www.updatestar.com/topic/yonyou%20u9_oba_cnx64.msi
5.35.253.150301 Moved Permanently 175 B URL HTTP/1.1 www.updatestar.com/topic/yonyou%20u9_oba_cnx64.msi
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash a6ede54f75829eaba9a5345dc1f5cf0c
18131dd27079a421bfee664c59cc92224f190a49
1ba49c77eaf1fb4ee38a67dc15175a0b8596709de16c72a0685caf770dc6e04a
GET /topic/yonyou%20u9_oba_cnx64.msi HTTP/1.1
Host: www.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
Location: https://www.updatestar.com/topic/yonyou%20u9_oba_cnx64.msi
Date: Wed, 01 Feb 2023 10:56:58 GMT
Content-Length: 175
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3489
Expires: Wed, 01 Feb 2023 12:55:37 GMT
Date: Wed, 01 Feb 2023 11:57:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9255
Expires: Wed, 01 Feb 2023 14:31:43 GMT
Date: Wed, 01 Feb 2023 11:57:28 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 11:43:25 GMT
content-type: application/json
age: 843
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17493
Expires: Wed, 01 Feb 2023 16:49:01 GMT
Date: Wed, 01 Feb 2023 11:57:28 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ppgNODBaYRhPbtGZtaAy0YqoPd0t8gqwEeLJALr2RCt4/Iv0wOIW6rnF/Gakd7uQufiIMUWzZLQ=
x-amz-request-id: ZV1K8C43J8MW7Z4X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 11:51:33 GMT
age: 355
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 11:57:28 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.updatestar.com/topic/yonyou%20u9_oba_cnx64.msi
5.35.253.150200 OK 10 kB URL HTTP/1.1 www.updatestar.com/topic/yonyou%20u9_oba_cnx64.msi
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (497), with CRLF line terminators
Hash 07c0f5648e45bdee9aead73a3c9326a9
6643fdb70837b019af19904f41cb0a4a02b47120
f9fc1c96ec50b48b3f457fdf373b8e1e1796a71e8a612e718ed3d36612bd445d
GET /topic/yonyou%20u9_oba_cnx64.msi HTTP/1.1
Host: www.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: Wed, 01 Feb 2023 11:26:59 GMT
Last-Modified: Wed, 01 Feb 2023 10:56:59 GMT
Vary: Accept-Encoding
Date: Wed, 01 Feb 2023 10:56:58 GMT
Content-Length: 10177
www.updatestar.com/fonts/icomoon.woff?mv55hb
5.35.253.150200 OK 2.9 kB URL HTTP/1.1 www.updatestar.com/fonts/icomoon.woff?mv55hb
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type Web Open Font Format, TrueType, length 4628, version 0.0\012- data
Hash af52136bcc1f283c40a14b92bc49499e
1a5ae2195da908bf31eeb7388e2bb7a1013e5445
823cb07dc2c6cd7a922e704df8882224757b31d05ab12bcbceb2e2c891c66716
GET /fonts/icomoon.woff?mv55hb HTTP/1.1
Host: www.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/topic/yonyou%20u9_oba_cnx64.msi
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Type: application/x-font-woff
Content-Encoding: gzip
Last-Modified: Mon, 09 Dec 2019 15:15:20 GMT
Accept-Ranges: bytes
ETag: "0b46378a3aed51:0"
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Date: Wed, 01 Feb 2023 10:56:58 GMT
Content-Length: 2863
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c004ef398fc2138876eac9e202e6e7c9
9b695108fe043113ee8dc3369be58234f1a73323
ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js
216.58.211.10200 OK 31 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP 216.58.211.10:0
File type ASCII text, with very long lines (65447)
Hash 7808e0e4b7a714230373852158500533
4a79d18722a68a2f38d52e2d3a11b550bdd30b3c
8ba5796bee6a065b8b31895e7e8d59ba564cfd36d2ce056e327588e67736f054
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 00:39:07 GMT
expires: Wed, 31 Jan 2024 00:39:07 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Wed, 10 Mar 2021 14:28:09 GMT
content-type: text/javascript; charset=UTF-8
age: 127101
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-QYZVPCNV1D
142.250.74.40200 OK 78 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-QYZVPCNV1D
IP 142.250.74.40:0
File type ASCII text, with very long lines (21849)
Hash b608a3f993f15ea8ea5d1bf2cd5c8510
419182a6a9987abd07b2dcd5687508bf65e077fb
0bb9c69df1fac3c515e0bd54ad68b44d6703abe0c94817c44eea9bc5fdd852e3
GET /gtag/js?id=G-QYZVPCNV1D HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 01 Feb 2023 11:57:28 GMT
expires: Wed, 01 Feb 2023 11:57:28 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77738
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 11:41:42 GMT
age: 946
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.updatestar.com/js/main.min.js?v=9274c21127d4d657506b3661b932862c
5.35.253.150200 OK 16 kB URL HTTP/1.1 www.updatestar.com/js/main.min.js?v=9274c21127d4d657506b3661b932862c
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (45222)
Hash ff2ed10953201caa71a1fecbc4513f24
aa2f50b5c7d3d9c67072f2f61baaf7305e95ba85
ee390c48196ddacfeeb780f2a33b98a87b9fc26395c1516852e638e62099af88
GET /js/main.min.js?v=9274c21127d4d657506b3661b932862c HTTP/1.1
Host: www.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/topic/yonyou%20u9_oba_cnx64.msi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Tue, 29 Nov 2022 18:57:09 GMT
Accept-Ranges: bytes
ETag: "8070c861244d91:0"
Vary: Accept-Encoding
Date: Wed, 01 Feb 2023 10:56:59 GMT
Content-Length: 15899
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c004ef398fc2138876eac9e202e6e7c9
9b695108fe043113ee8dc3369be58234f1a73323
ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.updatestar.com/css/bundle.min.css?v=5bea96fa17d8d7913bcff38bb2d92b8b
5.35.253.150200 OK 22 kB URL HTTP/1.1 www.updatestar.com/css/bundle.min.css?v=5bea96fa17d8d7913bcff38bb2d92b8b
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (62513)
Hash 62533bae4de643d0ffd5214c5138e1d8
d00affd3c00edb9a69f3b3754385faba9b5b910a
955dc75233c6bf22137c9af9e23f6b61ce260cba9b46a042fb5f7d141e7464e5
GET /css/bundle.min.css?v=5bea96fa17d8d7913bcff38bb2d92b8b HTTP/1.1
Host: www.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/topic/yonyou%20u9_oba_cnx64.msi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Tue, 29 Nov 2022 18:57:09 GMT
Accept-Ranges: bytes
ETag: "8070c861244d91:0"
Vary: Accept-Encoding
Date: Wed, 01 Feb 2023 10:56:59 GMT
Content-Length: 22272
w2.updatestar.com/img/icons/1407301.32.png
5.35.253.150200 OK 760 B URL HTTP/1.1 w2.updatestar.com/img/icons/1407301.32.png
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type PNG image data, 32 x 32, 8-bit gray+alpha, non-interlaced\012- data
Hash 9a8f611ebb81634b0da072045f67ef05
f932db58b263d8a5da550a08e39735caa88d5389
f87b797f518b0bd43d96d8505fb5e412eb7bd71df7bee1ec0f90868e528555b1
GET /img/icons/1407301.32.png HTTP/1.1
Host: w2.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Type: image/png
Last-Modified: Tue, 10 Jul 2012 09:40:51 GMT
Accept-Ranges: bytes
ETag: "7a6fc717805ecd1:0"
Date: Wed, 01 Feb 2023 10:56:59 GMT
Content-Length: 760
www.updatestar.com/img/uslogo.svg
5.35.253.150200 OK 4.9 kB URL HTTP/1.1 www.updatestar.com/img/uslogo.svg
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (3986)
Hash 0c02ff5628b8d1f380ad4fdb03b42c0c
b8a36fd187d4e1e1598a2dc768f699aad969cdc2
a094afd848708d17d6560ec584c8d6682cefe36a29c9392356e252da7a4708c7
GET /img/uslogo.svg HTTP/1.1
Host: www.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/topic/yonyou%20u9_oba_cnx64.msi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Type: image/svg+xml
Content-Encoding: gzip
Last-Modified: Wed, 26 May 2021 16:43:21 GMT
Accept-Ranges: bytes
ETag: "80dab23c4e52d71:0"
Vary: Accept-Encoding
Date: Wed, 01 Feb 2023 10:56:59 GMT
Content-Length: 4905
w2.updatestar.com/img/icons/2242513.32.png
5.35.253.150200 OK 898 B URL HTTP/1.1 w2.updatestar.com/img/icons/2242513.32.png
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 9cf83de4e4123f6c59b90cd3b9d61045
53132d6295ea10ae4122bd7a90f19890801c0e3e
b6f2d319ab14a059b51b02ceccc4669ea30d63ca8b286bd5eae9dcc8b8d4c428
GET /img/icons/2242513.32.png HTTP/1.1
Host: w2.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Type: image/png
Last-Modified: Fri, 09 Oct 2015 23:05:01 GMT
Accept-Ranges: bytes
ETag: "20b21ede62d11:0"
Date: Wed, 01 Feb 2023 10:56:59 GMT
Content-Length: 898
w2.updatestar.com/img/icons/2471416.32.png
5.35.253.150200 OK 1.4 kB URL HTTP/1.1 w2.updatestar.com/img/icons/2471416.32.png
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced\012- data
Hash 4465c71e9ada1b6c8c117c3d5a10b907
47a5007d32d791cdaf772f133f456748bf91292f
c2aa26f66ccc361d14712c74c786cdd00398b207975130ee0e043f7fe94cfc1c
GET /img/icons/2471416.32.png HTTP/1.1
