tracking.offerteshopping.it/offerteshopping.php
99.80.126.142301 https://tracking.offerteshopping.it/offerteshopping.php 390 B URL HTTP/1.1 tracking.offerteshopping.it/offerteshopping.php
IP 99.80.126.142:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0a67f636e27f88fcf061ad7d8ffce31f
ebc7bfa26c066af6a83274dcfc5010104f336103
545b702030688a548288cbaad86eb304532edbc82dfa7b8ee58c8111ce5d33b7
GET /offerteshopping.php HTTP/1.1
Host: tracking.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 https://tracking.offerteshopping.it/offerteshopping.php
Date: Tue, 31 Jan 2023 09:11:15 GMT
Server: Varnish
X-Varnish: 75892051
location: https://tracking.offerteshopping.it/offerteshopping.php
Content-Type: text/html; charset=utf-8
Retry-After: 5
Content-Length: 390
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4448
Expires: Tue, 31 Jan 2023 10:25:23 GMT
Date: Tue, 31 Jan 2023 09:11:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4052
Expires: Tue, 31 Jan 2023 10:18:47 GMT
Date: Tue, 31 Jan 2023 09:11:15 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 08:43:17 GMT
content-type: application/json
age: 1678
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18881
Expires: Tue, 31 Jan 2023 14:25:56 GMT
Date: Tue, 31 Jan 2023 09:11:15 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: BENWduCbsPY0ulJZxTyydARisBRai3NjzjOGQ5BpL6JhPtKWQN49hoH5jWxz7g3g2RshVc+ZcVwTxPqsawo+wA==
x-amz-request-id: RDJ2ZRS45HY9C4DS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 08:22:08 GMT
age: 2947
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 09:11:15 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
tracking.offerteshopping.it/offerteshopping.php
99.80.126.142302 Found 0 B URL HTTP/2 tracking.offerteshopping.it/offerteshopping.php
IP 99.80.126.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /offerteshopping.php HTTP/1.1
Host: tracking.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Tue, 31 Jan 2023 09:11:15 GMT
server: Apache/2.4.6 (CentOS) PHP/7.4.14
x-powered-by: PHP/7.4.14
location: go.php?url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F
content-length: 0
content-type: text/html; charset=UTF-8
x-varnish: 50655522
age: 0
via: 1.1 varnish (Varnish/6.5)
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 08:49:04 GMT
age: 1332
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
tracking.offerteshopping.it/go.php?url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F
99.80.126.142200 OK 153 B URL HTTP/2 tracking.offerteshopping.it/go.php?url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F
IP 99.80.126.142:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 25dfd11d1f7da649ff07cbfeee02f1c8
77835a804dea02cdd239a436934caa83f4a8b091
34b73d22502b54a2eea48c6e75e29324341c376c87f67883b608a7c4680d4485
GET /go.php?url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F HTTP/1.1
Host: tracking.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
server: Apache/2.4.6 (CentOS) PHP/7.4.14
x-powered-by: PHP/7.4.14
content-length: 153
content-type: text/html; charset=UTF-8
x-varnish: 50655523
age: 0
via: 1.1 varnish (Varnish/6.5)
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 19164bc9de83fdd992004ca10c7b733e
333b02372e372c7e4f5061324446caf5e61bb536
0ef1e3874f229162b91f40169177cec251026a7512fb50d4d095712828876ffa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4271
Cache-Control: max-age=98706
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:16 GMT
Etag: "63d7a917-118"
Expires: Wed, 01 Feb 2023 12:36:22 GMT
Last-Modified: Mon, 30 Jan 2023 11:25:11 GMT
Server: ECS (amb/6B7F)
X-Cache: HIT
Content-Length: 280
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2640
Expires: Tue, 31 Jan 2023 09:55:16 GMT
Date: Tue, 31 Jan 2023 09:11:16 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 19164bc9de83fdd992004ca10c7b733e
333b02372e372c7e4f5061324446caf5e61bb536
0ef1e3874f229162b91f40169177cec251026a7512fb50d4d095712828876ffa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4271
Cache-Control: max-age=98706
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:16 GMT
Etag: "63d7a917-118"
Expires: Wed, 01 Feb 2023 12:36:22 GMT
Last-Modified: Mon, 30 Jan 2023 11:25:11 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.202.152.202101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.202.152.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rsX1JSfH0idPevmruuZmRg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: S3enaygzLhCPKXB3+5EreGYAMaQ=
fonts.googleapis.com/css?family=Lato:100,100italic,300,300italic,regular,italic,700,700italic,900,900italic|Playfair+Display:regular,italic,700,700italic,900,900italic&display=swap
142.250.74.106200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:100,100italic,300,300italic,regular,italic,700,700italic,900,900italic|Playfair+Display:regular,italic,700,700italic,900,900italic&display=swap
IP 142.250.74.106:0
Hash 724bccc45b8e70ef2c598654bb074e83
c9f820a857d67bd9f2f9c918344ccf7bc0d5ae2d
e51a4f27905b4e34ebeff7e279c41d78ab5429431349ec029e3730c53aa469bc
GET /css?family=Lato:100,100italic,300,300italic,regular,italic,700,700italic,900,900italic|Playfair+Display:regular,italic,700,700italic,900,900italic&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 31 Jan 2023 09:11:16 GMT
date: Tue, 31 Jan 2023 09:11:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 9f82582efd3f6652338a73bbeae4b27d
72492ce04854b8a8c4a07a7da255be1ede0675fd
d0d9162ca3bd66129d985c57185b48bb305beb72e30eb31b6f0d164f0e174a48
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5308
Cache-Control: max-age=143993
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:16 GMT
Etag: "63d855f1-118"
Expires: Thu, 02 Feb 2023 01:11:09 GMT
Last-Modified: Mon, 30 Jan 2023 23:42:41 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
tracking.offerteshopping.it/dailymotion-embed.php?dmkey=dailymotion&output=npejs&elemid=dmdesk&referer=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F
99.80.126.142200 OK 463 B URL HTTP/2 tracking.offerteshopping.it/dailymotion-embed.php?dmkey=dailymotion&output=npejs&elemid=dmdesk&referer=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F
IP 99.80.126.142:0
Hash 3ab099989b89af91fb59c81ef7407e94
ac3b9ce0b1cbd25b413b9b509f1236979703c583
cb107235033ec34b6b1e57fa697e21fe73506f61df388da7d5ad706b0aaee6f8
GET /dailymotion-embed.php?dmkey=dailymotion&output=npejs&elemid=dmdesk&referer=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F HTTP/1.1
Host: tracking.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
server: Apache/2.4.6 (CentOS) PHP/7.4.14
x-powered-by: PHP/7.4.14
content-length: 463
content-type: application/javascript
x-varnish: 50655524
age: 0
via: 1.1 varnish (Varnish/6.5)
accept-ranges: bytes
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-content/uploads/2023/01/logo-offerteshopping.png.webp
104.21.29.113200 OK 4.7 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2023/01/logo-offerteshopping.png.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f0115eb4a3dd7a356572e32fe0a769df
e4088cdaa188aa9715c5339c37a81a092d06a26c
dbe5b189bb0e7f07e2eb73d785e298438354a8fe29fc56a2cdd78f138d7ea9f9
GET /wp-content/uploads/2023/01/logo-offerteshopping.png.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 4736
last-modified: Tue, 10 Jan 2023 08:01:36 GMT
etag: "1280-5f1e44aff6b9c"
expires: Tue, 31 Jan 2023 08:35:56 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: magazine01
x-varnish: 564134010 558301216
via: 1.1 varnish (Varnish/6.5)
v-hit: 6
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c6koiT05qXXahiQrspQbDdVcK4oz5WyiQPZDYUFm1xI7gcurnm2Gb2PRVyVNnkhWnmdGdLcUsQAmHQdfJLwawsRI%2Fqc9eMNGGjDMreC3bFYC418624CUKn9rAokz60GlTeUrowMUpUeq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a96cef0b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-content/uploads/magazine/20110426123003_img_0-150x140.jpg.webp
104.21.29.113200 OK 2.2 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/magazine/20110426123003_img_0-150x140.jpg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 150x140, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4a908f2440e5aee2f9a346242e09c058
af1b2dace492baf926a534cf94e0fce52d39983f
87c86c84d70c9006b8d75a00d5ddbdfb610a964f642792bc4292b5dbb6695721
GET /wp-content/uploads/magazine/20110426123003_img_0-150x140.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 2202
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "89a-5f0f876ecef77"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: magazine02
x-varnish: 535562233 537395978
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XcajvA5hZJry5ONzSSlevhDGrW%2FkMSqamV2z6HIYUbwC0endJRJkuCmiJqBrwO4Z00zJxhZPWsZOY1Ffp%2FCA8Cp7KkLcHYf8RwTt3HzZIdBK5%2F4kSVUIL41WPRy1XyRsBVLxRu89LzLB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a97d040b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.offerteshopping.it/wp-content/uploads/2022/03/sterei-compatti-215x156.jpg.webp
104.21.29.113200 OK 3.4 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/03/sterei-compatti-215x156.jpg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 215x156, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 03afcc5ffad20b51528b4ba7d69a9cd2
1dbe3f68553e69f103042db6c85d05838a3bb1cd
f9ecf2f34a1c3e108f7358c905afdacd642540e5c5ba01b521e75ef3b673b001
GET /wp-content/uploads/2022/03/sterei-compatti-215x156.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 3378
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "d32-5f0f876edba97"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: web02
x-varnish: 520032358 551518613
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DyFleTcSZtwCCcoPVj%2BTmM6nt2ps%2FBlrH%2FlT6ghCQLeQUBE70ywRg%2Bl9eThvK844pUd4Les2FTnAxVh9sy8PFfhvsaHxeQJSf3tW7%2F%2BhH2xVgCbDjOh%2B1izm8r%2B1QCi0ESlZ7n%2BQLGGk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a97d0f0b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-content/uploads/2022/03/motore-fuoribordo-215x156.jpg.webp
104.21.29.113200 OK 3.2 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/03/motore-fuoribordo-215x156.jpg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 215x156, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 59caf9ef5ee4d010032af4208d97108d
56989de8a9f9280937b8f4dc7ba43316a1ded8e7
3efc2180ea34bf5ab391a7ad92584325459820c8ec0b57976bd840f596029832
GET /wp-content/uploads/2022/03/motore-fuoribordo-215x156.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 3180
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "c6c-5f0f876ed6c77"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: web03
x-varnish: 544965884 549618248
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=huJ69HRERof2GogJyiBMru9nNcOTcQjdB75FwLMeSE47gheRBfxKOCF%2F%2BzkvhWK4%2FKuRCFa8hquNq8tOuEtm2r1zZ%2FYlNi32UPw%2BCeqLVPi6A30ryMtzvdo1iKSSxtOsHipFXuq0xaem"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a98d260b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-content/uploads/2022/03/occhiali-da-sole-personalizzati-1-215x156.jpg.webp
104.21.29.113200 OK 5.9 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/03/occhiali-da-sole-personalizzati-1-215x156.jpg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 215x156, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c06a2f4c8c1de3e2adc7fe8927a978c7
0c69fb489623dda83833f0769893df5fe83c569e
29f5384e78fcb3e38297cafc99ab2557eabc3cd86dcbc6c5b175b705ca90b598
GET /wp-content/uploads/2022/03/occhiali-da-sole-personalizzati-1-215x156.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 5850
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "16da-5f0f876ede977"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: web01
x-varnish: 563806300 556367904
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9ptowPNBr2Rtdw6GvwYyblL1ordBAm8kKm5wRbPIFEIvqI6hTO0fCvUy83Q%2Bg%2Fk3spXzPQjO9g76gdZFxEf41RMwvuNIdcujLURuswONoPgn2CES9vhFrK4i%2BuANPOBe4XdR36lRfSVp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a97d0c0b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-content/uploads/2022/12/deumidificatore-215x156.jpg.webp
104.21.29.113200 OK 3.8 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/12/deumidificatore-215x156.jpg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6668ff52777f9bacc7dd5e7ceb28e0f1
f26d302eb592c27f2cb9fd57ef8ced89e5ae894d
7ef4bd1f3c446d3642f7db3c51f5fdd2f5f8e82e7952f5b6f6b2df5ff5684f3b
GET /wp-content/uploads/2022/12/deumidificatore-215x156.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 3816
last-modified: Thu, 05 Jan 2023 12:29:35 GMT
etag: "ee8-5f18374264e38"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: magazine01
x-varnish: 532252723 550633945
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M1i%2FX8dOdPeBCCVmRpr2L%2BmNRh1cVJeG3LXA70rwSADhR8VaisTfmcehWxMhEHJy%2FuLVxDveFhDOjYS%2B7GT0wUY3nRy4usIGzpao%2BT9bYU2cAeiJcxqMBDnCYa%2Faj94vPR0s0IdNfxcL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a99d450b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-content/uploads/2022/11/image-23-215x156.png.webp
104.21.29.113200 OK 5.5 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/11/image-23-215x156.png.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 215x156, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d05cfe38af8422b2ec5b918dd5cc6527
8895525b8a70c48b3194515a5fb3727156b040cc
f3a5e9acbf723bdfebe3cd7bc08437d51784b60cd44f393ac6ec9e1336d9b456
GET /wp-content/uploads/2022/11/image-23-215x156.png.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 5512
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "1588-5f0f876ede977"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: web02
x-varnish: 562102560 558333998
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k6S2w4iehRKTrHoTzILduCv63gvrooAQ%2BSw5eGmTC%2BjxURh6AcEvm6yQUrBxz6rYM6RJZg%2BLx8sPIT%2B%2BAUzMzdEQT%2B6j4%2FBEtqJ04JvGkTcpo7LNVrf%2BBm4t1NTQ7rS4NANzKMqE9Mxo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a99d3d0b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-content/uploads/2022/11/queen-2941437_1920-215x156.jpg.webp
104.21.29.113200 OK 5.9 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/11/queen-2941437_1920-215x156.jpg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 215x156, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 80da7d85d98410f2f6b19c46840cc8e5
b79c81a79d943aba9f8dd50509f9d002e3ddc4ab
9feb303f280584d5507a60c5f803263d74cebaa7406f6c6e1f4ae5f5c95053df
GET /wp-content/uploads/2022/11/queen-2941437_1920-215x156.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 5898
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "170a-5f0f876ee4737"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: web02
x-varnish: 565215346 547881622
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N3r2ngmZG%2Bi5GbkAPmJX0mnHfdFmIF%2FNYVx1faSLAhykKiHmNKT5sFOSoiwKiQV7WfFkDsIa15lFYcNpyuMNMmvYygQzwKpjw3lIb51coVwqNSLdczztMwaNJrR%2FUakZDWWdtHBXuyhi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a99d2d0b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-content/uploads/2022/11/Black-Friday-2022-borse-e-scarpe-dove-trovare-le-offerte-migliori--215x156.jpeg.webp
104.21.29.113200 OK 6.4 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/11/Black-Friday-2022-borse-e-scarpe-dove-trovare-le-offerte-migliori--215x156.jpeg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 215x156, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8a186969fae686b5fb1e112375cbe779
3c8335fd1925cf0485eb73073c549fed95709473
9353233ab729237ab856a85f47e14d6811f194e99087dfa4805f71fbb0375fec
GET /wp-content/uploads/2022/11/Black-Friday-2022-borse-e-scarpe-dove-trovare-le-offerte-migliori--215x156.jpeg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 6394
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "18fa-5f0f876ef50d7"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: web01
x-varnish: 559874437 547881623
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IpY7e%2Bkvm1f7YFbw54VfbmnRngAHOcdnIQQ7%2FRcubJ4ON9zfi%2FzcUuZzhSYdwBNzsGgyzDpmgafBMPVGoPKbEduhqfMXAxTEFTbc13g34Hllsgt%2FJP%2FeaiGC9DTej2vT19RE0yNKxnRk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a99d390b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash d480a207c6715dd868efb2b35a8f859f
8ee3157e7e857b2cf5fb8506480cbaf183fe9e4c
c0a59bac4bbe373a37602c70215fdda57fe08873dd457fbd49a1519d2e78c467
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:16 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 06:47:21 GMT
Expires: Tue, 07 Feb 2023 06:47:20 GMT
Etag: "8ee3157e7e857b2cf5fb8506480cbaf183fe9e4c"
Cache-Control: max-age=595563,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792151aa2b560b31-OSL
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.162200 OK 28 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (39375)
Hash 0527e03936503e696156cd15b5a1d531
af27cd71cd358854001ed2c68e9233b9cd5a7d98
c290d4aed801e8b15ab2cd9cfce0df04deaeef010262d8100a0c8c125970087b
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27561
date: Tue, 31 Jan 2023 09:11:16 GMT
expires: Tue, 31 Jan 2023 09:11:16 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1468 / 172 of 1000 / last-modified: 1675119935"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-content/uploads/2022/03/tavolini-da-giardino-215x156.jpg.webp
104.21.29.113200 OK 14 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/03/tavolini-da-giardino-215x156.jpg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 215x156, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash eea453ff8e2c2dee39b293ba8e25a7eb
88e94f40bee7742bcb9674204abf81ecb702e5a8
9d81e7e530ace6833b3beba0c4f8495099fae384b9f50210f3af56a67ec1d7e8
GET /wp-content/uploads/2022/03/tavolini-da-giardino-215x156.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 14132
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "3734-5f0f876ee9557"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: magazine02
x-varnish: 562004338 534643771
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tr3lZB0WKker%2BMZtB2eTR4kHR5fYdl80EK2qWJ0mtUh3Epd3zF3fC6okJlFnX0kTC91XaaQa3iqY%2FlPwAachLungKV5BTLEIMzsmq03hsXADed9jtDfRY9PwmHKB3WIzdOgq5EgiRXOD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a97d080b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-content/uploads/2022/03/cuffie-wireless-215x156.jpg.webp
104.21.29.113200 OK 5.9 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/03/cuffie-wireless-215x156.jpg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 215x156, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3fb2373ee88bac2e5deda380b728208e
969eada1547444f95363d9f70704a25bdeb3e086
1a86bba779e89cd6c5010c7ee2af54ae542c48051e5e4d3b052ef8e0d3e83188
GET /wp-content/uploads/2022/03/cuffie-wireless-215x156.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 5940
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "1734-5f0f876ee3797"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: magazine01
x-varnish: 564723823 550633947
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7kVKa9PLy4Y7QcizmW1eX3HCiagPOeThJw70HYLc5T7Zj6yw0cWNMSgbjABneiMK1R0BFwhuRuXPZ4Lm82qZ4gfZSidM1rglNReu%2BiRTbxtBSAXovT%2BAn8ItdzSP6BrKU98KaSIJXpf0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a97d0e0b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 28c60c59f9b8995b8e4475b8f46ca55a
0cf21fd5e410926605d415ac688d7425ad1ce910
0fb83e8224f1d4731e0d26a8ee227c1df299f9e207974a865ed2ad8a484635be
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=157495
Date: Tue, 31 Jan 2023 09:11:16 GMT
Etag: "63d88e3d-1d7"
Expires: Thu, 02 Feb 2023 04:56:11 GMT
Last-Modified: Tue, 31 Jan 2023 03:42:53 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dUD7OCvngZa0Hw-kHkjcw8h10V97Z-194M-wEXX294Q4F5K4hkqIsA==
Age: 4398
www.offerteshopping.it/wp-content/uploads/2023/01/logo-offerteshopping-inverted.png.webp
104.21.29.113200 OK 4.7 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2023/01/logo-offerteshopping-inverted.png.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash df23a81ce33fc89fd6ec94acb54418e6
a5be13ea37d805eee13a1a64930103f332fdbd1c
60ae10cfab92880e63999cd7b5f910e99a3dbb9c3dbf800efa5f3f7b63288c31
GET /wp-content/uploads/2023/01/logo-offerteshopping-inverted.png.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 4744
last-modified: Tue, 10 Jan 2023 08:06:44 GMT
etag: "1288-5f1e45d585e5a"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: magazine01
x-varnish: 558957314 557875236
via: 1.1 varnish (Varnish/6.5)
v-hit: 6
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GxWw4Y5xBRiNyD%2BlE348cglQ89udVO9076yOBBl1AmrNbv9uX5apuYSdat%2BqarRTbg9Dwa2te%2Ba4exy%2FzLRnrjIVAfqsBMXRkWwaspZyqOvhW41TIpnyU4hbo4suttY1H29fV%2Fs6P6Nz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a9bd700b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-content/uploads/2022/04/polizza-rca-215x156.jpg.webp
104.21.29.113200 OK 3.8 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/04/polizza-rca-215x156.jpg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 215x156, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ef60384814c0b72ed336ce9e9581903f
9f0113fd56c916f93c25d1e497f646bfc7afcdd2
cc2f9f350614ea452e84acbe17e006d5d48c6c322c135f0e8094d3877e7910a2
GET /wp-content/uploads/2022/04/polizza-rca-215x156.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 3762
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "eb2-5f0f876ed5cd7"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: web03
x-varnish: 561414449 550633944
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lN2vD99fC5ivZakPGFNXRQf3l1NLmQW97%2BeJqqx1bOwOPDYxGNMjN0H2SZoG80Fp5lUyiSzG8Ejt08qrx13YgpPZdyZwJruGPZvPx9jzNQg2JKfFG3ZxY0lzBFtCb1%2FV5IF1wNXzn5Q%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a97d0b0b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
104.21.29.113200 OK 4.6 kB URL HTTP/2 www.offerteshopping.it/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 104.21.29.113:0
File type ASCII text, with very long lines (9959)
Hash 4299ca2d6fb354456adde0494bfc55c9
31b785f0dd84de7c4f04aab5cef08c1500de459c
e237d77ee01192cc0fc7a2baea595e9d3dbed942b1913810c628cef81e7e84fe
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: application/javascript
last-modified: Sun, 13 Dec 2020 19:49:44 GMT
etag: W/"5fd67058-2748"
cache-control: public, max-age=14400
v-detect: Mobile
v-maxage: 86400.000
v-uncacheable: false
v-backend: magazine02
x-varnish: 478544333 416417440
via: 1.1 varnish (Varnish/6.5)
v-hit: 25
v-director: magazine
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8z3ul1qCWBOLl8kcocPHDDUzL6lxvXXa%2BNprL%2FkAmx01nyCENKXwrpvLhOS6doPgmKmr6XqXvx4kbiSe2xYq8nkgePqY5ao2EDJka8wZVt6F%2FLAenezaYhC0b4emNrPrB8ftQ5givd1u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a94ccf0b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-content/uploads/2022/03/PANTOFOLE-215x156.jpg.webp
104.21.29.113200 OK 3.5 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/03/PANTOFOLE-215x156.jpg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 215x156, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3347a1bf093a2669558bdd8d8c62f335
9b2ff1d2c589870b9a2acab4ed5e5f4bece929d4
b7fed592a81631a059fc818b4a2dca670403446cf1f7d720dfff9b512fcaf6da
GET /wp-content/uploads/2022/03/PANTOFOLE-215x156.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 3460
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "d84-5f0f876f00c57"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: web01
x-varnish: 536708794 558333995
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RUHGZ5Dm%2BvqnGKnpEQT0XIpslorl3P8tVps7VNeGvf3GQCO2H%2FyjMuAkMAPBo7zqM3i99bkhDuQXgcx9gAkrcEX0GHF7M%2B%2FDu2YgzXm%2BbzVqOFky%2F3W2HZhobZzQR%2FDA4mBEYi%2BOpUnG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a98d220b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.elasticad.net/native/serve/js/quantx/nativeEmbed.gz.js
54.230.111.55200 OK 33 kB URL HTTP/1.1 cdn.elasticad.net/native/serve/js/quantx/nativeEmbed.gz.js
IP 54.230.111.55:0
File type Unicode text, UTF-8 text, with very long lines (65327)
Hash f26dc9e786096bacb32e4c11a6b38d0f
44879341de263b214ce022828dc7ad1a7bbb96dc
a2392c7d0e1aa37aaab4e91a7bf033da6119ec712d4f17a7e85dcec401870b7c
GET /native/serve/js/quantx/nativeEmbed.gz.js HTTP/1.1
Host: cdn.elasticad.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 32902
Connection: keep-alive
Last-Modified: Tue, 03 Jan 2023 07:27:25 GMT
Content-Encoding: br
x-amz-version-id: oGnAgtHq5weedFATpfTrJmbhEc4wSwT2
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 31 Jan 2023 01:35:44 GMT
ETag: "f26dc9e786096bacb32e4c11a6b38d0f"
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MQBSCCUrCfw1DqGXJM_UUXjnGTAjFLog11mfTYYyS6CH1CjsfCDpUA==
Age: 27369
www.offerteshopping.it/wp-content/uploads/2023/01/stufette-elettriche-215x156.jpg.webp
104.21.29.113200 OK 7.7 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2023/01/stufette-elettriche-215x156.jpg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash b002fec414b05c644313d843f8c40f39
bbb58b9dd46bede8ab1e680bd2f4423c11cd4151
dcea484fe9b3ccb847654cb5c5d06deb55c98c3a4c7a95adf7bf9863c17d4541
GET /wp-content/uploads/2023/01/stufette-elettriche-215x156.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 7744
last-modified: Mon, 23 Jan 2023 00:34:24 GMT
etag: "1e40-5f2e38fa43cec"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: web03
x-varnish: 560136558 557088801
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jaCg%2FayHhjp%2FyIsFqRYCau5syyEej93wnLzeF3NBx7R6WIXufJm2UgNxtO7HxKaHjzn%2Ff%2BobmxltPCO6fpk9wiQIIaVvL8eVkbIebyG0hGT%2B2kgaEafICkNej5E%2FkSqK%2BTClepG0v2Uz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a98d270b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-content/uploads/2020/06/logo_off.png.webp
104.21.29.113200 OK 4.0 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2020/06/logo_off.png.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 430f15b826a35a193fc9da111fb9248f
f3b34bf068faa152ff4a2d65c95a3f04d820ebcd
829fd9c3779ea919fa818bc995180a65b84395f92a73ec28eb6994ad9edb6841
GET /wp-content/uploads/2020/06/logo_off.png.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 4048
last-modified: Thu, 29 Dec 2022 14:40:24 GMT
etag: "fd0-5f0f8772247af"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: web01
x-varnish: 561545546 556040234
via: 1.1 varnish (Varnish/6.5)
v-hit: 6
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kLvmtWiJMZjS9wUmQpmusTdqX01TrbtKT9T4pdedRvVtxYLg0C8Q72rUo0LKs%2FQoQFL%2FPY3W8hVTSCFX54eqhh3RRZzmo7JDJ%2FvRXlFNucc5UFctEJuIGr52StRGcM2g%2BlZpYsemWkb6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a9ad4d0b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-content/uploads/2022/12/stendibiancheria-215x156.jpg.webp
104.21.29.113200 OK 3.7 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/12/stendibiancheria-215x156.jpg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9a2cc37f4c2b12e0e9bbfa26c305b131
c280921d2a9541519dcdaffba341f30c532bea3c
55a9503e34bf8d2d423f151c30ce5f5661c79848537cc3699adddd238fd4ce30
GET /wp-content/uploads/2022/12/stendibiancheria-215x156.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 3652
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "e44-5f0f876ee27f7"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: magazine01
x-varnish: 563445854 557842464
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OvV3GLEbslb0C8zACoCYmCWqLWiznWBrs%2F5tEwn3YffVNy%2BNsZHlNZoYppFyRemm1kHAgaLsr9x58bZiyUuFD9M43%2FM8%2F97Tw0tWWvzAe6QyOifep2YSGv1GGJUgO9GAHpTpAQj4lcBZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a99d3a0b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/gpt/pubads_impl_2023012601.js
142.250.74.162200 OK 134 kB URL HTTP/2 securepubads.g.doubleclick.net/gpt/pubads_impl_2023012601.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (65395)
Size 134 kB (133524 bytes)
Hash 9c93b9ff40ce76eec31a00d6f37be983
e61107e891bc0cc85d1ee5604a9124b57e487dcd
096ba462c6c3d33809551b9c74320441ff97dae9da3dc33d4f99f4d60d5dd934
GET /gpt/pubads_impl_2023012601.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 133524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 16:57:28 GMT
expires: Fri, 26 Jan 2024 16:57:28 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 26 Jan 2023 09:36:55 GMT
content-type: text/javascript
age: 404028
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-content/uploads/2022/12/offerte-di-natale-215x156.jpg.webp
104.21.29.113200 OK 9.5 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/12/offerte-di-natale-215x156.jpg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4a35482308821d6ca9dc8ca097fb0abd
2311e41be58943afe893043aa10f9993b1497943
83c6a6d38876f616eb00a9f1caa55c07b5777bd33b39e11f3dc8ca90e2594e17
GET /wp-content/uploads/2022/12/offerte-di-natale-215x156.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 9534
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "253e-5f0f876f15476"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: magazine01
x-varnish: 542409902 550633946
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FebFNtE3%2FSe4fpFI8Iue176MpEFo0uShF1DSt9F3gpzkBQApp22dkqlCvHxSmyhVaM0mkCjEGgGLehYgJK5Wsi94%2FSdaU9KoiY5Mn8OIxlBXOGos4wuZ2NGP%2Fxbl4m1N5nZstLUX%2BhZk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a99d430b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 1ad969b7870d88814b1fa631b311f731
918308253c162f3138a5f369e3def4e239e16adb
619199cddb91234e3653f3ebc0128d54892991793e5e061666145bf112d5c706
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=156800
Date: Tue, 31 Jan 2023 09:11:16 GMT
Etag: "63d88467-1d7"
Expires: Thu, 02 Feb 2023 04:44:36 GMT
Last-Modified: Tue, 31 Jan 2023 03:00:55 GMT
Server: ECS (nyb/1D15)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: V_iJ2GowZ-a6wRp8eqlbME8kv3Yl22ABWU0XUrMIMTYHG-_ZlvlcgQ==
Age: 6221
www.offerteshopping.it/wp-content/uploads/2022/11/Black-Friday-2022-le-offerte-da-Unieuro-MediaWorld-ed-Euronics--215x156.jpeg.webp
104.21.29.113200 OK 6.8 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/11/Black-Friday-2022-le-offerte-da-Unieuro-MediaWorld-ed-Euronics--215x156.jpeg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 215x156, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bd63fd02ca3f134cd401b7b94c4861d4
51a39ee6cfb424047199bc91ed48546653cb4416
2a04e5da7f2fb5f8b9f3e26f766b7af73734d1c925dabd16f2e0b0bd74f62986
GET /wp-content/uploads/2022/11/Black-Friday-2022-le-offerte-da-Unieuro-MediaWorld-ed-Euronics--215x156.jpeg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 6798
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "1a8e-5f0f876ee1857"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: web01
x-varnish: 559448643 542474860
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HC7EVHD7V2F411PL%2BBj1oNvzrqXgZ%2B7EKQ4MEYxWS1vdNCa86beliB%2FrXhPpuNzKEr32AxEY5AFUhm6o3CyppnvPUIlOMQkJvKxkMemfBZbEgbgWn%2BqjCUkggW7RzUZVxTD5%2BqmHU5lW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a99d410b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 9f82582efd3f6652338a73bbeae4b27d
72492ce04854b8a8c4a07a7da255be1ede0675fd
d0d9162ca3bd66129d985c57185b48bb305beb72e30eb31b6f0d164f0e174a48
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5309
Cache-Control: max-age=143993
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:17 GMT
Etag: "63d855f1-118"
Expires: Thu, 02 Feb 2023 01:11:10 GMT
Last-Modified: Mon, 30 Jan 2023 23:42:41 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
www.offerteshopping.it/wp-content/uploads/2022/10/coperte-215x156.jpg.webp
104.21.29.113200 OK 5.4 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/10/coperte-215x156.jpg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 215x156, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 07d012ef8090f5371af05cdb9bc35d96
74d29a013cf0c6ea8f495a425300f09aa1e2006e
f5ba4542a78e0eb82fcdf52e933ddc64e117198678a17f83b952f630bea75ca6
GET /wp-content/uploads/2022/10/coperte-215x156.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 5360
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "14f0-5f0f876ef50d7"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: magazine02
x-varnish: 562037012 558333996
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RYS2uozvJHIYvCN33F%2BS7O0RDFkcKgnTUWmCSVV1Yi3t4AQXQXVNdMpdUnFfkP1NBTdc2FF1xaSHB1Zq0e%2FCrbPXddj2H88fCgJnwpiicpoNPEK%2FKsto6QZ2PAD2FAanX7QCl7JyauRk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a99d470b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18500
Expires: Tue, 31 Jan 2023 14:19:37 GMT
Date: Tue, 31 Jan 2023 09:11:17 GMT
Connection: keep-alive
www.offerteshopping.it/wp-content/uploads/2022/12/servizio-di-piatti-215x156.jpg.webp
104.21.29.113200 OK 10 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/12/servizio-di-piatti-215x156.jpg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 47286657c44a08c0b828351edee744f6
98b753408fe6489c1db1977ba37a029f730b0089
bc3c1f3614ee6813f80ee044ace28c7ffad5d527c6a85cc516e166b28c275c3d
GET /wp-content/uploads/2022/12/servizio-di-piatti-215x156.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 10450
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "28d2-5f0f876effcb7"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: magazine01
x-varnish: 545392001 558333997
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kGmo8xvQQvpm8gStdP9vHgNIGdexKlaWPYw%2FxV%2FsLCRb3fIuFVzlsmdYK9bYPjMp5%2BsnhNfQSZ7D9Gf3UHqkY0MyUHAgQJPX7T6y%2BBZ%2BgNj0T0bQetO4zFV1GrdUjykDp0YAVV%2B0th%2Bz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a99d310b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.adapex.io/hb/aaw.ofrs.js
104.21.6.49200 OK 159 kB URL HTTP/2 cdn.adapex.io/hb/aaw.ofrs.js
IP 104.21.6.49:0
File type ASCII text, with very long lines (65254)
Size 159 kB (158711 bytes)
Hash 617579dd6c3f679bda47f21216fbdc1c
bd9cfb90b82bdae61421c9a883b268f35bf7fc38
da5c9d24714ab1cd32e8c2db7e0a7d31830cb30434b7519c5a608a1530403f79
GET /hb/aaw.ofrs.js HTTP/1.1
Host: cdn.adapex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: application/javascript
last-modified: Tue, 31 Jan 2023 08:25:15 GMT
vary: Accept-Encoding
etag: W/"63d8d06b-81118"
expires: Wed, 01 Feb 2023 08:25:58 GMT
cache-control: public, max-age=86400
access-control-allow-origin: *
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5PTHBqKa1UZCMxUFl6DqlL74wnMVtzyhkH57F5d8OP%2FdNGJZloLW2sPd7HydXKhH7R2iVwCxnAniQpHuav0bJcvNDDQ0kxnhK3fOcOPN%2FQLlCmbWcQ%2FE6WvOGmNMvag7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792151a9db6d0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-content/uploads/2022/12/proiettori-natalizi-215x156.jpg.webp
104.21.29.113200 OK 11 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/12/proiettori-natalizi-215x156.jpg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f67ecbe689c2b5e99acad8a24265baa8
79a0effe616e35de0bdee94aa44fd4ba0b946c6e
00133093e8fb07dff4ff233c170a2e8d2fc4394764dc73657dd741da6a427c44
GET /wp-content/uploads/2022/12/proiettori-natalizi-215x156.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 10932
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "2ab4-5f0f876f098f6"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: magazine02
x-varnish: 560824713 548504149
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sAzkKwqrqghA54kum2o2fu3bxiS8fMk%2FVflMc%2B6WBLr6gE6Hl4waxjLrqU3JjHEhw3WLfSlBXBuXUv1mtd4ZqrF04OwLYwklmf9h8HDd0opy5UUfeUi51pyqZK%2B1aKXClU6%2FRUsmp79r"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a98d280b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-content/uploads/2014/12/164.jpg.webp
104.21.29.113200 OK 115 kB URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2014/12/164.jpg.webp
IP 104.21.29.113:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1600x1039, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 115 kB (114570 bytes)
Hash be00b8764bbb12030deeba1628cd94ac
2a5f2894116f1acf0c25ffb4609df5d36f714ad8
a5cb59d435b88c5cabab1f0f5dc79e20c7895aebeb4d0976005c7abba4dd55e7
GET /wp-content/uploads/2014/12/164.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-type: image/webp
content-length: 114570
last-modified: Thu, 29 Dec 2022 15:32:47 GMT
etag: "1bf8a-5f0f93271683c"
expires: Tue, 31 Jan 2023 08:37:02 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: web01
x-varnish: 549782786 555647050
via: 1.1 varnish (Varnish/6.5)
v-hit: 4
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gUqahaznuOcFeqXri9mF9pFg1pjIdSwUAyLikgfunD93rhJ%2B7te259js19mUWBFo%2FsOE9h8naV1qCBOPsRGqDOYaCI0q0ir3kfb%2BbwPBoiX%2F7O1Eg22Ccjh%2BFZPI66h1eKNkAEgfIim0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a9ad540b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefbec1f8-74c9-424a-88f1-a90a7ff35701.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefbec1f8-74c9-424a-88f1-a90a7ff35701.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ac9e49e19b226b271d1a6f29d7159e64
df578148d224d67fb6e098da3eeb1d86c233cb73
1e065f356fe4ae535ec6fa40ddbad8a2ddad1fa1a053bedceb25c90fa3620ad4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefbec1f8-74c9-424a-88f1-a90a7ff35701.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12154
x-amzn-requestid: 0ba17a3e-c78c-4634-8706-eedd20d8e3c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk303H-mIAMFelA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b8-1d7f813471bcbd3341f06e86;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xPsBUAX9p6j3zfTl4956VqN0aME12n_E5Q2eoHoBaPE1_ElvMrSx5g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:49:14 GMT
etag: "df578148d224d67fb6e098da3eeb1d86c233cb73"
content-type: image/jpeg
age: 40923
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1b5da13dc972cec5d3762bda7b3c8a6d
f3a9300d7f43ffb309bf7af7adcfdb6fe2a21181
4fa5a542a6ca43c1897a9ed34455e39e716f23c8c771462516e4846aaa19714f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FA5A542A6CA43C1897A9ED34455E39E716F23C8C771462516E4846AAA19714F"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17102
Expires: Tue, 31 Jan 2023 13:56:19 GMT
Date: Tue, 31 Jan 2023 09:11:17 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 976dda397f9292a498ca9db5599c0378
dad9e9c3462907a2475046aee36d57f8309cd44e
7ed9ccf2ff75ca53f5ba56a1d2127e0f09b0ae941cad8b042e8df01ad01e614b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6844
x-amzn-requestid: 0542cf46-5045-459f-a35f-f6c0d3f5f7b7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flZsxH0YIAMF9ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86feb-692d50f710a131df2ee49aa8;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oLMUuQVwUyKMuYAvTkA4wlVDb3-kZjStTJFfUZRb7JwKcK11waY0kQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:42:39 GMT
age: 26918
etag: "dad9e9c3462907a2475046aee36d57f8309cd44e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18500
Expires: Tue, 31 Jan 2023 14:19:37 GMT
Date: Tue, 31 Jan 2023 09:11:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1b5da13dc972cec5d3762bda7b3c8a6d
f3a9300d7f43ffb309bf7af7adcfdb6fe2a21181
