-GC6oIwafO6OJWRIL4a_vvdDtGRYWx8OpXL-LgpafDe-DQoXGmJ0iQ6PUdwWSOPMi8izKieshC8mtg0kRlcoJDmHUJXjKXEown41mB839ehGWzrV9fUVDD0SwcUf4K0-e9VHrNAJPEUJ4FK6LXeLnopHkq2OKNxbssE8B42S2cv_odQOl-PAmaqPVV6im__ABNSfxJqBRj-rXm0XWKxsdDc4C1Ar_TQfKBmzDtFB9lWwQAXk5ovQ6z5h_htUp2W4cloRzbrQbK1M7Cj7FKVWvB-bIAG8bj-hOq2tbeEAaAGIagHipixAqgHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_2nESda12oTA3gPYuLeKZWuaedung%26client%3Dca-pub-6483571945343225%26adurl%3D
200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Yx4qFgADnJoK5gDzAAwu-5ClXGZTwS0fStYCEw&u=%7CWuAaFyZ6f0zP8pj6Ib8gDywFd7hujoRKfoWKVlOm1sw%3D%7C&c1=s9Ouqadr9PMXEEf9T3KSp2NRawDp88DGRxIbKBsnzqArCsrrW4KW4hx-EgXbL4Mwe3KVO4lXRTKUcQv-kdQey6jppJCl6cS1Z-X4mgxb8DWkx2XUZnodjklEKtfYMx-KVo77_wT2v58wAVeVcpbP_cTA_Bu5PCf_X00oAAeGSf224XwIHtk7k0Rd5okcPtXhxFtWDyNYyZEDVwu8fFAcXd_JK5EkdOKjztRiv2rFv6bmmXUuUHD-L9c3S9RayFVQ3ph6nI8FGDPejqvKP1yLi7QKZNg-ulaukDm6XVPOTTn3N9g8qNe90lFZro_4ZK4JOj4X7jG1Lyskr9D7g4EkdhRVBFrprg0M2Ld50p7lIVQgt-CkiITm4PeDvDRWNS7otnF8BHSfWKf09CkIhwMFXo1u0FYXElh70UgK6nmxg7we5de2H7IDvAuQdFPvsJ_K2EkRvsFdCPKcQAblg4ELh4REm04lZKmXK_ink_Owqcc14M_SsmUVbhJG4JRFlOuzS6ij7Vnabwh_VFiPrLI_XVqx5aVPGev6gSXD8QfhvgvGREtGdE0sJUzNr7Ku_0jlWX5B_CJ75G4&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCpALTFioeY5q5DvOBmAf73bCYAcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNjQ4MzU3MTk0NTM0MzIyNaAB1bbS6gPIAQmpAoa-xJ3d2LA-qAMBqgSCAk_Q62JBo5-8RDc-OYihmSp_EXQz1Z7qXWwuEQe1zhXONRVnWt6RwSttqmbbU5rGI-GC6oIwafO6OJWRIL4a_vvdDtGRYWx8OpXL-LgpafDe-DQoXGmJ0iQ6PUdwWSOPMi8izKieshC8mtg0kRlcoJDmHUJXjKXEown41mB839ehGWzrV9fUVDD0SwcUf4K0-e9VHrNAJPEUJ4FK6LXeLnopHkq2OKNxbssE8B42S2cv_odQOl-PAmaqPVV6im__ABNSfxJqBRj-rXm0XWKxsdDc4C1Ar_TQfKBmzDtFB9lWwQAXk5ovQ6z5h_htUp2W4cloRzbrQbK1M7Cj7FKVWvB-bIAG8bj-hOq2tbeEAaAGIagHipixAqgHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_2nESda12oTA3gPYuLeKZWuaedung%26client%3Dca-pub-6483571945343225%26adurl%3D
IP
GET /delivery/r/afr.php?z=Yx4qFgADnJoK5gDzAAwu-5ClXGZTwS0fStYCEw&u=%7CWuAaFyZ6f0zP8pj6Ib8gDywFd7hujoRKfoWKVlOm1sw%3D%7C&c1=s9Ouqadr9PMXEEf9T3KSp2NRawDp88DGRxIbKBsnzqArCsrrW4KW4hx-EgXbL4Mwe3KVO4lXRTKUcQv-kdQey6jppJCl6cS1Z-X4mgxb8DWkx2XUZnodjklEKtfYMx-KVo77_wT2v58wAVeVcpbP_cTA_Bu5PCf_X00oAAeGSf224XwIHtk7k0Rd5okcPtXhxFtWDyNYyZEDVwu8fFAcXd_JK5EkdOKjztRiv2rFv6bmmXUuUHD-L9c3S9RayFVQ3ph6nI8FGDPejqvKP1yLi7QKZNg-ulaukDm6XVPOTTn3N9g8qNe90lFZro_4ZK4JOj4X7jG1Lyskr9D7g4EkdhRVBFrprg0M2Ld50p7lIVQgt-CkiITm4PeDvDRWNS7otnF8BHSfWKf09CkIhwMFXo1u0FYXElh70UgK6nmxg7we5de2H7IDvAuQdFPvsJ_K2EkRvsFdCPKcQAblg4ELh4REm04lZKmXK_ink_Owqcc14M_SsmUVbhJG4JRFlOuzS6ij7Vnabwh_VFiPrLI_XVqx5aVPGev6gSXD8QfhvgvGREtGdE0sJUzNr7Ku_0jlWX5B_CJ75G4&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCpALTFioeY5q5DvOBmAf73bCYAcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNjQ4MzU3MTk0NTM0MzIyNaAB1bbS6gPIAQmpAoa-xJ3d2LA-qAMBqgSCAk_Q62JBo5-8RDc-OYihmSp_EXQz1Z7qXWwuEQe1zhXONRVnWt6RwSttqmbbU5rGI-GC6oIwafO6OJWRIL4a_vvdDtGRYWx8OpXL-LgpafDe-DQoXGmJ0iQ6PUdwWSOPMi8izKieshC8mtg0kRlcoJDmHUJXjKXEown41mB839ehGWzrV9fUVDD0SwcUf4K0-e9VHrNAJPEUJ4FK6LXeLnopHkq2OKNxbssE8B42S2cv_odQOl-PAmaqPVV6im__ABNSfxJqBRj-rXm0XWKxsdDc4C1Ar_TQfKBmzDtFB9lWwQAXk5ovQ6z5h_htUp2W4cloRzbrQbK1M7Cj7FKVWvB-bIAG8bj-hOq2tbeEAaAGIagHipixAqgHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_2nESda12oTA3gPYuLeKZWuaedung%26client%3Dca-pub-6483571945343225%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 18:33:58 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=scQoh0llMVH4RXTl36hokAuZyZkGznRUQW2aJGpG6rCnHCLIodl7pVPK3SFWtkFCoUQGZhWOb0hVnuZYn4NgzgLEDWkqY5zit1r6EPkH0q-parheUBthPDx6WAUHvcgOO8OFizmGKhUjwTZzoTixZh916C3q5xDlgKqMArz97AUpqxHkn0Z534moqbkV1j38IfoHxLsMx0vV1HivMHlGFeQGTq80woIdaH8lJMHz20cgXkcDVfqPUgbBKNbUgjOSdPDdvKZ23C323Ncn"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 90609697
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
connect.facebook.net/ar_AR/all.js?hash=47656bd79752a638f9d54dbd3125a5ac
200 OK 0 B URL HTTP/2 connect.facebook.net/ar_AR/all.js?hash=47656bd79752a638f9d54dbd3125a5ac
IP
GET /ar_AR/all.js?hash=47656bd79752a638f9d54dbd3125a5ac HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://massalih.blogspot.com
Connection: keep-alive
Referer: http://massalih.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: dba2b33fc131886405f19c6139ceb7f3
etag: "693c2b5cedebb6c2d9356d4fbaf2f2b2"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 11 Sep 2023 16:44:37 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: nNZOjFoFS675drq0OJqdQA==
x-fb-debug: 8K44lk8KF9vjIJ4eRQ5TTc3+lx3Cl/H1qR8frFfMHP719GEP38yJ8XA+6ZyTwbc+AbZHogb0661DUTqArVx50Q==
content-length: 88124
x-fb-trip-id: 1679558926
date: Sun, 11 Sep 2022 18:33:58 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
142.250.74.161
139.45.197.237
184.24.44.46
62.115.252.138
178.250.2.135
157.240.200.14
192.99.8.34
104.17.25.14