Host: w2.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Type: image/png
Last-Modified: Wed, 13 Jan 2021 02:34:57 GMT
Accept-Ranges: bytes
ETag: "b0f2faf54e9d61:0"
Date: Wed, 01 Feb 2023 10:56:59 GMT
Content-Length: 1448
w2.updatestar.com/img/icons/1081883.32.png
5.35.253.150200 OK 1.8 kB URL HTTP/1.1 w2.updatestar.com/img/icons/1081883.32.png
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 62b8ed55bcf75d76be952bf566497b56
a6cf107e53e45196ad0f29657d96b93358d37b79
fc2298597409fbf6113e80fbe3e8b85a3a761185bffebdb9e1213aab8eb364f6
GET /img/icons/1081883.32.png HTTP/1.1
Host: w2.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Type: image/png
Last-Modified: Tue, 10 Jul 2012 14:54:43 GMT
Accept-Ranges: bytes
ETag: "eaedaaf0ab5ecd1:0"
Date: Wed, 01 Feb 2023 10:56:59 GMT
Content-Length: 1761
w2.updatestar.com/img/default32.png
5.35.253.150200 OK 275 B URL HTTP/1.1 w2.updatestar.com/img/default32.png
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 0ccc533269307e5325b317d1300b1465
4d6a93542d72f760326ebc4619db07f7d5d02941
e7a22b586532669e3e86d019c3faa366bb89af54fea98c28eb526415d01990a7
GET /img/default32.png HTTP/1.1
Host: w2.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Type: image/png
Last-Modified: Sat, 01 Mar 2014 12:41:49 GMT
Accept-Ranges: bytes
ETag: "80e419d4b35cf1:0"
Date: Wed, 01 Feb 2023 10:56:59 GMT
Content-Length: 275
w2.updatestar.com/img/icons/2363278.32.png
5.35.253.150200 OK 961 B URL HTTP/1.1 w2.updatestar.com/img/icons/2363278.32.png
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 3d2c48a2b1094bd49b314889a1e3bf1d
091fc49cf584c528826efc6c64b4979e06255a29
12f7fe36e2ff2b6259130677473646d6a86da5e36c89afac229e048583d65b84
GET /img/icons/2363278.32.png HTTP/1.1
Host: w2.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Type: image/png
Last-Modified: Fri, 29 Sep 2017 05:06:32 GMT
Accept-Ranges: bytes
ETag: "1efd62b7e038d31:0"
Date: Wed, 01 Feb 2023 10:56:59 GMT
Content-Length: 961
w2.updatestar.com/img/icons/2473201.32.png
5.35.253.150200 OK 325 B URL HTTP/1.1 w2.updatestar.com/img/icons/2473201.32.png
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type PNG image data, 32 x 32, 8-bit grayscale, non-interlaced\012- data
Hash 2e52b88afde3e1be0174cf92a5dab21d
c74a11af379facdb64e80b8d28ea94c1d2a9d050
d3cc16c4a39f3bfea95fa98b0f6a994314a113d2d7b2297945af17c9e9ade25a
GET /img/icons/2473201.32.png HTTP/1.1
Host: w2.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Type: image/png
Last-Modified: Wed, 03 Feb 2021 06:02:37 GMT
Accept-Ranges: bytes
ETag: "4c20212cf2f9d61:0"
Date: Wed, 01 Feb 2023 10:56:59 GMT
Content-Length: 325
www.updatestar.com/css/bundle-dark.min.css?v=fb0807a66a330bdbff8e757389df1781
5.35.253.150200 OK 23 kB URL HTTP/1.1 www.updatestar.com/css/bundle-dark.min.css?v=fb0807a66a330bdbff8e757389df1781
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (62513)
Hash bc03c262d8df1c513009b50930dfe45a
ead92601fecaaad28afba1e1fc99908335916ec8
0e2b8e23ee76169780334d07ae5bffe0abdbddae19c88ce952247ff1008f3a5d
GET /css/bundle-dark.min.css?v=fb0807a66a330bdbff8e757389df1781 HTTP/1.1
Host: www.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/topic/yonyou%20u9_oba_cnx64.msi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Tue, 29 Nov 2022 18:57:09 GMT
Accept-Ranges: bytes
ETag: "8070c861244d91:0"
Vary: Accept-Encoding
Date: Wed, 01 Feb 2023 10:56:59 GMT
Content-Length: 23027
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3462
Expires: Wed, 01 Feb 2023 12:55:11 GMT
Date: Wed, 01 Feb 2023 11:57:29 GMT
Connection: keep-alive
w2.updatestar.com/img/icons/2282018.32.png
5.35.253.150200 OK 1.7 kB URL HTTP/1.1 w2.updatestar.com/img/icons/2282018.32.png
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 70886feec69376e3675cf3f4f0f124a4
c72b5b3f2c0c5742abb83cc4c7a10bbc68d03955
37c65ebe41f140d9a58c54bac2af663bda938ec98cf4e3f34995ca717dbc93c4
GET /img/icons/2282018.32.png HTTP/1.1
Host: w2.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Type: image/png
Last-Modified: Fri, 12 Aug 2016 23:07:38 GMT
Accept-Ranges: bytes
ETag: "92d7c951eef4d11:0"
Date: Wed, 01 Feb 2023 10:56:59 GMT
Content-Length: 1745
w2.updatestar.com/img/icons/1999029.32.png
5.35.253.150200 OK 1.6 kB URL HTTP/1.1 w2.updatestar.com/img/icons/1999029.32.png
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 0c144c0d8613e868f27e49f2c86560da
cd97338b7cc92c23f5498cd757c3e56f13767da7
21653469550d1ed35d296645c426e57454c99aa89a5b229769ac99c15cd58f91
GET /img/icons/1999029.32.png HTTP/1.1
Host: w2.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Type: image/png
Last-Modified: Thu, 26 Jul 2012 23:00:49 GMT
Accept-Ranges: bytes
ETag: "1a1ae07f826bcd1:0"
Date: Wed, 01 Feb 2023 10:56:59 GMT
Content-Length: 1622
w2.updatestar.com/img/icons/2249436.32.png
5.35.253.150200 OK 1.5 kB URL HTTP/1.1 w2.updatestar.com/img/icons/2249436.32.png
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash a1b262923fb35d61640ba224d675435d
90065bf7aebf031cbd062d8985aa1dd19e0dddf6
1f8f0bed6e9f673f28bd956ff7b6dd997fedbf30d2ad937efa7f02aa7e687c42
GET /img/icons/2249436.32.png HTTP/1.1
Host: w2.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Type: image/png
Last-Modified: Sat, 05 Dec 2015 00:06:41 GMT
Accept-Ranges: bytes
ETag: "e2cf8ed1f02ed11:0"
Date: Wed, 01 Feb 2023 10:56:59 GMT
Content-Length: 1464
news.updatestar.com/images/sized/edge.80x45.png
163.182.172.90200 OK 6.9 kB URL HTTP/2 news.updatestar.com/images/sized/edge.80x45.png
IP 163.182.172.90:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 80 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 81171a869b1a548c5d6cea4b25a3bc95
30c35eea5fcc02d3b2b8d89cf5fe2e29f85396c9
834048e7e24bde3dab0408d098fb4c25b179aabd1722dc920c3fe5b9cc2cc9a8
GET /images/sized/edge.80x45.png HTTP/1.1
Host: news.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: public, max-age=604800
content-type: image/png
last-modified: Wed, 08 May 2019 12:29:07 GMT
accept-ranges: bytes
etag: "1d50599a1347147"
server: Microsoft-IIS/10.0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
date: Wed, 01 Feb 2023 12:23:34 GMT
content-length: 6855
X-Firefox-Spdy: h2
news.updatestar.com/images/sized/filezilla1.80x45.png
163.182.172.90200 OK 2.5 kB URL HTTP/2 news.updatestar.com/images/sized/filezilla1.80x45.png
IP 163.182.172.90:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 80 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash e47918d735af0576297a9c6227154de4
0fa35c37839e6e39cc8d8823bb82a277b49c5e46
a2754e7a85581bfd8d5ece46501c0c3924f83772a0b1750f39ee59d70233ef05
GET /images/sized/filezilla1.80x45.png HTTP/1.1
Host: news.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
content-type: image/png
last-modified: Thu, 31 Dec 2020 09:14:14 GMT
accept-ranges: bytes
etag: "1d6df554eb97ea4"
server: Microsoft-IIS/10.0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
date: Wed, 01 Feb 2023 12:23:34 GMT
content-length: 2468
X-Firefox-Spdy: h2
news.updatestar.com/images/sized/googledrive1.80x45.png
163.182.172.90200 OK 3.2 kB URL HTTP/2 news.updatestar.com/images/sized/googledrive1.80x45.png
IP 163.182.172.90:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 80 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 26498b0abb6310a1136eccbf0544dac2
f254616e959051f17cf5f2a8262e2bca920ab44c
b58e717e12d2789dd44eaf6c3b1a0ed551d307cb00b16cdbeb2353dbb6b439b2
GET /images/sized/googledrive1.80x45.png HTTP/1.1
Host: news.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
content-length: 3221
content-type: image/png
last-modified: Tue, 27 Aug 2019 08:51:33 GMT
accept-ranges: bytes
etag: "1d55cb4a0445415"
server: Microsoft-IIS/10.0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
date: Wed, 01 Feb 2023 12:23:34 GMT
X-Firefox-Spdy: h2
news.updatestar.com/images/sized/chromelogo1.80x45.png
163.182.172.90200 OK 1.5 kB URL HTTP/2 news.updatestar.com/images/sized/chromelogo1.80x45.png
IP 163.182.172.90:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 80 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 037069257d728c02dd8e9c601da708f2
93b0d1cd16f76679c5cc410b4ec6d370845da08a
4ba7417a8f2032e11b7005f80b25b0e5255c97cec53c2db5805fd21955034891
GET /images/sized/chromelogo1.80x45.png HTTP/1.1
Host: news.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
content-length: 1506
content-type: image/png
last-modified: Tue, 14 May 2019 09:03:47 GMT