4fa5a542a6ca43c1897a9ed34455e39e716f23c8c771462516e4846aaa19714f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FA5A542A6CA43C1897A9ED34455E39E716F23C8C771462516E4846AAA19714F"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17102
Expires: Tue, 31 Jan 2023 13:56:19 GMT
Date: Tue, 31 Jan 2023 09:11:17 GMT
Connection: keep-alive
cdn.entiredigital.com/static/notizie.it/images/logo-header-big-2.png
151.139.128.10200 OK 5.6 kB URL HTTP/2 cdn.entiredigital.com/static/notizie.it/images/logo-header-big-2.png
IP 151.139.128.10:0
File type PNG image data, 380 x 81, 8-bit colormap, non-interlaced\012- data
Hash 0bfaff20d059eb6a2827c629d66d66ed
8a9e1d9638caffb5463bd9de6450de4aef689fb4
db579f0e88f84a9c140205aab29c57573ead0cbc4f6517187a3feaf84d4dcc18
GET /static/notizie.it/images/logo-header-big-2.png HTTP/1.1
Host: cdn.entiredigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-length: 5604
content-type: image/png
last-modified: Thu, 04 Oct 2018 17:21:26 GMT
accept-ranges: bytes
server: nginx/1.19.7
etag: "5bb64c16-15e4"
cache-control: max-age=2592000, public
access-control-allow-origin: *
x-hw: 1675156277.cds228.sk1.hn,1675156277.cds211.sk1.c
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-includes/js/utils.min.js?ver=5.3.14
104.21.29.113200 OK 14 kB URL HTTP/2 www.offerteshopping.it/wp-includes/js/utils.min.js?ver=5.3.14
IP 104.21.29.113:0
File type ASCII text, with very long lines (1829), with no line terminators
Hash 062abf0099e5b199ba8712a29572ea90
30edd63968089877412ab3bd594ca60d183ce209
ff1c7ed2de9903200acf2fa0da70264dd249c2af2e67d2d5f7992ee885b13f00
GET /wp-includes/js/utils.min.js?ver=5.3.14 HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: application/javascript
last-modified: Thu, 29 Dec 2022 11:58:06 GMT
etag: W/"63ad80ce-725"
cache-control: public, max-age=14400
v-detect: Mobile
v-maxage: 86400.000
v-uncacheable: false
v-backend: web03
x-varnish: 44008023 1037700800
via: 1.1 varnish (Varnish/6.5)
v-hit: 79
v-director: magazine
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fjVXnsDMvaBAPMFk3Ux3kWp%2FcUttRLQ8OX753jdBeZgrG2HPevt8ysu3lKDbsJxwpDDA3rXU7l8%2FXlnzNFTNlJ3DqRmIhs3HggscI92bQTzSE9Cl0Q1KgG7THwVmslZUra5RWTpLVxWX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a94cc60b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.entiredigital.com/static/contentsads.com/images/contents-ads-logo-411x48.png
151.139.128.10200 OK 6.4 kB URL HTTP/2 cdn.entiredigital.com/static/contentsads.com/images/contents-ads-logo-411x48.png
IP 151.139.128.10:0
File type PNG image data, 411 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 02276b091fe5d3e8f26a9f867fd08c79
39420ba1dbce13b59f30caec7bce79c58e5b869c
bf9fe7de9cc9a6f815a4610f95dd93ad9218e4a75ced98a9a0e08cedb7a6fb63
GET /static/contentsads.com/images/contents-ads-logo-411x48.png HTTP/1.1
Host: cdn.entiredigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-length: 6449
content-type: image/png
last-modified: Mon, 07 Nov 2022 10:16:05 GMT
accept-ranges: bytes
server: nginx/1.19.7
etag: "6368dae5-1931"
cache-control: max-age=2592000, public
access-control-allow-origin: *
x-hw: 1675156277.cds228.sk1.hn,1675156277.cds237.sk1.c
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde59a1de-2b64-4d28-8e63-6d511c4c70d5.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde59a1de-2b64-4d28-8e63-6d511c4c70d5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d143b65b98551bde96a7f026808d4583
3e995e5933e6f8c15ecd3bc642ce1778a11f7ca7
004be88ebe2a4840bb718a5148fcf7d2dc1400f6c1c880cee4428d66ba91dbd9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde59a1de-2b64-4d28-8e63-6d511c4c70d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9972
x-amzn-requestid: 8a609804-1429-4a2d-abdc-7dc74a83a35b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcWB-GO8oAMF5Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4d072-0a0afc9625eb840c0b14b259;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:36:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uOHt5PEtB9XCEUi1eFA_7pTZsZgHQnvadZNw7BiXJTYMmnYgAzZ7pQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 03:50:58 GMT
age: 19219
etag: "3e995e5933e6f8c15ecd3bc642ce1778a11f7ca7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd37b27-1930-4380-aa34-e533abb33eaa.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd37b27-1930-4380-aa34-e533abb33eaa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 146cb1c622ae62d62090dcaf81709056
c9e939eea5ca410e2ac3e2c93fb9cdf51fd3a03e
d1a2caf59c5bfb3fd66c804217c60705de91e5beebd006cffab1d712a5aef85b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd37b27-1930-4380-aa34-e533abb33eaa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8755
x-amzn-requestid: 18054ad3-92df-4a07-b7d1-643293ba4a5f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fR1hDGZfoAMFsFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d09c6c-7aae5ef32459231c25465b1b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 03:05:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5GkQA5AcFOFc2Wn5rdaX7nH5F4wfy52vtlpbI8Qlai-jQE77inKzqA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 10:06:07 GMT
age: 83110
etag: "c9e939eea5ca410e2ac3e2c93fb9cdf51fd3a03e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.entiredigital.com/static/newz.com/images/logo-2x.png
151.139.128.10200 OK 20 kB URL HTTP/2 cdn.entiredigital.com/static/newz.com/images/logo-2x.png
IP 151.139.128.10:0
File type PNG image data, 362 x 144, 8-bit/color RGBA, non-interlaced\012- data
Hash ff978bb0f780af8ea3685ecc7e7b4522
0ff466cea549e944b566b5ea1c8c0a49b13e6dd8
b85e301e7ab253aae867158c6e27773c5a2caadd0a24a2c62940e7a02f69db22
GET /static/newz.com/images/logo-2x.png HTTP/1.1
Host: cdn.entiredigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-length: 19532
content-type: image/png
last-modified: Fri, 26 Feb 2021 14:44:09 GMT
accept-ranges: bytes
server: nginx/1.19.7
etag: "60390939-4c4c"
cache-control: max-age=2592000, public
access-control-allow-origin: *
x-hw: 1675156277.cds228.sk1.hn,1675156277.cds257.sk1.c
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
104.21.29.113200 OK 44 kB URL HTTP/2 www.offerteshopping.it/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 104.21.29.113:0
File type ASCII text, with very long lines (31997)
Hash cb37f383d9b0f6365cec32a9957d1b21
31984c34a9e215867334e44e5ecb641dbb601fda
10655e876c70eeea50974ba4d6743eb427eb81d35e32236acd8eddde8ae8ef5b
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: application/javascript
last-modified: Mon, 11 Jan 2021 10:25:21 GMT
etag: W/"5ffc2791-17a69"
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: web03
x-varnish: 546014471 535396770
via: 1.1 varnish (Varnish/6.5)
v-hit: 22
v-director: magazine
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1HWpyvTKqg0QOYKTCSx8X1gGFLAEGRJ1M%2Fusjwn3E%2B9POJiyALvQfR4rsOwIrGNEZ5tj1ClwKOeDFvFQscqLHjm7y%2FSaPSfOiMkmpLy%2BaK4A%2FTmqzK%2Fx8xawPVCoWRtCVJIwdj3Xi9sK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a93cc30b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.entiredigital.com/static/actualidad.es/images/actualidad.es-white-footer-2.png
151.139.128.10200 OK 22 kB URL HTTP/2 cdn.entiredigital.com/static/actualidad.es/images/actualidad.es-white-footer-2.png
IP 151.139.128.10:0
File type PNG image data, 557 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash 320f0a3bed6f538d2e1cc506e6cf9114
72ddeb4a4185b16dc70a3cfb3cfd7deda69f6de0
1a68773598156f4bb657f7237525c3b33b21899ee547bb154f2834bc1bb901b8
GET /static/actualidad.es/images/actualidad.es-white-footer-2.png HTTP/1.1
Host: cdn.entiredigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-length: 22483
content-type: image/png
last-modified: Wed, 13 May 2020 09:53:59 GMT
accept-ranges: bytes
server: nginx/1.19.7
etag: "5ebbc3b7-57d3"
cache-control: max-age=2592000, public
access-control-allow-origin: *
x-hw: 1675156277.cds228.sk1.hn,1675156277.cds204.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash d81f874741beb45c89de8bb5c6de438e
a251ab903e654953631d84721479bbae55aa5cdf
ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7396e38e25af9115a88ab7eaa8524871
ebef92a862ef26a7775f63ebe18e8b02ef796aa0
d636b5a143cb7a0ba73900c2f91be230e02a532b52b590da81a47f9d17e9691f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 13:08:45 GMT
Expires: Sun, 05 Feb 2023 13:08:44 GMT
Etag: "ebef92a862ef26a7775f63ebe18e8b02ef796aa0"
Cache-Control: max-age=445646,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792151ac0cfe0b31-OSL
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b6e7a202ef4e341935c778b936394986
9d1e06b262c260081053a36af06e078fef964854
b4a9ac25e9fabad8001b5a95d96e6e9e0875ac64d55c68e8376006c64d22b8e6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B4A9AC25E9FABAD8001B5A95D96E6E9E0875AC64D55C68E8376006C64D22B8E6"
Last-Modified: Sat, 28 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1654
Expires: Tue, 31 Jan 2023 09:38:51 GMT
Date: Tue, 31 Jan 2023 09:11:17 GMT
Connection: keep-alive
cdn.entiredigital.com/static/notizie.it/images/notizie.it-white-footer-2.png
151.139.128.10200 OK 41 kB URL HTTP/2 cdn.entiredigital.com/static/notizie.it/images/notizie.it-white-footer-2.png
IP 151.139.128.10:0
File type PNG image data, 844 x 179, 8-bit/color RGBA, non-interlaced\012- data
Hash 72f152d1cdb51c29fa712a8b7f048ebe
81778fce6812a94883ea0632afbbf2a30524fb88
af601f52e5a99187b3f3463670e8eeca6ce4066d18b799a425ea328de9722256
GET /static/notizie.it/images/notizie.it-white-footer-2.png HTTP/1.1
Host: cdn.entiredigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-length: 40740
content-type: image/png
last-modified: Tue, 27 Sep 2016 12:57:24 GMT
accept-ranges: bytes
server: nginx/1.19.7
etag: "57ea6cb4-9f24"
cache-control: max-age=2592000, public
access-control-allow-origin: *
x-hw: 1675156277.cds228.sk1.hn,1675156277.cds241.sk1.c
X-Firefox-Spdy: h2
cdn.entiredigital.com/static/infos.fr/images/infos.fr-white-footer-2.png
151.139.128.10200 OK 14 kB URL HTTP/2 cdn.entiredigital.com/static/infos.fr/images/infos.fr-white-footer-2.png
IP 151.139.128.10:0
File type PNG image data, 332 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash e73cbc893612fd1b9b9c2070a1af7d49
7842181115103d4ca66c65dae546fd0470956d65
78abb50ef2f19e537162e0204b0176b39e5e5ca36f9f93f7c80248f8a4806577
GET /static/infos.fr/images/infos.fr-white-footer-2.png HTTP/1.1
Host: cdn.entiredigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-length: 13801
content-type: image/png
last-modified: Wed, 13 May 2020 09:58:55 GMT
accept-ranges: bytes
server: nginx/1.19.7
etag: "5ebbc4df-35e9"
cache-control: max-age=2592000, public
access-control-allow-origin: *
x-hw: 1675156277.cds228.sk1.hn,1675156277.cds263.sk1.c
X-Firefox-Spdy: h2
cdn.shortpixel.ai/spai/q_lossy+ret_img+to_webp/https://ssl.gstatic.com/gnews/logo/google_news_192.png
194.242.11.186302 Found 0 B URL HTTP/2 cdn.shortpixel.ai/spai/q_lossy+ret_img+to_webp/https://ssl.gstatic.com/gnews/logo/google_news_192.png
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /spai/q_lossy+ret_img+to_webp/https://ssl.gstatic.com/gnews/logo/google_news_192.png HTTP/1.1
Host: cdn.shortpixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 09:11:17 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://ssl.gstatic.com/gnews/logo/google_news_192.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 01/30/2023 10:11:45
cdn-tag: 0; Domain: ssl.gstatic.com; 302
cdn-proxyver: 1.03
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: faf176325b5cb88de6a24681a38cb678
cdn-cache: HIT
X-Firefox-Spdy: h2
cdn.entiredigital.com/static/newshub.co.uk/images/newshub.co.uk-white-footer-2.png
151.139.128.10200 OK 23 kB URL HTTP/2 cdn.entiredigital.com/static/newshub.co.uk/images/newshub.co.uk-white-footer-2.png
IP 151.139.128.10:0
File type PNG image data, 568 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash 607120bafd039d9fa4a0803dd4e72699
650cd1da218dc9ece21384581d9c9094889275de
50d4c0eefb31f6d0ad114725ddb29e2a952283947fe9fca5e863a6460f0fdccd
GET /static/newshub.co.uk/images/newshub.co.uk-white-footer-2.png HTTP/1.1
Host: cdn.entiredigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-length: 23406
content-type: image/png
last-modified: Wed, 13 May 2020 10:02:29 GMT
accept-ranges: bytes
server: nginx/1.19.7
etag: "5ebbc5b5-5b6e"
cache-control: max-age=2592000, public
access-control-allow-origin: *
x-hw: 1675156277.cds228.sk1.hn,1675156277.cds248.sk1.c
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-NGRVMC7
142.250.74.40200 OK 41 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-NGRVMC7
IP 142.250.74.40:0
File type ASCII text, with very long lines (1759)
Hash ba9441f64583273125a0f63078a78aed
e1fb6dbb982f91e3203be140bd76a3b0945aa10a
ab3857e74b001531230e1b176fae03c9368b61afd1ed155d22e6adde4562b927
GET /gtm.js?id=GTM-NGRVMC7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 31 Jan 2023 09:11:17 GMT
expires: Tue, 31 Jan 2023 09:11:17 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 40651
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-PC9HC73
142.250.74.40200 OK 39 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PC9HC73
IP 142.250.74.40:0
File type ASCII text, with very long lines (1759)
Hash 3eede35a9964a7db53122d87f7d2a387
370da1bc7c3a5579acf34175b61a00c40397c0ec
69c03b2e4d702fd4bdaa46b082a2beb8be8c548df1d86cd9ed7c0ab3177db07d
GET /gtm.js?id=GTM-PC9HC73 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 31 Jan 2023 09:11:17 GMT
expires: Tue, 31 Jan 2023 09:11:17 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 39446
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 1.2 kB URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 0465432e45ed4144d8ff105b3e4ec0e1
97c8beb270ff4284f840173cdba1d2e82ce99e34
658231838ff73b315424c321e0773311e0bd37abab6b3bae2e442904aeddf29c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 09:11:17 GMT
Last-Modified: Tue, 31 Jan 2023 08:12:18 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: E5_0sqxEjACACwQ0Kxy4uq2o_wmdEB9h8XyIkk21ndiju9a0OgtZng==
Age: 3540
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash ea7bd3afd8b334545e7b7630091ce9f8
ba54693416c2f58a9fd2120f821862f405544f3a
4305daaa894980822ed0f9988ff95557a9549924bebea06991a2fda331d2f6a2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=129474
Date: Tue, 31 Jan 2023 09:11:17 GMT
Etag: "63d827a6-1d7"
Expires: Wed, 01 Feb 2023 21:09:11 GMT
Last-Modified: Mon, 30 Jan 2023 20:25:10 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QaIcsW0DC3i22ARk8HmGbJyP7B0Gw0Ee7ZvP6WB4PgGCC4Nlxb3HCw==
Age: 2641
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash ea7bd3afd8b334545e7b7630091ce9f8
ba54693416c2f58a9fd2120f821862f405544f3a
4305daaa894980822ed0f9988ff95557a9549924bebea06991a2fda331d2f6a2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=130393
Date: Tue, 31 Jan 2023 09:11:17 GMT
Etag: "63d827a6-1d7"
Expires: Wed, 01 Feb 2023 21:24:30 GMT
Last-Modified: Mon, 30 Jan 2023 20:25:10 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: bFBT2LSmI9i-kClXiLXRJTicXhtX2UcYU4a79p3t5pJJDf3KTJ5TxQ==
Age: 3560
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.227200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 10:25:03 GMT
expires: Mon, 29 Jan 2024 10:25:03 GMT
cache-control: public, max-age=31536000
age: 168374
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
216.58.207.227200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 10:58:23 GMT
expires: Thu, 25 Jan 2024 10:58:23 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
content-type: font/woff2
age: 511974
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
216.58.207.227200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
IP 216.58.207.227:0
Hash 7939cfdf1b15af5b4ff6411276f1d9e2
8b68d86790ed6c98a80248a75be15728b3c33e5c
040f3e6e81ffc023d4e43b82fa1fd8d4dcf6ddeae7379239730b082d4e2e6647
GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 18:29:09 GMT
expires: Mon, 29 Jan 2024 18:29:09 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
content-type: font/woff2
age: 139328
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash d81f874741beb45c89de8bb5c6de438e
a251ab903e654953631d84721479bbae55aa5cdf
ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8f3c72334285b887e0d610eb830f9318
4c7e293483e930a57bd3f8e1c7a0a07aae01126f
aa259a8e5417be207be9a4864457fef3c76a4f6ea9e6283edd54b76207665906
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6400
Cache-Control: max-age=112705
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:17 GMT
Etag: "63d7d776-117"
Expires: Wed, 01 Feb 2023 16:29:42 GMT
Last-Modified: Mon, 30 Jan 2023 14:43:02 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.9.0/webfonts/fa-solid-900.woff2
104.17.24.14200 OK 75 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.9.0/webfonts/fa-solid-900.woff2
IP 104.17.24.14:0
File type Web Open Font Format (Version 2), TrueType, length 75440, version 329.-1049\012- data
Hash b5cf8ae26748570d8fb95a47f46b69e1
07bed153d47f9129a944ee54dd72952deed074c8
cd398be1a91817126cef10224738e624358edf6f08043abad7e60c1aaeccc8d0
GET /ajax/libs/font-awesome/5.9.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 75440
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e60-126b0"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1001964
expires: Sun, 21 Jan 2024 09:11:17 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xYfvijLmlbeagZdVrf8ND7e0Rw5aOgkUqNmF9B66A9gntU5SC36qt5pAVTMRc1sMVQY38OPw6wYamjzdARW9yPOx7DIJNRFjzJlsf5j%2F1HZuZRRCac76X6PVPX%2B8akWbJzc%2F35iK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792151addff9b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.9.0/webfonts/fa-regular-400.woff2
104.17.24.14200 OK 14 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.9.0/webfonts/fa-regular-400.woff2
IP 104.17.24.14:0
File type Web Open Font Format (Version 2), TrueType, length 13580, version 329.-1049\012- data
Hash e07d9e40b26048d9abe2ef966cd6e263
c744217caa82b3245cffa2714aaf2ec9f749614d
6a16c04229bc2b4da226eb97e68d94f49ba6437b7b5e16c14a101b21a29384e9
GET /ajax/libs/font-awesome/5.9.0/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 13580
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e60-350c"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1054680
expires: Sun, 21 Jan 2024 09:11:17 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gw9qHTpz6sSNbbd0vOGun%2BIg2JPhIuSdlO4PG4%2FPC%2FQuyLbnYPvNzQG%2BOtj7552j8dEeHShKMzeJz6VwYfDZoeoBFOXWWGDaDL5tHH761ZYY0t0qIH%2F9N2c9L1LGZTzyewULeqOD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792151addfffb523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.9.0/webfonts/fa-brands-400.woff2
104.17.24.14200 OK 74 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.9.0/webfonts/fa-brands-400.woff2
IP 104.17.24.14:0
File type Web Open Font Format (Version 2), TrueType, length 74508, version 329.-1049\012- data
Hash 7559b3774a0625e8ca6c0160f8f6cfd8
a403af3337e6207d144b998b9c3bed439af562a9
1f49b8706547682e2c5ed6642a2f2dcbd287da458314b967c60d774aa7edb473
GET /ajax/libs/font-awesome/5.9.0/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 74508
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e60-1230c"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 969039
expires: Sun, 21 Jan 2024 09:11:17 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RJl5UJdLvpD3cveLemAH6SrX60u%2BA%2FvbJjMLc3mpcqz%2BwhB7UYqmxMeqAY1S3m3Kf9VtSDItTO9C7lc8NNIu1jPfo3gHjS5xsgK%2BWrQ4ySmz0ACNkKiCVdI8V90z0Jl1RkRtuun6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 792151adcfe6b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ad2.payclick.it/extra/unico/adt_special_js.php?a_aid=ca7cb8b4&chan=18958
54.246.26.100200 OK 1.4 kB URL HTTP/2 ad2.payclick.it/extra/unico/adt_special_js.php?a_aid=ca7cb8b4&chan=18958
IP 54.246.26.100:0
File type ASCII text, with very long lines (1049)
Hash 09f4e314327f608d250d32cd1bb766cc
699f79124e9f2506952318e100ec007f5b777d72
5b47999c7f69171fedd155fe363794b3ce468eb9213c940355b71b4f55d6873d
GET /extra/unico/adt_special_js.php?a_aid=ca7cb8b4&chan=18958 HTTP/1.1
Host: ad2.payclick.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-type: text/html; charset=UTF-8
content-length: 1427
server: Apache/2.4.41 (Ubuntu)
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash fd600bee9b5360e4a2a3460b3734ecf5
2ba6c6af4cb556bf4b5938417de31b06646f3448
406bce84f058a459c6efc0633d19ea4cb7a28a293ca5f9cf0fd017ef35d81d2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4589
Cache-Control: max-age=119192
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:17 GMT
Etag: "63d7f7e0-117"
Expires: Wed, 01 Feb 2023 18:17:49 GMT
Last-Modified: Mon, 30 Jan 2023 17:01:20 GMT
Server: ECS (amb/6B7F)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash aec352657815f12ffe0688a87de78b38
b1567e7c98a2fa6f5ac301ca5cbb3c3a3c887c8e
7c4140541f1afab3e549aaa11ce0014d01d16036e69da9c41a92b8dd8da7b314
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 156
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:17 GMT
Last-Modified: Tue, 31 Jan 2023 09:08:41 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
www.facebook.com/plugins/like.php?href=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&width=450&layout=standard&action=recommend&size=small&show_faces=false&share=true&height=40&appId=126971994137054
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&width=450&layout=standard&action=recommend&size=small&show_faces=false&share=true&height=40&appId=126971994137054
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&width=450&layout=standard&action=recommend&size=small&show_faces=false&share=true&height=40&appId=126971994137054 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: Bls9m4z2YpxK0wYyLWMXdEbyQYnKj7IGeNvOGG3sTmSCCjVgbV5O+kqACtdcdA1Q5TLUC1t4qeFNs1AFk0LYrA==
content-length: 0
date: Tue, 31 Jan 2023 09:11:17 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 833d01c50d7a7c8d687b46c71d99e228
e71f30a44d9cc5487bbfa9181a36f7a56e80bc35
283b9fe5dc51d25f6df4393c0a44fda81bbf6e4685c1a50ad4a6b005b6ffdb4e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2225
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:17 GMT
Etag: "63d701a4-118"
Last-Modified: Tue, 31 Jan 2023 08:34:12 GMT
Server: ECS (amb/6B7F)
X-Cache: HIT
Content-Length: 279
www.offerteshopping.it/wp-content/uploads/2022/04/tagliaerba-1-215x156.jpg.webp
104.21.29.113200 OK 279 B URL HTTP/2 www.offerteshopping.it/wp-content/uploads/2022/04/tagliaerba-1-215x156.jpg.webp
IP 104.21.29.113:0
Hash 833d01c50d7a7c8d687b46c71d99e228
e71f30a44d9cc5487bbfa9181a36f7a56e80bc35
283b9fe5dc51d25f6df4393c0a44fda81bbf6e4685c1a50ad4a6b005b6ffdb4e
GET /wp-content/uploads/2022/04/tagliaerba-1-215x156.jpg.webp HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: image/webp
content-length: 8998
last-modified: Thu, 29 Dec 2022 14:40:21 GMT
etag: "2326-5f0f876ed8bb7"
expires: Tue, 31 Jan 2023 08:36:03 GMT
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: magazine02
x-varnish: 563216471 539067057
via: 1.1 varnish (Varnish/6.5)
v-hit: 5
v-director: magazine
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6%2FbPJcCjr1JSvTg0d%2B5jc0bEhqBHcwBRi3isWpyZwzBhNVRXGS0aLheyFX4HueVgHSZjoOxAFjBCQ6g48BCM2f8kxWfM%2B9%2Bihh0IxG5q6D1EEW1TEs4qezMUoE3%2BXbNGDPrbldXVyqwN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151a98d1c0b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.227200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 04:29:08 GMT
expires: Wed, 31 Jan 2024 04:29:08 GMT
cache-control: public, max-age=31536000
age: 16929
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.biddercore.io/tagman/WAIT/lib.js
185.59.220.198200 OK 98 kB URL HTTP/2 cdn.biddercore.io/tagman/WAIT/lib.js
IP 185.59.220.198:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (65536), with no line terminators
Hash d426ec92df6fe9964043f575d377e078
4d67b5f17c5537706c85ea482e2e6d63368ffc68
21b75a88c4f505422b3d2263ddf0b9f55c0213f33482b6d1fd562e080fb3620f
GET /tagman/WAIT/lib.js HTTP/1.1
Host: cdn.biddercore.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-type: application/javascript
server: BunnyCDN-DE1-723
cdn-pullzone: 60856
cdn-uid: 5e6a9ba4-da10-4b5e-9f52-4279c1fb9c70
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=30
etag: W/"6385cf38-52162"
last-modified: Tue, 29 Nov 2022 09:22:00 GMT
cdn-storageserver: DE-169
cdn-fileserver: 125
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/27/2023 15:16:17
cdn-edgestorageid: 1080
cdn-status: 200
cdn-requestid: bfa6d4a8e67e214cec1c07668a7abc3e
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash aec352657815f12ffe0688a87de78b38
b1567e7c98a2fa6f5ac301ca5cbb3c3a3c887c8e
7c4140541f1afab3e549aaa11ce0014d01d16036e69da9c41a92b8dd8da7b314
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 156
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:17 GMT
Last-Modified: Tue, 31 Jan 2023 09:08:41 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 14d152d02ec86f17657dced7813ca6fb
b9629a646e6343912ae2a0336fa92288c5db91d0
0175eca8d171b979973a3b7e6bcb1f3c14d4f09610662b852e3fab644adeb963
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0175ECA8D171B979973A3B7E6BCB1F3C14D4F09610662B852E3FAB644ADEB963"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7551
Expires: Tue, 31 Jan 2023 11:17:08 GMT
Date: Tue, 31 Jan 2023 09:11:17 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5d7fd3b0a64fde3a486e814a6259ece5
6a1b7ee09a458b8c1bb1971dea9323415f604ddf
2570b36b48e562867b9c11415655f8b3cb548093f4ecaab315e9a896680d6b0a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4869
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:17 GMT
Last-Modified: Tue, 31 Jan 2023 07:50:08 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.20.226:0
Hash 8ab8a5e1b3c355c41010bef77c29d498
f8ee9518238f2da1698c0229727bcc6bdb8875e7
3d8dfd96efeb9f89337e04b107113b90e5337193f6346c48dccaaa1816e40707
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:17 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "B4EEEF9D29FDB2A04A2A9BB0005AA1C42B69191B"
Expires: Tue, 31 Jan 2023 20:00:00 GMT
Last-Modified: Tue, 31 Jan 2023 08:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1113
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792151af9e14fac4-OSL
static.4wnetwork.com/js/groupm.js
54.230.111.52200 OK 404 B URL HTTP/2 static.4wnetwork.com/js/groupm.js
IP 54.230.111.52:0
Hash 3333c210ec5afe702afbb79280ded768
fc90ad9ba80911a0922c461fbbbf14d4e6907821
fdc25f117137a962cc2e4a122e7ab62d29ae301d6838b4edf137990e759bd3d8
GET /js/groupm.js HTTP/1.1
Host: static.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 404
date: Tue, 31 Jan 2023 04:25:01 GMT
server: nginx
last-modified: Mon, 30 Jan 2023 11:26:04 GMT
etag: "63d7a94c-194"
expires: Wed, 01 Feb 2023 04:25:01 GMT
cache-control: max-age=86400, public
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 56Zb8P-7jLsNLT9CDwbQPW5XdyxShGxTZ6VLJiqZTvWgou2hM4u4AQ==
age: 17176
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e3417542dfefef3e0a3b5b6d1507fa7d
0d7cc5a44e3cef6a1d081a57f89cde599ae4c1fb
895f36aa7f20265e1c91d6bac021e824c6b5026e92f2ac09809b406a7b544d02
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1063
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:17 GMT
Last-Modified: Tue, 31 Jan 2023 08:53:34 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash bf9dba27d6dbd25f592289bb14aa510b
caaab1c4ec91201708544b5916998b7f79291d1a
5e3e74abaf9d11abce71142c9143a5476ece251d6f3c93594011800496502f8b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=130103
Date: Tue, 31 Jan 2023 09:11:17 GMT
Etag: "63d820a2-1d7"
Expires: Wed, 01 Feb 2023 21:19:40 GMT
Last-Modified: Mon, 30 Jan 2023 19:55:14 GMT
Server: ECS (dcb/7F5B)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: z83DA42Z5ZkCBuuXDvZ9VM4j3LUG1_dLFf1ipWQBGMAmYL3HxBKwHA==
Age: 5066
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 7c34b8d18f737a78b214c975243f2e5f
97e27750f3cac69b8a21b541042bbf3cae34fcdc
386cbc88c71e38d3a73c8e190deda8cdfe6d84db320a3227d25417a8f3e01c88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2001
Cache-Control: max-age=126639
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:17 GMT
Etag: "63d81f13-117"
Expires: Wed, 01 Feb 2023 20:21:56 GMT
Last-Modified: Mon, 30 Jan 2023 19:48:35 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
cat.hbwrapper.com/
192.241.157.60200 OK 15 B IP 192.241.157.60:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with no line terminators
Hash 0f0479874bf6f4a7281099b15df27c27
55a490e280d48996e564d00492437eb17faadd28
a29ee2b15c494311c52521766e44af56a3ad2248e7a8ab465e5206463c13d288
POST / HTTP/1.1
Host: cat.hbwrapper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 182
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:17 GMT
Server: Apache
Access-Control-Allow-Origin: https://share.offerteshopping.it
Access-Control-Allow-Credentials: true
Content-Length: 15
Connection: close
Content-Type: text/html; charset=UTF-8
cdn.mookie1.com/containr.js
23.13.39.40200 OK 2.9 kB URL HTTP/1.1 cdn.mookie1.com/containr.js
IP 23.13.39.40:0
File type ASCII text, with very long lines (8911), with no line terminators
Hash 7ffd4fb7e1453522a471c78427da2ae1
ffd31aaa4c68ff2d09b295092cabf335b3657d4a
38d3be2ed4b565fd170f63bd420ef939e1b565ef30d461341986c505d84833ed
GET /containr.js HTTP/1.1
Host: cdn.mookie1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "6200df1a0ff97d44f843b0184fa20225:1599561740.987291"
Last-Modified: Tue, 08 Sep 2020 10:42:20 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=60
Expires: Tue, 31 Jan 2023 09:12:17 GMT
Date: Tue, 31 Jan 2023 09:11:17 GMT
Content-Length: 2941
Connection: keep-alive
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: false
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Origin: *
husfly.com/t.js?i=lqtuj6o9h7l2g56bh6&cb=1593431675156293607
54.230.111.36200 OK 15 kB URL HTTP/2 husfly.com/t.js?i=lqtuj6o9h7l2g56bh6&cb=1593431675156293607
IP 54.230.111.36:0
File type ASCII text, with very long lines (55879), with no line terminators
Hash 9778acb4a65663923f2cce2d81ce4981
dd1c287a9982870f34c0db8fca8ecafe0f26d1c3
1b327ca3114cd3550df0ada110bb9a31659c5b5d2ad7b7bf12f48dd168021798
GET /t.js?i=lqtuj6o9h7l2g56bh6&cb=1593431675156293607 HTTP/1.1
Host: husfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 11:58:09 GMT
x-amz-version-id: d9TUuNfK07FAhZMLfVt8QhlIP0dGzjFx
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 07:19:13 GMT
etag: W/"40b4331e9e2a1d8b2f52cc188cd1855e"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8HmWQaR8wfGq8Udtpsu_v-Jck2LrZvdiF2-ceKChpKaqOUSlKNYTPA==
age: 6725
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
secure.adnxs.com/getuid?https://adsr.4wnetwork.com/pixel.html?type=js&xuid=$UID
185.89.211.12307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/getuid?https://adsr.4wnetwork.com/pixel.html?type=js&xuid=$UID
IP 185.89.211.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://adsr.4wnetwork.com/pixel.html?type=js&xuid=$UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Tue, 31 Jan 2023 09:11:17 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fadsr.4wnetwork.com%2Fpixel.html%3Ftype%3Djs%26xuid%3D%24UID
AN-X-Request-Uuid: aae7e8e3-b021-4cc7-bb8d-d02c13cb88ae
Set-Cookie: uuid2=3871910042337844179; SameSite=None; Path=/; Max-Age=7776000; Expires=Mon, 01-May-2023 09:11:17 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 947.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 833d01c50d7a7c8d687b46c71d99e228
e71f30a44d9cc5487bbfa9181a36f7a56e80bc35
283b9fe5dc51d25f6df4393c0a44fda81bbf6e4685c1a50ad4a6b005b6ffdb4e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2225
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:17 GMT
Last-Modified: Tue, 31 Jan 2023 08:34:12 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20230131
151.101.1.229200 OK 898 B URL HTTP/2 cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20230131
IP 151.101.1.229:0
File type JSON data\012- , ASCII text, with very long lines (1590), with no line terminators
Hash b819a71c509d1076fa084ab6c44ed1a4
65a2d7f88c08d32e78d9a3d75cb1e1edd126b72e
2eabdb7e3e31bd379a68ad8c71a076e0d770be006791ae0b1352198af83f36a2
GET /gh/prebid/currency-file@1/latest.json?date=20230131 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/json; charset=utf-8
x-jsd-version: 1.0.1603
x-jsd-version-type: version
etag: W/"636-rGI5GXUwS8QGlu72wUTtK21TlME"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 09:11:17 GMT
age: 18630
x-served-by: cache-fra-eddf8230021-FRA, cache-bma1627-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 898
X-Firefox-Spdy: h2
husfly.com/c/lqtuj6o9h7l2g56bh6.json?cb=1675156293934
54.230.111.36200 OK 1.7 kB URL HTTP/2 husfly.com/c/lqtuj6o9h7l2g56bh6.json?cb=1675156293934
IP 54.230.111.36:0
File type JSON data\012- , ASCII text, with very long lines (1714), with no line terminators
Hash 345386aa4631a03c4737539732ab6e32
6c0abb85453937709d1598d3821018fba3a1f967
7d6245f37bfb937707d821bede996a4097ef9624ff70aa8141a2dede424603d6
GET /c/lqtuj6o9h7l2g56bh6.json?cb=1675156293934 HTTP/1.1
Host: husfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://share.offerteshopping.it/
Origin: https://share.offerteshopping.it
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 1714
last-modified: Thu, 10 Nov 2022 10:16:29 GMT
x-amz-version-id: jti0eF7sP2QApMi4_Fv_swyErf2vGcZk
accept-ranges: bytes
server: AmazonS3
date: Tue, 31 Jan 2023 09:11:17 GMT
etag: "345386aa4631a03c4737539732ab6e32"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yP6er92u0dWZ0WSKvSa0unCJ6VB5OJgMZNEtR5yNCYOWpWJtmDeG5g==
age: 7456
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fadsr.4wnetwork.com%2Fpixel.html%3Ftype%3Djs%26xuid%3D%24UID
185.89.211.12302 Found 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fadsr.4wnetwork.com%2Fpixel.html%3Ftype%3Djs%26xuid%3D%24UID
IP 185.89.211.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fadsr.4wnetwork.com%2Fpixel.html%3Ftype%3Djs%26xuid%3D%24UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://share.offerteshopping.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Tue, 31 Jan 2023 09:11:17 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://adsr.4wnetwork.com/pixel.html?type=js&xuid=0
AN-X-Request-Uuid: e4ddfc44-1686-4aef-97d6-2a61a57bad77
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 947.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
js.omg.neodatagroup.com/omg.js
152.199.21.175200 OK 28 kB URL HTTP/2 js.omg.neodatagroup.com/omg.js
IP 152.199.21.175:0
File type ASCII text, with very long lines (587)
Hash 919bea023c0c53cb6ecd0ea871693ef0
0d541d71a183b0e96c48676b733150607e49b4b9
72d0e049b00d39261d265e7721c9f83e6c6b0ab43eff7187ffa300244a3cf443
GET /omg.js HTTP/1.1
Host: js.omg.neodatagroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
age: 5843
cache-control: max-age=7200
content-md5: urO/X4cwrIu80/+Q7Ve52A==
content-type: text/javascript
date: Tue, 31 Jan 2023 09:11:18 GMT
etag: "0x8DB00683208F290+gzip"
expires: Tue, 31 Jan 2023 11:11:18 GMT
last-modified: Fri, 27 Jan 2023 13:12:51 GMT
server: ECAcc (ska/F6C8)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-state: available
x-ms-lease-status: unlocked
x-ms-request-id: 6d03ead1-201e-0069-1346-350f62000000
x-ms-version: 2014-02-14
content-length: 28188
X-Firefox-Spdy: h2
cdn.radiantmediatechs.com/rmp/5.9.2/js/rmp.min.js
104.22.62.150200 OK 166 kB URL HTTP/2 cdn.radiantmediatechs.com/rmp/5.9.2/js/rmp.min.js
IP 104.22.62.150:0
File type Unicode text, UTF-8 text, with very long lines (56865)
Size 166 kB (165869 bytes)
Hash 9baba4c35895fc2b9781dc9594254486
290647d8b9f0f81ef6b16c4fc721d399a33c263b
29371d66e4b8480d1b69f461b30da28fd89be3b24adc13429421b240cff7da76
GET /rmp/5.9.2/js/rmp.min.js HTTP/1.1
Host: cdn.radiantmediatechs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://smooto.contents.media/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 06 Jul 2020 13:33:49 GMT
cache-control: max-age=31536000, no-transform
expires: Wed, 22 Feb 2023 16:14:38 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Range
timing-allow-origin: *
x-content-type-options: nosniff
cf-cache-status: HIT
age: 665799
server: cloudflare
cf-ray: 792151b04ad5b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 317 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash f986d5522ef41b4fa14e253e7ba8c279
a9d0f2a87973f21189dda209c94bf060f3bade8b
45e63221f925e97d43056c3488ea5d78c917d98e0de6e115962c78815f88d40c
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:18 GMT
Content-Type: application/ocsp-response
Content-Length: 317
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 01:28:00 GMT
Expires: Mon, 06 Feb 2023 01:27:59 GMT
Etag: "a9d0f2a87973f21189dda209c94bf060f3bade8b"
Cache-Control: max-age=490001,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792151ae89a0fabc-OSL
optimized-by.4wnetwork.com/exaudi.php
54.230.111.52200 OK 108 kB URL HTTP/2 optimized-by.4wnetwork.com/exaudi.php
IP 54.230.111.52:0
Size 108 kB (107961 bytes)
Hash 2f2658b0e126da661f3bb89ee13ae202
0f3b9f946f7424ec126a5ad6066d83b4438473f5
99c4a6b4aa8ee737b11a6ef001f4741e14985f6b714efcfa8dfc674cf4229adb
GET /exaudi.php HTTP/1.1
Host: optimized-by.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 31 Jan 2023 09:11:17 GMT
server: nginx
x-powered-by: PHP/7.3.33
set-cookie: profiler=eyJjYW4iOnRydWV9; expires=Thu, 02-Mar-2023 09:11:17 GMT; Max-Age=2592000; path=/; domain=4wnetwork.com; secure; SameSite=none
ad_simply_viewer=63d8db35c3b550.37864978; expires=Thu, 02-Mar-2023 09:11:17 GMT; Max-Age=2592000; path=/; domain=4wnetwork.com; secure; SameSite=none
know=63d8db35c3b550.37864978; expires=Wed, 01-Feb-2023 09:11:17 GMT; Max-Age=86400; path=/; domain=4wnetwork.com; secure; SameSite=none
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nTyOFQUuUIhWuRM15o-L8MEEIvoHCNkxR-P-hMa8tMqn8V8pcp7D1g==
X-Firefox-Spdy: h2
ads.entiredigital.com/ads/www/delivery/afr.php?zoneid=54&cb=1675154081
99.80.126.142200 OK 723 B URL HTTP/2 ads.entiredigital.com/ads/www/delivery/afr.php?zoneid=54&cb=1675154081
IP 99.80.126.142:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (341)
Hash 37058a60cb6fd7032e6d709eb8f3718b
e7df6e4f163d72bc2e09b4a6107abc4a75b4a27e
f98079b643a1b1549df1fbef36906b5292ba8cf6eb44a17e549ccc65ad200608
GET /ads/www/delivery/afr.php?zoneid=54&cb=1675154081 HTTP/1.1
Host: ads.entiredigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
server: Apache/2.4.6 (CentOS) PHP/7.4.14
x-powered-by: PHP/7.4.14
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
access-control-allow-origin: *
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=01000111010001000101000001010010; path=/; secure; SameSite=none
content-length: 723
content-type: text/html; charset=UTF-8
x-varnish: 68877979
age: 0
via: 1.1 varnish (Varnish/6.5)
accept-ranges: bytes
X-Firefox-Spdy: h2
geo.dailymotion.com/player/x7hqh.js
188.65.124.92200 OK 82 kB URL HTTP/1.1 geo.dailymotion.com/player/x7hqh.js
IP 188.65.124.92:0
ASN #41690 Dailymotion S.A.
Hash c8bff0fe798bb8f251c9478d43b347c1
ebdc23a45f1902a14c486e61bb49eb77bbbfc7e0
f96a563870789ff02316efe1b968c036ef30b9eb35f0c539ddf34a8e14c64c24
GET /player/x7hqh.js HTTP/1.1
Host: geo.dailymotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Encoding: gzip
Content-Length: 12392
Content-Security-Policy: upgrade-insecure-requests
Content-Security-Policy-Report-Only: default-src https: blob: wss: data: android-webview-video-poster: android-webview: chrome-extension: safari-extension: 'unsafe-eval' 'unsafe-inline'; report-uri https://www.dailymotion.com/content_security_policy_report_uri
Content-Type: application/javascript; charset=utf-8
Date: Tue, 31 Jan 2023 09:11:18 GMT
Expect-Ct: max-age=0, report-uri="https://www.dailymotion.com/content_security_policy_report_uri"
Referrer-Policy: strict-origin-when-cross-origin
Server: DMS/1.0.42
Server-Timing: total;dur=12, dc;desc="ix7"
Set-Cookie: dmvk=63d8db36389d6; path=/; domain=.dailymotion.com; Secure; SameSite=none;
_TEST_=1; path=/; domain=.dailymotion.com; Secure; SameSite=none;
ts=194220; Path=/; Domain=dailymotion.com; Expires=Sat, 02 Mar 2024 09:11:18 GMT; Max-Age=34214399; Secure; SameSite=None
v1st=37872062-bfc7-4b2f-a253-2bd865b7c292; Path=/; Domain=dailymotion.com; Expires=Sat, 02 Mar 2024 09:11:18 GMT; Max-Age=34214399; Secure; SameSite=None
Strict-Transport-Security: max-age=31708800; includeSubDomains; preload
Timing-Allow-Origin: *
Vary: X-DM-SSL, Accept-Encoding
cdn.radiantmediatechs.com/rmp/5.9.2/css/fonts/roboto-v20-latin-regular.woff2
104.22.62.150200 OK 17 kB URL HTTP/2 cdn.radiantmediatechs.com/rmp/5.9.2/css/fonts/roboto-v20-latin-regular.woff2
IP 104.22.62.150:0
Hash 0002f2a53563a656eb990a7787cbd997
356ea5b3e1eca13db45936ce1b9969ce2018be71
1f89743560f63de2ff5e9ff1f78d8c52dd07d76cd5642607b814df69231306c0
GET /rmp/5.9.2/css/fonts/roboto-v20-latin-regular.woff2 HTTP/1.1
Host: cdn.radiantmediatechs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://smooto.contents.media
Connection: keep-alive
Referer: https://cdn.radiantmediatechs.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:18 GMT
content-type: application/font-woff2
content-length: 15736
last-modified: Mon, 06 Jul 2020 13:33:49 GMT
cache-control: max-age=31536000, no-transform
expires: Wed, 01 Mar 2023 09:33:59 GMT
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Range
timing-allow-origin: *
x-content-type-options: nosniff
cf-cache-status: HIT
age: 85039
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151b338e5b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
geo.dailymotion.com/cookie.js
188.65.124.92200 OK 38 B URL HTTP/1.1 geo.dailymotion.com/cookie.js
IP 188.65.124.92:0
ASN #41690 Dailymotion S.A.
File type ASCII text, with no line terminators
Hash 69676890923499cf1194cfb3c9524151
6698aa6f54c1f8516ea8be3d9700212a3554c1ca
407c0ea74212ba3a966ae1d7cf3c8ecf68e6071c8b6194fa830e4560ec13635b
GET /cookie.js HTTP/1.1
Host: geo.dailymotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Cookie: dmvk=63d8db36389d6; _TEST_=1; ts=194220; v1st=37872062-bfc7-4b2f-a253-2bd865b7c292
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Length: 38
Content-Security-Policy: upgrade-insecure-requests
Content-Security-Policy-Report-Only: default-src https: blob: wss: data: android-webview-video-poster: android-webview: chrome-extension: safari-extension: 'unsafe-eval' 'unsafe-inline'; report-uri https://www.dailymotion.com/content_security_policy_report_uri
Content-Type: application/javascript; charset=utf-8
Date: Tue, 31 Jan 2023 09:11:18 GMT
Expect-Ct: max-age=0, report-uri="https://www.dailymotion.com/content_security_policy_report_uri"
Referrer-Policy: strict-origin-when-cross-origin
Server: DMS/1.0.42
Server-Timing: total;dur=6, dc;desc="ix7"
Set-Cookie: _TEST_=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.dailymotion.com; Secure; SameSite=none;
Strict-Transport-Security: max-age=31708800; includeSubDomains; preload
Timing-Allow-Origin: *
Vary: X-DM-SSL
ads.entiredigital.com/ads/www/delivery/afr.php?zoneid=33&cb=1675154081
99.80.126.142200 OK 723 B URL HTTP/2 ads.entiredigital.com/ads/www/delivery/afr.php?zoneid=33&cb=1675154081
IP 99.80.126.142:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (341)
Hash b53ca30fee68c5a9478733d4a6a34e63
2404d85673c0c5617b397fd013421943fa9bc6ec
9bb94a64876fda3d44cdc71871ac1a6ddacd9f5b011c364249d3822a614b6976
GET /ads/www/delivery/afr.php?zoneid=33&cb=1675154081 HTTP/1.1
Host: ads.entiredigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:18 GMT
server: Apache/2.4.6 (CentOS) PHP/7.4.14
x-powered-by: PHP/7.4.14
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
access-control-allow-origin: *
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=01000111010001000101000001010010; path=/; secure; SameSite=none
content-length: 723
content-type: text/html; charset=UTF-8
x-varnish: 68877980
age: 0
via: 1.1 varnish (Varnish/6.5)
accept-ranges: bytes
X-Firefox-Spdy: h2
www.offerteshopping.it/wp-includes/js/comment-reply.min.js?ver=5.3.14
104.21.29.113200 OK 24 kB URL HTTP/2 www.offerteshopping.it/wp-includes/js/comment-reply.min.js?ver=5.3.14
IP 104.21.29.113:0
File type ASCII text, with very long lines (2337), with no line terminators
Hash f33803ae3b231e3487ea1147836fe09e
9f426a3ed0e0e7750b6cbf78a8e8af36015e5ee7
2a13a02e3ec807fc2f571d419caea4ef97192c3517f5a2dd8daa0143eb64ae78
GET /wp-includes/js/comment-reply.min.js?ver=5.3.14 HTTP/1.1
Host: www.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: application/javascript
last-modified: Thu, 29 Dec 2022 11:58:05 GMT
etag: W/"63ad80cd-921"
cache-control: public, max-age=14400
v-maxage: 86400.000
v-uncacheable: false
v-backend: web02
x-varnish: 534448031 505382830
via: 1.1 varnish (Varnish/6.5)
v-hit: 36
v-director: magazine
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m6yGwE4njkMfH%2BCVNVfFGFDR%2FgQYaWk6d5c3CACOko8fnA8XVjrFeHfEwbGcpY7w7GTe8oIpC0y4RDnGQ1tfPjsxl0OSPrhWh0N5ZlpcE4C2PLEEQXTMGOo%2BPRbF0LjjS8v0zGums8xt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151aa0db10b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
adsr.4wnetwork.com/pixel.html?type=js&xuid=0
54.230.111.122200 OK 26 kB URL HTTP/2 adsr.4wnetwork.com/pixel.html?type=js&xuid=0
IP 54.230.111.122:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 942690f16b68e064fae565a7638c7f4a
5c6474c80d010b26389bf25aaed79668472d0ac3
24318224828eb7f9b58311277a40fb12156d64a91fa00858cbc447be1e3451a5
GET /pixel.html?type=js&xuid=0 HTTP/1.1
Host: adsr.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://share.offerteshopping.it/
Connection: keep-alive
Cookie: profiler=eyJjYW4iOnRydWV9; ad_simply_viewer=63d8db35c3b550.37864978; know=63d8db35c3b550.37864978
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Tue, 31 Jan 2023 09:11:18 GMT
server: nginx/1.20.0
x-powered-by: PHP/7.3.33
cache-control: must-revalidate, no-cache, private
access-control-allow-origin: *
access-control-allow-credentials: true
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Tx8Ks356qv4PmeYYyef2GurAcKvjvIgTMcMts_dNNweC_THsSKgxdg==
X-Firefox-Spdy: h2
ads.entiredigital.com/ads/www/delivery/lg.php?bannerid=0&campaignid=0&zoneid=54&loc=https%3A%2F%2Fshare.offerteshopping.it%2F&cb=961f687505
99.80.126.142200 OK 43 B URL HTTP/2 ads.entiredigital.com/ads/www/delivery/lg.php?bannerid=0&campaignid=0&zoneid=54&loc=https%3A%2F%2Fshare.offerteshopping.it%2F&cb=961f687505
IP 99.80.126.142:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /ads/www/delivery/lg.php?bannerid=0&campaignid=0&zoneid=54&loc=https%3A%2F%2Fshare.offerteshopping.it%2F&cb=961f687505 HTTP/1.1
Host: ads.entiredigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.entiredigital.com/ads/www/delivery/afr.php?zoneid=54&cb=1675154081
Cookie: OAID=01000111010001000101000001010010
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:18 GMT
server: Apache/2.4.6 (CentOS) PHP/7.4.14
x-powered-by: PHP/7.4.14
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
access-control-allow-origin: *
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=01000111010001000101000001010010; path=/; secure; SameSite=none
content-length: 43
content-type: image/gif
x-varnish: 68877981
age: 0
via: 1.1 varnish (Varnish/6.5)
accept-ranges: bytes
X-Firefox-Spdy: h2
s-img.mgid.com/g/13780634/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wNy8xMDE5MjQvMWEzNjA0ZWU4ZGJiNTYxNjIzZGE3MmVhYWI4OGE4MDAucG5n.webp?v=1675156278-AKqxrNZ2SIz6PNF-Bod70UQdBpbqY1Ibe6FlMOwjEOs
104.19.133.78200 OK 15 kB URL HTTP/2 s-img.mgid.com/g/13780634/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wNy8xMDE5MjQvMWEzNjA0ZWU4ZGJiNTYxNjIzZGE3MmVhYWI4OGE4MDAucG5n.webp?v=1675156278-AKqxrNZ2SIz6PNF-Bod70UQdBpbqY1Ibe6FlMOwjEOs
IP 104.19.133.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3ace4ba9d8680c98b0bcae5a5f33788e
bd70c3acf532b425f0eba7709ecf35e836088dd7
7f07d0f074d9770ae9e040394b1b3cc4f49bb75e52ca1e9388d9b9b0c64c5379
GET /g/13780634/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wNy8xMDE5MjQvMWEzNjA0ZWU4ZGJiNTYxNjIzZGE3MmVhYWI4OGE4MDAucG5n.webp?v=1675156278-AKqxrNZ2SIz6PNF-Bod70UQdBpbqY1Ibe6FlMOwjEOs HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:18 GMT
content-type: image/webp
content-length: 14938
x-mg-request-uuid: b812f3d4-5338-4ad2-8984-cb727c11e317
access-control-allow-origin: *
last-modified: Thu, 11 Aug 2022 08:45:29 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8420508
accept-ranges: bytes
set-cookie: __cf_bm=VmF0B7EO8232EYhwued4Eg.zHrmVkXdLCPGWJbjfUdM-1675156278-0-AcXyrDfaUpPnYjFxVy/rO9usWycGMQB76aXrF8iaInn0KJjIM/Ov8jQwSr1NoR0LhEVDm8r+YrrClUuQ+5OZToI=; path=/; expires=Tue, 31-Jan-23 09:41:18 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151b428b5b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/15112101/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0xMi8xMDE5MjQvODRkM2RkMGVmZTdhZjE3NDdkZTk1YjI5Y2ZjY2QzZGUuanBlZw.webp?v=1675156278-J_7-6_nnt8AlxK3z4BofjdTfToK79mSm3orUc6qyq6I
104.19.133.78200 OK 5.1 kB URL HTTP/2 s-img.mgid.com/g/15112101/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0xMi8xMDE5MjQvODRkM2RkMGVmZTdhZjE3NDdkZTk1YjI5Y2ZjY2QzZGUuanBlZw.webp?v=1675156278-J_7-6_nnt8AlxK3z4BofjdTfToK79mSm3orUc6qyq6I
IP 104.19.133.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a784241139ebc64b85f5a93f5de88e87
1b3a40295401c197205749721ddde4fd348f9fe5
1a697ffb5a9f172030dc6b6d7301f72b11a1938e83694b027b06ffb45e2ad3a0
GET /g/15112101/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0xMi8xMDE5MjQvODRkM2RkMGVmZTdhZjE3NDdkZTk1YjI5Y2ZjY2QzZGUuanBlZw.webp?v=1675156278-J_7-6_nnt8AlxK3z4BofjdTfToK79mSm3orUc6qyq6I HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:18 GMT
content-type: image/webp
content-length: 5128
x-mg-request-uuid: 09f674fb-bfaa-4d8e-9d06-21a81e824862
access-control-allow-origin: *
last-modified: Thu, 12 Jan 2023 09:58:11 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 1638787
accept-ranges: bytes
set-cookie: __cf_bm=DlHmkgbni0VmM1m_Qk0WP0FujJt7J_yb53FYfM6bMGE-1675156278-0-AbJrmPQ0gezKGZZNnNGfE36tptBacZXAMrbikO4mRldFbvUW4IleQzrfm45oPOvwg1USi7hq6drXyNO8lIuj6C0=; path=/; expires=Tue, 31-Jan-23 09:41:18 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151b438cbb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/13404775/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wNi8xMDE5MjQvMTViN2I4NDYwNjM1ZDhlOTZlYjU4YmEzNWM4ZGQ2MTcucG5n.webp?v=1675156278-IEL7PjRdQoZiy6LQYvrvK0GZEMIbWEWTagLwp-Ui46o
104.19.133.78200 OK 24 kB URL HTTP/2 s-img.mgid.com/g/13404775/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wNi8xMDE5MjQvMTViN2I4NDYwNjM1ZDhlOTZlYjU4YmEzNWM4ZGQ2MTcucG5n.webp?v=1675156278-IEL7PjRdQoZiy6LQYvrvK0GZEMIbWEWTagLwp-Ui46o
IP 104.19.133.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c71554fc201d47270e6a34d451f8da3f
0119df7387441a49b40251888b90ce0deb979c53
60086cb421e3e2a2b358cbfda0a26d5492fd950e05b4e7ea5cf031f6cab43fa8
GET /g/13404775/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wNi8xMDE5MjQvMTViN2I4NDYwNjM1ZDhlOTZlYjU4YmEzNWM4ZGQ2MTcucG5n.webp?v=1675156278-IEL7PjRdQoZiy6LQYvrvK0GZEMIbWEWTagLwp-Ui46o HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:18 GMT
content-type: image/webp
content-length: 24200
x-mg-request-uuid: f6c82862-a9b2-4d73-9612-2931ccbfa89d
access-control-allow-origin: *
last-modified: Fri, 01 Jul 2022 07:14:30 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8420489
accept-ranges: bytes
set-cookie: __cf_bm=4VMST87A0foeLYQeRBaxIKtcUnfQ2sDIxi55FfpgSPc-1675156278-0-AWTba3/9+hrmJhevAGalBxSXg9RcBsCiGdWMlHCjA2HiFvOcGP9QykcqlmP2zk5UiU867b+wGYhR05j946kEqyE=; path=/; expires=Tue, 31-Jan-23 09:41:18 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151b448cfb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/13780658/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wNy8xMDE5MjQvNzZhNTlhM2VhMjM3M2U2MTIyOTY2MWRjOTBhZTlkYmQucG5n.webp?v=1675156278-uig6EBfiFNbpXnpvjw5g-aNEFNYAicBM2wvgvt478D4
104.19.133.78200 OK 17 kB URL HTTP/2 s-img.mgid.com/g/13780658/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wNy8xMDE5MjQvNzZhNTlhM2VhMjM3M2U2MTIyOTY2MWRjOTBhZTlkYmQucG5n.webp?v=1675156278-uig6EBfiFNbpXnpvjw5g-aNEFNYAicBM2wvgvt478D4
IP 104.19.133.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash be874c09827980f590c4684043d258be
4bd4d68bd248fb4668270df496b209fa233c56a2
db3bbe73557c1cc574445d61035ca730101e5a2f937cb302fc71fab45802712d
GET /g/13780658/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wNy8xMDE5MjQvNzZhNTlhM2VhMjM3M2U2MTIyOTY2MWRjOTBhZTlkYmQucG5n.webp?v=1675156278-uig6EBfiFNbpXnpvjw5g-aNEFNYAicBM2wvgvt478D4 HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:18 GMT
content-type: image/webp
content-length: 17004
x-mg-request-uuid: f5a0ae43-3ddd-46e4-9aae-b59657a82732
access-control-allow-origin: *
last-modified: Thu, 11 Aug 2022 08:45:24 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8420506
accept-ranges: bytes
set-cookie: __cf_bm=VR1mVKvjExgE6NtWUM0A.WkgdQnm82tzWjHO3FhCW3Y-1675156278-0-AVyf1dFSQPHylDFuzHaiGAuMQC6alcmczI7ijeKX1aplJVj1HH6jdHyeFNznTnljkSkeV7HVro6ArG8VgeFd7lk=; path=/; expires=Tue, 31-Jan-23 09:41:18 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151b448d1b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
geo.dailymotion.com/player/x7hqh.html?video=x8hp5lb
188.65.124.92200 OK 16 kB URL HTTP/1.1 geo.dailymotion.com/player/x7hqh.html?video=x8hp5lb
IP 188.65.124.92:0
ASN #41690 Dailymotion S.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (12240)
Hash 50db36911e380f360d1205cf81d61c9f
f3f7db00c64a22f76f03712b3191e588b53da7aa
abdd3113dee45d5f8d63c720c7494ff358f40ce937dd9488963fdc75182cd2e4
GET /player/x7hqh.html?video=x8hp5lb HTTP/1.1
Host: geo.dailymotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Cookie: dmvk=63d8db36389d6; ts=194220; v1st=37872062-bfc7-4b2f-a253-2bd865b7c292
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Encoding: gzip
Content-Length: 15702
Content-Security-Policy: upgrade-insecure-requests
Content-Security-Policy-Report-Only: default-src https: blob: wss: data: android-webview-video-poster: android-webview: chrome-extension: safari-extension: 'unsafe-eval' 'unsafe-inline'; report-uri https://www.dailymotion.com/content_security_policy_report_uri
Content-Type: text/html; charset=utf-8
Date: Tue, 31 Jan 2023 09:11:18 GMT
Expect-Ct: max-age=0, report-uri="https://www.dailymotion.com/content_security_policy_report_uri"
Referrer-Policy: strict-origin-when-cross-origin
Server: DMS/1.0.42
Server-Timing: total;dur=25, dc;desc="ix7"
Strict-Transport-Security: max-age=31708800; includeSubDomains; preload
Timing-Allow-Origin: *
Vary: X-DM-SSL,Accept-Encoding
s-img.mgid.com/g/3805454/492x277/0x0x492x277/aHR0cDovL2ltZ2hvc3RzLmNvbS90ZW1wLzIwMTctMDUtMjQvMTAxOTI0LzQzZWZhNTE3NTc0NjliMGMyNmFjYTQzZWIzODY0OWRhLmpwZw.webp?v=1675156278-nMN6W3FfoHJiNrX5S11IammGrZF6SeFWRY36GmLwy8E
104.19.133.78200 OK 11 kB URL HTTP/2 s-img.mgid.com/g/3805454/492x277/0x0x492x277/aHR0cDovL2ltZ2hvc3RzLmNvbS90ZW1wLzIwMTctMDUtMjQvMTAxOTI0LzQzZWZhNTE3NTc0NjliMGMyNmFjYTQzZWIzODY0OWRhLmpwZw.webp?v=1675156278-nMN6W3FfoHJiNrX5S11IammGrZF6SeFWRY36GmLwy8E
IP 104.19.133.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash eb53e1829e91d50ab591bf2ef39f2318
827c024fd3c046d8b81c4bddb13e40fe6ba921a8
9b52d93a651a33265c81b3978a127a8fa0036c43e7627506c0a8c3dc29af09ce
GET /g/3805454/492x277/0x0x492x277/aHR0cDovL2ltZ2hvc3RzLmNvbS90ZW1wLzIwMTctMDUtMjQvMTAxOTI0LzQzZWZhNTE3NTc0NjliMGMyNmFjYTQzZWIzODY0OWRhLmpwZw.webp?v=1675156278-nMN6W3FfoHJiNrX5S11IammGrZF6SeFWRY36GmLwy8E HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:18 GMT
content-type: image/webp
content-length: 10974
x-mg-request-uuid: 16c6542f-90c0-435e-8a38-753b9322d013
access-control-allow-origin: *
last-modified: Wed, 10 Aug 2022 17:24:56 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8420507
accept-ranges: bytes
set-cookie: __cf_bm=bXvQJkcbifrjJusoKuXC7Pmp.dXlepIxun2L33Kmekk-1675156278-0-AaKe43zt+PzJwT+eSCB+0CQq6AAw+4XDxLOu6KntoFWOEP5ibhPkBji/nQnrNSzaLCDyAvGNqGYTCuC32F2fmLI=; path=/; expires=Tue, 31-Jan-23 09:41:18 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151b458e3b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash a80a5d23ed81f592e126ad59c3b5eae7
006381e8d06b3a9a4b8dbf53f1258a28fc0e1622
c3c30c33b4d6c9025c6af9aa3c08c29720b4108c978b3c8fc7b71cfab1a0d972
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:18 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 17:04:29 GMT
Expires: Sun, 05 Feb 2023 17:04:28 GMT
Etag: "006381e8d06b3a9a4b8dbf53f1258a28fc0e1622"
Cache-Control: max-age=459789,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792151b42dfefabc-OSL
pebed.dm-event.net/
188.65.124.58200 OK 14 kB IP 188.65.124.58:0
ASN #41690 Dailymotion S.A.
Hash c57699f083a6815e82e33cbe6d26e0dd
2ebbfd0ae946f75f452af9267131a242738f41de
1b9bca86c9d9cc790fe043f4234db65709d52ade8b4618c4b43777850037f6d4
POST / HTTP/1.1
Host: pebed.dm-event.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://share.offerteshopping.it/
Content-Type: text/plain;charset=UTF-8
Origin: https://share.offerteshopping.it
Content-Length: 1448
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Encoding, X-Dm-EventBus-Compression-Duration, X-Dm-EventBus-Worker-Duration
Access-Control-Allow-Methods: POST
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 604800
Content-Type: application/json
Server: edward-ed/2.2.1
Date: Tue, 31 Jan 2023 09:11:18 GMT
Content-Length: 15
pebed.dm-event.net/
188.65.124.58200 OK 0 B IP 188.65.124.58:0
ASN #41690 Dailymotion S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: pebed.dm-event.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-dm-eventbus-compression-duration,x-dm-eventbus-worker-duration
Referer: https://geo.dailymotion.com/
Origin: https://geo.dailymotion.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Encoding, X-Dm-EventBus-Compression-Duration, X-Dm-EventBus-Worker-Duration
Access-Control-Allow-Methods: POST
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 604800
Server: edward-ed/2.2.1
Date: Tue, 31 Jan 2023 09:11:18 GMT
Content-Length: 0
pebed.dm-event.net/
188.65.124.58200 OK 15 B IP 188.65.124.58:0
ASN #41690 Dailymotion S.A.