accept-ranges: bytes
etag: "1d50a33f0641e62"
server: Microsoft-IIS/10.0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
date: Wed, 01 Feb 2023 12:23:34 GMT
X-Firefox-Spdy: h2
news.updatestar.com/images/sized/firefox82.80x45.png
163.182.172.90200 OK 2.6 kB URL HTTP/2 news.updatestar.com/images/sized/firefox82.80x45.png
IP 163.182.172.90:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 80 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash aab9cd1c4b20cc098854719eead72830
9e2717e475bed8357c943a63d8a8a6392ede4726
30d25ee0e558fe4fdd98541df0af1c29d3c0d8d321b861ce16406d5b08d7fdf3
GET /images/sized/firefox82.80x45.png HTTP/1.1
Host: news.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: public, max-age=604800
content-type: image/png
last-modified: Tue, 20 Oct 2020 14:52:46 GMT
accept-ranges: bytes
etag: "1d6a6f0abe0b91a"
server: Microsoft-IIS/10.0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
date: Wed, 01 Feb 2023 12:23:34 GMT
content-length: 2586
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.149.71.248101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.71.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gkZOGRpjkk9LokA3Lpxcxw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oT+RCTCnvOPZrHAVfvpgq6y0JWE=
news.updatestar.com/images/sized/safeerase1.80x45.png
163.182.172.90200 OK 1.9 kB URL HTTP/2 news.updatestar.com/images/sized/safeerase1.80x45.png
IP 163.182.172.90:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 80 x 45, 8-bit colormap, non-interlaced\012- data
Hash 32c0d070a989234d626d56452b38cd91
4a9fd142893ee4445dfb0da4e9fb7b871722e9f6
0c6b468a8a96a5293325b953a4fff6f1b0577f9a83c9eb4558eb9eb09b695940
GET /images/sized/safeerase1.80x45.png HTTP/1.1
Host: news.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: public, max-age=604800
content-type: image/png
last-modified: Mon, 13 May 2019 10:36:56 GMT
accept-ranges: bytes
etag: "1d50977c9481345"
server: Microsoft-IIS/10.0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
date: Wed, 01 Feb 2023 12:23:34 GMT
content-length: 1861
X-Firefox-Spdy: h2
news.updatestar.com/images/sized/winrar1.80x45.png
163.182.172.90200 OK 3.3 kB URL HTTP/2 news.updatestar.com/images/sized/winrar1.80x45.png
IP 163.182.172.90:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 80 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash c27656853b962e04a20e08e15344d9bc
d2e08d756e612eea995ad344a6cf465b20428e68
e01aa73793154c281b7d89e2c349ca9bdc2f4af3d5db8ef5b52e76dde44255b1
GET /images/sized/winrar1.80x45.png HTTP/1.1
Host: news.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: public, max-age=604800
content-type: image/png
last-modified: Tue, 14 May 2019 08:53:35 GMT
accept-ranges: bytes
etag: "1d50a32839c5d36"
server: Microsoft-IIS/10.0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
date: Wed, 01 Feb 2023 12:23:34 GMT
content-length: 3254
X-Firefox-Spdy: h2
news.updatestar.com/images/sized/softwarereviews.80x45.png
163.182.172.90200 OK 3.9 kB URL HTTP/2 news.updatestar.com/images/sized/softwarereviews.80x45.png
IP 163.182.172.90:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 80 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash bc9b8cb1997ac1578e15cecc2a1414e3
1cb658127982cf387c33f710a17c4c4ebdd6d1bc
427dc87fa729ed8386f5748b9145543bf8a79ce8946566d92d06b7f44dd19fe5
GET /images/sized/softwarereviews.80x45.png HTTP/1.1
Host: news.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: public, max-age=604800
content-type: image/png
last-modified: Mon, 20 Jun 2022 10:05:33 GMT
accept-ranges: bytes
etag: "1d8848d475d9b99"
server: Microsoft-IIS/10.0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
date: Wed, 01 Feb 2023 12:23:34 GMT
content-length: 3865
X-Firefox-Spdy: h2
news.updatestar.com/images/sized/oraclelogo1.80x45.png
163.182.172.90200 OK 1.3 kB URL HTTP/2 news.updatestar.com/images/sized/oraclelogo1.80x45.png
IP 163.182.172.90:0
ASN #40244 TURNKEY-INTERNET
File type PNG image data, 80 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash cc42bc9b3c94b5113c22185595fc2d1b
16f74163f87872ca81d025c2a1a454a0ebffbc5b
72fe210162481feeeb3f384bf29897cd6b73d7f5a68e0ad441a2ed53606ed2e5
GET /images/sized/oraclelogo1.80x45.png HTTP/1.1
Host: news.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: public, max-age=604800
content-type: image/png
last-modified: Tue, 28 Jan 2020 13:53:56 GMT
accept-ranges: bytes
etag: "1d5d5e261f3f733"
server: Microsoft-IIS/10.0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
date: Wed, 01 Feb 2023 12:23:34 GMT
content-length: 1331
X-Firefox-Spdy: h2
www.updatestar.com/favicon.ico
5.35.253.150200 OK 621 B URL HTTP/1.1 www.updatestar.com/favicon.ico
IP 5.35.253.150:0
ASN #8972 Host Europe GmbH
File type MS Windows icon resource - 1 icon, 16x16 with PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced, 32 bits/pixel\012- data
Hash 5cf6ac645120ae1a0e5266329eb68d20
bddabdbd103e4beb4bb020f34874589ab0439bca
821400d3f0132e67a170822be70b9dafffc4bd623f5f33ff6111e625e3a67a93
GET /favicon.ico HTTP/1.1
Host: www.updatestar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/topic/yonyou%20u9_oba_cnx64.msi
Cookie: _ga_QYZVPCNV1D=GS1.1.1675252670.1.0.1675252670.0.0.0; _ga=GA1.1.589683991.1675252670
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: public,max-age=31536000
Content-Type: image/x-icon
Last-Modified: Fri, 14 Dec 2012 15:09:11 GMT
Accept-Ranges: bytes
ETag: "436012f9cdacd1:0"
Date: Wed, 01 Feb 2023 10:56:59 GMT
Content-Length: 621
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 46e2bec06a11406d5cdcec9c0e76911d
edc777878dca7029c70577edae741264a22ab010
21f7443ebf888a28fb0f0010d1c83ca833b42c06f7d2c755f83a4b418de96854
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 46e2bec06a11406d5cdcec9c0e76911d
edc777878dca7029c70577edae741264a22ab010
21f7443ebf888a28fb0f0010d1c83ca833b42c06f7d2c755f83a4b418de96854
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 46e2bec06a11406d5cdcec9c0e76911d
edc777878dca7029c70577edae741264a22ab010
21f7443ebf888a28fb0f0010d1c83ca833b42c06f7d2c755f83a4b418de96854
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.130200 OK 27 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (39525)
Hash 0da9b32bded8b66c49e01ffd2550ea60
7089023f5b605a69504d1f5a9f95b5dfc9698939
8af1013b3f276dfc90d832590d0e4dcfa82307a2eae1c2cb804e86540c816f83
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27278
date: Wed, 01 Feb 2023 11:57:29 GMT
expires: Wed, 01 Feb 2023 11:57:29 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1469 / 471 of 1000 / last-modified: 1675251284"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.34200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (3649)
Hash c45bc23e044fe81f3058d1e58f807f49
55baa534532b26a5861067213c63dc9ca68df382
1d5bdb3cefc3915224105dd1f72d2bda473f6488b6f79903e4da11f15975535b
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 01 Feb 2023 11:57:29 GMT
expires: Wed, 01 Feb 2023 11:57:29 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 1521073113190641577
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50207
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 46e2bec06a11406d5cdcec9c0e76911d
edc777878dca7029c70577edae741264a22ab010
21f7443ebf888a28fb0f0010d1c83ca833b42c06f7d2c755f83a4b418de96854
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 46e2bec06a11406d5cdcec9c0e76911d
edc777878dca7029c70577edae741264a22ab010
21f7443ebf888a28fb0f0010d1c83ca833b42c06f7d2c755f83a4b418de96854
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20230125/r20190131/zrt_lookup.html
142.250.74.162200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230125/r20190131/zrt_lookup.html
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20230125/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Tue, 31 Jan 2023 18:55:48 GMT
expires: Tue, 14 Feb 2023 18:55:48 GMT
cache-control: public, max-age=1209600
age: 61301
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b4c9a8ce96aa57d27a6bd55df00f08ac
180302ed4863fb5b22b45ab0cc7c770a12a8c63d
3707163ad693f536f95ed3331f045060ad51b12e95d55690d341a4a93e7f1d12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e0bc98d03057dabba1334b62bea0975b
b358a8123908fe4b1c94a1273cac45c4e23b212e