File type JSON data\012- , ASCII text, with no line terminators
Hash 0f0479874bf6f4a7281099b15df27c27
55a490e280d48996e564d00492437eb17faadd28
a29ee2b15c494311c52521766e44af56a3ad2248e7a8ab465e5206463c13d288
POST / HTTP/1.1
Host: pebed.dm-event.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://geo.dailymotion.com/
Content-Type: text/plain; charset=UTF-8
X-Dm-EventBus-Compression-Duration: 0
X-Dm-EventBus-Worker-Duration: 0
Content-Length: 1886
Origin: https://geo.dailymotion.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Encoding, X-Dm-EventBus-Compression-Duration, X-Dm-EventBus-Worker-Duration
Access-Control-Allow-Methods: POST
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 604800
Content-Type: application/json
Server: edward-ed/2.2.1
Date: Tue, 31 Jan 2023 09:11:18 GMT
Content-Length: 15
ads.entiredigital.com/ads/www/delivery/lg.php?bannerid=0&campaignid=0&zoneid=33&loc=https%3A%2F%2Fshare.offerteshopping.it%2F&cb=d4b746d01e
99.80.126.142200 OK 43 B URL HTTP/2 ads.entiredigital.com/ads/www/delivery/lg.php?bannerid=0&campaignid=0&zoneid=33&loc=https%3A%2F%2Fshare.offerteshopping.it%2F&cb=d4b746d01e
IP 99.80.126.142:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /ads/www/delivery/lg.php?bannerid=0&campaignid=0&zoneid=33&loc=https%3A%2F%2Fshare.offerteshopping.it%2F&cb=d4b746d01e HTTP/1.1
Host: ads.entiredigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.entiredigital.com/ads/www/delivery/afr.php?zoneid=33&cb=1675154081
Cookie: OAID=01000111010001000101000001010010
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:18 GMT
server: Apache/2.4.6 (CentOS) PHP/7.4.14
x-powered-by: PHP/7.4.14
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
access-control-allow-origin: *
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=01000111010001000101000001010010; path=/; secure; SameSite=none
content-length: 43
content-type: image/gif
x-varnish: 68877982
age: 0
via: 1.1 varnish (Varnish/6.5)
accept-ranges: bytes
X-Firefox-Spdy: h2
static1.dmcdn.net/playerv5/photon/dmp.jq_flight.3033f0d7176196134921.js
178.79.212.177200 OK 15 kB URL HTTP/2 static1.dmcdn.net/playerv5/photon/dmp.jq_flight.3033f0d7176196134921.js
IP 178.79.212.177:0
File type ASCII text, with very long lines (42460), with no line terminators
Hash d08be0a2b9c5af7c7661ac399af11a2a
dbae301316ad06ddfbb5c7c56d1302cef443bc79
a6fe61d1e2b4a6ff77ca3a27a155fdce889e605268d43a3c542ce5b5262eeef5
GET /playerv5/photon/dmp.jq_flight.3033f0d7176196134921.js HTTP/1.1
Host: static1.dmcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://geo.dailymotion.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: DMS/1.0.42
content-type: application/x-javascript
server-timing: total;dur=0, dc;desc="dc3"
timing-allow-origin: *
accept-ranges: bytes
etag: "63c52492-a5dc"
content-encoding: gzip
vary: Accept-Encoding
x-llid: 1eeb1140c8073caccb584527a35ddd10
age: 1288442
date: Tue, 31 Jan 2023 09:11:18 GMT
last-modified: Mon, 16 Jan 2023 10:18:58 GMT
expires: Wed, 15 Feb 2023 11:17:16 GMT
content-length: 14940
cache-control: max-age=2592000
access-control-allow-origin: *
X-Firefox-Spdy: h2
static1.dmcdn.net/playerv5/pes.player-interface.a92f06ba.js
178.79.212.177200 OK 1.6 kB URL HTTP/2 static1.dmcdn.net/playerv5/pes.player-interface.a92f06ba.js
IP 178.79.212.177:0
File type ASCII text, with very long lines (553)
Hash a96760c8eeadc5b23fc2880c4768e106
998037f3b84515e3fdb9cac90f9c0cb480d6def6
1b8692d9861cd7bf97ad4db3c4efe1f9844e65cb310ecfa4a5442da3c853d86b
GET /playerv5/pes.player-interface.a92f06ba.js HTTP/1.1
Host: static1.dmcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: DMS/1.0.42
content-type: application/x-javascript
server-timing: total;dur=0, dc;desc="dc3"
timing-allow-origin: *
accept-ranges: bytes
etag: "63d8d6aa-1167"
content-encoding: gzip
vary: Accept-Encoding
x-llid: 168b39a9ce9efd6a8339bb2cc28845a4
age: 1004
date: Tue, 31 Jan 2023 09:11:18 GMT
last-modified: Tue, 31 Jan 2023 08:51:54 GMT
expires: Thu, 02 Mar 2023 08:54:34 GMT
content-length: 1600
cache-control: max-age=2592000
access-control-allow-origin: *
X-Firefox-Spdy: h2
static1.dmcdn.net/playerv5/photon/dmp.vendors~photon_app.be3e4bb5739df6aedd03.js
178.79.212.177200 OK 16 kB URL HTTP/2 static1.dmcdn.net/playerv5/photon/dmp.vendors~photon_app.be3e4bb5739df6aedd03.js
IP 178.79.212.177:0
File type ASCII text, with very long lines (61537), with no line terminators
Hash 5fbaa4c0ac590c32c4b4d14e35b592a6
221d24de74edfa55da11cc9a6b740a5be93f3a83
2c0e11b6ca34b7ac7b6db216494cce4df182639b71a7bf9c435259376192c639
GET /playerv5/photon/dmp.vendors~photon_app.be3e4bb5739df6aedd03.js HTTP/1.1
Host: static1.dmcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://geo.dailymotion.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: DMS/1.0.42
content-type: application/x-javascript
server-timing: total;dur=0, dc;desc="dc3"
timing-allow-origin: *
accept-ranges: bytes
etag: "63c52483-f061"
content-encoding: gzip
vary: Accept-Encoding
x-llid: c004f78d06c948bdae6f78c541030fa5
age: 1290250
date: Tue, 31 Jan 2023 09:11:18 GMT
last-modified: Mon, 16 Jan 2023 10:18:43 GMT
expires: Wed, 15 Feb 2023 10:47:08 GMT
content-length: 16257
cache-control: max-age=2592000
access-control-allow-origin: *
X-Firefox-Spdy: h2
static1.dmcdn.net/playerv5/pes.pip.4401156c.js
178.79.212.177200 OK 3.9 kB URL HTTP/2 static1.dmcdn.net/playerv5/pes.pip.4401156c.js
IP 178.79.212.177:0
File type ASCII text, with very long lines (543)
Hash f3e609b01be4092ccaa55ff4e9f03753
530b7aa0496d00e75be0e605a37fb358cd20b0e8
b3d22363f538a6b5c693bab3f9b425de6d69ba7a27f2ad22a4b77628760cd5c8
GET /playerv5/pes.pip.4401156c.js HTTP/1.1
Host: static1.dmcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: DMS/1.0.42
content-type: application/x-javascript
server-timing: total;dur=1, dc;desc="dc3"
timing-allow-origin: *
accept-ranges: bytes
etag: "63d8d6aa-305e"
content-encoding: gzip
vary: Accept-Encoding
x-llid: 1dc865a49e092146b3ba8e245bdbe085
age: 1004
date: Tue, 31 Jan 2023 09:11:18 GMT
last-modified: Tue, 31 Jan 2023 08:51:54 GMT
expires: Thu, 02 Mar 2023 08:54:34 GMT
content-length: 3893
cache-control: max-age=2592000
access-control-allow-origin: *
X-Firefox-Spdy: h2
static1.dmcdn.net/playerv5/photon/dmp.photon_manifest.ee11d1d12420c291ec78.js
178.79.212.177200 OK 2.0 kB URL HTTP/2 static1.dmcdn.net/playerv5/photon/dmp.photon_manifest.ee11d1d12420c291ec78.js
IP 178.79.212.177:0
File type ASCII text, with very long lines (4412), with no line terminators
Hash 3d0ded67d64f1eb12feb2cffa1cdbc24
57022af60e737c2045fc598b043e88390d260819
2f813b6709da46fea10ffac27649711836336c655b5bf0789c96076f4fac85a7
GET /playerv5/photon/dmp.photon_manifest.ee11d1d12420c291ec78.js HTTP/1.1
Host: static1.dmcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://geo.dailymotion.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: DMS/1.0.42
content-type: application/x-javascript
server-timing: total;dur=0, dc;desc="dc3"
timing-allow-origin: *
accept-ranges: bytes
etag: "63d8d6a0-113c"
content-encoding: gzip
vary: Accept-Encoding
x-llid: 2a1d798278a54c8b96065f7284e3d7bc
age: 1004
date: Tue, 31 Jan 2023 09:11:18 GMT
last-modified: Tue, 31 Jan 2023 08:51:44 GMT
expires: Thu, 02 Mar 2023 08:54:34 GMT
content-length: 2021
cache-control: max-age=2592000
access-control-allow-origin: *
X-Firefox-Spdy: h2
static1.dmcdn.net/playerv5/dmp.locale-en-US.331ac040134065321ad6.json
178.79.212.177200 OK 838 B URL HTTP/2 static1.dmcdn.net/playerv5/dmp.locale-en-US.331ac040134065321ad6.json
IP 178.79.212.177:0
File type JSON data\012- , Unicode text, UTF-8 text
Hash 02294e1e693ec1d3689fb28abb8f51e0
21494c6a6e9081e1182e3e7adf08cefc74ef0994
705318935950ab61a0a403827d86ccd9315c7d3caf17c5c11a4b1c02d882f91b
GET /playerv5/dmp.locale-en-US.331ac040134065321ad6.json HTTP/1.1
Host: static1.dmcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://geo.dailymotion.com/
Origin: https://geo.dailymotion.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: DMS/1.0.42
content-type: application/json
server-timing: total;dur=0, dc;desc="dc3"
timing-allow-origin: *
accept-ranges: bytes
etag: "63ca57dd-b40"
content-encoding: gzip
vary: Accept-Encoding
x-llid: bdc0a87169b15b4494780cac7a718cf0
age: 839923
date: Tue, 31 Jan 2023 09:11:18 GMT
last-modified: Fri, 20 Jan 2023 08:59:09 GMT
expires: Mon, 20 Feb 2023 15:52:35 GMT
content-length: 838
cache-control: max-age=2592000
access-control-allow-origin: *
X-Firefox-Spdy: h2
static1.dmcdn.net/playerv5/photon/dmp.photon_boot.a2f201b635d41ebb6390.js
178.79.212.177200 OK 47 kB URL HTTP/2 static1.dmcdn.net/playerv5/photon/dmp.photon_boot.a2f201b635d41ebb6390.js
IP 178.79.212.177:0
File type Unicode text, UTF-8 text, with very long lines (65509), with no line terminators
Hash 6d8bab63f78df5b72e33c3bfc84ba05d
b320f8b6a9d7249cb5be55bbdacae77e1b79b07f
808cb6cabd9846d0f214a376ab8ac65cd0a57bef9bba205db5b8cd0e1f28f90a
GET /playerv5/photon/dmp.photon_boot.a2f201b635d41ebb6390.js HTTP/1.1
Host: static1.dmcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://geo.dailymotion.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: DMS/1.0.42
content-type: application/x-javascript
server-timing: total;dur=0, dc;desc="dc3"
timing-allow-origin: *
accept-ranges: bytes
etag: "63c7d09c-3181e"
content-encoding: gzip
vary: Accept-Encoding
x-llid: 2c40872dd40ef4c82eb05f5af1bcfef3
age: 1116470
date: Tue, 31 Jan 2023 09:11:18 GMT
last-modified: Wed, 18 Jan 2023 10:57:32 GMT
expires: Fri, 17 Feb 2023 11:03:28 GMT
content-length: 46785
cache-control: max-age=2592000
access-control-allow-origin: *
X-Firefox-Spdy: h2
static1.dmcdn.net/playerv5/photon/dmp.photon_player.64aac0439d2febea4e93.js
178.79.212.177200 OK 32 kB URL HTTP/2 static1.dmcdn.net/playerv5/photon/dmp.photon_player.64aac0439d2febea4e93.js
IP 178.79.212.177:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 4d36ba2a35c86ab993006fba0e2454e8
e2c49bd8d8db8cc79e4a511723ffe8a2456fbacb
1e7a8ea5233efb7200783845616ce72e42b606a61fe2fe2d73fdec286c6f466b
GET /playerv5/photon/dmp.photon_player.64aac0439d2febea4e93.js HTTP/1.1
Host: static1.dmcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://geo.dailymotion.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: DMS/1.0.42
content-type: application/x-javascript
server-timing: total;dur=0, dc;desc="dc3"
timing-allow-origin: *
accept-ranges: bytes
etag: "63c01e7b-1a089"
content-encoding: gzip
vary: Accept-Encoding
x-llid: ed9fb3dc6fcfd27e2b217b3a78897204
age: 1620998
date: Tue, 31 Jan 2023 09:11:18 GMT
last-modified: Thu, 12 Jan 2023 14:51:39 GMT
expires: Sat, 11 Feb 2023 14:54:40 GMT
content-length: 31474
cache-control: max-age=2592000
access-control-allow-origin: *
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.74200 OK 126 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.74:0
File type ASCII text, with very long lines (2846)
Size 126 kB (126544 bytes)
Hash 08170b094847c66f3b89d5a577c739ea
ea3f55dae751aaa5fb5b0fd0d74354c26d76dccd
598ef4c4803f256ff79120afe545bc162d0d84bc1224acff09a1dcd2f0bd9b35
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://geo.dailymotion.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 126544
date: Tue, 31 Jan 2023 09:11:18 GMT
expires: Tue, 31 Jan 2023 09:11:18 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.dailymotion.com/player/metadata/video/x8hp5lb?embedder=https%3A%2F%2Fshare.offerteshopping.it%2F&geo=1&player-id=x7hqh&locale=en-US&dmV1st=37872062-bfc7-4b2f-a253-2bd865b7c292&dmTs=194220&is_native_app=0
188.65.124.92200 OK 4.8 kB URL HTTP/1.1 www.dailymotion.com/player/metadata/video/x8hp5lb?embedder=https%3A%2F%2Fshare.offerteshopping.it%2F&geo=1&player-id=x7hqh&locale=en-US&dmV1st=37872062-bfc7-4b2f-a253-2bd865b7c292&dmTs=194220&is_native_app=0
IP 188.65.124.92:0
ASN #41690 Dailymotion S.A.
File type JSON data\012- , ASCII text, with very long lines (7952), with no line terminators
Hash 3cc64af2f8ecf089611232dc23f6e26f
8e874f2aaa324db0f3c72a4e312a4653c4a7d837
f4cd9a8e7a8a6f1ee81574c2ea55baa17d192a142f35ccd9575ea0851bbc0a3e
GET /player/metadata/video/x8hp5lb?embedder=https%3A%2F%2Fshare.offerteshopping.it%2F&geo=1&player-id=x7hqh&locale=en-US&dmV1st=37872062-bfc7-4b2f-a253-2bd865b7c292&dmTs=194220&is_native_app=0 HTTP/1.1
Host: www.dailymotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://geo.dailymotion.com/
Origin: https://geo.dailymotion.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Authorization
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: https://geo.dailymotion.com
Cache-Control: no-cache
Content-Encoding: gzip
Content-Length: 4803
Content-Security-Policy: upgrade-insecure-requests
Content-Security-Policy-Report-Only: default-src https: blob: wss: data: android-webview-video-poster: android-webview: chrome-extension: safari-extension: 'unsafe-eval' 'unsafe-inline'; report-uri https://www.dailymotion.com/content_security_policy_report_uri
Content-Type: application/json; charset=utf-8
Date: Tue, 31 Jan 2023 09:11:18 GMT
Expect-Ct: max-age=0, report-uri="https://www.dailymotion.com/content_security_policy_report_uri"
Referrer-Policy: strict-origin-when-cross-origin
Server: DMS/1.0.42
Server-Timing: total;dur=89, dc;desc="ix7"
Set-Cookie: dmvk=63d8db3699cc0; path=/; domain=.dailymotion.com; Secure; SameSite=none;
Strict-Transport-Security: max-age=31708800; includeSubDomains; preload
Timing-Allow-Origin: *
Vary: X-DM-SSL,Accept-Encoding
tra.neodatagroup.com/cm?sid=1009&pv=next&eid=63d8db35c3b550.37864978&rnd=404729986
20.73.234.141302 0 B URL HTTP/1.1 tra.neodatagroup.com/cm?sid=1009&pv=next&eid=63d8db35c3b550.37864978&rnd=404729986
IP 20.73.234.141:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?sid=1009&pv=next&eid=63d8db35c3b550.37864978&rnd=404729986 HTTP/1.1
Host: tra.neodatagroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302
Date: Tue, 31 Jan 2023 09:11:18 GMT
Content-Type: text/richtext;charset=UTF-8
Content-Length: 0
Connection: keep-alive
P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"; policyref="/ad/w3c/p3p.xml"
Access-Control-Allow-Origin: *
Set-Cookie: cProfile=AQMMDjCbjAXZAAAAAAAEAAABhhuxvcYAB2RlZmF1bHQ=; path=/; domain=.neodatagroup.com; SameSite=None; Secure; expires=Wed, 15 Feb 2023 09:11:18 GMT;
Location: /cm?sid=1009&pv=next&eid=63d8db35c3b550.37864978&rnd=404729986&neoid=30c0e309b8c05d9
acdn.adnxs.com/ast/ast.js
151.101.193.108200 OK 0 B URL HTTP/1.1 acdn.adnxs.com/ast/ast.js
IP 151.101.193.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /ast/ast.js HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 33183
Server: nginx/1.18.0 (Ubuntu)
Content-Type: application/javascript
Last-Modified: Tue, 17 Jan 2023 17:19:51 GMT
ETag: W/"63c6d8b7-17dc7"
Expires: Fri, 27 Jan 2023 02:17:51 GMT
Cache-Control: max-age=86402
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 09:11:18 GMT
Age: 24798
X-Served-By: cache-lga21942-LGA, cache-bma1650-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 5, 25699
X-Timer: S1675156279.823619,VS0,VE0
Vary: Accept-Encoding
tra.neodatagroup.com/cm?sid=1009&pv=next&eid=63d8db35c3b550.37864978&rnd=404729986&neoid=30c0e309b8c05d9
20.73.234.141200 120 B URL HTTP/1.1 tra.neodatagroup.com/cm?sid=1009&pv=next&eid=63d8db35c3b550.37864978&rnd=404729986&neoid=30c0e309b8c05d9
IP 20.73.234.141:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with no line terminators
Hash b9b608e3e368dfcd22d245727987a1c6
89d1696bf9c29ada25cba86e3b1b818802c6c7dd
9e1728df4ba6aed3325cf5531bce9f37117a38e61807e2e500a67fc2448554b1
GET /cm?sid=1009&pv=next&eid=63d8db35c3b550.37864978&rnd=404729986&neoid=30c0e309b8c05d9 HTTP/1.1
Host: tra.neodatagroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://share.offerteshopping.it/
Connection: keep-alive
Cookie: cProfile=AQMMDjCbjAXZAAAAAAAEAAABhhuxvcYAB2RlZmF1bHQ=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Date: Tue, 31 Jan 2023 09:11:18 GMT
Content-Type: application/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"; policyref="/ad/w3c/p3p.xml"
Access-Control-Allow-Origin: *
Set-Cookie: cP=AVkDDA4wm4wF2QAAAAABqgOn; path=/; domain=.neodatagroup.com; SameSite=None; Secure; expires=Wed, 31 Jan 2024 09:11:18 GMT;
tr=loCAwIGkTkVYVACAgdoAJzMwYzBlMzA5YjhjMDVkOV82M2Q4ZGIzNWMzYjU1MC4zNzg2NDk3OM5j2Ns2; path=/; domain=.neodatagroup.com; SameSite=None; Secure; expires=Wed, 31 Jan 2024 09:11:18 GMT;
tr=loCAwIGkTkVYVACAgdoAJzMwYzBlMzA5YjhjMDVkOV82M2Q4ZGIzNWMzYjU1MC4zNzg2NDk3OM5j2Ns2; path=/; domain=.neodatagroup.com; SameSite=None; Secure; expires=Wed, 31 Jan 2024 09:11:18 GMT;
tr=loCAwIGkTkVYVACAgdoAJzMwYzBlMzA5YjhjMDVkOV82M2Q4ZGIzNWMzYjU1MC4zNzg2NDk3OM5j2Ns2; path=/; domain=.neodatagroup.com; SameSite=None; Secure; expires=Wed, 31 Jan 2024 09:11:18 GMT;
cOptout=0|yocToken:sCSFNWz5EYJDmN5yGYRCB4Cz2og; path=/; domain=.neodatagroup.com; SameSite=None; Secure; expires=Wed, 31 Jan 2024 09:11:18 GMT;
vary: accept-encoding
Content-Encoding: gzip
cdn.elasticad.net/native/serve/js/quantx/prebid.gz.js?v=4
54.230.111.55200 OK 51 kB URL HTTP/1.1 cdn.elasticad.net/native/serve/js/quantx/prebid.gz.js?v=4
IP 54.230.111.55:0
File type ASCII text, with very long lines (65380)
Hash 0ab0c42181853afad5fa096014fdca2d
80231404ce9fc87faa87fb1fe2075778d946db30
86ec33c02a2d2cd446a1a547a515c149f4585a62d22771b02c0c912bdd44d187
GET /native/serve/js/quantx/prebid.gz.js?v=4 HTTP/1.1
Host: cdn.elasticad.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 51335
Connection: keep-alive
Last-Modified: Tue, 25 Jan 2022 08:04:19 GMT
Content-Encoding: br
x-amz-version-id: IrzMZHcA.AhuljE9nE0OLtHnwmc6REk_
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 31 Jan 2023 08:33:00 GMT
ETag: "0ab0c42181853afad5fa096014fdca2d"
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jauYgTcoto9kI4LtGMZ2Fwaffu3KdP66uHM-h66BR_p_EtfBY_Oe4A==
Age: 2299
static.4wnetwork.com/asset/css/vidIMA.min.css?v=3
54.230.111.52200 OK 15 kB URL HTTP/2 static.4wnetwork.com/asset/css/vidIMA.min.css?v=3
IP 54.230.111.52:0
Hash a7b0273ceda78cd074a42ce286228669
86ec2e1aadcfe6939507fa08a6b293fa3a4cb096
73b2d36867d949496771b27adab0fbcc350e19d18d8db6076dec590da2690ec9
GET /asset/css/vidIMA.min.css?v=3 HTTP/1.1
Host: static.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Cookie: profiler=eyJjYW4iOnRydWV9; ad_simply_viewer=63d8db35c3b550.37864978; know=63d8db35c3b550.37864978
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Thu, 26 Jan 2023 06:22:18 GMT
server: nginx
last-modified: Wed, 25 Jan 2023 19:11:54 GMT
etag: W/"63d17efa-b961"
expires: Thu, 02 Feb 2023 06:22:18 GMT
cache-control: max-age=604800, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QnIvd4lDwCUBr0_Hs6f4h3Ft_BZX9sYp9RU5OxCaK-LyZi0zk-2ZZA==
age: 442140
X-Firefox-Spdy: h2
optimized-by.4wnetwork.com/impression.php?code=207885;102085;78233;0&$4wOTkey=&GDPR=&GDPR_CONSENT=&nug=&nocookie=1&category=not_mapped&resistivity=false
54.230.111.52200 OK 15 kB URL HTTP/2 optimized-by.4wnetwork.com/impression.php?code=207885;102085;78233;0&$4wOTkey=&GDPR=&GDPR_CONSENT=&nug=&nocookie=1&category=not_mapped&resistivity=false
IP 54.230.111.52:0
Hash d3deda0d6d75be710d4c79547bef4eb5
38738840537739ee6196a838e88ff7d9652600a8
3cc2d289277d090c3463beb9896901bf68d630f863dc22e2ab89c0c2a642316b
GET /impression.php?code=207885;102085;78233;0&$4wOTkey=&GDPR=&GDPR_CONSENT=&nug=&nocookie=1&category=not_mapped&resistivity=false HTTP/1.1
Host: optimized-by.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Cookie: profiler=eyJjYW4iOnRydWV9; ad_simply_viewer=63d8db35c3b550.37864978; know=63d8db35c3b550.37864978
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
date: Tue, 31 Jan 2023 09:11:18 GMT
server: nginx
x-powered-by: PHP/7.3.33
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pWh8HHC-Jnf7YFuBi6V6ujM-hJ57VHX_7s5fAxBWDCbpi-aFXl8ixw==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1e6ec67f43c51dbdc85d245489d30194
0bc215873076b145098eb86ae9e5a6db28ac5911
e882145f5cc78d54fe51d8a3823f15c01c3bf123af27a9816421b173b45a0c6c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1331
Cache-Control: max-age=130675
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:19 GMT
Etag: "63d83177-1d7"
Expires: Wed, 01 Feb 2023 21:29:14 GMT
Last-Modified: Mon, 30 Jan 2023 21:07:03 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3980d479b19a4313803950f0f4c7904a
53c6711bdbd322fe7dcc941649c3ef93ae772fc9
4108041a670c5307d10decba560b9f3c62f8458a3325b6872722892f403a32c8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4961
Cache-Control: max-age=135717
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:19 GMT
Etag: "63d836fb-1d7"
Expires: Wed, 01 Feb 2023 22:53:16 GMT
Last-Modified: Mon, 30 Jan 2023 21:30:35 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
static1.dmcdn.net/playerv5/photon/dmp.photon_vendor.028b1893c142398964fa.js
178.79.212.177200 OK 471 B URL HTTP/2 static1.dmcdn.net/playerv5/photon/dmp.photon_vendor.028b1893c142398964fa.js
IP 178.79.212.177:0
Hash e8a11ad824dc57053e0c78492fa836f6
06022dcfb6d17829eb5cbf70d777c632116269cb
5a20ddf9e988fbd9f94e0f571bcafd6d1e038f9fb11df66ca02ff7a86bdd91bd
GET /playerv5/photon/dmp.photon_vendor.028b1893c142398964fa.js HTTP/1.1
Host: static1.dmcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://geo.dailymotion.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: DMS/1.0.42
content-type: application/x-javascript
server-timing: total;dur=0, dc;desc="dc3"
timing-allow-origin: *
accept-ranges: bytes
etag: "63c52483-530b5"
content-encoding: gzip
vary: Accept-Encoding
x-llid: 843749e248d518c9ec57c7f5e9ec2e03
age: 1290250
date: Tue, 31 Jan 2023 09:11:18 GMT
last-modified: Mon, 16 Jan 2023 10:18:43 GMT
expires: Wed, 15 Feb 2023 10:47:08 GMT
content-length: 102499
cache-control: max-age=2592000
access-control-allow-origin: *
X-Firefox-Spdy: h2
kvt.cookieless-data.com/api/v1/public/p/28662/d/33/c?url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&args_country&args_device=desktop&args_zone_id=30426&callback=sublimeCb1675156294966
51.15.145.116200 OK 253 B URL HTTP/1.1 kvt.cookieless-data.com/api/v1/public/p/28662/d/33/c?url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&args_country&args_device=desktop&args_zone_id=30426&callback=sublimeCb1675156294966
IP 51.15.145.116:0
File type ASCII text, with very long lines (400), with no line terminators
Hash 48b2c1d36ed3b428020f7e532e2b5f43
d36955ed8b030299db53f424186d05460319b6af
cffa28af88fdc7c532f4e08c56ec6eec0cbcfde83c4997973c33898a59471128
GET /api/v1/public/p/28662/d/33/c?url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&args_country&args_device=desktop&args_zone_id=30426&callback=sublimeCb1675156294966 HTTP/1.1
Host: kvt.cookieless-data.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 31 Jan 2023 09:11:19 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e8a11ad824dc57053e0c78492fa836f6
06022dcfb6d17829eb5cbf70d777c632116269cb
5a20ddf9e988fbd9f94e0f571bcafd6d1e038f9fb11df66ca02ff7a86bdd91bd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3506
Cache-Control: max-age=158018
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:19 GMT
Etag: "63d893c7-1d7"
Expires: Thu, 02 Feb 2023 05:04:57 GMT
Last-Modified: Tue, 31 Jan 2023 04:06:31 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ad2.payclick.it/extra/unico_v2/bhs_test.php?callback=jsonp_callback__9883
54.246.26.100200 OK 0 B URL HTTP/2 ad2.payclick.it/extra/unico_v2/bhs_test.php?callback=jsonp_callback__9883
IP 54.246.26.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /extra/unico_v2/bhs_test.php?callback=jsonp_callback__9883 HTTP/1.1
Host: ad2.payclick.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:19 GMT
content-type: text/html; charset=UTF-8
content-length: 0
server: Apache/2.4.41 (Ubuntu)
X-Firefox-Spdy: h2
optimized-by.4wnetwork.com/impression.php?code=216687;104797;78233;0;&newtag=true&callback=&sign={$signature}&ord=1675156294450&as=&GDPR=&GDPR_CONSENT=&nocookie=1&nug=
54.230.111.52200 OK 44 B URL HTTP/2 optimized-by.4wnetwork.com/impression.php?code=216687;104797;78233;0;&newtag=true&callback=&sign={$signature}&ord=1675156294450&as=&GDPR=&GDPR_CONSENT=&nocookie=1&nug=
IP 54.230.111.52:0
Hash e06c5d8a6413682996b151ef0108e6b1
3b70042f60487f81a048505b5e1bed9732c3f370
1bb0f6e11b43d530a9c326df6fdd06c0d364bcb59fc8f4d6b7067ce1d5cd89e0
GET /impression.php?code=216687;104797;78233;0;&newtag=true&callback=&sign={$signature}&ord=1675156294450&as=&GDPR=&GDPR_CONSENT=&nocookie=1&nug= HTTP/1.1
Host: optimized-by.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Cookie: profiler=eyJjYW4iOnRydWV9; ad_simply_viewer=63d8db35c3b550.37864978; know=63d8db35c3b550.37864978
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Tue, 31 Jan 2023 09:11:18 GMT
server: nginx
x-powered-by: PHP/7.3.33
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fSQAkjAKWp1dEtgoK-8Y_9vvf2OsSh5WWdFSOZ08YjbqMqXflfjVtg==
X-Firefox-Spdy: h2
ad2.payclick.it/extra/unico_v2/ws2/unico_v2_ws_t1.php?callback=pc_unico2.parsePullSpecialRequest&a_aid=ca7cb8b4&chan=18958&debug=&widget_cid=df56ca60&widget_bid=cd836c62&widget_mobile_bid=c32241f4&widget_vast_timeout=10&enable_view_track=&enable_vlog=1&logdivid=log&unico_v2_baseurl=https%3A%2F%2Fad2.payclick.it%2Fextra%2Funico_v2&unico_v2_pull_us=https%3A%2F%2Fad2.payclick.it%2Fextra%2Funico_v2%2Fws2%2Funico_v2_ws_t1.php&unico_v2_inject_us=https%3A%2F%2Fad2.payclick.it%2Fextra%2Funico_v2%2Fadt_special_js.php&format_failure_no=3&desktop_fcap=2000&mobile_fcap=2000&cri_cid=e301d670&mobile_cri_cid=3d1fbf9d&widget_block_skip=&cri_first=1&log_base_url=PAYCLICK_LOGGER_BASEURL&hideable_aaids=0ff93891&nowidget=true&cri_12=1eceea57___780258&uuid=fa4592054eeb426a9ea8b619f722c2b2&mobile=0
54.246.26.100200 OK 4.4 kB URL HTTP/2 ad2.payclick.it/extra/unico_v2/ws2/unico_v2_ws_t1.php?callback=pc_unico2.parsePullSpecialRequest&a_aid=ca7cb8b4&chan=18958&debug=&widget_cid=df56ca60&widget_bid=cd836c62&widget_mobile_bid=c32241f4&widget_vast_timeout=10&enable_view_track=&enable_vlog=1&logdivid=log&unico_v2_baseurl=https%3A%2F%2Fad2.payclick.it%2Fextra%2Funico_v2&unico_v2_pull_us=https%3A%2F%2Fad2.payclick.it%2Fextra%2Funico_v2%2Fws2%2Funico_v2_ws_t1.php&unico_v2_inject_us=https%3A%2F%2Fad2.payclick.it%2Fextra%2Funico_v2%2Fadt_special_js.php&format_failure_no=3&desktop_fcap=2000&mobile_fcap=2000&cri_cid=e301d670&mobile_cri_cid=3d1fbf9d&widget_block_skip=&cri_first=1&log_base_url=PAYCLICK_LOGGER_BASEURL&hideable_aaids=0ff93891&nowidget=true&cri_12=1eceea57___780258&uuid=fa4592054eeb426a9ea8b619f722c2b2&mobile=0
IP 54.246.26.100:0
File type JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4401), with no line terminators
Hash d67c0cf12793cd51e1e5b9693aa3fa4a
e85243738a4c873bc31cd36ca32ac258ed2a08a7
2dd85c034e5759b17d13d3bea21fe59811fcb389f838c6ea6cd8567351a44d22
GET /extra/unico_v2/ws2/unico_v2_ws_t1.php?callback=pc_unico2.parsePullSpecialRequest&a_aid=ca7cb8b4&chan=18958&debug=&widget_cid=df56ca60&widget_bid=cd836c62&widget_mobile_bid=c32241f4&widget_vast_timeout=10&enable_view_track=&enable_vlog=1&logdivid=log&unico_v2_baseurl=https%3A%2F%2Fad2.payclick.it%2Fextra%2Funico_v2&unico_v2_pull_us=https%3A%2F%2Fad2.payclick.it%2Fextra%2Funico_v2%2Fws2%2Funico_v2_ws_t1.php&unico_v2_inject_us=https%3A%2F%2Fad2.payclick.it%2Fextra%2Funico_v2%2Fadt_special_js.php&format_failure_no=3&desktop_fcap=2000&mobile_fcap=2000&cri_cid=e301d670&mobile_cri_cid=3d1fbf9d&widget_block_skip=&cri_first=1&log_base_url=PAYCLICK_LOGGER_BASEURL&hideable_aaids=0ff93891&nowidget=true&cri_12=1eceea57___780258&uuid=fa4592054eeb426a9ea8b619f722c2b2&mobile=0 HTTP/1.1
Host: ad2.payclick.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:19 GMT
content-type: text/html; charset=UTF-8
content-length: 0
server: Apache/2.4.41 (Ubuntu)
X-Firefox-Spdy: h2
ad2.payclick.it/extra/unico_v2/bhs_test.php?callback=jsonp_callback__5846
54.246.26.100200 OK 0 B URL HTTP/2 ad2.payclick.it/extra/unico_v2/bhs_test.php?callback=jsonp_callback__5846
IP 54.246.26.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /extra/unico_v2/bhs_test.php?callback=jsonp_callback__5846 HTTP/1.1
Host: ad2.payclick.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:19 GMT
content-type: text/html; charset=UTF-8
content-length: 0
server: Apache/2.4.41 (Ubuntu)
X-Firefox-Spdy: h2
cdn.entiredigital.com/static/offerteshopping.it/favicon/android-icon-192x192.png
151.139.128.10200 OK 5.1 kB URL HTTP/2 cdn.entiredigital.com/static/offerteshopping.it/favicon/android-icon-192x192.png
IP 151.139.128.10:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 5a51d694b76a16c470fc0e88d86da647
49b350b9ea55d81338691efe524af70d144b9524
46c1a34348b8dfd23073b04484c5a7ac34059df6c87fa2ea6702ff982cb9bbe2
GET /static/offerteshopping.it/favicon/android-icon-192x192.png HTTP/1.1
Host: cdn.entiredigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:19 GMT
content-length: 5118
content-type: image/png
last-modified: Tue, 09 Oct 2018 20:08:54 GMT
accept-ranges: bytes
server: nginx/1.19.7
etag: "5bbd0ad6-13fe"
cache-control: max-age=2592000, public
access-control-allow-origin: *
x-hw: 1675156279.cds228.sk1.hn,1675156279.cds247.sk1.c
X-Firefox-Spdy: h2
cdn.entiredigital.com/static/offerteshopping.it/favicon/favicon-16x16.png
151.139.128.10200 OK 965 B URL HTTP/2 cdn.entiredigital.com/static/offerteshopping.it/favicon/favicon-16x16.png
IP 151.139.128.10:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash d65116a4983115f45b8a10e3c7911b0d
3beda6962a5162bcdc7d727b2992dbb31387e70f
c2a3e4b4c35441ce0426842f35bb73410993f2180edc12f3bf22d90705a41634
GET /static/offerteshopping.it/favicon/favicon-16x16.png HTTP/1.1
Host: cdn.entiredigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:19 GMT
content-length: 965
content-type: image/png
last-modified: Tue, 09 Oct 2018 20:08:54 GMT
accept-ranges: bytes
server: nginx/1.19.7
etag: "5bbd0ad6-3c5"
cache-control: max-age=2592000, public
access-control-allow-origin: *
x-hw: 1675156279.cds228.sk1.hn,1675156279.cds223.sk1.c
X-Firefox-Spdy: h2
connect.facebook.net/it_IT/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/it_IT/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash 980492046ea75e921be12eb9e383387e
5f2adcc64169a735415c0ec545eac207254e2fb1
b4c2e2f5f415f4a2cfcb35b9e2cb0699dcea50e028f33a923138c23955a6a5e3
GET /it_IT/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 9f56677b090ce03a2923111ef6915660
etag: "0d04e6eb0c49fcf02776fc8e07638fe3"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 31 Jan 2023 09:19:30 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: mASSBG6nXpIb4S6544M4fg==
x-fb-debug: 7YErI6jkuRn9htv9Jpz3xjCznFnTPWHL5Dnc4DmqIjfei45Jr/D9aEL4z8FsMt6gXIa1pF8qrL+9E/4DmXnmxQ==
priority: u=3,i
content-length: 1687
x-fb-trip-id: 2050670934
date: Tue, 31 Jan 2023 09:11:19 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ssl.gstatic.com/gnews/logo/google_news_192.png
142.250.74.99200 OK 13 kB URL HTTP/2 ssl.gstatic.com/gnews/logo/google_news_192.png
IP 142.250.74.99:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash eed66df952fa87b6a3f30163bff40094
7c76194bfb03d5706bb66e621372d2e47db1b83c
dcb8e5dc4d37f92485d4d9a2965fac3a471a11a5cc3e80acb73e30fbfc6ed994
GET /gnews/logo/google_news_192.png HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://share.offerteshopping.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-magazines
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-magazines"