10ef320ba825ca0e17d039b66fd2f321f4d2c687a8734d226fa25e9b45e109d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.updatestar.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.updatestar.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.updatestar.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 01 Feb 2023 11:57:29 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.updatestar.com
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.updatestar.com
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.updatestar.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 01 Feb 2023 11:57:29 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-QYZVPCNV1D>m=2oe1u0&_p=1140414210&cid=589683991.1675252670&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675252670&sct=1&seg=0&dl=https%3A%2F%2Fwww.updatestar.com%2Ftopic%2Fyonyou%2520u9_oba_cnx64.msi&dt=Free%20yonyou%20u9_oba_cnx64.msi%20Download%20-%20yonyou%20u9_oba_cnx64.msi%20for%20Windows&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-QYZVPCNV1D>m=2oe1u0&_p=1140414210&cid=589683991.1675252670&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675252670&sct=1&seg=0&dl=https%3A%2F%2Fwww.updatestar.com%2Ftopic%2Fyonyou%2520u9_oba_cnx64.msi&dt=Free%20yonyou%20u9_oba_cnx64.msi%20Download%20-%20yonyou%20u9_oba_cnx64.msi%20for%20Windows&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-QYZVPCNV1D>m=2oe1u0&_p=1140414210&cid=589683991.1675252670&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675252670&sct=1&seg=0&dl=https%3A%2F%2Fwww.updatestar.com%2Ftopic%2Fyonyou%2520u9_oba_cnx64.msi&dt=Free%20yonyou%20u9_oba_cnx64.msi%20Download%20-%20yonyou%20u9_oba_cnx64.msi%20for%20Windows&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.updatestar.com
Connection: keep-alive
Referer: https://www.updatestar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.updatestar.com
date: Wed, 01 Feb 2023 11:57:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b4c9a8ce96aa57d27a6bd55df00f08ac
180302ed4863fb5b22b45ab0cc7c770a12a8c63d
3707163ad693f536f95ed3331f045060ad51b12e95d55690d341a4a93e7f1d12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e0bc98d03057dabba1334b62bea0975b
b358a8123908fe4b1c94a1273cac45c4e23b212e
10ef320ba825ca0e17d039b66fd2f321f4d2c687a8734d226fa25e9b45e109d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2263a1e1250ae338c282d1688740d8c1
4d7f8a14fe6382ae92bfa31048d6cf7802ebd989
587dfb385435f78a53392aa45b9e268c61c62ba97b3c081ba3f4795122305e40
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2263a1e1250ae338c282d1688740d8c1
4d7f8a14fe6382ae92bfa31048d6cf7802ebd989
587dfb385435f78a53392aa45b9e268c61c62ba97b3c081ba3f4795122305e40
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
b7e175fa34fa15f5716328a6d1b4feaa.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
142.250.74.97200 OK 2.7 kB URL HTTP/2 b7e175fa34fa15f5716328a6d1b4feaa.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: b7e175fa34fa15f5716328a6d1b4feaa.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.updatestar.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Wed, 01 Feb 2023 11:57:29 GMT
expires: Thu, 01 Feb 2024 11:57:29 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fac8be8cf632a008cb377ac953dd755c
1c397f779b8d357fcc9994396204bed4beec1d06
97e40ea51c81b4a552656d6556da89bde56209edf71cd810a710e04895f3297f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/mysidia/8229fa5a5c3ebd24f3e2eb95db7eba72.js?tag=client_fast_engine_2019
216.58.211.3200 OK 4.2 kB URL HTTP/2 www.gstatic.com/mysidia/8229fa5a5c3ebd24f3e2eb95db7eba72.js?tag=client_fast_engine_2019
IP 216.58.211.3:0
File type ASCII text, with very long lines (2595)
Hash 22b1107093ffdaf82c67748570c23847
23dfc8f212390c65e14e5429f57808ba23519546
cbbc030a379d4135d1a593fe405ab78879df73eef55d3cb03774cc3b3c27ac82
GET /mysidia/8229fa5a5c3ebd24f3e2eb95db7eba72.js?tag=client_fast_engine_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4209
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 04:15:30 GMT
expires: Sat, 29 Apr 2023 04:15:30 GMT
cache-control: public, max-age=7776000
last-modified: Tue, 24 Jan 2023 03:52:27 GMT
content-type: text/javascript
age: 286920
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/9e5698c686bc55900eb7505b234da968.js?tag=text/vanilla_highlight
216.58.211.3200 OK 4.5 kB URL HTTP/2 www.gstatic.com/mysidia/9e5698c686bc55900eb7505b234da968.js?tag=text/vanilla_highlight
IP 216.58.211.3:0
File type C++ source, ASCII text, with very long lines (1812)
Hash aedf474400722a008158e56e573bc5d0
72656d7103183a1ced0cfe3495612a7a6232d5bb
0ddf3aa087012380c967098be900c1b7ab2e26618375d81d3740f470f3bcd792
GET /mysidia/9e5698c686bc55900eb7505b234da968.js?tag=text/vanilla_highlight HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 4467
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 05:47:53 GMT
expires: Mon, 01 May 2023 05:47:53 GMT
cache-control: public, max-age=7776000
last-modified: Fri, 27 Jan 2023 00:31:18 GMT
content-type: text/javascript
age: 108577
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a327176edf538c07784f9b0da660c22d
4a56cfcac291dfe1cc177bd3eff976f106731834
aae92a95f747be0bca6982ed7e3e58af8ac74ff69c799b55046ab38474e149dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/drt/ui
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/pagead/drt/ui
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/ui HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
cache-control: private
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 01 Feb 2023 11:57:30 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9161
Expires: Wed, 01 Feb 2023 14:30:11 GMT
Date: Wed, 01 Feb 2023 11:57:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9161
Expires: Wed, 01 Feb 2023 14:30:11 GMT
Date: Wed, 01 Feb 2023 11:57:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9161
Expires: Wed, 01 Feb 2023 14:30:11 GMT
Date: Wed, 01 Feb 2023 11:57:30 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d72f205-6434-46dc-85c2-d0bf41653e1f.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d72f205-6434-46dc-85c2-d0bf41653e1f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6544847aa1270cea1c780e4ee562f2a2
7be75a9f2e5f9e945f60a20a5da70849ad32f72d
d820b25b833d644358c0d9d5a3dc05817770095c06a098a6fc8ed9b7230c80e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d72f205-6434-46dc-85c2-d0bf41653e1f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8415
x-amzn-requestid: 0d44aaae-d472-410f-9438-7527da366b10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffCuGHRqoAMFxeg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e4c0-7e7330ab2de5c1ba3e87df4b;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:15:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fr2OB2bcdPtbbHXp2z2l7duVX--MbbazfFJAh_V7qqUMMFEme5bRpw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 06:46:49 GMT
age: 18641
etag: "7be75a9f2e5f9e945f60a20a5da70849ad32f72d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27e95b7912edc909d6b031e36fe83534
eb27fae0bb17dbe0929a620002195233ef50c1d0
b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8597
x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRaNEW4IAMFatA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 13:15:35 GMT
age: 81715
etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 02:29:58 GMT
age: 34052
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb48b6dde-a831-4a2a-91f4-75df52be0b31.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb48b6dde-a831-4a2a-91f4-75df52be0b31.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d2189ff7eee65e0fde9be79c994b1d1e
c82caabf73415755643b9ab874364162e798f58c
f0d08ab954f728a73a30d22c874019789d55b64a6160d5dafe4d08249f2e9ed4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb48b6dde-a831-4a2a-91f4-75df52be0b31.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6773
x-amzn-requestid: b3b6b388-dd50-4a4d-83e0-219b0d285f4c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foee_GcdoAMFRWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9aac6-286883827020ff9a1412030c;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 23:56:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 59jJ-7FGO_UqZi7pUGx6h9imXp1a5bOeAbKFkDQBC91qQ2lnyyl11w==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 00:13:02 GMT
etag: "c82caabf73415755643b9ab874364162e798f58c"
content-type: image/jpeg
age: 42268
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23db22ce2120fbb0ae6109e1a046062d
2068c8d9a5bc30a17be658e198e26c64a80703cf
f307ba6c4929d9f0c9354334b7baea878da379138489d9689bb777c4da308dab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: f466c962-7b12-4923-a4be-7ff9fce372a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaWFP_IAMF9wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-7a8c027d58f5b9132bb68a33;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XtqfgDxskGIUmZdRj2nrGDpo9KvECk528eLZV29xNx3h7CLOu49mnQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:42:19 GMT
age: 51311
etag: "2068c8d9a5bc30a17be658e198e26c64a80703cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57810a89-c2fa-4da6-8c38-d7ab4682343c.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57810a89-c2fa-4da6-8c38-d7ab4682343c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23fba3309226071f6f44081c3a92bc0b
21119ea71d26ab157ec491f9cf68918d63310fb4
b29c1f3f6966e08bd3954275c8d2a3ae44a352b41e5d3f04203b55f65708fafc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57810a89-c2fa-4da6-8c38-d7ab4682343c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4588
x-amzn-requestid: 1d726cce-35c6-42d7-a592-8f22f1bd310a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJr4GXvoAMFXvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcb2-71af755c24ba2e9a39f17451;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:01:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DzgQlPECoiRf-pZjVVk-EsjIl0kVj0b-BfiWBgUEFamma1pYDUMP6A==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 14:29:26 GMT
age: 77284
etag: "21119ea71d26ab157ec491f9cf68918d63310fb4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
142.250.74.35200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Hash 53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08
GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 14:34:21 GMT
expires: Fri, 26 Jan 2024 14:34:21 GMT
cache-control: public, max-age=31536000
age: 508989
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0077c63a3f5cfd6f3751b4dc116bd465
f80922f3dce75903903ae49e8de7dddbf0bb8360
ea3e9fec9aeb1ef8640984723fbda3404b0c6d061f5616caa7b80309ca05a052
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0077c63a3f5cfd6f3751b4dc116bd465
f80922f3dce75903903ae49e8de7dddbf0bb8360
ea3e9fec9aeb1ef8640984723fbda3404b0c6d061f5616caa7b80309ca05a052
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0077c63a3f5cfd6f3751b4dc116bd465
f80922f3dce75903903ae49e8de7dddbf0bb8360
ea3e9fec9aeb1ef8640984723fbda3404b0c6d061f5616caa7b80309ca05a052
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0077c63a3f5cfd6f3751b4dc116bd465
f80922f3dce75903903ae49e8de7dddbf0bb8360
ea3e9fec9aeb1ef8640984723fbda3404b0c6d061f5616caa7b80309ca05a052
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0077c63a3f5cfd6f3751b4dc116bd465
f80922f3dce75903903ae49e8de7dddbf0bb8360
ea3e9fec9aeb1ef8640984723fbda3404b0c6d061f5616caa7b80309ca05a052
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
142.250.74.74200 OK 63 kB URL HTTP/2 fonts.googleapis.com/css?family=Google%20Sans%3A400%2C500
IP 142.250.74.74:0
Hash 9eca60b014dd26ed0c2c5a8ddeb4f6c7
b41c470ff37480f02ef4c0b1ebed1f4d7f075f45
a286d8bbcd1b432d3dd62083b86fb015263fa1eb24dac7841d529f64e804c1c7
GET /css?family=Google%20Sans%3A400%2C500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 01 Feb 2023 11:57:30 GMT
date: Wed, 01 Feb 2023 11:57:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301181928000/v0/amp-ad-exit-0.1.mjs
172.217.21.161200 OK 5.2 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-ad-exit-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (14751)
Hash 73e00d54af81c3fab604b50e24c8e9c3
69acac1ec53fcbcf886bb240adabd050520197f9
3347e49ea6e174315c1bee3660a9988e4c7fe184a7a1176cf2aceb307c73125a
GET /rtv/012301181928000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.updatestar.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5218
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:37 GMT
expires: Tue, 30 Jan 2024 18:04:37 GMT
cache-control: public, max-age=31536000
etag: "47662644ea8653a3"
content-type: text/javascript; charset=UTF-8
age: 150774
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301181928000/v0/amp-analytics-0.1.mjs
172.217.21.161200 OK 29 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-analytics-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (65534)
Hash 71f3ba24b0a01ade500d97ad0b8f3617
508b7affbf3e3c2b8bf4f46ebcb69ea29855bf9a
34c90f195073264a8f3e51bb9582b73665f65d7b053a031400c48bf627ca9d69
GET /rtv/012301181928000/v0/amp-analytics-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.updatestar.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 28817
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:37 GMT
expires: Tue, 30 Jan 2024 18:04:37 GMT
cache-control: public, max-age=31536000
etag: "6eb387830c268337"
content-type: text/javascript; charset=UTF-8
age: 150774
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301181928000/v0/amp-fit-text-0.1.mjs
172.217.21.161200 OK 1.9 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-fit-text-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (5021)
Hash 15dbec6a43680f6683938949e1b50562
fd479e89a3460ca0e48b5001aad0a2836df31dab
d08eefabc738f11545330db83c2d3e9a855add08db6b9d9217a15dd783c4f5c8
GET /rtv/012301181928000/v0/amp-fit-text-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.updatestar.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1914
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:37 GMT
expires: Tue, 30 Jan 2024 18:04:37 GMT
cache-control: public, max-age=31536000
etag: "f13d3e1d36b26a3d"
content-type: text/javascript; charset=UTF-8
age: 150774
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301181928000/v0/amp-form-0.1.mjs
172.217.21.161200 OK 13 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-form-0.1.mjs
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (41057)
Hash d002971e2ddb3b4efd4dc02db13ee630
da135f871d06963e22f3dc6ec251cfbaed9740ad
a464154b965a79018453f4b97ffa8412a5059b0b521472bfc0e84df5c74d8fac
GET /rtv/012301181928000/v0/amp-form-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.updatestar.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12960
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:37 GMT
expires: Tue, 30 Jan 2024 18:04:37 GMT
cache-control: public, max-age=31536000
etag: "f74ebce85e2cb18a"
content-type: text/javascript; charset=UTF-8
age: 150774
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0077c63a3f5cfd6f3751b4dc116bd465
f80922f3dce75903903ae49e8de7dddbf0bb8360
ea3e9fec9aeb1ef8640984723fbda3404b0c6d061f5616caa7b80309ca05a052
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash fd33fb271c10d9a3fe8b114eafaf704e
4eda1f76d4c345b9b5393de39bfdce2c4c76b9fc
2d6345b53f060111aba2d40820d88e3fc7ab9bd76d5298c05fec582381fc4fec
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5163
Cache-Control: max-age=160504
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:31 GMT
Etag: "63da0f79-139"
Expires: Fri, 03 Feb 2023 08:32:35 GMT
Last-Modified: Wed, 01 Feb 2023 07:06:33 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 79cf5c30638adc1e73bb34e739fabeca
1a92fa6ee4a6fa700f9526c9eb02a206ea76f811
b4bfaabd1e12f93ac2d7a00ddcfee99f9ab9a8c3af6617d89ae520b2391acb97
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6018
Cache-Control: max-age=100181
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:31 GMT
Etag: "63d9207e-139"
Expires: Thu, 02 Feb 2023 15:47:12 GMT
Last-Modified: Tue, 31 Jan 2023 14:06:54 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 313
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kOfnDbOzWe0HfJ2DYgICAAAAowEBmTFGnSMQqVPaY4FviCxQ7oL1_g2lABIAAAoOQVFVQkJRWUJCUUVCQlE&wp=Y9pTqQAOG_wCO81TAAxTPXQ_YkdrsI6Rh3WsyQ
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kOfnDbOzWe0HfJ2DYgICAAAAowEBmTFGnSMQqVPaY4FviCxQ7oL1_g2lABIAAAoOQVFVQkJRWUJCUUVCQlE&wp=Y9pTqQAOG_wCO81TAAxTPXQ_YkdrsI6Rh3WsyQ
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kOfnDbOzWe0HfJ2DYgICAAAAowEBmTFGnSMQqVPaY4FviCxQ7oL1_g2lABIAAAoOQVFVQkJRWUJCUUVCQlE&wp=Y9pTqQAOG_wCO81TAAxTPXQ_YkdrsI6Rh3WsyQ HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 154781