report-to: {"group":"social-magazines","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-magazines"}]}
content-length: 13256
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 08:21:29 GMT
expires: Tue, 31 Jan 2023 09:11:29 GMT
cache-control: public, max-age=3000
age: 2990
last-modified: Tue, 23 Apr 2019 15:45:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/pwt/161673/7165/pwt.js
23.38.200.201200 OK 73 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/161673/7165/pwt.js
IP 23.38.200.201:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 06cd2eddf805cce44a8cb5178e00d7de
4450e085f121f57255512d5f7c8d4bcffbf77bc5
8c41037c0b242f0fe65640486379d7f6cd91c55f8edd998ea285d8f994ec48f7
GET /AdServer/js/pwt/161673/7165/pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 23 Sep 2022 12:15:31 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: application/javascript
content-length: 73257
cache-control: max-age=36969
expires: Tue, 31 Jan 2023 19:27:28 GMT
date: Tue, 31 Jan 2023 09:11:19 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash bd8dbd119b14df41e624c0620bb3d100
39d9c39b7009337d3b5acb7b07df3e1f23936ec5
607b6a8c95f0e5c20fb7e8b1158fa02561a0241d24f9413f7104b97aa19c9e83
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1874
Cache-Control: max-age=100617
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:19 GMT
Etag: "63d7b9ee-117"
Expires: Wed, 01 Feb 2023 13:08:16 GMT
Last-Modified: Mon, 30 Jan 2023 12:37:02 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
static.4wnetwork.com/js/video_impression.js?v=o2
54.230.111.52200 OK 4.5 kB URL HTTP/2 static.4wnetwork.com/js/video_impression.js?v=o2
IP 54.230.111.52:0
File type ASCII text, with very long lines (9143)
Hash d2f5d5f91a911be7d21df20967f6eabe
3107c54cac2205547b1d2804020642dbf69d16a5
2d05db659e7879486f73395a220428e290f8754703f1f556ef6744cc4216f542
GET /js/video_impression.js?v=o2 HTTP/1.1
Host: static.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Cookie: profiler=eyJjYW4iOnRydWV9; ad_simply_viewer=63d8db35c3b550.37864978; know=63d8db35c3b550.37864978
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 31 Jan 2023 02:33:53 GMT
server: nginx
last-modified: Mon, 30 Jan 2023 11:26:04 GMT
etag: W/"63d7a94c-10a5"
expires: Wed, 01 Feb 2023 02:33:53 GMT
cache-control: max-age=86400, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VAYpZ7zv47WCgfY1dpeKIY0_OGwOcWBJckd60S317KhoM5_bMifDXg==
age: 23845
X-Firefox-Spdy: h2
optimized-by.4wnetwork.com/simply_loader.js?cb=1675156293752
54.230.111.52200 OK 7.9 kB URL HTTP/2 optimized-by.4wnetwork.com/simply_loader.js?cb=1675156293752
IP 54.230.111.52:0
Hash 6f85afd858e23263e13a8189be745b3b
84c69d05cf14c7b13ba182249ff024117cedcf53
e264be944e5aa1ca5f329080dc8435977e5b463bb441819c61091688956c8ded
GET /simply_loader.js?cb=1675156293752 HTTP/1.1
Host: optimized-by.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 31 Jan 2023 09:11:17 GMT
server: nginx
x-powered-by: PHP/7.3.33
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WbO0BwQO3hHorPfWE3khaIgI_LsyMdZt-mwU5WLmsDq9Y8k6_KKTKA==
X-Firefox-Spdy: h2
static.4wnetwork.com/js/video_loader_new.min.js?v=o2
54.230.111.52200 OK 10 kB URL HTTP/2 static.4wnetwork.com/js/video_loader_new.min.js?v=o2
IP 54.230.111.52:0
Hash 2792b78a550015f010cac6e68a6b8395
ba23f6bfef18822ca594b8134daf207ef6ca6c44
bd3a56213cdaead351b147f839be284c446cf132192eeb6e60a1a291f2c47986
GET /js/video_loader_new.min.js?v=o2 HTTP/1.1
Host: static.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Cookie: profiler=eyJjYW4iOnRydWV9; ad_simply_viewer=63d8db35c3b550.37864978; know=63d8db35c3b550.37864978
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 31 Jan 2023 06:56:39 GMT
server: nginx
last-modified: Mon, 30 Jan 2023 11:26:04 GMT
etag: W/"63d7a94c-13255"
expires: Wed, 01 Feb 2023 06:56:39 GMT
cache-control: max-age=86400, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VSs0y92ksbm59-rLRQlnGy3Y45AZnTfIxT5TeOG1XJ35z3ceiZhaPw==
age: 8079
X-Firefox-Spdy: h2
graph.facebook.com/https%3A//share.offerteshopping.it/dove-comprare-online-a-poco-prezzo/?callback=jQuery112403928524496921916_1675156292960&_=1675156292961
157.240.205.1200 OK 191 B URL HTTP/2 graph.facebook.com/https%3A//share.offerteshopping.it/dove-comprare-online-a-poco-prezzo/?callback=jQuery112403928524496921916_1675156292960&_=1675156292961
IP 157.240.205.1:0
Hash c8f9a3454bcefd614498b56f8a35d76a
738b197383faaea28a923e38aa1f1af43a91ef2a
971467cb38862935d7c7803aabee4d082e306980afb019a2f7689bba3abce1ae
GET /https%3A//share.offerteshopping.it/dove-comprare-online-a-poco-prezzo/?callback=jQuery112403928524496921916_1675156292960&_=1675156292961 HTTP/1.1
Host: graph.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
vary: Origin, Accept-Encoding
x-fb-rlafr: 0
content-type: text/javascript; charset=UTF-8
www-authenticate: OAuth "Facebook Platform" "invalid_request" "(#2) Service temporarily unavailable"
access-control-allow-origin: *
facebook-api-version: v9.0
strict-transport-security: max-age=15552000; preload
pragma: no-cache
cache-control: no-store
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-fb-request-id: AWsJpJ4O3Ue2i8PhAa23KuY
x-fb-trace-id: C7rX+DoUJ8o
x-fb-rev: 1006886893
x-fb-debug: oCDwk2fZZGzdOqJ81aSXMfzIAcP/DeprQcxtduy+sER4ITy89aeh4/s7ANcdpQAh+a9PQ2eKeIkMz4ZENR8sbw==
content-length: 191
date: Tue, 31 Jan 2023 09:11:19 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=neodata_dmp&google_cm&pv=dbm&sid=1011&rt=img&rnd=1151381926993
142.250.74.66302 Found 1.2 kB URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=neodata_dmp&google_cm&pv=dbm&sid=1011&rt=img&rnd=1151381926993
IP 142.250.74.66:0
Hash 4492cd7517ccd6f4edf98c72fbbb5de3
50458f28f491ae00e5abef7c1a9beaa9e40720e3
3ddc26639132c87d27058eed120d25edba760b7292917e5a60b82a5a291a2a50
GET /pixel?google_nid=neodata_dmp&google_cm&pv=dbm&sid=1011&rt=img&rnd=1151381926993 HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=neodata_dmp&google_cm=&pv=dbm&sid=1011&rt=img&rnd=1151381926993&google_tc=
date: Tue, 31 Jan 2023 09:11:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 341
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 31-Jan-2023 09:26:19 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 27d886082d3d4043a26e62481d36de26
437a1bbb48b474027a9dcc76fd90557d3b7ee6c0
d6b19c8bc4623206d72fc462fd4e00629a63e7fc4d49c1c8144843693fe6f9b0
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sat, 04 Feb 2023 06:21:55 GMT
ETag: "437a1bbb48b474027a9dcc76fd90557d3b7ee6c0"
Last-Modified: Tue, 31 Jan 2023 06:21:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3230
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792151bc9901fac4-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cb5602fc6e47675f4981dccd26dda23f
d1184793bb8a7b987f22652ba69b5f4da70d60f8
8bd15ca82475d97a03cfe641a7ba01a751897ecf3ef7653acabb2d91d015edf5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1854
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:19 GMT
Last-Modified: Tue, 31 Jan 2023 08:40:25 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
pixel.mathtag.com/sync/js?sync=auto&mt_exid=10082&exsync=https%3A%2F%2Ftrz.neodatagroup.com%2Fcm%3Fsid%3D1011%26pv%3DMEDIAMATH%26eid%3D%5BMM_UUID%5D%26rt%3Dimg%26rnd%3D1151381926993
23.38.200.207200 OK 5.1 kB URL HTTP/1.1 pixel.mathtag.com/sync/js?sync=auto&mt_exid=10082&exsync=https%3A%2F%2Ftrz.neodatagroup.com%2Fcm%3Fsid%3D1011%26pv%3DMEDIAMATH%26eid%3D%5BMM_UUID%5D%26rt%3Dimg%26rnd%3D1151381926993
IP 23.38.200.207:0
Hash 74cd8022f61fb2869d2e9d7c79373ab2
ebd687be44e9b782318df45967046083c0099811
72b02a982db6e4b33d52ff6703a983f6ec398115bbc1d3962cc66c2b059d3094
GET /sync/js?sync=auto&mt_exid=10082&exsync=https%3A%2F%2Ftrz.neodatagroup.com%2Fcm%3Fsid%3D1011%26pv%3DMEDIAMATH%26eid%3D%5BMM_UUID%5D%26rt%3Dimg%26rnd%3D1151381926993 HTTP/1.1
Host: pixel.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 1570
Access-Control-Allow-Origin: *
Server: MT3 404 ce67235 master iad-pixel-x15 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Tue, 31 Jan 2023 09:11:18 GMT
Date: Tue, 31 Jan 2023 09:11:19 GMT
Connection: keep-alive
Set-Cookie: uuid=9e3e63d8-db38-4000-99b6-063aa7375ee3; domain=.mathtag.com; path=/; expires=Wed, 28-Feb-2024 09:11:20 GMT; SameSite=None; Secure
antenna.ayads.co/?device=d&et=2780&ga=0&gc=0&gm=0&gs=0&puid=p6735085732641296580&sqid=1&src=wf&suid=s1941419608516077599&t=1675156294967&tfz=1&tse=1675156294968&ver=20230127155355&z=30426&e=l&bh=939&bw=1268
34.243.240.54204 No Content 0 B URL HTTP/2 antenna.ayads.co/?device=d&et=2780&ga=0&gc=0&gm=0&gs=0&puid=p6735085732641296580&sqid=1&src=wf&suid=s1941419608516077599&t=1675156294967&tfz=1&tse=1675156294968&ver=20230127155355&z=30426&e=l&bh=939&bw=1268
IP 34.243.240.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?device=d&et=2780&ga=0&gc=0&gm=0&gs=0&puid=p6735085732641296580&sqid=1&src=wf&suid=s1941419608516077599&t=1675156294967&tfz=1&tse=1675156294968&ver=20230127155355&z=30426&e=l&bh=939&bw=1268 HTTP/1.1
Host: antenna.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Tue, 31 Jan 2023 09:11:19 GMT
X-Firefox-Spdy: h2
dmp.adform.net/serving/cookie/match?party=1056&rt=img&rnd=1151381926993
37.157.4.41302 Found 0 B URL HTTP/2 dmp.adform.net/serving/cookie/match?party=1056&rt=img&rnd=1151381926993
IP 37.157.4.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /serving/cookie/match?party=1056&rt=img&rnd=1151381926993 HTTP/1.1
Host: dmp.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 31 Jan 2023 09:11:19 GMT
content-length: 0
location: https://dmp.adform.net/serving/cookie/match?CC=1&party=1056&rt=img&rnd=1151381926993
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
set-cookie: C=1; expires=Tue, 28 Feb 2023 09:11:19 GMT; domain=adform.net; path=/
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 10f41e37398ae646f755a85c6352cf8c
32a8b0adb1a955ae9b975d448efcfbfa1d5c669c
67c14aede224876144ac908b6347444fc5f54de5045b14ef613f410712aa0d2f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "67C14AEDE224876144AC908B6347444FC5F54DE5045B14EF613F410712AA0D2F"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11254
Expires: Tue, 31 Jan 2023 12:18:53 GMT
Date: Tue, 31 Jan 2023 09:11:19 GMT
Connection: keep-alive
match.adsrvr.org/track/cmf/generic?ttd_pid=neodata&ttd_tpi=1
3.33.220.150200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=neodata&ttd_tpi=1
IP 3.33.220.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=neodata&ttd_tpi=1 HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:19 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
codiceisp.shinystat.com/cgi-bin/getcod.cgi?USER=RNG-offerteshopping&NODW=yes&P=4
80.88.91.219200 OK 7.9 kB URL HTTP/2 codiceisp.shinystat.com/cgi-bin/getcod.cgi?USER=RNG-offerteshopping&NODW=yes&P=4
IP 80.88.91.219:0
File type exported SGML document, ASCII text, with very long lines (2196)
Hash 5c83cdeca1a4d3419689e483911cff98
b57e80cce794a58f6e5f32ef67fe843db6145b95
322ae3b470715e7946b557901d012a42003692690202384d902ba699a6818e7c
GET /cgi-bin/getcod.cgi?USER=RNG-offerteshopping&NODW=yes&P=4 HTTP/1.1
Host: codiceisp.shinystat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:19 GMT
server: Apache
cache-control: max-age=30
vary: Accept-Encoding
content-encoding: gzip
p3p: CP="NOI NID ADM OUR STP"
content-length: 7889
content-type: application/x-javascript
X-Firefox-Spdy: h2
c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fshare.offerteshopping.it&pubid=1ad7261b-91ea-4b6f-b9e9-b83522205b75
54.230.111.210200 OK 2.0 kB URL HTTP/2 c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fshare.offerteshopping.it&pubid=1ad7261b-91ea-4b6f-b9e9-b83522205b75
IP 54.230.111.210:0
File type JSON data\012- , ASCII text, with very long lines (1960), with no line terminators
Hash 17bc5a6a6cd052ec3cb6afca08829022
f9e8354a014c00fea4507744fd03e14150eed35a
ae48e1202874ebd04205306f97593913e40592e5996faeaca4d7f1cbde36e688
GET /cdn/prod/config?src=600&u=https%3A%2F%2Fshare.offerteshopping.it&pubid=1ad7261b-91ea-4b6f-b9e9-b83522205b75 HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
content-length: 1960
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Tue, 31 Jan 2023 09:11:19 GMT
server: Server
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XzvhxLU4nMgQeyJIpfbMgw3sCIGSnlsZ0zpmJCqIm-rwmMMQXpWTBg==
X-Firefox-Spdy: h2
script.4dex.io/localstore.js
104.26.8.169200 OK 268 B URL HTTP/1.1 script.4dex.io/localstore.js
IP 104.26.8.169:0
File type ASCII text, with very long lines (482)
Hash 58fe1f2623397cca72ecea6ee95d76b9
ac4d33ae761cf330574597936273a9c5d82f96d0
7cb0b5944c53bbacc5983fbef96aa0c1f514ec12da81666765610eae562a9020
GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:19 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=1800
ETag: W/"922cffdd75f7192f75231d92684885aa"
Last-Modified: Wed, 23 Nov 2022 15:43:18 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 1611741
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5mP2co8PrxoCnJ7EteMsvRN2N1ECJ8AS%2Bcf2Wp4mrOm9sgwawiB%2BTqqHzR3erf4WHPH8F1Rsi1rXusmN2MQKWRBlX9HtdugDTcgIMeq2cjSLuQntGJuh89W%2BXewCY%2FrL"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792151bdbdbfb4f9-OSL
Content-Encoding: br
pixel.mathtag.com/sync/iframe?mt_uuid=9e3e63d8-db38-4000-99b6-063aa7375ee3&no_iframe=1&exsync=https%3A%2F%2Ftrz.neodatagroup.com%2Fcm%3Fsid%3D1011%26pv%3DMEDIAMATH%26eid%3D%5BMM_UUID%5D%26rt%3Dimg%26rnd%3D1151381926993&mt_exid=10082&source=mathtag
23.38.200.207200 OK 965 B URL HTTP/1.1 pixel.mathtag.com/sync/iframe?mt_uuid=9e3e63d8-db38-4000-99b6-063aa7375ee3&no_iframe=1&exsync=https%3A%2F%2Ftrz.neodatagroup.com%2Fcm%3Fsid%3D1011%26pv%3DMEDIAMATH%26eid%3D%5BMM_UUID%5D%26rt%3Dimg%26rnd%3D1151381926993&mt_exid=10082&source=mathtag
IP 23.38.200.207:0
File type HTML document text\012- HTML document, ASCII text
Hash 2b21f3fc1038e2f6d1247e5454da07e2
45510481762b9f51614d33721e3b39df4ee67a1e
fcdcecddfc004ae9c91cd5c792349093669214609fcdb86e320806fe69e90dd4
GET /sync/iframe?mt_uuid=9e3e63d8-db38-4000-99b6-063aa7375ee3&no_iframe=1&exsync=https%3A%2F%2Ftrz.neodatagroup.com%2Fcm%3Fsid%3D1011%26pv%3DMEDIAMATH%26eid%3D%5BMM_UUID%5D%26rt%3Dimg%26rnd%3D1151381926993&mt_exid=10082&source=mathtag HTTP/1.1
Host: pixel.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/html
Access-Control-Allow-Origin: *
Server: MT3 404 ce67235 master iad-pixel-x13 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Tue, 31 Jan 2023 09:11:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 965
Date: Tue, 31 Jan 2023 09:11:20 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ef13dbe2297db2b2434641b5542f0a69
cf2cb8e697930d1cf97064b66afab4f514fe0d7d
2d3ef3872003302860f91afe85c5bec85d181ab5018cfa0ce0d10b9ebd397bed
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3949
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:20 GMT
Last-Modified: Tue, 31 Jan 2023 08:05:31 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ef13dbe2297db2b2434641b5542f0a69
cf2cb8e697930d1cf97064b66afab4f514fe0d7d
2d3ef3872003302860f91afe85c5bec85d181ab5018cfa0ce0d10b9ebd397bed
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3949
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:20 GMT
Last-Modified: Tue, 31 Jan 2023 08:05:31 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ef13dbe2297db2b2434641b5542f0a69
cf2cb8e697930d1cf97064b66afab4f514fe0d7d
2d3ef3872003302860f91afe85c5bec85d181ab5018cfa0ce0d10b9ebd397bed
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4595
Cache-Control: max-age=133548
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:20 GMT
Etag: "63d82ff1-117"
Expires: Wed, 01 Feb 2023 22:17:08 GMT
Last-Modified: Mon, 30 Jan 2023 21:00:33 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
d2lcoyv3ods5zz.cloudfront.net/native/placements/offerteshopping.it/pconfig?r=89462f8de46d3
54.230.245.201200 OK 3.6 kB URL HTTP/2 d2lcoyv3ods5zz.cloudfront.net/native/placements/offerteshopping.it/pconfig?r=89462f8de46d3
IP 54.230.245.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (21595)
Hash f47bda1568a8cd20e1934e2260eb4b58
c65cc1ca8d4edd058d1a4fc71e79f816ffd06771
f700dab820da32b2f35fd44b88de4dedaabd1c5203ca9a96009760151d8e4b2b
GET /native/placements/offerteshopping.it/pconfig?r=89462f8de46d3 HTTP/1.1
Host: d2lcoyv3ods5zz.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 3645
date: Tue, 31 Jan 2023 09:11:21 GMT
last-modified: Mon, 07 Feb 2022 10:37:23 GMT
etag: "f47bda1568a8cd20e1934e2260eb4b58"
content-encoding: gzip
x-amz-version-id: vc7mMm.r.Nv4i8Aks78MOQ6lLVtGoW77
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yA9pM4hsFLv2XBk005DddnrV3g73Ub8_HFhM43wGoIDZywnlAXW41g==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 1c9510a236617341050f52da1a0531ae
a5447a8825ed0daa89864eb7688d8a54fcb1bca6
52393c5f1a211ccd6ec8ee85b2d6b43c020311d42b44a9732a3d00dd207b94cb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4250
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:20 GMT
Last-Modified: Tue, 31 Jan 2023 08:00:30 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 312
prebid.smilewanted.com/
104.22.68.131204 No Content 0 B IP 104.22.68.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 356
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 09:11:20 GMT
cache-control: no-cache, private
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 792151be4cc495ea-ARN
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ef13dbe2297db2b2434641b5542f0a69
cf2cb8e697930d1cf97064b66afab4f514fe0d7d
2d3ef3872003302860f91afe85c5bec85d181ab5018cfa0ce0d10b9ebd397bed
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4595
Cache-Control: max-age=133548
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:20 GMT
Etag: "63d82ff1-117"
Expires: Wed, 01 Feb 2023 22:17:08 GMT
Last-Modified: Mon, 30 Jan 2023 21:00:33 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bb443b9bfa0561d232977c3efc56c18b
356bc89d228a0db33272118105f1290fd2563af7
984f8cb4f169b1f32c2d06abf86d77e985f0d27ef6eaa57be681574b97d3bbe4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4539
Cache-Control: max-age=92447
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:20 GMT
Etag: "63d78f9c-1d7"
Expires: Wed, 01 Feb 2023 10:52:07 GMT
Last-Modified: Mon, 30 Jan 2023 09:36:28 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
prebid.smilewanted.com/
104.22.68.131204 No Content 0 B IP 104.22.68.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 353
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 09:11:20 GMT
cache-control: no-cache, private
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 792151be9d0695ea-ARN
X-Firefox-Spdy: h2
pixel.mathtag.com/misc/img?mop_seq=0:1&mt_cb=344286&mop_top=
23.38.200.207200 OK 43 B URL HTTP/1.1 pixel.mathtag.com/misc/img?mop_seq=0:1&mt_cb=344286&mop_top=
IP 23.38.200.207:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /misc/img?mop_seq=0:1&mt_cb=344286&mop_top= HTTP/1.1
Host: pixel.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pixel.mathtag.com/sync/iframe?mt_uuid=9e3e63d8-db38-4000-99b6-063aa7375ee3&no_iframe=1&exsync=https%3A%2F%2Ftrz.neodatagroup.com%2Fcm%3Fsid%3D1011%26pv%3DMEDIAMATH%26eid%3D%5BMM_UUID%5D%26rt%3Dimg%26rnd%3D1151381926993&mt_exid=10082&source=mathtag
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 43
Access-Control-Allow-Origin: *
Server: MT3 404 ce67235 master iad-pixel-x20 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Tue, 31 Jan 2023 09:11:19 GMT
Date: Tue, 31 Jan 2023 09:11:20 GMT
Connection: keep-alive
Set-Cookie: uuid=7e6863d8-db38-4000-a13e-56e26cf8a1e1; domain=.mathtag.com; path=/; expires=Wed, 28-Feb-2024 09:11:20 GMT; SameSite=None; Secure
mt_mop=; domain=.mathtag.com; path=/; expires=Thu, 02-Mar-2023 09:11:20 GMT; SameSite=None; Secure
s.yimg.com/dy/ads/native.js
188.125.94.204200 OK 30 kB URL HTTP/2 s.yimg.com/dy/ads/native.js
IP 188.125.94.204:0
File type Unicode text, UTF-8 text, with very long lines (62317), with no line terminators
Hash 10bee4938d7a77c781e6aad1ace7aed7
3ffaba4cd612a6e496ef46a6c61e121432bcb804
ec57e86f27e4f85b3695d86c87fab569dd13954c04369b7502fd482059b8b384
GET /dy/ads/native.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: lP7onu2ykoAAYYSgD53kT1bFtZbpCp+tPq3clINNRzKgMgCKwrTUEm8NYT8AvfMsqCzXzFU0zcz9B1s/bIE+nA==
x-amz-request-id: Z05DAKV77FM9KMGT
date: Tue, 31 Jan 2023 09:03:48 GMT
last-modified: Thu, 19 Jan 2023 19:14:41 GMT
x-amz-server-side-encryption: AES256
cache-control: max-age=600
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
x-amzn-internal-status: 304
etag: "f85a8441132f03af9b4ae541ffce32a6-df"
age: 452
content-encoding: gzip
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 41a4a3693b6cf7e1a345afbe00934ca7
6f072cde84187c4124dd88fab10a1296bcba998c
9e426a348b95f52ca2e18f09932f0e48046abd55f30c8a884da00d8e89d45bc4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4851
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:20 GMT
Last-Modified: Tue, 31 Jan 2023 07:50:29 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ib.adnxs.com/ut/v3/prebid
185.89.211.132200 OK 283 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 185.89.211.132:0
File type JSON data\012- , ASCII text, with very long lines (701), with no line terminators
Hash f570e09a679a955efcdf2751e5694f4a
f1cd6729900a0d14075d4c6b2b04c3c9d8a157ab
fd93dea4a0cba65e100303f6cb2f6294f10760c0e2fbd888aa7e5639062b35cb
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2079
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Tue, 31 Jan 2023 09:11:20 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://share.offerteshopping.it
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 3379445b-88a6-4fff-80e2-685ac20666a6
Set-Cookie: icu=ChgIqcRBEAoYASABKAEwuLbjngY4AUABSAEQuLbjngYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Mon, 01-May-2023 09:11:20 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=7360979073680238164; SameSite=None; Path=/; Max-Age=7776000; Expires=Mon, 01-May-2023 09:11:20 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
Content-Encoding: gzip
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.190.77204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.190.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1694
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://share.offerteshopping.it
cache-control: no-cache, no-store, must-revalidate
date: Tue, 31 Jan 2023 09:11:18 GMT
X-Firefox-Spdy: h2
static1.dmcdn.net/playerv5/photon/dmp.photon_app.f3486a5c567012cf110d.js
178.79.212.177200 OK 672 B URL HTTP/2 static1.dmcdn.net/playerv5/photon/dmp.photon_app.f3486a5c567012cf110d.js
IP 178.79.212.177:0
Hash 0ffd0459714adb0f33144592b5c83fd8
36cbb2e6ae1cd9d6da65fd5fc5a1302af5e4d89b
6bba230ff5db9a0c8a44d69949e758372bf56911e48c3f32a048c8d0abf1b8d6
GET /playerv5/photon/dmp.photon_app.f3486a5c567012cf110d.js HTTP/1.1
Host: static1.dmcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://geo.dailymotion.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: DMS/1.0.42
content-type: application/x-javascript
server-timing: total;dur=0, dc;desc="dc3"
timing-allow-origin: *
accept-ranges: bytes
etag: "63d8d6a0-7c39e"
content-encoding: gzip
vary: Accept-Encoding
x-llid: 6378ca478d4fcf534b625a3a1b0021fa
age: 1004
date: Tue, 31 Jan 2023 09:11:18 GMT
last-modified: Tue, 31 Jan 2023 08:51:44 GMT
expires: Thu, 02 Mar 2023 08:54:34 GMT
content-length: 142089
cache-control: max-age=2592000
access-control-allow-origin: *
X-Firefox-Spdy: h2
adx.adform.net/adx/openrtb
37.157.2.234204 No Content 0 B URL HTTP/2 adx.adform.net/adx/openrtb
IP 37.157.2.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /adx/openrtb HTTP/1.1
Host: adx.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1172
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Tue, 31 Jan 2023 09:11:20 GMT
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: POST,OPTIONS
access-control-allow-origin: https://share.offerteshopping.it
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
prebid.smilewanted.com/
104.22.68.131204 No Content 0 B IP 104.22.68.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 372
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 09:11:20 GMT
cache-control: no-cache, private
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 792151be5ccd95ea-ARN
X-Firefox-Spdy: h2
cdn-gl.imrworldwide.com/conf/P5815AB81-01E3-4CD9-BF99-FE49000A2C39.js
54.230.111.95200 OK 6.3 kB URL HTTP/2 cdn-gl.imrworldwide.com/conf/P5815AB81-01E3-4CD9-BF99-FE49000A2C39.js
IP 54.230.111.95:0
File type ASCII text, with very long lines (4610)
Hash d671c38d046cad9ba5f21dac4eb8143e
8dccf381699de54c93913e1810e7164931ac8137
e214258dc90ab49a0408383d896b6b5527d37b882b391125c30b23025479c308
GET /conf/P5815AB81-01E3-4CD9-BF99-FE49000A2C39.js HTTP/1.1
Host: cdn-gl.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 31 Jan 2023 03:16:39 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: p.LQjfjYS1Wojz57K_HqboQD5U86_O82
server: AmazonS3
content-encoding: gzip
date: Tue, 31 Jan 2023 09:06:42 GMT
cache-control: max-age=86400,s-maxage=86400
etag: W/"8f0f526eb2e9e8556f2220c1f090627f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HIOwrcZntL-QY1iqsg43Iv0IxNF3NlpwfGmTjNWcb9NqGxWG2qaSwA==
age: 278
X-Firefox-Spdy: h2
prebid.smilewanted.com/
104.22.68.131204 No Content 0 B IP 104.22.68.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 349
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 09:11:20 GMT
cache-control: no-cache, private
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 792151be5cd995ea-ARN
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 532250c014e17816239b02068b8555fd
8d555fad7c581efb177f90509f348b85684be148
2f4ee22674eb68aed1671dbdf9e8c88a7ebeaa871d99c1042b4eb574a69c5804
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 09:11:20 GMT
Last-Modified: Tue, 31 Jan 2023 08:51:10 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YKZ3Fe5xFr0WooVtiOVM3mnj3OsI67v0cjiyzAZlQWWj_0FK6_mjFA==
Age: 1210
widgets.outbrain.com/outbrain.js
2.18.173.74200 OK 76 kB URL HTTP/2 widgets.outbrain.com/outbrain.js
IP 2.18.173.74:0
File type ASCII text, with very long lines (1595)
Hash 73621df46fac1902c76dab39288873f8
cf21496415044fd6e75587e27b250adba9e6759b
040a7172a2cc4ee10d919a1a5f04dd3ad1c321ee7d1d45abe56e25317782a11b
GET /outbrain.js HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 75957
x-traceid: 304b07ed40e67012b99fb060cecafb29
etag: "17-ZfFZj/Lzl7w+Khxh+UDvDas2wNk"
last-modified: Mon, 30 Jan 2023 06:14:06 GMT
cache-control: max-age=14400
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 31 Jan 2023 09:11:19 GMT
edge-cache-tag: widget-cheetah
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 8b4033ce2ad139c7c70f653fb347c945
02b5407f5c73d65294ce35e21fc2a274505c3af3
14b3fca4421b42bc6c05ebc6fdb9b12cb443fb0c8799264620e8f138e40b47c6
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 09:11:20 GMT
Last-Modified: Tue, 31 Jan 2023 08:08:31 GMT
Server: ECS (nyb/1D15)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BfKz8KfCFQij6iMCVbQEB1Ssm4kQwukCsEDtNTxTNEacqWgFveBy1g==
Age: 3769
onetag-sys.com/prebid-request
51.38.120.206200 OK 41 B URL HTTP/2 onetag-sys.com/prebid-request
IP 51.38.120.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1c15203d1319c02fe2a06d78bc45eccf
40386992654bdda331c8f6eb21ac79de396119ee
cc81a9c5e7147dba347b0ffd34f64e9a7c40f25782569fec5c3fc68b4017badb
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2565
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
cdn.id5-sync.com/api/1.0/id5-api.js
104.22.52.86200 OK 17 kB URL HTTP/2 cdn.id5-sync.com/api/1.0/id5-api.js
IP 104.22.52.86:0
Hash 7e212889dac904087cb1083ddb8b7761
fc34a633221fdedfe7980e479bef31972cadeed2
30d6bedbecce1ddf55d5e862b72d9c456ff2170ff5e821cb00012f84f59636b5
GET /api/1.0/id5-api.js HTTP/1.1
Host: cdn.id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:19 GMT
content-type: text/javascript;charset=utf-8
x-amz-id-2: CO+cPK9MlXQ+Pp7rzr8UBe9jXf3QVRyCEIXUUj0WHfDV3zQVrjcz3bOmEOU9iBqkaS9ucJx5v/0=
x-amz-request-id: H722FXZ7MH4EZWKX
last-modified: Wed, 18 Jan 2023 10:47:57 GMT
etag: W/"4d61440f9cbdbb9b0b5a43273c7c3caf"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
cf-cache-status: HIT
age: 28
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 792151bc6ddcb52d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c5d309f82e2353a43a657e45235b0657
5194ea401ef077324c2fae6f03c4b0ed6ad920d3
28b9a950b721738585fdd4a15fb47b487158b4122439c0b3f01e2779574ee35e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28B9A950B721738585FDD4A15FB47B487158B4122439C0B3F01E2779574EE35E"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8796
Expires: Tue, 31 Jan 2023 11:37:56 GMT
Date: Tue, 31 Jan 2023 09:11:20 GMT
Connection: keep-alive
script.4dex.io/adagio.js
104.26.8.169200 OK 23 kB IP 104.26.8.169:0
File type ASCII text, with very long lines (65354)
Hash 0ffb2c9b6dd933ae18ab7dc729d58e69
bb88b2f3fc47452873348d1cdcb7ea3d4a2bbc10
0cd0e55fa43693dfe4b04a225bf7774eb3f66e232828f8d661547728475a12f2
GET /adagio.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://share.offerteshopping.it/
Origin: https://share.offerteshopping.it
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:20 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=1800
ETag: W/"c56b6332dacf72f135afcd153ae22448"
Last-Modified: Wed, 23 Nov 2022 15:43:17 GMT
Vary: Origin, Accept-Encoding
Access-Control-Expose-Headers:
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pw%2F81UOXhYu9rfFR%2BbTR8s02rq3KIzEfGsPTM60cX1WqWkQpH9Pb5qFNvDxVgQf53BwSg8E6T4ETqWA3Qv5BGlYkV%2F9saLcsc4gG3dAgpa03gcg0Ls5Qe6kbCAKk9K28"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792151bea831b51e-OSL
Content-Encoding: br
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 201db468ed2447305459c1dd1a774fbc
486a4f838b57fda5e4d457afb22db208db36007c
3b35cdfddb6178d74508066f0b32bd5de256e8d357fb12cd6ab978d7e90836b9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3B35CDFDDB6178D74508066F0B32BD5DE256E8D357FB12CD6AB978D7E90836B9"
Last-Modified: Tue, 31 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15845
Expires: Tue, 31 Jan 2023 13:35:25 GMT
Date: Tue, 31 Jan 2023 09:11:20 GMT
Connection: keep-alive
advm.brznetwork.com/commons/adsense.png
185.206.86.13200 OK 169 B URL HTTP/2 advm.brznetwork.com/commons/adsense.png
IP 185.206.86.13:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9c83ed48c75fc790df355cff1814c0e2
353f23ae6c624195bdfc346a5964ec0aab508cfb
92e9c100491444c31c377c868d40f1c1e303e8e63efa4c8f3f55a9a7cd68e534
GET /commons/adsense.png HTTP/1.1
Host: advm.brznetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:20 GMT
server: Apache
last-modified: Thu, 23 Jul 2015 15:36:16 GMT
etag: "a9-51b8ca5e25c00"
accept-ranges: bytes
content-length: 169
p3p: CP="NOI NID ADM OUR STP"
content-type: image/png
X-Firefox-Spdy: h2
codicebusiness.shinystat.it/cgi-bin/getcod.cgi?IFSSA=yes&AFF=0&IDS=18246227&SSA=&RF=&HR=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&TUP=0&PTUP=&FV=1&UV=1&US=1&DUP=0&PCNL=&NV=1&RM=90670037
185.206.86.14200 OK 2.8 kB URL HTTP/2 codicebusiness.shinystat.it/cgi-bin/getcod.cgi?IFSSA=yes&AFF=0&IDS=18246227&SSA=&RF=&HR=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&TUP=0&PTUP=&FV=1&UV=1&US=1&DUP=0&PCNL=&NV=1&RM=90670037
IP 185.206.86.14:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (370)