date: Wed, 01 Feb 2023 11:57:31 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y9pTqQAOG_wCO81TAAxTPXQ_YkdrsI6Rh3WsyQ&u=%7CMlVbDhkWCxGYZAoulh5Aqm%2F43nJLn1m%2FzNT%2B%2FiqKds0%3D%7C&c1=TEbw32HdmhlTb08vzaRE05Nor-kWNW37ds0oDHxEuxeKn7Xrp6ainli_Cmw5dJSudhYAqTqyTVKQHlyfo233Bl3FrFAAeqMX7oQqICqdazbHn1c1EafXGfwHsE23-vxBLt-a9pn5pxed1opcfPPbUk4SB_4m4i7-FuKx-9BD4uLimxtuMCf1LSUTrgTBrodrI2iC34IhUKAVgsQp8uZ90HQ9-6u4ynUnpAyGzYFoEP-CQ7Bln6CjMqVkHsJsmNUdKtcCNa4SJhH6suW-g3FEgi5Edu0yEOBojahSbj3vSi0rOi7Gvu46vI8hzpkQUuqlKfz_HN1CdNviXBF_TMUVB8SmZSvcdMoEP7VW2_Ichb4w4QHGSdzbiiWEjAQxnE_5w47EFI26iu1KwwsimegEAuq39e6NFo4XA0pdsAAu5KBB06Kx2xyx39auX6rrUOlbOZXHnoW5tBrc5xqXO-QZ5tLRGckdbxN6PFu9q_zH4fRa1GMWeF298nfNQKR1BvTULO2Hh2-iou-s1JCl7rQTusoiXR6VB735ZIX4clrAHm4LLgsrw7hZQWJbCKfPyKCu&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC-EIlqVPaY_y3ONOa78EPvaaxwAnJntKxXMWMi-CaAcCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi00MTE4NzY1NzQ0NDU1Mzk3yAEJqQLxhO-zREGyPqgDAaoE1QFP0Mr_bIco76SAuxcsbC4cbzLInErCe1-pWvpBar2Vc8UU4RHNO_HASvjhPzuDsEkNhDhOyg7VeVa7iabAdhE--NHLgrqj8S75Gt4qEwMV0biRWCdraVybfF_rqy1ayQGo3UeOAXaVN1wocEM8PmHrFkjcHMfrWoxNfmkqveVswAUXg4RYBN5N_W2FuYZ5BuOA_3R30bqjpeyFKTg-I9vU5uTPMgyGngRqLHVHOFouuqDB2Zshz_ydFFIjZYL1z0S_eEyarJKiHgqR8x42PIAhnIEyJAeABv7X27HM1djD2wGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgBAQATICqgI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_2LNErPElZAA1SoOrg_Wba2JawxHA%26client%3Dca-pub-4118765744455397%26adurl%3D
178.250.0.138200 OK 62 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y9pTqQAOG_wCO81TAAxTPXQ_YkdrsI6Rh3WsyQ&u=%7CMlVbDhkWCxGYZAoulh5Aqm%2F43nJLn1m%2FzNT%2B%2FiqKds0%3D%7C&c1=TEbw32HdmhlTb08vzaRE05Nor-kWNW37ds0oDHxEuxeKn7Xrp6ainli_Cmw5dJSudhYAqTqyTVKQHlyfo233Bl3FrFAAeqMX7oQqICqdazbHn1c1EafXGfwHsE23-vxBLt-a9pn5pxed1opcfPPbUk4SB_4m4i7-FuKx-9BD4uLimxtuMCf1LSUTrgTBrodrI2iC34IhUKAVgsQp8uZ90HQ9-6u4ynUnpAyGzYFoEP-CQ7Bln6CjMqVkHsJsmNUdKtcCNa4SJhH6suW-g3FEgi5Edu0yEOBojahSbj3vSi0rOi7Gvu46vI8hzpkQUuqlKfz_HN1CdNviXBF_TMUVB8SmZSvcdMoEP7VW2_Ichb4w4QHGSdzbiiWEjAQxnE_5w47EFI26iu1KwwsimegEAuq39e6NFo4XA0pdsAAu5KBB06Kx2xyx39auX6rrUOlbOZXHnoW5tBrc5xqXO-QZ5tLRGckdbxN6PFu9q_zH4fRa1GMWeF298nfNQKR1BvTULO2Hh2-iou-s1JCl7rQTusoiXR6VB735ZIX4clrAHm4LLgsrw7hZQWJbCKfPyKCu&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC-EIlqVPaY_y3ONOa78EPvaaxwAnJntKxXMWMi-CaAcCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi00MTE4NzY1NzQ0NDU1Mzk3yAEJqQLxhO-zREGyPqgDAaoE1QFP0Mr_bIco76SAuxcsbC4cbzLInErCe1-pWvpBar2Vc8UU4RHNO_HASvjhPzuDsEkNhDhOyg7VeVa7iabAdhE--NHLgrqj8S75Gt4qEwMV0biRWCdraVybfF_rqy1ayQGo3UeOAXaVN1wocEM8PmHrFkjcHMfrWoxNfmkqveVswAUXg4RYBN5N_W2FuYZ5BuOA_3R30bqjpeyFKTg-I9vU5uTPMgyGngRqLHVHOFouuqDB2Zshz_ydFFIjZYL1z0S_eEyarJKiHgqR8x42PIAhnIEyJAeABv7X27HM1djD2wGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgBAQATICqgI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_2LNErPElZAA1SoOrg_Wba2JawxHA%26client%3Dca-pub-4118765744455397%26adurl%3D
IP 178.250.0.138:0
Hash c6d51c5a088845929c126c8eff2e4986
f16e913b248d20d49e7ece987cbb6af3d852c77d
8d995436bfc7d22b4eae3b3f7412fc8014aadd95837b85b3964ba9506480e065
GET /delivery/r/afr.php?z=Y9pTqQAOG_wCO81TAAxTPXQ_YkdrsI6Rh3WsyQ&u=%7CMlVbDhkWCxGYZAoulh5Aqm%2F43nJLn1m%2FzNT%2B%2FiqKds0%3D%7C&c1=TEbw32HdmhlTb08vzaRE05Nor-kWNW37ds0oDHxEuxeKn7Xrp6ainli_Cmw5dJSudhYAqTqyTVKQHlyfo233Bl3FrFAAeqMX7oQqICqdazbHn1c1EafXGfwHsE23-vxBLt-a9pn5pxed1opcfPPbUk4SB_4m4i7-FuKx-9BD4uLimxtuMCf1LSUTrgTBrodrI2iC34IhUKAVgsQp8uZ90HQ9-6u4ynUnpAyGzYFoEP-CQ7Bln6CjMqVkHsJsmNUdKtcCNa4SJhH6suW-g3FEgi5Edu0yEOBojahSbj3vSi0rOi7Gvu46vI8hzpkQUuqlKfz_HN1CdNviXBF_TMUVB8SmZSvcdMoEP7VW2_Ichb4w4QHGSdzbiiWEjAQxnE_5w47EFI26iu1KwwsimegEAuq39e6NFo4XA0pdsAAu5KBB06Kx2xyx39auX6rrUOlbOZXHnoW5tBrc5xqXO-QZ5tLRGckdbxN6PFu9q_zH4fRa1GMWeF298nfNQKR1BvTULO2Hh2-iou-s1JCl7rQTusoiXR6VB735ZIX4clrAHm4LLgsrw7hZQWJbCKfPyKCu&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC-EIlqVPaY_y3ONOa78EPvaaxwAnJntKxXMWMi-CaAcCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi00MTE4NzY1NzQ0NDU1Mzk3yAEJqQLxhO-zREGyPqgDAaoE1QFP0Mr_bIco76SAuxcsbC4cbzLInErCe1-pWvpBar2Vc8UU4RHNO_HASvjhPzuDsEkNhDhOyg7VeVa7iabAdhE--NHLgrqj8S75Gt4qEwMV0biRWCdraVybfF_rqy1ayQGo3UeOAXaVN1wocEM8PmHrFkjcHMfrWoxNfmkqveVswAUXg4RYBN5N_W2FuYZ5BuOA_3R30bqjpeyFKTg-I9vU5uTPMgyGngRqLHVHOFouuqDB2Zshz_ydFFIjZYL1z0S_eEyarJKiHgqR8x42PIAhnIEyJAeABv7X27HM1djD2wGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgBAQATICqgI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_2LNErPElZAA1SoOrg_Wba2JawxHA%26client%3Dca-pub-4118765744455397%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 11:57:30 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=RjAT40SxiuwupQ0IvU7NlpSSsl2sCczyS2Gv0qvrC6FEbzllOxjy7t6yZquJc1OIsig6ZmESLtOJlSzycxRW_fkjFB9IIPSYcqtTqBvK4ay5OIRtcydczJohkwQCBnlVTPeskUX09Fv57fimidHXP5qxAWjwJzHifty1V8q9ErQw1diFKL2wGizhvhNVXzAlgKDq984CIk2vxqAqq_tzMHDYDiE_8uYmBb_zy1EISWnGDBFGFIu97oBAFuVkyVGHq3Wjqw"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 132342106
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash b7c6437e7ee1b3850488ef9169818096
5417a7125e0b66171355016f30294dc4c580fe61
720fdb31870031d1f1c579359467e1a1431d26fc243c97b70d902764a66ac68a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5178
Cache-Control: max-age=114843
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:32 GMT
Etag: "63d95d0d-13a"
Expires: Thu, 02 Feb 2023 19:51:35 GMT
Last-Modified: Tue, 31 Jan 2023 18:25:17 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash b7c6437e7ee1b3850488ef9169818096
5417a7125e0b66171355016f30294dc4c580fe61
720fdb31870031d1f1c579359467e1a1431d26fc243c97b70d902764a66ac68a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5178
Cache-Control: max-age=114843
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:32 GMT
Etag: "63d95d0d-13a"
Expires: Thu, 02 Feb 2023 19:51:35 GMT
Last-Modified: Tue, 31 Jan 2023 18:25:17 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash b7c6437e7ee1b3850488ef9169818096
5417a7125e0b66171355016f30294dc4c580fe61
720fdb31870031d1f1c579359467e1a1431d26fc243c97b70d902764a66ac68a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5121
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:32 GMT
Last-Modified: Wed, 01 Feb 2023 10:32:11 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 314
static.criteo.net/design/dt/1662e641d7d74eeb886a0ffc41a660df_avenirnextltpro-regular.woff
178.250.2.130200 OK 34 kB URL HTTP/2 static.criteo.net/design/dt/1662e641d7d74eeb886a0ffc41a660df_avenirnextltpro-regular.woff
IP 178.250.2.130:0
File type Web Open Font Format, CFF, length 34384, version 1.100\012- data
Hash 6ca898ae5c32e1195b576276384b72b1
05e67b45b9e1dcc4e64f02c619978ee7297f3752
38784db79bb7cb8998e180cff575a3d42741bbdbbeda1aad281c653089b193b1
GET /design/dt/1662e641d7d74eeb886a0ffc41a660df_avenirnextltpro-regular.woff HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 11:57:32 GMT
content-type: text/plain; charset=UTF-8
content-length: 34384
last-modified: Tue, 11 Jun 2019 14:25:37 GMT
etag: "5cffb9e1-8650"
expires: Sat, 27 Jan 2024 11:57:32 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/dt/f342bdd505994d4ebb138128d448f553_avenirnextltpro.woff
178.250.2.130200 OK 21 kB URL HTTP/2 static.criteo.net/design/dt/f342bdd505994d4ebb138128d448f553_avenirnextltpro.woff
IP 178.250.2.130:0
File type Web Open Font Format, TrueType, length 21444, version 1.100\012- data
Hash 20be5fdc3302b5f3d13fca2690afc5ef
1e75a45c81ca3ab4aee08f53c828f60daa21ff58
ed53eeea7846fe89ec2d53b5bf89b34ca78854854abdb469697c63509cc2e0ec
GET /design/dt/f342bdd505994d4ebb138128d448f553_avenirnextltpro.woff HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 11:57:32 GMT
content-type: text/plain; charset=UTF-8
content-length: 21444
last-modified: Tue, 11 Jun 2019 14:25:37 GMT
etag: "5cffb9e1-53c4"
expires: Sat, 27 Jan 2024 11:57:32 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/dt/010ccf751ef748128c521a75a966b8f1_bauer-bodoni-condensed-bold.woff
178.250.2.130200 OK 19 kB URL HTTP/2 static.criteo.net/design/dt/010ccf751ef748128c521a75a966b8f1_bauer-bodoni-condensed-bold.woff
IP 178.250.2.130:0
File type Web Open Font Format, CFF, length 19060, version 3.1\012- data
Hash c9425392bd0018132c74733dd7b2dbf8
a47dd39ae0b16c90e8e15d66302f932e367851bf
389eb0c986cfdb90b468d3c2f068b5bcb6753bb9ece0581e1bba0b8087a92b74
GET /design/dt/010ccf751ef748128c521a75a966b8f1_bauer-bodoni-condensed-bold.woff HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 11:57:32 GMT
content-type: text/plain; charset=UTF-8
content-length: 19060
last-modified: Tue, 21 Jun 2022 20:54:03 GMT
etag: "62b22feb-4a74"
expires: Sat, 27 Jan 2024 11:57:32 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/back_button2.svg
178.250.2.130200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP 178.250.2.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 11:57:32 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Sat, 27 Jan 2024 11:57:32 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/close_button.svg
178.250.2.130200 OK 308 B URL HTTP/2 static.criteo.net/flash/icon/close_button.svg
IP 178.250.2.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 1bfe2e290ec4440da74a2e2c249eae2b
0b888a3f9e27d1554f2e21d51e7a1c223d00dbd4
8ec89605fe3d580e9539c7b858e8f69ba4e26fe06377ebe04585397de23a7395
GET /flash/icon/close_button.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 11:57:32 GMT
content-type: image/svg+xml
content-length: 308
last-modified: Fri, 14 Feb 2020 13:51:32 GMT
etag: "5e46a5e4-134"
expires: Sat, 27 Jan 2024 11:57:32 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 39f6ca1b7865aaacade6af8dfb840bb9
d85b74a1c96889491927bca16fe4fb1bc05d066a
8362bae667f163b53b51cfdc6cf0a5269a13dd46a8e93b79409d7eb9adbf5dc7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4328
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:32 GMT
Last-Modified: Wed, 01 Feb 2023 10:45:24 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 39f6ca1b7865aaacade6af8dfb840bb9
d85b74a1c96889491927bca16fe4fb1bc05d066a
8362bae667f163b53b51cfdc6cf0a5269a13dd46a8e93b79409d7eb9adbf5dc7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4440
Cache-Control: max-age=172035
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:32 GMT
Etag: "63da3f57-13a"
Expires: Fri, 03 Feb 2023 11:44:47 GMT
Last-Modified: Wed, 01 Feb 2023 10:30:47 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 39f6ca1b7865aaacade6af8dfb840bb9
d85b74a1c96889491927bca16fe4fb1bc05d066a
8362bae667f163b53b51cfdc6cf0a5269a13dd46a8e93b79409d7eb9adbf5dc7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4328
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 11:57:32 GMT
Last-Modified: Wed, 01 Feb 2023 10:45:24 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 314
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000025877%2Fretina_detail.jpg&v=3&w=800&s=KaFTNfCJNDb7mTfuoL4V8QcY&b=400
178.250.0.139200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000025877%2Fretina_detail.jpg&v=3&w=800&s=KaFTNfCJNDb7mTfuoL4V8QcY&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 316x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dfc4787825e7a7d78f13e9b77dc7b7d7
86e53410f422e06dc840c924b729e6af518acd5f
954f1fd871c1f87e35ee795a81dd9987250afd476698c9fdec8254c9f8330837
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000025877%2Fretina_detail.jpg&v=3&w=800&s=KaFTNfCJNDb7mTfuoL4V8QcY&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=2140455
expires: Sun, 26 Feb 2023 06:31:47 GMT
date: Wed, 01 Feb 2023 11:57:31 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 11060
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000008820%2Fretina_detail.jpg&v=3&w=800&s=5IduNB2XgF2dAqk83_F34AU0&b=400
178.250.0.139200 OK 8.9 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000008820%2Fretina_detail.jpg&v=3&w=800&s=5IduNB2XgF2dAqk83_F34AU0&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x311, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d48b3a4b24997b0890eabf009f18e7f3
805f5db003c351de3ae216d5473bda64f6d52457
27477adc65f349f5058c515dfbc30510afb8f5478b76d858e939fd55615f8257
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000008820%2Fretina_detail.jpg&v=3&w=800&s=5IduNB2XgF2dAqk83_F34AU0&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2085093
expires: Sat, 25 Feb 2023 15:09:06 GMT
date: Wed, 01 Feb 2023 11:57:31 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8872
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000023441%2Fretina_detail.jpg&v=3&w=800&s=XQunQIY_R5-H-m5EJdFPlvY1&b=400
178.250.0.139200 OK 8.7 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000023441%2Fretina_detail.jpg&v=3&w=800&s=XQunQIY_R5-H-m5EJdFPlvY1&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x353, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4535023c37f772e8d5cc04c347dc06d4
9d2746c7d5e5d844917197ad38466f9eb56bc2a0
f8a6146c5150eded281c4becb27e5aa5a9cdca5db218560867bff67d9a6c98ef
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000023441%2Fretina_detail.jpg&v=3&w=800&s=XQunQIY_R5-H-m5EJdFPlvY1&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2480721
expires: Thu, 02 Mar 2023 05:02:53 GMT
date: Wed, 01 Feb 2023 11:57:31 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8690
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000024155%2Fretina_detail.jpg&v=3&w=800&s=fjKv8GCjwfokCq9thfeu7ojW&b=400
178.250.0.139200 OK 8.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000024155%2Fretina_detail.jpg&v=3&w=800&s=fjKv8GCjwfokCq9thfeu7ojW&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x283, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 360173b2db3851f95e2c2b9891da9a20
09fefa96e06523b3c3c87aee98b4e7dd87d2dd59
8c2a52aa018d3b25690c90d49403cd1ea682bf7ff18364627f4e8f848fedcd8c
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000024155%2Fretina_detail.jpg&v=3&w=800&s=fjKv8GCjwfokCq9thfeu7ojW&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2060299
expires: Sat, 25 Feb 2023 08:15:51 GMT
date: Wed, 01 Feb 2023 11:57:31 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8302
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000020998%2Fretina_detail.jpg&v=3&w=800&s=ht0jU-d7mGQ67fv963pJMXva&b=400
178.250.0.139200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000020998%2Fretina_detail.jpg&v=3&w=800&s=ht0jU-d7mGQ67fv963pJMXva&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x288, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 667fb0b4c67f0a2de8948699be61782f
539c23674411a81c7980b1e1f67f96fd86d863a0
2ccf5826587f4ddc6021bbef0d21ab5f5ca0ae2e62f546635570cfb74bc1b5e7
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000020998%2Fretina_detail.jpg&v=3&w=800&s=ht0jU-d7mGQ67fv963pJMXva&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2052197
expires: Sat, 25 Feb 2023 06:00:50 GMT
date: Wed, 01 Feb 2023 11:57:31 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 11256
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000016080%2Fretina_detail.jpg&v=3&w=800&s=ueMBC99WmC1drHAQocRSFqX0&b=400
178.250.0.139200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000016080%2Fretina_detail.jpg&v=3&w=800&s=ueMBC99WmC1drHAQocRSFqX0&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c655ad465b2b9dfe97dae426fca74212
7ae6b4348d26aebc01fffaf377381f73d080ce33
db69ce879f19f638a0aa397243c90ca9796634f4e2dd96cb83d017f5aa9cf1aa
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000016080%2Fretina_detail.jpg&v=3&w=800&s=ueMBC99WmC1drHAQocRSFqX0&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2165164
expires: Sun, 26 Feb 2023 13:23:37 GMT
date: Wed, 01 Feb 2023 11:57:31 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 11364
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000025871%2Fretina_detail.jpg&v=3&w=800&s=LbKWCcOoidaIHX5QuaIp0Lgt&b=400
178.250.0.139200 OK 7.9 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000025871%2Fretina_detail.jpg&v=3&w=800&s=LbKWCcOoidaIHX5QuaIp0Lgt&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x383, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ba73a4def03eb0518d847d2859873ea9
babe06c102cce0db1536fbe51c662e78a8a71db7
96a429d51663e5e73c747c8ca96390c2a930d5b12838c008ad71cc6d4f102327
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000025871%2Fretina_detail.jpg&v=3&w=800&s=LbKWCcOoidaIHX5QuaIp0Lgt&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=1897296
expires: Thu, 23 Feb 2023 10:59:08 GMT
date: Wed, 01 Feb 2023 11:57:32 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7878
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000026119%2Fretina_detail.jpg&v=3&w=800&s=4VuDzQialT8i2Y-_mSPFpe_E&b=400
178.250.0.139200 OK 8.1 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000026119%2Fretina_detail.jpg&v=3&w=800&s=4VuDzQialT8i2Y-_mSPFpe_E&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x293, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a9a15315550fed18a62556c27bfa5978