Hash 4d224d199a93ca7547f08e982bee2c1a
7a3bbfb6319aca26e56876303f8dfa05328e648e
e64abf6171ca4c674e4ca944e0c533a937e1945ca0d1543032431dafb3a15e0d
GET /cgi-bin/getcod.cgi?IFSSA=yes&AFF=0&IDS=18246227&SSA=&RF=&HR=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&TUP=0&PTUP=&FV=1&UV=1&US=1&DUP=0&PCNL=&NV=1&RM=90670037 HTTP/1.1
Host: codicebusiness.shinystat.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:20 GMT
server: Apache
vary: Accept-Encoding
content-encoding: gzip
p3p: CP="NOI NID ADM OUR STP"
content-length: 2785
content-type: text/html
X-Firefox-Spdy: h2
ad.360yield.com/pb
3.72.206.120204 No Content 0 B IP 3.72.206.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1443
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 09:11:20 GMT
access-control-allow-origin: https://share.offerteshopping.it
set-cookie: tuuid=363e7f5b-0625-4930-a3d5-a2bd19473846; Expires=Mon, 01 May 2023 09:11:20 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1675156280; Expires=Mon, 01 May 2023 09:11:20 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
X-Firefox-Spdy: h2
widget-pixels.outbrain.com/widget/detect/px.gif?ch=1
2.18.173.74200 OK 43 B URL HTTP/2 widget-pixels.outbrain.com/widget/detect/px.gif?ch=1
IP 2.18.173.74:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /widget/detect/px.gif?ch=1 HTTP/1.1
Host: widget-pixels.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-length: 43
content-type: image/gif
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3:1601475749.911431"
last-modified: Wed, 30 Sep 2020 14:22:29 GMT
server: AkamaiNetStorage
cache-control: max-age=2592000
expires: Thu, 02 Mar 2023 09:11:20 GMT
date: Tue, 31 Jan 2023 09:11:20 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ib.adnxs.com/pixie?e=ItemView&site_name=Offerte%20Shopping&anno=2016&mese=11&Giorno=23&category=share&tags=comprare&tags=online&tags=prezzo&pi=8880f854-0412-4c16-94d4-71db7d018e43&it=1675156295782&v=0.0.20&u=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&st=1675156295781&et=1675156295782&if=0
185.89.211.132200 OK 42 B URL HTTP/1.1 ib.adnxs.com/pixie?e=ItemView&site_name=Offerte%20Shopping&anno=2016&mese=11&Giorno=23&category=share&tags=comprare&tags=online&tags=prezzo&pi=8880f854-0412-4c16-94d4-71db7d018e43&it=1675156295782&v=0.0.20&u=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&st=1675156295781&et=1675156295782&if=0
IP 185.89.211.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pixie?e=ItemView&site_name=Offerte%20Shopping&anno=2016&mese=11&Giorno=23&category=share&tags=comprare&tags=online&tags=prezzo&pi=8880f854-0412-4c16-94d4-71db7d018e43&it=1675156295782&v=0.0.20&u=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&st=1675156295781&et=1675156295782&if=0 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Tue, 31 Jan 2023 09:11:20 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
cdn-gl.imrworldwide.com/novms/js/2/nlsSDK600.bundle.min.js
54.230.111.95200 OK 56 kB URL HTTP/2 cdn-gl.imrworldwide.com/novms/js/2/nlsSDK600.bundle.min.js
IP 54.230.111.95:0
File type ASCII text, with very long lines (63875)
Hash 548c6c3dae4f1dc6bc008631cd6bcea3
f3eaf7fa405ad919796cc32dd972321b454d9051
15f449a6c4792b4bc8bd16ea3bb08e6c817dc52136872f91d63c4db544753ea5
GET /novms/js/2/nlsSDK600.bundle.min.js HTTP/1.1
Host: cdn-gl.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 28 Sep 2022 14:09:01 GMT
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-server-side-encryption: AES256
x-amz-version-id: Tw1ZrV6S6M8HrQmSnEoR4BpykB7j_69v
server: AmazonS3
content-encoding: gzip
date: Tue, 31 Jan 2023 08:49:39 GMT
cache-control: max-age=86400
etag: W/"81a9e2a298d0019660cb2966f0c24748"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: imzfPYgO6xIztjV8jq2Qakd_0vj3WI9at58HEsLSlLkHb9gbSw-PZQ==
age: 1302
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11396&site_id=148846&zone_id=1093162%3B1093146%3B1093146%3B705024%3B705032%3B2295750&size_id=15%3B15%3B10%3B2%3B68%3B221&alt_size_ids=10%3B%3B%3B%3B%3B&p_pos=atf%3Batf%3Batf%3Batf%3Bbtf%3Bbtf&gdpr=0&rp_schain=1.0,1!offerteshopping.it,390020,1,,,!webads.eu,390000,1,,,&eid_pubcid.org=df3ec894-a40d-4584-9116-26637b79810d%5E1&rf=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&tk_flint=pbjs_lite_v6.29.3&x_source.tid=99dd7dc0-5635-4cbf-8220-3c7555a30db3%3B1d0c3b0d-9ed7-4b07-8df5-cc68ca4032a8%3B22010af7-20a0-407a-94fa-671ac8bf6489%3Baa5f3425-d1a8-411e-9f1c-7108003afe07%3B2c89238f-b842-474b-b9c7-00eede4ca6ef%3B39c8b614-d69f-4726-9dfa-25591051369f&l_pb_bid_id=30443bd59e514%3B31a2996418cfae3%3B324edc6cb89c029%3B3317ca053f5b2d58%3B346e94f1141cb3%3B35f6e65c0b70899&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=6&rand=0.15274668891790277
213.19.162.41200 OK 1.3 kB URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11396&site_id=148846&zone_id=1093162%3B1093146%3B1093146%3B705024%3B705032%3B2295750&size_id=15%3B15%3B10%3B2%3B68%3B221&alt_size_ids=10%3B%3B%3B%3B%3B&p_pos=atf%3Batf%3Batf%3Batf%3Bbtf%3Bbtf&gdpr=0&rp_schain=1.0,1!offerteshopping.it,390020,1,,,!webads.eu,390000,1,,,&eid_pubcid.org=df3ec894-a40d-4584-9116-26637b79810d%5E1&rf=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&tk_flint=pbjs_lite_v6.29.3&x_source.tid=99dd7dc0-5635-4cbf-8220-3c7555a30db3%3B1d0c3b0d-9ed7-4b07-8df5-cc68ca4032a8%3B22010af7-20a0-407a-94fa-671ac8bf6489%3Baa5f3425-d1a8-411e-9f1c-7108003afe07%3B2c89238f-b842-474b-b9c7-00eede4ca6ef%3B39c8b614-d69f-4726-9dfa-25591051369f&l_pb_bid_id=30443bd59e514%3B31a2996418cfae3%3B324edc6cb89c029%3B3317ca053f5b2d58%3B346e94f1141cb3%3B35f6e65c0b70899&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=6&rand=0.15274668891790277
IP 213.19.162.41:0
Hash fb02b96597e80211b29f784cc5c755c0
0474342d312b4d67684c06cd095aefa23545a2e8
de4fffa77c56766ac17f576883f9d09a4467f814681ada5ed298fed16cc21e6a
GET /a/api/fastlane.json?account_id=11396&site_id=148846&zone_id=1093162%3B1093146%3B1093146%3B705024%3B705032%3B2295750&size_id=15%3B15%3B10%3B2%3B68%3B221&alt_size_ids=10%3B%3B%3B%3B%3B&p_pos=atf%3Batf%3Batf%3Batf%3Bbtf%3Bbtf&gdpr=0&rp_schain=1.0,1!offerteshopping.it,390020,1,,,!webads.eu,390000,1,,,&eid_pubcid.org=df3ec894-a40d-4584-9116-26637b79810d%5E1&rf=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&tk_flint=pbjs_lite_v6.29.3&x_source.tid=99dd7dc0-5635-4cbf-8220-3c7555a30db3%3B1d0c3b0d-9ed7-4b07-8df5-cc68ca4032a8%3B22010af7-20a0-407a-94fa-671ac8bf6489%3Baa5f3425-d1a8-411e-9f1c-7108003afe07%3B2c89238f-b842-474b-b9c7-00eede4ca6ef%3B39c8b614-d69f-4726-9dfa-25591051369f&l_pb_bid_id=30443bd59e514%3B31a2996418cfae3%3B324edc6cb89c029%3B3317ca053f5b2d58%3B346e94f1141cb3%3B35f6e65c0b70899&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=6&rand=0.15274668891790277 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Tue, 31 Jan 2023 09:11:20 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://share.offerteshopping.it
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDK0SQ6A-W-LEMH; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:20 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qpkd8f3b8jH6+9DtVM30fCguJiciBlYek0SFtapOUHQ9azIPuCk7AJZ+eXSdXNJ4r2yTRVgFGnRQ8xuhZpbWKLt4CSBG4tUO18=; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:20 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDK0SQ6A-W-LEMH; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:20 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qpkd8f3b8jH6+9DtVM30fCguJiciBlYek0SFtapOUHQ9azIPuCk7AJZ+eXSdXNJ4r2yTRVgFGnRQ8xuhZpbWKLt4CSBG4tUO18=; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:20 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDK0SQ6A-W-LEMH; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:20 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qpkd8f3b8jH6+9DtVM30fCguJiciBlYek0SFtapOUHQ9azIPuCk7AJZ+eXSdXNJ4r2yTRVgFGnRQ8xuhZpbWKLt4CSBG4tUO18=; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:20 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDK0SQ6A-W-LEMH; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:20 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qpkd8f3b8jH6+9DtVM30fCguJiciBlYek0SFtapOUHQ9azIPuCk7AJZ+eXSdXNJ4r2yTRVgFGnRQ8xuhZpbWKLt4CSBG4tUO18=; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:20 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDK0SQ6A-W-LEMH; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:20 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qpkd8f3b8jH6+9DtVM30fCguJiciBlYek0SFtapOUHQ9azIPuCk7AJZ+eXSdXNJ4r2yTRVgFGnRQ8xuhZpbWKLt4CSBG4tUO18=; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:20 GMT; Max-Age=31536000; SameSite=None; Secure
khaos=LDK0SQ6A-W-LEMH; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:20 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qpkd8f3b8jH6+9DtVM30fCguJiciBlYek0SFtapOUHQ9azIPuCk7AJZ+eXSdXNJ4r2yTRVgFGnRQ8xuhZpbWKLt4CSBG4tUO18=; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:20 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
X-Firefox-Spdy: h2
connect.facebook.net/it_IT/sdk.js?hash=3f1645d56e2121d92d96c784a60cba7f
31.13.72.12200 OK 87 kB URL HTTP/2 connect.facebook.net/it_IT/sdk.js?hash=3f1645d56e2121d92d96c784a60cba7f
IP 31.13.72.12:0
File type ASCII text, with very long lines (13192)
Hash 0c26e2f0ba22bdea0699149cf3b63f1a
476d4e8ae555c7af54192ca0a1c0c523ebf11d2d
60a93f43cf528ee45cf5a5d8f6ee60426b6edf4779b4a86244a220e23e318758
GET /it_IT/sdk.js?hash=3f1645d56e2121d92d96c784a60cba7f HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 7a546431bd46707b45c56c0d59632694
etag: "bafe0cdddb82af84e8ef26cb3de3a2a5"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 31 Jan 2024 07:27:08 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: DCbi8LoiveoGmRSc87Y/Gg==
x-fb-debug: A0ivzaDXTka/rV+qnrHIVRdhpO1oMi9kVRFxst8GkpewMyK2cQZhPVcnCP4+EfIVKJa3lF57WfGIW0EYLzOLdg==
content-length: 87001
x-fb-trip-id: 1904183273
date: Tue, 31 Jan 2023 09:11:20 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
pixel.mathtag.com/comp/img?mt_id=99&ns=xx&bcdv=0
23.38.200.207200 OK 0 B URL HTTP/1.1 pixel.mathtag.com/comp/img?mt_id=99&ns=xx&bcdv=0
IP 23.38.200.207:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /comp/img?mt_id=99&ns=xx&bcdv=0 HTTP/1.1
Host: pixel.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 0
Access-Control-Allow-Origin: *
Server: MT3 404 ce67235 master iad-pixel-x17 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Tue, 31 Jan 2023 09:11:19 GMT
Date: Tue, 31 Jan 2023 09:11:20 GMT
Connection: keep-alive
Set-Cookie: uuid=73e663d8-db38-4b00-b962-fdf746f4d5b7; domain=.mathtag.com; path=/; expires=Wed, 28-Feb-2024 09:11:20 GMT; SameSite=None; Secure
tcheck.outbrainimg.com/tcheck/check/c2hhcmUub2ZmZXJ0ZXNob3BwaW5nLml0
2.18.173.172200 OK 15 B URL HTTP/1.1 tcheck.outbrainimg.com/tcheck/check/c2hhcmUub2ZmZXJ0ZXNob3BwaW5nLml0
IP 2.18.173.172:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 529cac05e2a53fd8794eb9e5699d9740
6b22e508bdcfbb35d24e176eefc89179212397a6
39d160e97e2bea07b0cf1c647259ffa4f0bd07069dba4e6c19a22d38b408510f
GET /tcheck/check/c2hhcmUub2ZmZXJ0ZXNob3BwaW5nLml0 HTTP/1.1
Host: tcheck.outbrainimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 15
X-TraceId: ef2325f90e6aebffc32e1c231a889cec
ETag: W/"f-ayLlCL3PuzXSThdu78iReSEjl6Y"
Cache-Control: max-age=42727
Expires: Tue, 31 Jan 2023 21:03:27 GMT
Date: Tue, 31 Jan 2023 09:11:20 GMT
Connection: keep-alive
Access-Control-Max-Age: 43200
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Origin: *
secure.quantserve.com/quant.js
91.228.74.206200 OK 12 kB URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.206:0
Hash 6f4d55be3ae6c2206e6652c634ee9f87
a5194c3eb318e155bcaf02af70447042d9f05af3
c20ebc3c68c00169863d7258aa0c402f602a9adadcdc937e9dbbb26fc338572b
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:20 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "j4o3/UzQJzEULY/aoGayAw=="
expires: Tue, 07 Feb 2023 09:11:20 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
de5zarwna0j2q.cloudfront.net/quantum/sites/test/sellers.json
54.230.111.28200 OK 63 kB URL HTTP/1.1 de5zarwna0j2q.cloudfront.net/quantum/sites/test/sellers.json
IP 54.230.111.28:0
File type JSON data\012- , ASCII text
Hash 0ee58230ef9f60fbacd55db0d08ce4d0
152930398ebcf5bfb857c5a49aed346214c3c808
f695dbc2257d394aee2c15cc4578b2de7d3fd31c04cb9a233b7ea3e74db9d79f
GET /quantum/sites/test/sellers.json HTTP/1.1
Host: de5zarwna0j2q.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://share.offerteshopping.it/
Origin: https://share.offerteshopping.it
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 62985
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Max-Age: 3000
Last-Modified: Tue, 31 Jan 2023 09:00:05 GMT
x-amz-version-id: PMmhDyXzPdx7wyox9JRdiUCnX8SC4o4F
Accept-Ranges: bytes
Server: AmazonS3
Date: Tue, 31 Jan 2023 09:11:21 GMT
Expires: 0
ETag: "0ee58230ef9f60fbacd55db0d08ce4d0"
X-Cache: RefreshHit from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: oj8tykPe34y-FAnVMDSZtCkr6V0YHVqpL1fYc_ZtwyNxFV-PXpgpmA==
s10.shinystat.com/cgi-bin/shinystat.cgi?USER=RNG-offerteshopping&NODW=yes&REFER=&COLOR=24&SIZE=1280&RES=1280X1024&CK=Y&HR=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&JV=N&BLANG=en-US&VUT=-1&NUT=y&SSID=329063136769&TUP=0&PTUP=&FV=1&UV=1&US=1&DUP=0&PCNL=&JS=Y&VJS=4035&RM=379959573
185.206.85.85200 OK 11 kB URL HTTP/2 s10.shinystat.com/cgi-bin/shinystat.cgi?USER=RNG-offerteshopping&NODW=yes&REFER=&COLOR=24&SIZE=1280&RES=1280X1024&CK=Y&HR=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&JV=N&BLANG=en-US&VUT=-1&NUT=y&SSID=329063136769&TUP=0&PTUP=&FV=1&UV=1&US=1&DUP=0&PCNL=&JS=Y&VJS=4035&RM=379959573
IP 185.206.85.85:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 89383e9297159c3471084952d0f57ea9
ae1f7aba070aed306034ecb3c817f609a8b485a5
8939de5d1c6e4eccef38713ad658f97ad30225026ff7d207f9f8b7f133ce6a24
GET /cgi-bin/shinystat.cgi?USER=RNG-offerteshopping&NODW=yes&REFER=&COLOR=24&SIZE=1280&RES=1280X1024&CK=Y&HR=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&JV=N&BLANG=en-US&VUT=-1&NUT=y&SSID=329063136769&TUP=0&PTUP=&FV=1&UV=1&US=1&DUP=0&PCNL=&JS=Y&VJS=4035&RM=379959573 HTTP/1.1
Host: s10.shinystat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:20 GMT
server: Apache
pragma: max-age=0
cache-control: no-cache
expires: Wed, 29 Mar 2000 10:00:00 Local time
last-modified: Tue, 31 Jan 2023 09:11:20 GMT
p3p: CP="NOI NID ADM OUR STP", CP="NOI NID ADM OUR STP"
content-type: image/gif
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
51.38.120.206200 OK 41 B URL HTTP/2 onetag-sys.com/prebid-request
IP 51.38.120.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1c15203d1319c02fe2a06d78bc45eccf
40386992654bdda331c8f6eb21ac79de396119ee
cc81a9c5e7147dba347b0ffd34f64e9a7c40f25782569fec5c3fc68b4017badb
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1299
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
prebid.smilewanted.com/
104.22.68.131204 No Content 0 B IP 104.22.68.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 372
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 09:11:21 GMT
cache-control: no-cache, private
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 792151c4bb6d95ea-ARN
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11396&site_id=148846&zone_id=705024&size_id=2&p_pos=atf&gdpr=0&rp_schain=1.0,1!offerteshopping.it,390020,1,,,!webads.eu,390000,1,,,&eid_pubcid.org=df3ec894-a40d-4584-9116-26637b79810d%5E1&rf=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&tg_i.pbadslot=21803865453%2C22057399995%2Fofferteshopping.it%2Fother_floorad%23p3_3_0_1&tk_flint=pbjs_lite_v6.29.3&x_source.tid=6f3f23a8-63aa-48cb-96a6-ed6c399f6e6d&l_pb_bid_id=6486956dc02e94ce&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=21803865453%2C22057399995%2Fofferteshopping.it%2Fother_floorad%23p3_3_0_1&slots=1&rand=0.8849065021296726
213.19.162.41200 OK 325 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=11396&site_id=148846&zone_id=705024&size_id=2&p_pos=atf&gdpr=0&rp_schain=1.0,1!offerteshopping.it,390020,1,,,!webads.eu,390000,1,,,&eid_pubcid.org=df3ec894-a40d-4584-9116-26637b79810d%5E1&rf=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&tg_i.pbadslot=21803865453%2C22057399995%2Fofferteshopping.it%2Fother_floorad%23p3_3_0_1&tk_flint=pbjs_lite_v6.29.3&x_source.tid=6f3f23a8-63aa-48cb-96a6-ed6c399f6e6d&l_pb_bid_id=6486956dc02e94ce&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=21803865453%2C22057399995%2Fofferteshopping.it%2Fother_floorad%23p3_3_0_1&slots=1&rand=0.8849065021296726
IP 213.19.162.41:0
File type JSON data\012- , ASCII text, with very long lines (325), with no line terminators
Hash 1fdab8c0502a52236397a233e1249115
bc6ac7b179b79f6ab37dac6f53de0dd532932fa2
0137f9d5faf7185889273d04226bb177b9ff2cc6358f1159d84eaec9c1f21a52
GET /a/api/fastlane.json?account_id=11396&site_id=148846&zone_id=705024&size_id=2&p_pos=atf&gdpr=0&rp_schain=1.0,1!offerteshopping.it,390020,1,,,!webads.eu,390000,1,,,&eid_pubcid.org=df3ec894-a40d-4584-9116-26637b79810d%5E1&rf=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&tg_i.pbadslot=21803865453%2C22057399995%2Fofferteshopping.it%2Fother_floorad%23p3_3_0_1&tk_flint=pbjs_lite_v6.29.3&x_source.tid=6f3f23a8-63aa-48cb-96a6-ed6c399f6e6d&l_pb_bid_id=6486956dc02e94ce&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=21803865453%2C22057399995%2Fofferteshopping.it%2Fother_floorad%23p3_3_0_1&slots=1&rand=0.8849065021296726 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Tue, 31 Jan 2023 09:11:21 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://share.offerteshopping.it
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDK0SQUE-5-5J8D; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:21 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qqaeRGHyuCPDu9DtVM30fCguJiciBlYek2RXYnAy73AGKzIPuCk7AJZ+eXSdXNJ4r2yTRVgFGnRQ8xuhZpbWKLt4CSBG4tUO18=; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:21 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 325
X-Firefox-Spdy: h2
static-adsr.4wnetwork.com/js/prebid/prebid.js?v=1
54.230.111.122200 OK 101 kB URL HTTP/2 static-adsr.4wnetwork.com/js/prebid/prebid.js?v=1
IP 54.230.111.122:0
Size 101 kB (100772 bytes)
Hash ad6e7908f06c80701c05171b18c038f6
aadf86bd3141bdbfa12d089228c5c5dfe433b0f9
543e80c14fdb73787f8d764dc019598a93f559533c0a6fa7dd3b85d25d3e7ee5
GET /js/prebid/prebid.js?v=1 HTTP/1.1
Host: static-adsr.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Cookie: profiler=eyJjYW4iOnRydWV9; ad_simply_viewer=63d8db35c3b550.37864978; know=63d8db35c3b550.37864978
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
server: nginx/1.20.0
last-modified: Fri, 27 Jan 2023 14:46:06 GMT
content-encoding: gzip
date: Tue, 31 Jan 2023 03:02:43 GMT
etag: W/"63d3e3ae-4ce7f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: I5d7Fh9uY1hWn_k6wK2rd3RI5PeO7EiMYhZSfLRLNZgeo557-YZoNg==
age: 22560
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash acb329ae525983dc8ed2e83f58ac96ca
19cacbfa49986c7e83a7ca7fe1899e99549b6921
96947c45d5cf2a9186903a36fa764cfbc6893c240f30ca6c951899860d5e2c09
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 08:41:13 GMT
Expires: Sun, 05 Feb 2023 08:41:12 GMT
Etag: "19cacbfa49986c7e83a7ca7fe1899e99549b6921"
Cache-Control: max-age=429590,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792151c4dd4f0b31-OSL
pixel.mathtag.com/misc/img?mop_seq=1:1&mt_cb=481275&check=9e3e63d8-db38-4000-99b6-063aa7375ee3&mop_top=
23.38.200.207200 OK 43 B URL HTTP/1.1 pixel.mathtag.com/misc/img?mop_seq=1:1&mt_cb=481275&check=9e3e63d8-db38-4000-99b6-063aa7375ee3&mop_top=
IP 23.38.200.207:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /misc/img?mop_seq=1:1&mt_cb=481275&check=9e3e63d8-db38-4000-99b6-063aa7375ee3&mop_top= HTTP/1.1
Host: pixel.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pixel.mathtag.com/sync/iframe?mt_uuid=9e3e63d8-db38-4000-99b6-063aa7375ee3&no_iframe=1&exsync=https%3A%2F%2Ftrz.neodatagroup.com%2Fcm%3Fsid%3D1011%26pv%3DMEDIAMATH%26eid%3D%5BMM_UUID%5D%26rt%3Dimg%26rnd%3D1151381926993&mt_exid=10082&source=mathtag
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 43
Access-Control-Allow-Origin: *
Server: MT3 404 ce67235 master iad-pixel-x18 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Expires: Tue, 31 Jan 2023 09:11:20 GMT
Date: Tue, 31 Jan 2023 09:11:21 GMT
Connection: keep-alive
Set-Cookie: uuid=44d763d8-db39-4600-b65d-2a2bd6473907; domain=.mathtag.com; path=/; expires=Wed, 28-Feb-2024 09:11:21 GMT; SameSite=None; Secure
mt_mop=; domain=.mathtag.com; path=/; expires=Thu, 02-Mar-2023 09:11:21 GMT; SameSite=None; Secure
s.seedtag.com/e/e
34.149.50.64204 No Content 0 B IP 34.149.50.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /e/e HTTP/1.1
Host: s.seedtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 580
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Tue, 31 Jan 2023 09:11:21 GMT
vary: X-HTTP-Method-Override
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT, HEAD
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.teads.tv/hb/bid-request
2.18.173.43200 OK 42 B URL HTTP/2 a.teads.tv/hb/bid-request
IP 2.18.173.43:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f646cd677a5283a600e1ca73c499877
979e9d54fa7ac635da0fb855a8ba40a0f74fe76e
d6e5f108622c778ca6bc5d246637b9a73585a670d46e15493b89f2915806174a
POST /hb/bid-request HTTP/1.1
Host: a.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1048
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://share.offerteshopping.it
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-WoW64
content-encoding: gzip
content-length: 42
vary: Accept-Encoding
expires: Tue, 31 Jan 2023 09:11:21 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 31 Jan 2023 09:11:21 GMT
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash acb329ae525983dc8ed2e83f58ac96ca
19cacbfa49986c7e83a7ca7fe1899e99549b6921
96947c45d5cf2a9186903a36fa764cfbc6893c240f30ca6c951899860d5e2c09
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 08:41:13 GMT
Expires: Sun, 05 Feb 2023 08:41:12 GMT
Etag: "19cacbfa49986c7e83a7ca7fe1899e99549b6921"
Cache-Control: max-age=429590,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792151c62e580b31-OSL
nn9lpoarkwo9jn4oeb1l60keerhpw1675156296.nuid.imrworldwide.com/
54.230.111.120200 OK 35 B URL HTTP/2 nn9lpoarkwo9jn4oeb1l60keerhpw1675156296.nuid.imrworldwide.com/
IP 54.230.111.120:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET / HTTP/1.1
Host: nn9lpoarkwo9jn4oeb1l60keerhpw1675156296.nuid.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-gl.imrworldwide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: image/gif
content-length: 35
last-modified: Tue, 11 Sep 2018 17:05:20 GMT
accept-ranges: bytes
server: AmazonS3
date: Tue, 31 Jan 2023 01:05:50 GMT
etag: "c2196de8ba412c60c22ab491af7b1409"
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -7CfBltAr9mscAcFD0J5375Jjv59l_TAP1vDvoM95w9kPiSg2xVxSg==
age: 29131
X-Firefox-Spdy: h2
secure-it.imrworldwide.com/cgi-bin/gn?prd=session&c9=devid,&c13=asid,P5815AB81-01E3-4CD9-BF99-FE49000A2C39&sessionId=nn9lpoarkwo9jn4oeb1l60keerhpw1675156296&c16=sdkv,bj.6.0.0&uoo=&fp_id=&fp_cr_tm=&fp_acc_tm=&fp_emm_tm=&ve_id=&c30=bldv,6.0.0.623&uid2=&uid2_token=&hem_sha256=&hem_sha1=&hem_md5=&hem_unknown=&sdd=&retry=0
54.74.81.160200 OK 44 B URL HTTP/2 secure-it.imrworldwide.com/cgi-bin/gn?prd=session&c9=devid,&c13=asid,P5815AB81-01E3-4CD9-BF99-FE49000A2C39&sessionId=nn9lpoarkwo9jn4oeb1l60keerhpw1675156296&c16=sdkv,bj.6.0.0&uoo=&fp_id=&fp_cr_tm=&fp_acc_tm=&fp_emm_tm=&ve_id=&c30=bldv,6.0.0.623&uid2=&uid2_token=&hem_sha256=&hem_sha1=&hem_md5=&hem_unknown=&sdd=&retry=0
IP 54.74.81.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 354857de9229bae15647fbc6364a4b19
f23e9c4fadc2e01bf323e90e5c1459bb6cf4f917
5ecb58845a9ac30e4eb4b18eb0e7431ba1fb195ce035309735efaee67421c7a3
GET /cgi-bin/gn?prd=session&c9=devid,&c13=asid,P5815AB81-01E3-4CD9-BF99-FE49000A2C39&sessionId=nn9lpoarkwo9jn4oeb1l60keerhpw1675156296&c16=sdkv,bj.6.0.0&uoo=&fp_id=&fp_cr_tm=&fp_acc_tm=&fp_emm_tm=&ve_id=&c30=bldv,6.0.0.623&uid2=&uid2_token=&hem_sha256=&hem_sha1=&hem_md5=&hem_unknown=&sdd=&retry=0 HTTP/1.1
Host: secure-it.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-gl.imrworldwide.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:21 GMT
content-type: image/gif
content-length: 44
server: nginx
set-cookie: IMRID=3a75c4e0-a147-11ed-9704-37960d8e7a73; Path=/;Secure;SameSite=None; Domain=imrworldwide.com; Expires=Sun, 25-Feb-2024 09:11:21 GMT; Max-Age=33696000
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
cache-control: no-cache
p3p: P3P policyref="http://secure-it.imrworldwide.com/w3c/p3p.xml", CP="NOI DSP COR NID PSA ADM OUR IND UNI NAV COM"
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
antenna.ayads.co/?device=d&et=4348&ga=0&gc=1&gm=1&gs=0&puid=p6735085732641296580&sqid=2&src=wf&suid=s1941419608516077599&t=1675156294967&tfz=1569&tse=1675156296536&ver=20230127155355&z=30426&e=p&bh=939&bw=1268&gd&gdv&ph=4388&ctxs=750325952%3A9%2C834905626%3A5%2C1063046278%3A5%2C1076448337%3A5%2C1154842265%3A9%2C1279486098%3A10%2C1581924491%3A5%2C1690725722%3A9%2C1690725723%3A9%2C1741058577%3A9%2C1824946737%3A5%2C2241963825%3A5%2C2310060012%3A5%2C2938018295%3A9%2C2960050050%3A5%2C3501378400%3A10%2C3501378402%3A8%2C4089380855%3A5%2C4089380861%3A5&schin=0&schinc=0
34.243.240.54204 No Content 0 B URL HTTP/2 antenna.ayads.co/?device=d&et=4348&ga=0&gc=1&gm=1&gs=0&puid=p6735085732641296580&sqid=2&src=wf&suid=s1941419608516077599&t=1675156294967&tfz=1569&tse=1675156296536&ver=20230127155355&z=30426&e=p&bh=939&bw=1268&gd&gdv&ph=4388&ctxs=750325952%3A9%2C834905626%3A5%2C1063046278%3A5%2C1076448337%3A5%2C1154842265%3A9%2C1279486098%3A10%2C1581924491%3A5%2C1690725722%3A9%2C1690725723%3A9%2C1741058577%3A9%2C1824946737%3A5%2C2241963825%3A5%2C2310060012%3A5%2C2938018295%3A9%2C2960050050%3A5%2C3501378400%3A10%2C3501378402%3A8%2C4089380855%3A5%2C4089380861%3A5&schin=0&schinc=0
IP 34.243.240.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?device=d&et=4348&ga=0&gc=1&gm=1&gs=0&puid=p6735085732641296580&sqid=2&src=wf&suid=s1941419608516077599&t=1675156294967&tfz=1569&tse=1675156296536&ver=20230127155355&z=30426&e=p&bh=939&bw=1268&gd&gdv&ph=4388&ctxs=750325952%3A9%2C834905626%3A5%2C1063046278%3A5%2C1076448337%3A5%2C1154842265%3A9%2C1279486098%3A10%2C1581924491%3A5%2C1690725722%3A9%2C1690725723%3A9%2C1741058577%3A9%2C1824946737%3A5%2C2241963825%3A5%2C2310060012%3A5%2C2938018295%3A9%2C2960050050%3A5%2C3501378400%3A10%2C3501378402%3A8%2C4089380855%3A5%2C4089380861%3A5&schin=0&schinc=0 HTTP/1.1
Host: antenna.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 31 Jan 2023 09:11:21 GMT
X-Firefox-Spdy: h2
antenna.ayads.co/?a=295990&at=skinz&device=d&et=4349&ga=0&gc=1&gcp=1&gm=1&gs=0&isssp=1&puid=p6735085732641296580&sqid=3&src=wf&sspname=sspv3-smartadserver&sspplid=521475%7C1629537%7C42281&suid=s1941419608516077599&t=1675156294967&tfz=1571&tse=1675156296538&ver=20230127155355&z=30426&e=sspc
34.243.240.54204 No Content 0 B URL HTTP/2 antenna.ayads.co/?a=295990&at=skinz&device=d&et=4349&ga=0&gc=1&gcp=1&gm=1&gs=0&isssp=1&puid=p6735085732641296580&sqid=3&src=wf&sspname=sspv3-smartadserver&sspplid=521475%7C1629537%7C42281&suid=s1941419608516077599&t=1675156294967&tfz=1571&tse=1675156296538&ver=20230127155355&z=30426&e=sspc
IP 34.243.240.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?a=295990&at=skinz&device=d&et=4349&ga=0&gc=1&gcp=1&gm=1&gs=0&isssp=1&puid=p6735085732641296580&sqid=3&src=wf&sspname=sspv3-smartadserver&sspplid=521475%7C1629537%7C42281&suid=s1941419608516077599&t=1675156294967&tfz=1571&tse=1675156296538&ver=20230127155355&z=30426&e=sspc HTTP/1.1
Host: antenna.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 31 Jan 2023 09:11:21 GMT
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-qsBtbGkzaJ_M0.js
54.230.111.33200 OK 160 B URL HTTP/2 rules.quantcount.com/rules-p-qsBtbGkzaJ_M0.js
IP 54.230.111.33:0
Hash e83bbb3319bdeb157c6e119974325d0d
76e181c03edf3b6a3fc9be156e44ee81c561358d
f175cfd0dfd874b48cdc87047b1ea9c5b392cbfb10a7015ed04dfe59cd8b473f
GET /rules-p-qsBtbGkzaJ_M0.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 160
last-modified: Fri, 14 Oct 2022 00:02:47 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Tue, 31 Jan 2023 09:11:21 GMT
cache-control: max-age=3600
etag: "e83bbb3319bdeb157c6e119974325d0d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vCSxcS0j7ZlBbmjQyfrCSH2JHHMvpdSo7ZTHuMB2jRbG0i3c2NqyeA==
age: 43
X-Firefox-Spdy: h2
beacon-ams3.rubiconproject.com/beacon/d/2ced78fa-c2cb-4b0f-8227-6b25935c6bad?oo=0&accountId=11762&siteId=84632&zoneId=1000516&sizeId=68&e=6A1E40E384DA563B8FF9DA3625D0788BF2BC1C374343023A72577FD72161DC24A8C9A21CFA3C837308116C8B3CC3DA46C1EBE65E7377AC8D20F68EFA55214E2C5D4ABC69D50AEBB8B4C232D5BD133277E8440C38DD95BBCF80D97D650221E81DC35CFEE3AA96BD70D5BE739AA9530ABFE1501A5C29ACF5C995BCEA9A1A431B34
213.19.162.27200 43 B URL HTTP/1.1 beacon-ams3.rubiconproject.com/beacon/d/2ced78fa-c2cb-4b0f-8227-6b25935c6bad?oo=0&accountId=11762&siteId=84632&zoneId=1000516&sizeId=68&e=6A1E40E384DA563B8FF9DA3625D0788BF2BC1C374343023A72577FD72161DC24A8C9A21CFA3C837308116C8B3CC3DA46C1EBE65E7377AC8D20F68EFA55214E2C5D4ABC69D50AEBB8B4C232D5BD133277E8440C38DD95BBCF80D97D650221E81DC35CFEE3AA96BD70D5BE739AA9530ABFE1501A5C29ACF5C995BCEA9A1A431B34
IP 213.19.162.27:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /beacon/d/2ced78fa-c2cb-4b0f-8227-6b25935c6bad?oo=0&accountId=11762&siteId=84632&zoneId=1000516&sizeId=68&e=6A1E40E384DA563B8FF9DA3625D0788BF2BC1C374343023A72577FD72161DC24A8C9A21CFA3C837308116C8B3CC3DA46C1EBE65E7377AC8D20F68EFA55214E2C5D4ABC69D50AEBB8B4C232D5BD133277E8440C38DD95BBCF80D97D650221E81DC35CFEE3AA96BD70D5BE739AA9530ABFE1501A5C29ACF5C995BCEA9A1A431B34 HTTP/1.1
Host: beacon-ams3.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Cache-Control: private, max-age=0, no-cache
Expires: 01 Jan 1970 10:00:00 GMT
Pragma: no-cache
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: DENY
Content-Type: image/avif
Content-Length: 43
Date: Tue, 31 Jan 2023 09:11:21 GMT
Connection: keep-alive
www.googletagservices.com/tag/js/gpt.js
172.217.21.162200 OK 28 kB URL HTTP/2 www.googletagservices.com/tag/js/gpt.js
IP 172.217.21.162:0
File type ASCII text, with very long lines (39375)
Hash 0527e03936503e696156cd15b5a1d531
af27cd71cd358854001ed2c68e9233b9cd5a7d98
c290d4aed801e8b15ab2cd9cfce0df04deaeef010262d8100a0c8c125970087b
GET /tag/js/gpt.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27561
date: Tue, 31 Jan 2023 09:11:21 GMT
expires: Tue, 31 Jan 2023 09:11:21 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1468 / 151 of 1000 / last-modified: 1675119935"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash d57d293aa9cc6e10e609e6b70ddc253f
7ca236cfea4a885594667b24f94dcbdcdb7dfec8
b5d9e35a17136600230e2b56a8b650e13fd05c097ab726a9d2705deeede1ae09
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4083
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:21 GMT
Last-Modified: Tue, 31 Jan 2023 08:03:18 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash d57d293aa9cc6e10e609e6b70ddc253f
7ca236cfea4a885594667b24f94dcbdcdb7dfec8
b5d9e35a17136600230e2b56a8b650e13fd05c097ab726a9d2705deeede1ae09
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4083