7b968fc99e5410749a72bb81fe619470f87a202b
338c7da866cc36b7bffe945e1fc92b53e4ee8be07714af48334a097d42c330d9
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000026119%2Fretina_detail.jpg&v=3&w=800&s=4VuDzQialT8i2Y-_mSPFpe_E&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2418005
expires: Wed, 01 Mar 2023 11:37:37 GMT
date: Wed, 01 Feb 2023 11:57:31 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8052
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy_small.svg
178.250.2.130200 OK 32 kB URL HTTP/2 static.criteo.net/flash/icon/privacy_small.svg
IP 178.250.2.130:0
Hash a8ec2b5919bedec1a4698f5d51479035
b19715cf11e6ab4c31f53f6c7d201dbea4922092
4698b34bb6b9e4fab7f93ee7fdec6c6ed5b91518797cf5fdae652ca8b52733f1
GET /flash/icon/privacy_small.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 11:57:32 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:30:28 GMT
etag: W/"5e42ba84-6aa"
expires: Sat, 27 Jan 2024 11:57:32 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000022810%2Fretina_detail.jpg&v=3&w=800&s=5KKF4zMYK-qzCUkVHblNJKbC&b=400
178.250.0.139200 OK 16 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000022810%2Fretina_detail.jpg&v=3&w=800&s=5KKF4zMYK-qzCUkVHblNJKbC&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 372x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b47911ff9037478a6c424a60620aa06d
9b2078b1753dafc7ece819075991cdd7c89db642
d207259917a3b8606f060b99b7fe15fb34d0dbab5181724e3790f9d7fbfd1f96
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000022810%2Fretina_detail.jpg&v=3&w=800&s=5KKF4zMYK-qzCUkVHblNJKbC&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=2236970
expires: Mon, 27 Feb 2023 09:20:23 GMT
date: Wed, 01 Feb 2023 11:57:32 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 15826
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/animejs/animejs.js
178.250.2.130200 OK 12 kB URL HTTP/2 static.criteo.net/animejs/animejs.js
IP 178.250.2.130:0
Hash 5ba0df0d4cd410a1eefa5dc2bf0e7c3e
4ffc62bcf1570d55d200eb6c62bfe47553fe6857
d8ad520d3cca4b366b42dd12008ef692f8c78893a1a08e5eb60e991b9dda4bc4
GET /animejs/animejs.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 11:57:32 GMT
content-type: text/javascript
last-modified: Tue, 26 Mar 2019 17:44:11 GMT
etag: W/"5c9a64eb-3181"
expires: Sat, 27 Jan 2024 11:57:32 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/adchoices_en.svg
178.250.2.130200 OK 12 kB URL HTTP/2 static.criteo.net/flash/icon/adchoices_en.svg
IP 178.250.2.130:0
Hash 790f025a04e024b9a6bb64a9a799ebfb
a82c0eb0adff2d01996a8c7b10e5ac5ad121bc5f
e0e84a6e2cd9d655394cb4043b87f295e0f3d1f48c6fbad663e8d99373f186c6
GET /flash/icon/adchoices_en.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 11:57:32 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:27:58 GMT
etag: W/"5e42b9ee-759"
expires: Sat, 27 Jan 2024 11:57:32 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000026176%2Fretina_detail.jpg&v=3&w=800&s=Cffx7P17Bf3DkOYDB4QqEMbR&b=400
178.250.0.139200 OK 8.7 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000026176%2Fretina_detail.jpg&v=3&w=800&s=Cffx7P17Bf3DkOYDB4QqEMbR&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 253x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash efeed0a5ff978bdb48993a95d4889210
de2a1f241ac678a4f34e3e6380c1cdb3ffd784d8
db4303dcf9961afe866e80720c5df4296c802462f322e1964a1fb1a9226bd075
GET /img/img?c=3&cq=256&h=800&m=0&partner=49287&q=80&r=0&u=https%3A%2F%2Fwww.fluevog.com%2Fcode%2Fimages%2Fcolour_image%2F0000026176%2Fretina_detail.jpg&v=3&w=800&s=Cffx7P17Bf3DkOYDB4QqEMbR&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=852692
expires: Sat, 11 Feb 2023 08:49:04 GMT
date: Wed, 01 Feb 2023 11:57:31 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8708
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=RjAT40SxiuwupQ0IvU7NlpSSsl2sCczyS2Gv0qvrC6FEbzllOxjy7t6yZquJc1OIsig6ZmESLtOJlSzycxRW_fkjFB9IIPSYcqtTqBvK4ay5OIRtcydczJohkwQCBnlVTPeskUX09Fv57fimidHXP5qxAWjwJzHifty1V8q9ErQw1diFKL2wGizhvhNVXzAlgKDq984CIk2vxqAqq_tzMHDYDiE_8uYmBb_zy1EISWnGDBFGFIu97oBAFuVkyVGHq3Wjqw&sds=2&rev=84569&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=RjAT40SxiuwupQ0IvU7NlpSSsl2sCczyS2Gv0qvrC6FEbzllOxjy7t6yZquJc1OIsig6ZmESLtOJlSzycxRW_fkjFB9IIPSYcqtTqBvK4ay5OIRtcydczJohkwQCBnlVTPeskUX09Fv57fimidHXP5qxAWjwJzHifty1V8q9ErQw1diFKL2wGizhvhNVXzAlgKDq984CIk2vxqAqq_tzMHDYDiE_8uYmBb_zy1EISWnGDBFGFIu97oBAFuVkyVGHq3Wjqw&sds=2&rev=84569&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=RjAT40SxiuwupQ0IvU7NlpSSsl2sCczyS2Gv0qvrC6FEbzllOxjy7t6yZquJc1OIsig6ZmESLtOJlSzycxRW_fkjFB9IIPSYcqtTqBvK4ay5OIRtcydczJohkwQCBnlVTPeskUX09Fv57fimidHXP5qxAWjwJzHifty1V8q9ErQw1diFKL2wGizhvhNVXzAlgKDq984CIk2vxqAqq_tzMHDYDiE_8uYmBb_zy1EISWnGDBFGFIu97oBAFuVkyVGHq3Wjqw&sds=2&rev=84569&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 11:57:32 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=RjAT40SxiuwupQ0IvU7NlpSSsl2sCczyS2Gv0qvrC6FEbzllOxjy7t6yZquJc1OIsig6ZmESLtOJlSzycxRW_fkjFB9IIPSYcqtTqBvK4ay5OIRtcydczJohkwQCBnlVTPeskUX09Fv57fimidHXP5qxAWjwJzHifty1V8q9ErQw1diFKL2wGizhvhNVXzAlgKDq984CIk2vxqAqq_tzMHDYDiE_8uYmBb_zy1EISWnGDBFGFIu97oBAFuVkyVGHq3Wjqw&sds=2&rev=84569&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=RjAT40SxiuwupQ0IvU7NlpSSsl2sCczyS2Gv0qvrC6FEbzllOxjy7t6yZquJc1OIsig6ZmESLtOJlSzycxRW_fkjFB9IIPSYcqtTqBvK4ay5OIRtcydczJohkwQCBnlVTPeskUX09Fv57fimidHXP5qxAWjwJzHifty1V8q9ErQw1diFKL2wGizhvhNVXzAlgKDq984CIk2vxqAqq_tzMHDYDiE_8uYmBb_zy1EISWnGDBFGFIu97oBAFuVkyVGHq3Wjqw&sds=2&rev=84569&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=RjAT40SxiuwupQ0IvU7NlpSSsl2sCczyS2Gv0qvrC6FEbzllOxjy7t6yZquJc1OIsig6ZmESLtOJlSzycxRW_fkjFB9IIPSYcqtTqBvK4ay5OIRtcydczJohkwQCBnlVTPeskUX09Fv57fimidHXP5qxAWjwJzHifty1V8q9ErQw1diFKL2wGizhvhNVXzAlgKDq984CIk2vxqAqq_tzMHDYDiE_8uYmBb_zy1EISWnGDBFGFIu97oBAFuVkyVGHq3Wjqw&sds=2&rev=84569&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 11:57:33 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy.svg
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/privacy.svg
IP 178.250.2.130:0
GET /flash/icon/privacy.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 11:57:32 GMT
content-type: image/svg+xml
last-modified: Wed, 19 Feb 2020 10:57:21 GMT
etag: W/"5e4d1491-646"
expires: Sat, 27 Jan 2024 11:57:32 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/criteo_logo_2021.svg
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/criteo_logo_2021.svg
IP 178.250.2.130:0
GET /flash/icon/criteo_logo_2021.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 11:57:32 GMT
content-type: image/svg+xml
last-modified: Thu, 27 May 2021 13:21:59 GMT
etag: W/"60af9cf7-891"
expires: Sat, 27 Jan 2024 11:57:32 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=Q4K5hrTSIHMD8I_mWFN91L2DjvG81bd6zI6vRxYvFTC02g7hobuwUzbp8QtWVldQrCN4UjDIFWGILwbsaRDmmYRVFH3dXjI5E0OaUwqtG716kDOG8yeGxqDlXwuEWbXm7t5L_IW-V2fKHksQAVQbbIl_dcWGKUb3281pnxiEbwEGPtbiBkCGD1kLpY9Xjy3EHg_e5Dzr-zVboUfwzH6eYyKktJGBEPbH89HYtNSPi8qBJ4Jm06409ZKa6bTBm583zm7BT3HvHwcAYHjCJCC8LtuJfA8aOpCQrJ844K_t2LUb8wN7533q9ucvXMV4IGTngM5wz5EdBIlUiV3AP932gZ_L1z41TMIO2GEoSSotTouYk83_l7_N18dODgX2-AiBCGT45_-3NERBfIxXp-HmVG0Trxdj9FyzaEjLnAd1KAxuYmhZ
178.250.0.160200 OK 0 B URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=Q4K5hrTSIHMD8I_mWFN91L2DjvG81bd6zI6vRxYvFTC02g7hobuwUzbp8QtWVldQrCN4UjDIFWGILwbsaRDmmYRVFH3dXjI5E0OaUwqtG716kDOG8yeGxqDlXwuEWbXm7t5L_IW-V2fKHksQAVQbbIl_dcWGKUb3281pnxiEbwEGPtbiBkCGD1kLpY9Xjy3EHg_e5Dzr-zVboUfwzH6eYyKktJGBEPbH89HYtNSPi8qBJ4Jm06409ZKa6bTBm583zm7BT3HvHwcAYHjCJCC8LtuJfA8aOpCQrJ844K_t2LUb8wN7533q9ucvXMV4IGTngM5wz5EdBIlUiV3AP932gZ_L1z41TMIO2GEoSSotTouYk83_l7_N18dODgX2-AiBCGT45_-3NERBfIxXp-HmVG0Trxdj9FyzaEjLnAd1KAxuYmhZ
IP 178.250.0.160:0
GET /delivery/lg.php?cppv=3&cpp=Q4K5hrTSIHMD8I_mWFN91L2DjvG81bd6zI6vRxYvFTC02g7hobuwUzbp8QtWVldQrCN4UjDIFWGILwbsaRDmmYRVFH3dXjI5E0OaUwqtG716kDOG8yeGxqDlXwuEWbXm7t5L_IW-V2fKHksQAVQbbIl_dcWGKUb3281pnxiEbwEGPtbiBkCGD1kLpY9Xjy3EHg_e5Dzr-zVboUfwzH6eYyKktJGBEPbH89HYtNSPi8qBJ4Jm06409ZKa6bTBm583zm7BT3HvHwcAYHjCJCC8LtuJfA8aOpCQrJ844K_t2LUb8wN7533q9ucvXMV4IGTngM5wz5EdBIlUiV3AP932gZ_L1z41TMIO2GEoSSotTouYk83_l7_N18dODgX2-AiBCGT45_-3NERBfIxXp-HmVG0Trxdj9FyzaEjLnAd1KAxuYmhZ HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 11:57:31 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3542909
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2