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:21 GMT
Last-Modified: Tue, 31 Jan 2023 08:03:18 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
c.amazon-adsystem.com/cdn/prod/config?src=3989&u=https%3A%2F%2Fshare.offerteshopping.it
54.230.111.210204 No Content 0 B URL HTTP/2 c.amazon-adsystem.com/cdn/prod/config?src=3989&u=https%3A%2F%2Fshare.offerteshopping.it
IP 54.230.111.210:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn/prod/config?src=3989&u=https%3A%2F%2Fshare.offerteshopping.it HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Tue, 31 Jan 2023 09:11:20 GMT
server: Server
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FHwr1A2KWK0X3OyjRUZ3v3C28GD43ZDwl26xkFaSWLcn1VGKY6hNtA==
X-Firefox-Spdy: h2
c.amazon-adsystem.com/cdn/prod/config?src=3989&u=https%3A%2F%2Fshare.offerteshopping.it
54.230.111.210204 No Content 0 B URL HTTP/2 c.amazon-adsystem.com/cdn/prod/config?src=3989&u=https%3A%2F%2Fshare.offerteshopping.it
IP 54.230.111.210:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn/prod/config?src=3989&u=https%3A%2F%2Fshare.offerteshopping.it HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Tue, 31 Jan 2023 09:11:20 GMT
server: Server
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: a4EJfNn1gd4aWPxyMM2ROGRGeLJOXlCm4WJpx5LRwcBrsp8ts_SFEA==
X-Firefox-Spdy: h2
smarttag.rubiconproject.com/a/11762/84632/1000516-68.js?&us_privacy=1---&cb=0.5683428058405353&tk_st=1&rf=https%3A//share.offerteshopping.it/dove-comprare-online-a-poco-prezzo/&rp_s=c&p_pos=btf&p_screen_res=1280x1024&ad_slot=84632_68&rp_secure=1
213.19.162.41200 OK 957 B URL HTTP/2 smarttag.rubiconproject.com/a/11762/84632/1000516-68.js?&us_privacy=1---&cb=0.5683428058405353&tk_st=1&rf=https%3A//share.offerteshopping.it/dove-comprare-online-a-poco-prezzo/&rp_s=c&p_pos=btf&p_screen_res=1280x1024&ad_slot=84632_68&rp_secure=1
IP 213.19.162.41:0
Hash 6ace25949f658971ba9d483b9738cb56
5e156bc736bb8e0063ef6b9fc76de12602d22ab4
9e7d5170763b6fa77d692e6acc53db3a6b1d4c2c06607197139de8878dff6834
GET /a/11762/84632/1000516-68.js?&us_privacy=1---&cb=0.5683428058405353&tk_st=1&rf=https%3A//share.offerteshopping.it/dove-comprare-online-a-poco-prezzo/&rp_s=c&p_pos=btf&p_screen_res=1280x1024&ad_slot=84632_68&rp_secure=1 HTTP/1.1
Host: smarttag.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Tue, 31 Jan 2023 09:11:21 GMT
content-type: text/javascript
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDK0SQZV-22-7HU2; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:21 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|SDziDG3X/EiqSSoJnVcBa+9DtVM30fCguJiciBlYek2RXYnAy73AGKzIPuCk7AJZ+eXSdXNJ4r2yTRVgFGnRQ8xuhZpbWKLt5sR5SA97iQY=; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:21 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-encoding: gzip
X-Firefox-Spdy: h2
optimized-by.4wnetwork.com/js/ads_native_new.js
54.230.111.52200 OK 29 kB URL HTTP/2 optimized-by.4wnetwork.com/js/ads_native_new.js
IP 54.230.111.52:0
Hash 59ba8042a71be5a98eb7b7903ee9db86
2ef9b7495f76612ba1dceb4095a9af7419e7a602
d69a3df8ec19bd0d297714efbffa3b372d878ebd177e424d4b536301864604e1
GET /js/ads_native_new.js HTTP/1.1
Host: optimized-by.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Cookie: profiler=eyJjYW4iOnRydWV9; ad_simply_viewer=63d8db35c3b550.37864978; know=63d8db35c3b550.37864978
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 31 Jan 2023 01:57:16 GMT
server: nginx
last-modified: Mon, 30 Jan 2023 11:26:04 GMT
etag: W/"63d7a94c-2c03"
expires: Wed, 01 Feb 2023 01:57:16 GMT
cache-control: max-age=86400, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: awdCaV_GxggVhGWWgtGOg0SDixDrQqaNQCsKdf-L45wk2T7ZXtzNAg==
age: 26044
X-Firefox-Spdy: h2
odb.outbrain.com/utils/get?url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&srcUrl=https%3A%2F%2Fwww.offerteshopping.it%2Ffeed%2F&idx=0&rand=74432&key=NANOWDGT01&widgetJSId=AR_2&va=true&et=true&format=html&adblck=false&abwl=false&px=104&py=3683&vpd=2785&cw=729&activeTab=true&ab=0&wl=0&settings=true&recs=true&version=2010113&sig=dRuBXcNF&apv=false&&osLang=en-US&winW=1268&winH=898&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=1&ccpa=1---&ccpaStat=1&chs=1&ogn=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F
151.101.246.132200 OK 3.6 kB URL HTTP/2 odb.outbrain.com/utils/get?url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&srcUrl=https%3A%2F%2Fwww.offerteshopping.it%2Ffeed%2F&idx=0&rand=74432&key=NANOWDGT01&widgetJSId=AR_2&va=true&et=true&format=html&adblck=false&abwl=false&px=104&py=3683&vpd=2785&cw=729&activeTab=true&ab=0&wl=0&settings=true&recs=true&version=2010113&sig=dRuBXcNF&apv=false&&osLang=en-US&winW=1268&winH=898&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=1&ccpa=1---&ccpaStat=1&chs=1&ogn=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F
IP 151.101.246.132:0
File type ASCII text, with very long lines (9815), with no line terminators
Hash 757384108768a4543f949bdb59efd685
e79125e6f10fe5ca5066c509251f7827fed987a4
d8c03c718445b75301244c7cfdb35a226f4bbdeeff87eabe559e42e2a97d0a84
GET /utils/get?url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&srcUrl=https%3A%2F%2Fwww.offerteshopping.it%2Ffeed%2F&idx=0&rand=74432&key=NANOWDGT01&widgetJSId=AR_2&va=true&et=true&format=html&adblck=false&abwl=false&px=104&py=3683&vpd=2785&cw=729&activeTab=true&ab=0&wl=0&settings=true&recs=true&version=2010113&sig=dRuBXcNF&apv=false&&osLang=en-US&winW=1268&winH=898&scrW=1280&scrH=1024&dpr=1&secured=true&cmpStat=1&ccpa=1---&ccpaStat=1&chs=1&ogn=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F HTTP/1.1
Host: odb.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-traceid: b3016130c1557181441233918c165c4b
content-encoding: gzip
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Tue, 31 Jan 2023 09:11:21 GMT
x-served-by: cache-lga21922-LGA, cache-hel1410028-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1675156282.558199,VS0,VE111
vary: Accept-Encoding, User-Agent
traffic-path: NYDC1, LGA, HEL, Europe1
content-length: 3576
X-Firefox-Spdy: h2
aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=3989&u=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&pid=M5J6Hw0AByBDW&cb=1&ws=1280x898&v=23.123.1617&t=300&slots=%5B%7B%22id%22%3A%22preroll%22%2C%22mt%22%3A%22v%22%2C%22s%22%3A%5B%22640x360%22%2C%22640x480%22%2C%22640x390%22%5D%7D%2C%7B%22id%22%3A%22outstreamSlot%22%2C%22mt%22%3A%22v%22%2C%22s%22%3A%5B%22640x360%22%2C%22640x480%22%2C%22640x390%22%5D%7D%5D&schain=1.0%2C1!4wmarketplace.com%2C74811-310da24b%2C1%2C%2C%2C&gdprl=%7B%22status%22%3A%22tcfv2-timeout%22%7D
54.230.241.131200 OK 110 B URL HTTP/2 aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=3989&u=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&pid=M5J6Hw0AByBDW&cb=1&ws=1280x898&v=23.123.1617&t=300&slots=%5B%7B%22id%22%3A%22preroll%22%2C%22mt%22%3A%22v%22%2C%22s%22%3A%5B%22640x360%22%2C%22640x480%22%2C%22640x390%22%5D%7D%2C%7B%22id%22%3A%22outstreamSlot%22%2C%22mt%22%3A%22v%22%2C%22s%22%3A%5B%22640x360%22%2C%22640x480%22%2C%22640x390%22%5D%7D%5D&schain=1.0%2C1!4wmarketplace.com%2C74811-310da24b%2C1%2C%2C%2C&gdprl=%7B%22status%22%3A%22tcfv2-timeout%22%7D
IP 54.230.241.131:0
File type ASCII text, with no line terminators
Hash ed4693ff2264c89e2becce5394f0abd5
40b70c1f8cb6b67d8d87fa1867c9d36de318a7b4
41608e44dc7d562729d074dd852e01506edadc326d7d4601272d6773ef6da3d8
GET /e/dtb/bid?src=3989&u=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&pid=M5J6Hw0AByBDW&cb=1&ws=1280x898&v=23.123.1617&t=300&slots=%5B%7B%22id%22%3A%22preroll%22%2C%22mt%22%3A%22v%22%2C%22s%22%3A%5B%22640x360%22%2C%22640x480%22%2C%22640x390%22%5D%7D%2C%7B%22id%22%3A%22outstreamSlot%22%2C%22mt%22%3A%22v%22%2C%22s%22%3A%5B%22640x360%22%2C%22640x480%22%2C%22640x390%22%5D%7D%5D&schain=1.0%2C1!4wmarketplace.com%2C74811-310da24b%2C1%2C%2C%2C&gdprl=%7B%22status%22%3A%22tcfv2-timeout%22%7D HTTP/1.1
Host: aax-dtb-cf.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
content-length: 110
server: Server
date: Tue, 31 Jan 2023 09:11:21 GMT
x-amz-rid: 0QJQTJW2Y80H0PQPNY5H
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-credentials: true
timing-allow-origin: *
strict-transport-security: max-age=47474747; includeSubDomains; preload
vary: Accept-Encoding,User-Agent
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1GJGOhl0qKmv9f7p5nyYI7Dw50DS1Mp7qYxkLXAeeDB2kbjsPCdRKg==
X-Firefox-Spdy: h2
aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=3989&u=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&pid=M5J6Hw0AByBDW&cb=0&ws=1280x898&v=23.123.1617&t=300&slots=%5B%7B%22id%22%3A%22preroll%22%2C%22mt%22%3A%22v%22%2C%22s%22%3A%5B%22640x360%22%2C%22640x480%22%2C%22640x390%22%5D%7D%2C%7B%22id%22%3A%22outstreamSlot%22%2C%22mt%22%3A%22v%22%2C%22s%22%3A%5B%22640x360%22%2C%22640x480%22%2C%22640x390%22%5D%7D%5D&schain=1.0%2C1!4wmarketplace.com%2C74811-310da24b%2C1%2C%2C%2C&gdprl=%7B%22status%22%3A%22tcfv2-timeout%22%7D
54.230.241.131200 OK 110 B URL HTTP/2 aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=3989&u=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&pid=M5J6Hw0AByBDW&cb=0&ws=1280x898&v=23.123.1617&t=300&slots=%5B%7B%22id%22%3A%22preroll%22%2C%22mt%22%3A%22v%22%2C%22s%22%3A%5B%22640x360%22%2C%22640x480%22%2C%22640x390%22%5D%7D%2C%7B%22id%22%3A%22outstreamSlot%22%2C%22mt%22%3A%22v%22%2C%22s%22%3A%5B%22640x360%22%2C%22640x480%22%2C%22640x390%22%5D%7D%5D&schain=1.0%2C1!4wmarketplace.com%2C74811-310da24b%2C1%2C%2C%2C&gdprl=%7B%22status%22%3A%22tcfv2-timeout%22%7D
IP 54.230.241.131:0
File type ASCII text, with no line terminators
Hash 171ab4d1f859f6bf7ae81fac233fd0de
f23518d3180315b97aa2aae5fa7b2ba697cacb50
4e1200d56e9ab8f223592a063771de5a28378051ba47157a70d8970bdf8877ac
GET /e/dtb/bid?src=3989&u=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&pid=M5J6Hw0AByBDW&cb=0&ws=1280x898&v=23.123.1617&t=300&slots=%5B%7B%22id%22%3A%22preroll%22%2C%22mt%22%3A%22v%22%2C%22s%22%3A%5B%22640x360%22%2C%22640x480%22%2C%22640x390%22%5D%7D%2C%7B%22id%22%3A%22outstreamSlot%22%2C%22mt%22%3A%22v%22%2C%22s%22%3A%5B%22640x360%22%2C%22640x480%22%2C%22640x390%22%5D%7D%5D&schain=1.0%2C1!4wmarketplace.com%2C74811-310da24b%2C1%2C%2C%2C&gdprl=%7B%22status%22%3A%22tcfv2-timeout%22%7D HTTP/1.1
Host: aax-dtb-cf.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
content-length: 110
server: Server
date: Tue, 31 Jan 2023 09:11:21 GMT
x-amz-rid: KPT08Q135BWK67T52GA5
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-credentials: true
timing-allow-origin: *
strict-transport-security: max-age=47474747; includeSubDomains; preload
vary: Accept-Encoding,User-Agent
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pYn1CZDJ_gi0INJUnPONMal0oH-bdvAcXTXBimpm_b38rCm_2kkhWw==
X-Firefox-Spdy: h2
www8.smartadserver.com/ac?siteid=521475&pgid=1629537&fmtid=42281&visit=M&tmstp=1675156296540&out=json&sh=898&sw=1280&tgt=json%3Bvskinz%3Dtrue%3Bgm%3D0%3Bscreen%3Dmedium%3Bmedium_screen%3DTRUE%3Btag%3Dwf%3Bpage_home%3Dfalse%3Bpage_height_num%3D4000%3Bpage_weight%3D610000%3Biab%3D386%3Biab%3D391%3Biab%3D473%3Biab%3D481%3Biab%3D52%3Biab%3D53%3Biab%3D59%3Biab%3D596%3Bskinz-d%3D300%3Bsdta%3D750325952%3Bsdta%3D834905626%3Bsdta%3D1063046278%3Bsdta%3D1076448337%3Bsdta%3D1154842265%3Bsdta%3D1279486098%3Bsdta%3D1581924491%3Bsdta%3D1690725722%3Bsdta%3D1690725723%3Bsdta%3D1741058577%3Bsdta%3D1824946737%3Bsdta%3D2241963825%3Bsdta%3D2310060012%3Bsdta%3D2938018295%3Bsdta%3D2960050050%3Bsdta%3D3501378400%3Bsdta%3D3501378402%3Bsdta%3D4089380855%3Bsdta%3D4089380861%3Bsdta-safe%3D1%3Bsdta-origin%3D1&gdpr=0&pgDomain=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&schain=1.0%2C1!sublime.xyz%2C3349%2C1
81.17.55.112200 OK 0 B URL HTTP/1.1 www8.smartadserver.com/ac?siteid=521475&pgid=1629537&fmtid=42281&visit=M&tmstp=1675156296540&out=json&sh=898&sw=1280&tgt=json%3Bvskinz%3Dtrue%3Bgm%3D0%3Bscreen%3Dmedium%3Bmedium_screen%3DTRUE%3Btag%3Dwf%3Bpage_home%3Dfalse%3Bpage_height_num%3D4000%3Bpage_weight%3D610000%3Biab%3D386%3Biab%3D391%3Biab%3D473%3Biab%3D481%3Biab%3D52%3Biab%3D53%3Biab%3D59%3Biab%3D596%3Bskinz-d%3D300%3Bsdta%3D750325952%3Bsdta%3D834905626%3Bsdta%3D1063046278%3Bsdta%3D1076448337%3Bsdta%3D1154842265%3Bsdta%3D1279486098%3Bsdta%3D1581924491%3Bsdta%3D1690725722%3Bsdta%3D1690725723%3Bsdta%3D1741058577%3Bsdta%3D1824946737%3Bsdta%3D2241963825%3Bsdta%3D2310060012%3Bsdta%3D2938018295%3Bsdta%3D2960050050%3Bsdta%3D3501378400%3Bsdta%3D3501378402%3Bsdta%3D4089380855%3Bsdta%3D4089380861%3Bsdta-safe%3D1%3Bsdta-origin%3D1&gdpr=0&pgDomain=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&schain=1.0%2C1!sublime.xyz%2C3349%2C1
IP 81.17.55.112:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ac?siteid=521475&pgid=1629537&fmtid=42281&visit=M&tmstp=1675156296540&out=json&sh=898&sw=1280&tgt=json%3Bvskinz%3Dtrue%3Bgm%3D0%3Bscreen%3Dmedium%3Bmedium_screen%3DTRUE%3Btag%3Dwf%3Bpage_home%3Dfalse%3Bpage_height_num%3D4000%3Bpage_weight%3D610000%3Biab%3D386%3Biab%3D391%3Biab%3D473%3Biab%3D481%3Biab%3D52%3Biab%3D53%3Biab%3D59%3Biab%3D596%3Bskinz-d%3D300%3Bsdta%3D750325952%3Bsdta%3D834905626%3Bsdta%3D1063046278%3Bsdta%3D1076448337%3Bsdta%3D1154842265%3Bsdta%3D1279486098%3Bsdta%3D1581924491%3Bsdta%3D1690725722%3Bsdta%3D1690725723%3Bsdta%3D1741058577%3Bsdta%3D1824946737%3Bsdta%3D2241963825%3Bsdta%3D2310060012%3Bsdta%3D2938018295%3Bsdta%3D2960050050%3Bsdta%3D3501378400%3Bsdta%3D3501378402%3Bsdta%3D4089380855%3Bsdta%3D4089380861%3Bsdta-safe%3D1%3Bsdta-origin%3D1&gdpr=0&pgDomain=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&schain=1.0%2C1!sublime.xyz%2C3349%2C1 HTTP/1.1
Host: www8.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json
date: Tue, 31 Jan 2023 09:11:21 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://share.offerteshopping.it
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100%3b%24sw%3d1280%3b%24sh%3d768; expires=Wed, 31 Jan 2024 09:11:21 GMT; domain=.smartadserver.com; path=/
vs=521475=5302631; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Wed, 31 Jan 2024 09:11:21 GMT; domain=.smartadserver.com; path=/
pid=8679756029455492895; expires=Wed, 31 Jan 2024 09:11:21 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638107530816800063&o=1; expires=Wed, 01 Feb 2023 09:11:21 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Wed, 01 Feb 2023 09:11:21 GMT; domain=.smartadserver.com; path=/
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
husfly.com/r/p.html?f=jebrebbr&e=1748322777535
54.230.111.36200 OK 2.4 kB URL HTTP/2 husfly.com/r/p.html?f=jebrebbr&e=1748322777535
IP 54.230.111.36:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 4f052a30b7cd6c449ac3cf3f3a7b2b55
ed94aeb891a050712061ec4b64c0f4178e9591c8
e13443bee43651cc44e269ec5c5a0b1a36baaacbc0a727d6a8aad85c6f688f66
GET /r/p.html?f=jebrebbr&e=1748322777535 HTTP/1.1
Host: husfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Tue, 25 Oct 2022 13:58:03 GMT
x-amz-version-id: 6P847P_3pwRq3kg1dbhEI8vZo9rD1MSu
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 09:11:21 GMT
etag: W/"1d799671c4d6a9304651b1b9d6a783fb"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lC63ybbYs6vSW8fh8QwKcxtFIEhLxINRjSCUYHSHNrAuq59YmMq_HQ==
age: 8385
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 04032d54c60e4fbe32e84a6b0b581752
e46ee37b17ab7fb7d0ed75ba5cd7f6df2c66f25f
149c0e4af2fd429dada8da40df4d4b1b73c8185b0cb7845034ea87218ff807b4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3199
Cache-Control: max-age=150902
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:21 GMT
Etag: "63d87930-1d7"
Expires: Thu, 02 Feb 2023 03:06:23 GMT
Last-Modified: Tue, 31 Jan 2023 02:13:04 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.190.77204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.190.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 989
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://share.offerteshopping.it
cache-control: no-cache, no-store, must-revalidate
date: Tue, 31 Jan 2023 09:11:21 GMT
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 588
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-credentials: true
date: Tue, 31 Jan 2023 09:11:21 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5fa85b323f6201da846c51f08a5f38d0
7ec7437efd25ddaccfc7a0e7d8ca4fad261c2609
2d7c99ebc2384f3323e8b87cadabeb3c4d98aeb5947c08d94192570e380a9e11
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4487
Cache-Control: max-age=144982
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 09:11:21 GMT
Etag: "63d85d08-1d7"
Expires: Thu, 02 Feb 2023 01:27:43 GMT
Last-Modified: Tue, 31 Jan 2023 00:12:56 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
antenna.ayads.co/?device=d&et=1203&ga=0&gc=0&gm=0&gs=0&puid=p4588114060552076747&sqid=1&src=wf&suid=s9497264698958098680&t=1675156297989&tfz=2&tse=1675156297991&ver=20230127155355&z=36829&e=l&bh=0&bw=1
34.243.240.54204 No Content 0 B URL HTTP/2 antenna.ayads.co/?device=d&et=1203&ga=0&gc=0&gm=0&gs=0&puid=p4588114060552076747&sqid=1&src=wf&suid=s9497264698958098680&t=1675156297989&tfz=2&tse=1675156297991&ver=20230127155355&z=36829&e=l&bh=0&bw=1
IP 34.243.240.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?device=d&et=1203&ga=0&gc=0&gm=0&gs=0&puid=p4588114060552076747&sqid=1&src=wf&suid=s9497264698958098680&t=1675156297989&tfz=2&tse=1675156297991&ver=20230127155355&z=36829&e=l&bh=0&bw=1 HTTP/1.1
Host: antenna.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 31 Jan 2023 09:11:21 GMT
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17210&site_id=215624&zone_id=1860494&size_id=15&p_pos=atf&us_privacy=1---&rp_schain=1.0,1!adpone.com,cfc3efd8e1897bb744e5,1,,,&rf=offerteshopping.it&tg_i.page=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&tg_i.domain=share.offerteshopping.it&tg_i.pbadslot=%2F21671350435%2C22057399995%2F300x250-offerteshopping.it&tk_flint=pbjs_lite_v7.19.0&x_source.tid=e28ab807-1196-481f-bae5-e5bb4db1cd28&l_pb_bid_id=8484077617d4258&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.4169541884921175
213.19.162.41200 OK 429 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17210&site_id=215624&zone_id=1860494&size_id=15&p_pos=atf&us_privacy=1---&rp_schain=1.0,1!adpone.com,cfc3efd8e1897bb744e5,1,,,&rf=offerteshopping.it&tg_i.page=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&tg_i.domain=share.offerteshopping.it&tg_i.pbadslot=%2F21671350435%2C22057399995%2F300x250-offerteshopping.it&tk_flint=pbjs_lite_v7.19.0&x_source.tid=e28ab807-1196-481f-bae5-e5bb4db1cd28&l_pb_bid_id=8484077617d4258&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.4169541884921175
IP 213.19.162.41:0
File type JSON data\012- , ASCII text, with very long lines (429), with no line terminators
Hash b9fcde5e2db12ff2a39863306c1f12cd
4e6196a4ee46a31744f62299bc9141c2ddac99c6
600f0ed7195c7a8b085d8e417fe88536de314ced67d5c6bacf257cbfd4829869
GET /a/api/fastlane.json?account_id=17210&site_id=215624&zone_id=1860494&size_id=15&p_pos=atf&us_privacy=1---&rp_schain=1.0,1!adpone.com,cfc3efd8e1897bb744e5,1,,,&rf=offerteshopping.it&tg_i.page=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&tg_i.domain=share.offerteshopping.it&tg_i.pbadslot=%2F21671350435%2C22057399995%2F300x250-offerteshopping.it&tk_flint=pbjs_lite_v7.19.0&x_source.tid=e28ab807-1196-481f-bae5-e5bb4db1cd28&l_pb_bid_id=8484077617d4258&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.4169541884921175 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Tue, 31 Jan 2023 09:11:21 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://share.offerteshopping.it
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDK0SRGL-1B-10SO; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:21 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qpqtAs2s1wDWu9DtVM30fCguJiciBlYek3tfgZ+tJXqjWSA67yr1l4QWYGHqZE0kQPgcRgjl6EitUpnyw34PUwK3OlDu/ORdD8=; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:21 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 429
X-Firefox-Spdy: h2
husfly.com/r/p.html?f=cpyrdglkeai&e=1748322777535
54.230.111.36200 OK 2.2 kB URL HTTP/2 husfly.com/r/p.html?f=cpyrdglkeai&e=1748322777535
IP 54.230.111.36:0
File type HTML document, ASCII text, with CRLF line terminators
Hash e4d223d0c556ed17c6b7defef4355308
8b1a1e3f5b3b33cb3b9b8b6a8cf6716c76e46ebf
e57765b8c765d63db7dec08e099fa959ec701330957669de24720dc17a1407c2
GET /r/p.html?f=cpyrdglkeai&e=1748322777535 HTTP/1.1
Host: husfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Tue, 25 Oct 2022 13:58:03 GMT
x-amz-version-id: 6P847P_3pwRq3kg1dbhEI8vZo9rD1MSu
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 09:11:21 GMT
etag: W/"1d799671c4d6a9304651b1b9d6a783fb"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: C02gJpGMYM1wKGLw5YTEPZ8lh1LGrtGz0TSiahw4DbHYZAKvDkkDiA==
age: 8385
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
prebid-eu.creativecdn.com/bidder/prebid/bids
185.184.8.90204 No Content 0 B URL HTTP/2 prebid-eu.creativecdn.com/bidder/prebid/bids
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bidder/prebid/bids HTTP/1.1
Host: prebid-eu.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 574
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 09:11:21 GMT
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 3600
vary: Origin
X-Firefox-Spdy: h2
kvt.cookieless-data.com/api/v1/public/p/28662/d/33/c?url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&args_country&args_device=desktop&args_zone_id=36829&callback=sublimeCb1675156297986
51.15.145.116200 OK 253 B URL HTTP/1.1 kvt.cookieless-data.com/api/v1/public/p/28662/d/33/c?url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&args_country&args_device=desktop&args_zone_id=36829&callback=sublimeCb1675156297986
IP 51.15.145.116:0
File type ASCII text, with very long lines (400), with no line terminators
Hash cceccb5500541cd6f63214ed6f653aea
26211f915a4357b69143f03dc84bf358d4ccb947
d7fa57ca8dbef4b8a026adbda2e06bef67fa1e333cb592f34c87e7351cd9816b
GET /api/v1/public/p/28662/d/33/c?url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&args_country&args_device=desktop&args_zone_id=36829&callback=sublimeCb1675156297986 HTTP/1.1
Host: kvt.cookieless-data.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 31 Jan 2023 09:11:21 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
Content-Encoding: gzip
eus.rubiconproject.com/usync.html?&us_privacy=1---&geo=eu&co=no
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?&us_privacy=1---&geo=eu&co=no
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?&us_privacy=1---&geo=eu&co=no HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Tue, 31 Jan 2023 09:11:22 GMT
Connection: keep-alive
Vary: Accept-Encoding
shb.richaudience.com/hb/
157.90.3.144200 OK 10 kB IP 157.90.3.144:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (18573)
Hash fb633317144f09f4e3619819f048079e
86b5e0d4e4382ccad0741cfd40fb917226a3971f
85485da4dfd3aba8d6b7f596476661742fc96acdda7779cf9e2ab2c5271e94cc
POST /hb/ HTTP/1.1
Host: shb.richaudience.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 704
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.2
date: Tue, 31 Jan 2023 09:11:22 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
husfly.com/r/p.html?f=xfpywdj&e=1748322777535
54.230.111.36200 OK 3.9 kB URL HTTP/2 husfly.com/r/p.html?f=xfpywdj&e=1748322777535
IP 54.230.111.36:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 1fd1db03382748bc0a94c94d28c64839
461a18c5390e5c404298811dfb5aff610c6b750a
ab8e19b0413add0bc2f642bd81ebd5a2690c4e80b5f79a1f7571771c67329cca
GET /r/p.html?f=xfpywdj&e=1748322777535 HTTP/1.1
Host: husfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Tue, 25 Oct 2022 13:58:03 GMT
x-amz-version-id: 6P847P_3pwRq3kg1dbhEI8vZo9rD1MSu
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 09:11:21 GMT
etag: W/"1d799671c4d6a9304651b1b9d6a783fb"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wCo0bG1GzQqxNgRkh8IkghypgF7eyCIfXwQ60N9D7bCLFgrwhheoEQ==
age: 8385
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
prg.smartadserver.com/prebid/v1
81.17.55.98200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 81.17.55.98:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 448
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Tue, 31 Jan 2023 09:11:21 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://share.offerteshopping.it
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prg.smartadserver.com/prebid/v1
81.17.55.98200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 81.17.55.98:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 449
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Tue, 31 Jan 2023 09:11:21 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://share.offerteshopping.it
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
widgets.outbrain.com/images/widgetIcons/achoice.svg
2.18.173.74200 OK 990 B URL HTTP/2 widgets.outbrain.com/images/widgetIcons/achoice.svg
IP 2.18.173.74:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (990), with no line terminators
Hash 5ab8e16b5f46213840bcd403e349419c
f03f6dc8e2206a94119af76f9a3b3c835390cae7
9ba56f5ffa579747efde1d2a429b325a9fb7220d30f4268e4a44ecbe4a9bf034
GET /images/widgetIcons/achoice.svg HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/svg+xml
etag: "5ab8e16b5f46213840bcd403e349419c:1673369393.880194"
last-modified: Tue, 10 Jan 2023 16:40:08 GMT
server: AkamaiNetStorage
content-length: 990
cache-control: max-age=2592000
expires: Thu, 02 Mar 2023 09:11:22 GMT
date: Tue, 31 Jan 2023 09:11:22 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widgets.outbrain.com/images/widgetIcons/ob_logo.svg
2.18.173.74200 OK 7.6 kB URL HTTP/2 widgets.outbrain.com/images/widgetIcons/ob_logo.svg
IP 2.18.173.74:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7647), with no line terminators
Hash b79638966e0374c455e78107aee59bf4
cbc23d2cca41f9f83e5e70283e6dc18ca9c26f53
21a924ac651ba65e51a5c9b5ae4b51453eb9b957d5990001a85960df95603d13
GET /images/widgetIcons/ob_logo.svg HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/svg+xml
etag: "b79638966e0374c455e78107aee59bf4:1673369411.171576"
last-modified: Tue, 10 Jan 2023 16:40:08 GMT
server: AkamaiNetStorage
content-length: 7647
cache-control: max-age=2592000
expires: Thu, 02 Mar 2023 09:11:22 GMT
date: Tue, 31 Jan 2023 09:11:22 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
widgets.outbrain.com/nanoWidget/2010113/module/streamFeed.js?e=1
2.18.173.74200 OK 13 kB URL HTTP/2 widgets.outbrain.com/nanoWidget/2010113/module/streamFeed.js?e=1
IP 2.18.173.74:0
File type ASCII text, with very long lines (1562)
Hash 5c97a9ead0e20f8d12ecfcc59f4c082f
3cf4ee283cdf356fa44d4a073137d3e20d486de6
6642cbc5ca896823c16cf4ac6759f5bf5f2f578115e94fb0795d44ece4f29d16
GET /nanoWidget/2010113/module/streamFeed.js?e=1 HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "6585eb06199fbc8545a570f6dc559092:1675072383.757712"
last-modified: Mon, 30 Jan 2023 06:13:01 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=604800
expires: Tue, 07 Feb 2023 09:11:22 GMT
date: Tue, 31 Jan 2023 09:11:22 GMT
content-length: 13252
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 238
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-credentials: true
date: Tue, 31 Jan 2023 09:11:21 GMT
X-Firefox-Spdy: h2
optimized-by.4wnetwork.com/impression_async.php?async=true&code=216589;104755;78233;0&ord=385077&GDPR=null&GDPR_CONSENT=null&nocookie=1&category=null&resistivity=false&from=https://share.offerteshopping.it/dove-comprare-online-a-poco-prezzo/
54.230.111.52200 OK 110 kB URL HTTP/2 optimized-by.4wnetwork.com/impression_async.php?async=true&code=216589;104755;78233;0&ord=385077&GDPR=null&GDPR_CONSENT=null&nocookie=1&category=null&resistivity=false&from=https://share.offerteshopping.it/dove-comprare-online-a-poco-prezzo/
IP 54.230.111.52:0
Size 110 kB (110527 bytes)
Hash 377a620454e24c2a3a32ca339f86380f
8d0b9c9608401b2e8d48fb1fd4d9b03689d5836f
c1d91a78a2d5c35614559bc2d54bcd18a0f865c66ec602dd2108832af6fdb124
GET /impression_async.php?async=true&code=216589;104755;78233;0&ord=385077&GDPR=null&GDPR_CONSENT=null&nocookie=1&category=null&resistivity=false&from=https://share.offerteshopping.it/dove-comprare-online-a-poco-prezzo/ HTTP/1.1
Host: optimized-by.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Cookie: profiler=eyJjYW4iOnRydWV9; ad_simply_viewer=63d8db35c3b550.37864978; know=63d8db35c3b550.37864978
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
date: Tue, 31 Jan 2023 09:11:21 GMT
server: nginx
x-powered-by: PHP/7.3.33
access-control-allow-origin: https://share.offerteshopping.it
access-control-allow-methods: GET
access-control-allow-credentials: true
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8gYyiXxxea3to4eli61lncvaM11HpjlZQ9HhX8kdJo9r4FQVZQPdQQ==
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 5c00a6b71849e1f63887d38333830003
274723ffd4a062e1997a213ceeeab8a56ac83141
5e15ea6950fd4aa51af37519ac391c2c95cfd74ded6ac6e35432ccf68c70cb23
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:22 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 01:56:49 GMT
Expires: Sat, 04 Feb 2023 01:56:48 GMT
Etag: "274723ffd4a062e1997a213ceeeab8a56ac83141"
Cache-Control: max-age=318925,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792151cc1bcb0b31-OSL
x.bidswitch.net/sync_a9/https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dbidswitch.com%26id%3D%24%7BUUID%7D
3.67.59.246302 Found 0 B URL HTTP/2 x.bidswitch.net/sync_a9/https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dbidswitch.com%26id%3D%24%7BUUID%7D
IP 3.67.59.246:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync_a9/https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dbidswitch.com%26id%3D%24%7BUUID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 09:11:22 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync_a9/https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dbidswitch.com%26id%3D%24%7BUUID%7D
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=3df12a68-dd04-4ca0-b67c-7549a329df92; path=/; expires=Wed, 31-Jan-2024 09:11:22 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675156282; path=/; expires=Wed, 31-Jan-2024 09:11:22 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675156282; path=/; expires=Wed, 31-Jan-2024 09:11:22 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675156282; path=/; expires=Wed, 31-Jan-2024 09:11:22 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync_a9/https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dbidswitch.com%26id%3D%24%7BUUID%7D
3.67.59.246200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync_a9/https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dbidswitch.com%26id%3D%24%7BUUID%7D
IP 3.67.59.246:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync_a9/https%3A%2F%2Faax-eu.amazon-adsystem.com%2Fs%2Fecm3%3Fex%3Dbidswitch.com%26id%3D%24%7BUUID%7D HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://share.offerteshopping.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:22 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
mcdp-nydc1.outbrain.com/l?token=4bdb9b768a28f8d43aa9690a5e7d7cd6_25174_1675156281621&tm=1500&eT=0&widgetWidth=729&widgetHeight=39&widgetX=75&widgetY=3691&wRV=2010113&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&cheq=0&rtt=745&oo=true&lo=4078&odbreq=4890&odbres=5634&to=1675156292188&chs=1&ab=0&wl=0
70.42.32.31200 OK 2 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=4bdb9b768a28f8d43aa9690a5e7d7cd6_25174_1675156281621&tm=1500&eT=0&widgetWidth=729&widgetHeight=39&widgetX=75&widgetY=3691&wRV=2010113&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&cheq=0&rtt=745&oo=true&lo=4078&odbreq=4890&odbres=5634&to=1675156292188&chs=1&ab=0&wl=0
IP 70.42.32.31:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /l?token=4bdb9b768a28f8d43aa9690a5e7d7cd6_25174_1675156281621&tm=1500&eT=0&widgetWidth=729&widgetHeight=39&widgetX=75&widgetY=3691&wRV=2010113&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&cheq=0&rtt=745&oo=true&lo=4078&odbreq=4890&odbres=5634&to=1675156292188&chs=1&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://share.offerteshopping.it/
Origin: https://share.offerteshopping.it
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:22 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: content-range
X-TraceId: 5987789e3b905b40d0c0ee961f70cf73
mv.outbrain.com/Multivac/api/get?url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&settings=true&recs=true&widgetJSId=AR_2&key=NANOWDGT01&version=2010113&apv=false&sig=dRuBXcNF&format=html&rand=94076&osLang=en-US&seid=null&va=true&et=true&cmpStat=1&ccpa=1---&ccpaStat=1&srcUrl=https%3A%2F%2Fwww.offerteshopping.it%2Ffeed%2F&scrW=1280&scrH=1024&t=NGJkYjliNzY4YTI4ZjhkNDNhYTk2OTBhNWU3ZDdjZDY=&winW=1268&winH=898&adblck=false&abwl=false&secured=true&feedIdx=0&lastIdx=0&lastCardIdx=0&fAB=no_abtest&dpr=1&cw=729&activeTab=true&ogn=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&chs=1
151.101.246.132200 OK 2.5 kB URL HTTP/2 mv.outbrain.com/Multivac/api/get?url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&settings=true&recs=true&widgetJSId=AR_2&key=NANOWDGT01&version=2010113&apv=false&sig=dRuBXcNF&format=html&rand=94076&osLang=en-US&seid=null&va=true&et=true&cmpStat=1&ccpa=1---&ccpaStat=1&srcUrl=https%3A%2F%2Fwww.offerteshopping.it%2Ffeed%2F&scrW=1280&scrH=1024&t=NGJkYjliNzY4YTI4ZjhkNDNhYTk2OTBhNWU3ZDdjZDY=&winW=1268&winH=898&adblck=false&abwl=false&secured=true&feedIdx=0&lastIdx=0&lastCardIdx=0&fAB=no_abtest&dpr=1&cw=729&activeTab=true&ogn=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&chs=1
IP 151.101.246.132:0
File type ASCII text, with very long lines (5283), with no line terminators
Hash e13169ec2ada77145f9adc38472ccbae
9a91f82b87578bed51f19103634cd9c9df489911
08c7277d84ab1ca059cf83a313ea6f081c63cb038ad0df15b1916b0b83896776
GET /Multivac/api/get?url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&settings=true&recs=true&widgetJSId=AR_2&key=NANOWDGT01&version=2010113&apv=false&sig=dRuBXcNF&format=html&rand=94076&osLang=en-US&seid=null&va=true&et=true&cmpStat=1&ccpa=1---&ccpaStat=1&srcUrl=https%3A%2F%2Fwww.offerteshopping.it%2Ffeed%2F&scrW=1280&scrH=1024&t=NGJkYjliNzY4YTI4ZjhkNDNhYTk2OTBhNWU3ZDdjZDY=&winW=1268&winH=898&adblck=false&abwl=false&secured=true&feedIdx=0&lastIdx=0&lastCardIdx=0&fAB=no_abtest&dpr=1&cw=729&activeTab=true&ogn=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&chs=1 HTTP/1.1
Host: mv.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-traceid: 783f46f4605b52c1248f147e48de1aec
content-encoding: gzip
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Tue, 31 Jan 2023 09:11:22 GMT
x-served-by: cache-lga21950-LGA, cache-hel1410028-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1675156282.442954,VS0,VE230
vary: Accept-Encoding, User-Agent
traffic-path: NYDC1, LGA, HEL, Europe1
content-length: 2534
X-Firefox-Spdy: h2
rock.defybrick.com/placement_invocation?id=65349&idx=0
54.230.111.7200 OK 18 kB URL HTTP/2 rock.defybrick.com/placement_invocation?id=65349&idx=0
IP 54.230.111.7:0
File type ASCII text, with very long lines (49039), with no line terminators
Hash 449a423abeac702cfd7368c5a1ba9822
06ebb32e04680d68e383016ff6b6eb6e326a0a61
4a2f633ca7a84b09da778fcb97cb91163af9ca231efdb0cda7875398c472b040
GET /placement_invocation?id=65349&idx=0 HTTP/1.1
Host: rock.defybrick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 18460
content-encoding: gzip
server: Caddy
date: Tue, 31 Jan 2023 03:28:18 GMT
cache-control: max-age=43200
expires: Tue, 31 Jan 2023 15:28:18 GMT
etag: "bf8f-sbLSqLgrhMmD0M6HbtAQ/QtX6WE"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uuygP_R9gqIyih0auksapv0AtOykV7mv-HYmVgHSYhKbOB7qjSKHfg==
age: 20584
X-Firefox-Spdy: h2
prg.smartadserver.com/prebid/v1
81.17.55.98200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 81.17.55.98:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 365
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Tue, 31 Jan 2023 09:11:22 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prebid-eu.creativecdn.com/bidder/prebid/bids
185.184.8.90204 No Content 0 B URL HTTP/2 prebid-eu.creativecdn.com/bidder/prebid/bids
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bidder/prebid/bids HTTP/1.1
Host: prebid-eu.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 497
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 09:11:22 GMT
access-control-allow-origin: https://husfly.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 3600
vary: Origin
X-Firefox-Spdy: h2
prg.smartadserver.com/prebid/v1
81.17.55.98200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 81.17.55.98:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 366
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Tue, 31 Jan 2023 09:11:22 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
bidder.criteo.com/cdb?profileId=207&av=34&wv=7.19.0&cb=33414457214&lsavail=0
178.250.2.131200 OK 44 B URL HTTP/2 bidder.criteo.com/cdb?profileId=207&av=34&wv=7.19.0&cb=33414457214&lsavail=0
IP 178.250.2.131:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f1dcf53824ce88cdb7941d34db3f19d
4164a13e3f53e1f002606a807d64a92620720fb0
3a803b7520764b5266cfac90aa9f9b2ff931109f489d9a1deb24aa686c239a74
POST /cdb?profileId=207&av=34&wv=7.19.0&cb=33414457214&lsavail=0 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 491
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:22 GMT
vary: Origin
server: Finatra
content-type: application/json; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: https://husfly.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
content-encoding: gzip
content-length: 44
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
geoworker.ayads.co/
104.20.11.37200 OK 1 B IP 104.20.11.37:0
File type very short file (no magic)
Hash cfcd208495d565ef66e7dff9f98764da
b6589fc6ab0dc82cf12099d1c2d40ab994e8410c
5feceb66ffc86f38d952786c6d696c79c2dbc239dd4e91b46729d73a27fb57e9
GET / HTTP/1.1
Host: geoworker.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:23 GMT
content-type: text/plain;charset=UTF-8
content-length: 1
access-control-allow-origin: *
access-control-allow-methods: GET
sublime-worker: true
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151d0bed5fab4-OSL
X-Firefox-Spdy: h2
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.190.77204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.190.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 951
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
cache-control: no-cache, no-store, must-revalidate
date: Tue, 31 Jan 2023 09:11:23 GMT
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17210&site_id=215624&zone_id=1860494&size_id=15&p_pos=atf&rp_schain=1.0,1!adpone.com,cfc3efd8e1897bb744e5,1,,,&rf=offerteshopping.it&tg_i.page=https%3A%2F%2Fshare.offerteshopping.it%2F&tg_i.domain=share.offerteshopping.it&tg_i.pbadslot=adpn-adtag-1675156298778&tk_flint=pbjs_lite_v7.19.0&x_source.tid=752db757-06b5-4958-89a0-805c6e0be0ca&l_pb_bid_id=88c8f396954ff88&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.17046490776497414
213.19.162.41200 OK 360 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17210&site_id=215624&zone_id=1860494&size_id=15&p_pos=atf&rp_schain=1.0,1!adpone.com,cfc3efd8e1897bb744e5,1,,,&rf=offerteshopping.it&tg_i.page=https%3A%2F%2Fshare.offerteshopping.it%2F&tg_i.domain=share.offerteshopping.it&tg_i.pbadslot=adpn-adtag-1675156298778&tk_flint=pbjs_lite_v7.19.0&x_source.tid=752db757-06b5-4958-89a0-805c6e0be0ca&l_pb_bid_id=88c8f396954ff88&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.17046490776497414
IP 213.19.162.41:0
File type JSON data\012- , ASCII text, with very long lines (360), with no line terminators
Hash 4ffbe390d715264c4ce511cef50f5cf7
8f45b30200f498a1447913356e64f1e1370288a8
89da178cb6cfff6629391cf7ebc18e51b7a5eb33aa61a162b9acd9911d5d6eb6
GET /a/api/fastlane.json?account_id=17210&site_id=215624&zone_id=1860494&size_id=15&p_pos=atf&rp_schain=1.0,1!adpone.com,cfc3efd8e1897bb744e5,1,,,&rf=offerteshopping.it&tg_i.page=https%3A%2F%2Fshare.offerteshopping.it%2F&tg_i.domain=share.offerteshopping.it&tg_i.pbadslot=adpn-adtag-1675156298778&tk_flint=pbjs_lite_v7.19.0&x_source.tid=752db757-06b5-4958-89a0-805c6e0be0ca&l_pb_bid_id=88c8f396954ff88&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.17046490776497414 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Tue, 31 Jan 2023 09:11:23 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDK0SSAU-1H-55Y6; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:22 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|SDziDG3X/EhFjjGhwRJtVO9DtVM30fCguJiciBlYek3cUWwWifp3SWSA67yr1l4QWYGHqZE0kQPgcRgjl6EitUpnyw34PUwK3OlDu/ORdD8=; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:22 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 360
X-Firefox-Spdy: h2
ap.lijit.com/rtb/bid?src=prebid_prebid_7.19.0
216.52.2.48200 OK 99 B URL HTTP/1.1 ap.lijit.com/rtb/bid?src=prebid_prebid_7.19.0
IP 216.52.2.48:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 920e8e074ff58ac8ac8423e5df8ce69e
3284dac99e6441349dccca1f02304d4b84d4dd11
c5c5045591359bda548eaa786a31c7b05689de9c05c9d4918c2d9e569fa61975
POST /rtb/bid?src=prebid_prebid_7.19.0 HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 551
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:22 GMT
Content-Type: application/json
Access-Control-Allow-Origin: https://husfly.com
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
Vary: Accept-Encoding, User-Agent
Content-Encoding: gzip
Content-Length: 99
X-Sovrn-Pod: ad_ap5ams1
secure-it.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=it-910494&ch=it-910494_c04_Notizie.itOfferteShopping_BRW_S&asn=Notizie.itOfferteShopping_BRW&fp_id=&fp_cr_tm=&fp_acc_tm=&fp_emm_tm=&ve_id=&sessionId=nn9lpoarkwo9jn4oeb1l60keerhpw1675156296&prv=1&c6=vc,c04&ca=NA&c13=asid,P5815AB81-01E3-4CD9-BF99-FE49000A2C39&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,&sup=1&segment2=&segment1=&forward=0&plugv=&playerv=&ad=0&cr=V&c9=devid,&enc=true&c1=nuid,999&at=view&rt=text&c16=sdkv,bj.6.0.0&c27=cln,0&crs=&lat=&lon=&c29=plid,16751562966052517&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&pc=NA&c53=fef,n&c54=oad,&c55=cref3,&c57=adldf,2&ai=c45e5750f86070387f34de2259de3bc1&c3=st,c&c64=starttm,1675156298&adid=c45e5750f86070387f34de2259de3bc1&c58=isLive,false&c59=sesid,&c61=createtm,1675156298&c63=pipMode,&uoo=&c68=bndlid,&nodeTM=&logTM=&c73=phtype,&c74=dvcnm,&c76=adbsnid,&c44=progen,&davty=0&si=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&c66=mediaurl,&sdd=&c62=sendTime,1675156298&rnd=326193
54.74.81.160200 OK 44 B URL HTTP/2 secure-it.imrworldwide.com/cgi-bin/gn?prd=dcr&ci=it-910494&ch=it-910494_c04_Notizie.itOfferteShopping_BRW_S&asn=Notizie.itOfferteShopping_BRW&fp_id=&fp_cr_tm=&fp_acc_tm=&fp_emm_tm=&ve_id=&sessionId=nn9lpoarkwo9jn4oeb1l60keerhpw1675156296&prv=1&c6=vc,c04&ca=NA&c13=asid,P5815AB81-01E3-4CD9-BF99-FE49000A2C39&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,&sup=1&segment2=&segment1=&forward=0&plugv=&playerv=&ad=0&cr=V&c9=devid,&enc=true&c1=nuid,999&at=view&rt=text&c16=sdkv,bj.6.0.0&c27=cln,0&crs=&lat=&lon=&c29=plid,16751562966052517&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&pc=NA&c53=fef,n&c54=oad,&c55=cref3,&c57=adldf,2&ai=c45e5750f86070387f34de2259de3bc1&c3=st,c&c64=starttm,1675156298&adid=c45e5750f86070387f34de2259de3bc1&c58=isLive,false&c59=sesid,&c61=createtm,1675156298&c63=pipMode,&uoo=&c68=bndlid,&nodeTM=&logTM=&c73=phtype,&c74=dvcnm,&c76=adbsnid,&c44=progen,&davty=0&si=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&c66=mediaurl,&sdd=&c62=sendTime,1675156298&rnd=326193
IP 54.74.81.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 354857de9229bae15647fbc6364a4b19
f23e9c4fadc2e01bf323e90e5c1459bb6cf4f917
5ecb58845a9ac30e4eb4b18eb0e7431ba1fb195ce035309735efaee67421c7a3
GET /cgi-bin/gn?prd=dcr&ci=it-910494&ch=it-910494_c04_Notizie.itOfferteShopping_BRW_S&asn=Notizie.itOfferteShopping_BRW&fp_id=&fp_cr_tm=&fp_acc_tm=&fp_emm_tm=&ve_id=&sessionId=nn9lpoarkwo9jn4oeb1l60keerhpw1675156296&prv=1&c6=vc,c04&ca=NA&c13=asid,P5815AB81-01E3-4CD9-BF99-FE49000A2C39&c32=segA,NA&c33=segB,NA&c34=segC,NA&c15=apn,&sup=1&segment2=&segment1=&forward=0&plugv=&playerv=&ad=0&cr=V&c9=devid,&enc=true&c1=nuid,999&at=view&rt=text&c16=sdkv,bj.6.0.0&c27=cln,0&crs=&lat=&lon=&c29=plid,16751562966052517&c30=bldv,6.0.0.623&st=dcr&c7=osgrp,&c8=devgrp,&c10=plt,&c40=adbid,&c14=osver,NA&c26=dmap,1&dd=&hrd=&wkd=&c35=adrsid,&c36=cref1,&c37=cref2,&c11=agg,1&c12=apv,&c51=adl,0&c52=noad,0&pc=NA&c53=fef,n&c54=oad,&c55=cref3,&c57=adldf,2&ai=c45e5750f86070387f34de2259de3bc1&c3=st,c&c64=starttm,1675156298&adid=c45e5750f86070387f34de2259de3bc1&c58=isLive,false&c59=sesid,&c61=createtm,1675156298&c63=pipMode,&uoo=&c68=bndlid,&nodeTM=&logTM=&c73=phtype,&c74=dvcnm,&c76=adbsnid,&c44=progen,&davty=0&si=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&c66=mediaurl,&sdd=&c62=sendTime,1675156298&rnd=326193 HTTP/1.1
Host: secure-it.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:23 GMT
content-type: image/gif
content-length: 44
server: nginx
set-cookie: IMRID=3b8a4220-a147-11ed-815e-5164d5b52fa6; Path=/;Secure;SameSite=None; Domain=imrworldwide.com; Expires=Sun, 25-Feb-2024 09:11:23 GMT; Max-Age=33696000
expires: Thu, 01 Dec 1994 16:00:00 GMT
pragma: no-cache
cache-control: no-cache
p3p: P3P policyref="http://secure-it.imrworldwide.com/w3c/p3p.xml", CP="NOI DSP COR NID PSA ADM OUR IND UNI NAV COM"
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
prg.smartadserver.com/prebid/v1
81.17.55.98200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 81.17.55.98:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 366
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Tue, 31 Jan 2023 09:11:22 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
bidder.criteo.com/cdb?profileId=207&av=34&wv=7.19.0&cb=23558741351&lsavail=0
178.250.2.131200 OK 44 B URL HTTP/2 bidder.criteo.com/cdb?profileId=207&av=34&wv=7.19.0&cb=23558741351&lsavail=0
IP 178.250.2.131:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f1dcf53824ce88cdb7941d34db3f19d
4164a13e3f53e1f002606a807d64a92620720fb0
3a803b7520764b5266cfac90aa9f9b2ff931109f489d9a1deb24aa686c239a74
POST /cdb?profileId=207&av=34&wv=7.19.0&cb=23558741351&lsavail=0 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 491
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:22 GMT
vary: Origin
server: Finatra
content-type: application/json; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: https://husfly.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
content-encoding: gzip
content-length: 44
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
prg.smartadserver.com/prebid/v1
81.17.55.98200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 81.17.55.98:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 367
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Tue, 31 Jan 2023 09:11:22 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prebid-eu.creativecdn.com/bidder/prebid/bids
185.184.8.90204 No Content 0 B URL HTTP/2 prebid-eu.creativecdn.com/bidder/prebid/bids
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bidder/prebid/bids HTTP/1.1
Host: prebid-eu.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 497
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 09:11:23 GMT
access-control-allow-origin: https://husfly.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 3600
vary: Origin
X-Firefox-Spdy: h2
mcdp-nydc1.outbrain.com/l?token=2f21876360cb33a20bbb527d1b31f250_25174_1675156282622&tm=2427&eT=0&widgetWidth=729&widgetHeight=0&widgetX=75&widgetY=3742&wRV=2010113&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&rtt=463&oo=true&lo=4078&odbreq=4890&odbres=5634&mvreq=6097&mvres=6561&re=6564&cs=1&to=1675156292188&chs=1&ab=0&wl=0
70.42.32.31200 OK 2 B URL HTTP/1.1 mcdp-nydc1.outbrain.com/l?token=2f21876360cb33a20bbb527d1b31f250_25174_1675156282622&tm=2427&eT=0&widgetWidth=729&widgetHeight=0&widgetX=75&widgetY=3742&wRV=2010113&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&rtt=463&oo=true&lo=4078&odbreq=4890&odbres=5634&mvreq=6097&mvres=6561&re=6564&cs=1&to=1675156292188&chs=1&ab=0&wl=0
IP 70.42.32.31:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
GET /l?token=2f21876360cb33a20bbb527d1b31f250_25174_1675156282622&tm=2427&eT=0&widgetWidth=729&widgetHeight=0&widgetX=75&widgetY=3742&wRV=2010113&pVis=0&lsd=-1&eIdx=&cnsnt=no_consent&ccpa=1---&rtt=463&oo=true&lo=4078&odbreq=4890&odbres=5634&mvreq=6097&mvres=6561&re=6564&cs=1&to=1675156292188&chs=1&ab=0&wl=0 HTTP/1.1
Host: mcdp-nydc1.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://share.offerteshopping.it/
Origin: https://share.offerteshopping.it
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:23 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: content-range
X-TraceId: 278110ea1b94c3b8c8720cb80926a1f1
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.190.77204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.190.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 951
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
cache-control: no-cache, no-store, must-revalidate
date: Tue, 31 Jan 2023 09:11:23 GMT
X-Firefox-Spdy: h2
ap.lijit.com/rtb/bid?src=prebid_prebid_7.19.0
216.52.2.48200 OK 98 B URL HTTP/1.1 ap.lijit.com/rtb/bid?src=prebid_prebid_7.19.0
IP 216.52.2.48:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 42cdaa72dacb02fee6e4f3be5e5b27a9
80a9db7c4f879cafee003fc0f8fbd3f4dbcba717
1a8dc000acf34c8c64f5e55149fad4e77578c747ffc578f45a64978f63a4da07
POST /rtb/bid?src=prebid_prebid_7.19.0 HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 549
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:23 GMT
Content-Type: application/json
Access-Control-Allow-Origin: https://husfly.com
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
Vary: Accept-Encoding, User-Agent
Content-Encoding: gzip
Content-Length: 98
X-Sovrn-Pod: ad_ap5ams1
cdn-gl.imrworldwide.com/novms/html/ls.html
54.230.111.95200 OK 3.9 kB URL HTTP/2 cdn-gl.imrworldwide.com/novms/html/ls.html
IP 54.230.111.95:0
Hash ede0fc1274f9da2af8823a015b55eb82
1f5bc544f016ba70dc31cf100ab72077072e85d7
8f05e7afcbd82a16c7d37e2cf32f059db23476d3873fe9c2cb7bde0e8b67c6e7
GET /novms/html/ls.html HTTP/1.1
Host: cdn-gl.imrworldwide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Wed, 28 Sep 2022 14:09:00 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: kefD87rpNa3sUBHNjAEOkjjRzic54A4V
server: AmazonS3
content-encoding: gzip
date: Tue, 31 Jan 2023 08:24:45 GMT
cache-control: max-age=86400
etag: W/"7fa83dfc7b78314b137e2eb13834daa7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: g8mP4KPkT4FLGj3lVuSsl3G1GO8CIFcyq1TSxdkzL9RGbBo966RiyQ==
age: 2796
X-Firefox-Spdy: h2
flint.defybrick.com/show_pla?id=65349&url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&sf=0&k=&idx=0&ch=&ext=&np=linux%20x86_64&nv=&rand=03701680122776850201148607108890650275295296105095650021966698761982&nc=0&tsf=0&tsfmi=&pv=0&cb=1675156298916&ref=&pit=1&hl=1&op=0&fs=1280x898&ss=1280x1024&pre=0&jsonp=OBR.extern.onCheqResponse&mr=&ag=1317291471&at=&bid=e30%3D&di=W1siZWYiLDg3MDRdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFstMSwiTGludXggeDg2XzY0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%0D%0AY2giLDc5XV0%3D&tsfu=&fst=1280x898&dep=0&cpos=%5B%7B%22x%22%3A104%2C%22y%22%3A3691%2C%22w%22%3A729%2C%22h%22%3A38%7D%2C%7B%22w%22%3A1280%2C%22h%22%3A898%7D%5D&ver=41&cri=oCnRhvM3L4&sdd=%7B%7D&pto=6734
35.172.245.152200 OK 1.3 kB URL HTTP/2 flint.defybrick.com/show_pla?id=65349&url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&sf=0&k=&idx=0&ch=&ext=&np=linux%20x86_64&nv=&rand=03701680122776850201148607108890650275295296105095650021966698761982&nc=0&tsf=0&tsfmi=&pv=0&cb=1675156298916&ref=&pit=1&hl=1&op=0&fs=1280x898&ss=1280x1024&pre=0&jsonp=OBR.extern.onCheqResponse&mr=&ag=1317291471&at=&bid=e30%3D&di=W1siZWYiLDg3MDRdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFstMSwiTGludXggeDg2XzY0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%0D%0AY2giLDc5XV0%3D&tsfu=&fst=1280x898&dep=0&cpos=%5B%7B%22x%22%3A104%2C%22y%22%3A3691%2C%22w%22%3A729%2C%22h%22%3A38%7D%2C%7B%22w%22%3A1280%2C%22h%22%3A898%7D%5D&ver=41&cri=oCnRhvM3L4&sdd=%7B%7D&pto=6734
IP 35.172.245.152:0
File type ASCII text, with very long lines (2205), with no line terminators
Hash d7dc17b6f9e4797aa2432df1b043aed4
b72939baa739f69191fbf4628bf745858748d852
8a8bad162867bb7fe72a2569101391f85c42500bb77bcff7a9fdebccce7c3a42
GET /show_pla?id=65349&url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&sf=0&k=&idx=0&ch=&ext=&np=linux%20x86_64&nv=&rand=03701680122776850201148607108890650275295296105095650021966698761982&nc=0&tsf=0&tsfmi=&pv=0&cb=1675156298916&ref=&pit=1&hl=1&op=0&fs=1280x898&ss=1280x1024&pre=0&jsonp=OBR.extern.onCheqResponse&mr=&ag=1317291471&at=&bid=e30%3D&di=W1siZWYiLDg3MDRdLFsxMiwie1wiZVwiOjAsXCJ3Z2xcIjoxfSJdLFstMSwiTGludXggeDg2XzY0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%0D%0AY2giLDc5XV0%3D&tsfu=&fst=1280x898&dep=0&cpos=%5B%7B%22x%22%3A104%2C%22y%22%3A3691%2C%22w%22%3A729%2C%22h%22%3A38%7D%2C%7B%22w%22%3A1280%2C%22h%22%3A898%7D%5D&ver=41&cri=oCnRhvM3L4&sdd=%7B%7D&pto=6734 HTTP/1.1
Host: flint.defybrick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Tue, 31 Jan 2023 09:11:23 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 1333
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
185.89.211.132200 OK 160 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 185.89.211.132:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 21bdc930f4b6af018171d8eb01cb3666
7c53c8e8e738fabf3a4368e497b39d9e3833d7ff
24b68be9153d71742405d6ca13ca41907fba31e38cd271c62034a26ef067c32a
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1605
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Tue, 31 Jan 2023 09:11:23 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 160
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://share.offerteshopping.it
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 324f99f8-002f-45a8-88ca-158be781378b
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 961.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
antenna.ayads.co/?a=296764&at=skinz&device=d&et=2744&ga=0&gc=1&gcp=1&gm=1&gs=0&isssp=1&puid=p4588114060552076747&sqid=3&src=wf&sspname=sspv3-appnexus&sspplid=26496929&suid=s9497264698958098680&t=1675156297989&tfz=1544&tse=1675156299532&ver=20230127155355&z=36829&e=sspc
34.243.240.54204 No Content 0 B URL HTTP/2 antenna.ayads.co/?a=296764&at=skinz&device=d&et=2744&ga=0&gc=1&gcp=1&gm=1&gs=0&isssp=1&puid=p4588114060552076747&sqid=3&src=wf&sspname=sspv3-appnexus&sspplid=26496929&suid=s9497264698958098680&t=1675156297989&tfz=1544&tse=1675156299532&ver=20230127155355&z=36829&e=sspc
IP 34.243.240.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?a=296764&at=skinz&device=d&et=2744&ga=0&gc=1&gcp=1&gm=1&gs=0&isssp=1&puid=p4588114060552076747&sqid=3&src=wf&sspname=sspv3-appnexus&sspplid=26496929&suid=s9497264698958098680&t=1675156297989&tfz=1544&tse=1675156299532&ver=20230127155355&z=36829&e=sspc HTTP/1.1
Host: antenna.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 31 Jan 2023 09:11:23 GMT
X-Firefox-Spdy: h2
antenna.ayads.co/?device=d&et=2741&ga=0&gc=1&gm=1&gs=0&puid=p4588114060552076747&sqid=2&src=wf&suid=s9497264698958098680&t=1675156297989&tfz=1541&tse=1675156299529&ver=20230127155355&z=36829&e=p&bh=0&bw=1&gd&gdv&ph=4476&ctxs=750325952%3A9%2C834905626%3A5%2C1063046278%3A5%2C1076448337%3A5%2C1154842265%3A9%2C1279486098%3A10%2C1581924491%3A5%2C1690725722%3A9%2C1690725723%3A9%2C1741058577%3A9%2C1824946737%3A5%2C2241963825%3A5%2C2310060012%3A5%2C2938018295%3A9%2C2960050050%3A5%2C3501378400%3A10%2C3501378402%3A8%2C4089380855%3A5%2C4089380861%3A5&schin=1&schinc=1
34.243.240.54204 No Content 0 B URL HTTP/2 antenna.ayads.co/?device=d&et=2741&ga=0&gc=1&gm=1&gs=0&puid=p4588114060552076747&sqid=2&src=wf&suid=s9497264698958098680&t=1675156297989&tfz=1541&tse=1675156299529&ver=20230127155355&z=36829&e=p&bh=0&bw=1&gd&gdv&ph=4476&ctxs=750325952%3A9%2C834905626%3A5%2C1063046278%3A5%2C1076448337%3A5%2C1154842265%3A9%2C1279486098%3A10%2C1581924491%3A5%2C1690725722%3A9%2C1690725723%3A9%2C1741058577%3A9%2C1824946737%3A5%2C2241963825%3A5%2C2310060012%3A5%2C2938018295%3A9%2C2960050050%3A5%2C3501378400%3A10%2C3501378402%3A8%2C4089380855%3A5%2C4089380861%3A5&schin=1&schinc=1
IP 34.243.240.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?device=d&et=2741&ga=0&gc=1&gm=1&gs=0&puid=p4588114060552076747&sqid=2&src=wf&suid=s9497264698958098680&t=1675156297989&tfz=1541&tse=1675156299529&ver=20230127155355&z=36829&e=p&bh=0&bw=1&gd&gdv&ph=4476&ctxs=750325952%3A9%2C834905626%3A5%2C1063046278%3A5%2C1076448337%3A5%2C1154842265%3A9%2C1279486098%3A10%2C1581924491%3A5%2C1690725722%3A9%2C1690725723%3A9%2C1741058577%3A9%2C1824946737%3A5%2C2241963825%3A5%2C2310060012%3A5%2C2938018295%3A9%2C2960050050%3A5%2C3501378400%3A10%2C3501378402%3A8%2C4089380855%3A5%2C4089380861%3A5&schin=1&schinc=1 HTTP/1.1
Host: antenna.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 31 Jan 2023 09:11:23 GMT
X-Firefox-Spdy: h2
flint.defybrick.com/tracker/imp.gif?e=37dfbd8ee84e00136debc630ec45829e9225c24f567d51c5c30f41b0254384cfa532ff1a285aa40e98d022e0b44dc87ea4a36fde4c1b8c682309094d0ba0bfea9475489e91da563e351aff717718956a8b70cd0130003f8101424d3f065cc3bf775d36fa26e877cb55e2cc7ce2586fb01f6f3903d053f054abd1c5d52fe87547ed62d2f1157f841638426f4d99c80666eb73aae2c4ff5f0afe1ccde66ebd7f9e79ce42f85a6af77159a80b431a2cdb5149ff81e8ab20ac6d9362cc12f3507178a9b06e273d7e52952d8f9912e04673f292b127537a3bc6f17b73d0df431c2a4571070aa78f3c162445f1ac163193aaf52b8ee0496e0f6efee7b79e8a23b98fdb5bb8559b5b37619cb9c9b3a23495d4b46897650cd7f9cb2d1d1ea1347db4825121b78ce97e9d728625c3f664b73bd6c82dc33960969b27d86291d0eaa18ebde14c2df52fb1edff215160ea856691b650af5703438b4f50979389cbd1fbc93dcc2ed78ea38f69e47169268f742ed89f870321ddfc74e400ea9c5f8674bf7a0d4658c23db30a93c4e16db58635880ef788c4c36ac3190a2dfb59540b2d073ed7ab60a548d88cdf75ebde75f3d074e3d3a7b12edfe5a90e352fc6a60a1689f9460b56a2d3ac74f72890f82290f232a02eb23b974fc65186ba36c30635a7fbd0206a7d135c6f55184ef4b69e669640f21052516ab8a645dfd5&cb=1675156299486&cri=oCnRhvM3L4
35.172.245.152200 OK 43 B URL HTTP/2 flint.defybrick.com/tracker/imp.gif?e=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&cb=1675156299486&cri=oCnRhvM3L4
IP 35.172.245.152:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/imp.gif?e=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&cb=1675156299486&cri=oCnRhvM3L4 HTTP/1.1
Host: flint.defybrick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Tue, 31 Jan 2023 09:11:23 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
prg.smartadserver.com/prebid/v1
81.17.55.98200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 81.17.55.98:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 365
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Tue, 31 Jan 2023 09:11:22 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
prebid-eu.creativecdn.com/bidder/prebid/bids
185.184.8.90204 No Content 0 B URL HTTP/2 prebid-eu.creativecdn.com/bidder/prebid/bids
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bidder/prebid/bids HTTP/1.1
Host: prebid-eu.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 498
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 09:11:23 GMT
access-control-allow-origin: https://husfly.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 3600
vary: Origin
X-Firefox-Spdy: h2
bidder.criteo.com/cdb?profileId=207&av=34&wv=7.19.0&cb=5079691066&lsavail=0
178.250.2.131200 OK 44 B URL HTTP/2 bidder.criteo.com/cdb?profileId=207&av=34&wv=7.19.0&cb=5079691066&lsavail=0
IP 178.250.2.131:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f1dcf53824ce88cdb7941d34db3f19d
4164a13e3f53e1f002606a807d64a92620720fb0
3a803b7520764b5266cfac90aa9f9b2ff931109f489d9a1deb24aa686c239a74
POST /cdb?profileId=207&av=34&wv=7.19.0&cb=5079691066&lsavail=0 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 491
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:22 GMT
vary: Origin
server: Finatra
content-type: application/json; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: https://husfly.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
content-encoding: gzip
content-length: 44
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
prg.smartadserver.com/prebid/v1
81.17.55.98200 OK 594 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 81.17.55.98:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with very long lines (1183), with no line terminators
Hash c7510f311862021bdd15f209f1d0a550
7497c43a0f00fe1499978d5caf8668831c288b7b
f429d6feb26d57d6998538a56a82f89dfb8f8f91330b0604e25ac0f9cd1d53ef
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 365
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
date: Tue, 31 Jan 2023 09:11:23 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Wed, 31 Jan 2024 09:11:23 GMT; domain=.smartadserver.com; path=/
vs=372846=5302631; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Wed, 31 Jan 2024 09:11:23 GMT; domain=.smartadserver.com; path=/
pid=3052715608832468739; expires=Wed, 31 Jan 2024 09:11:23 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638107530835681155&o=1; expires=Wed, 01 Feb 2023 09:11:23 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Wed, 01 Feb 2023 09:11:23 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding, Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17210&site_id=215624&zone_id=1860494&size_id=15&p_pos=atf&rp_schain=1.0,1!adpone.com,cfc3efd8e1897bb744e5,1,,,&rf=offerteshopping.it&tg_i.page=https%3A%2F%2Fshare.offerteshopping.it%2F&tg_i.domain=share.offerteshopping.it&tg_i.pbadslot=adpn-adtag-1675156299403&tk_flint=pbjs_lite_v7.19.0&x_source.tid=7a8ad180-3242-42f8-9d0c-1c23a5db67eb&l_pb_bid_id=23a03452b85ea2&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.5751951467322426
213.19.162.41200 OK 360 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17210&site_id=215624&zone_id=1860494&size_id=15&p_pos=atf&rp_schain=1.0,1!adpone.com,cfc3efd8e1897bb744e5,1,,,&rf=offerteshopping.it&tg_i.page=https%3A%2F%2Fshare.offerteshopping.it%2F&tg_i.domain=share.offerteshopping.it&tg_i.pbadslot=adpn-adtag-1675156299403&tk_flint=pbjs_lite_v7.19.0&x_source.tid=7a8ad180-3242-42f8-9d0c-1c23a5db67eb&l_pb_bid_id=23a03452b85ea2&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.5751951467322426
IP 213.19.162.41:0
File type JSON data\012- , ASCII text, with very long lines (360), with no line terminators
Hash ec09378c06dcdc792c5d294e66cc65ec
1df152e8860785724eca8567ba32c3b6743da259
f2dfc388243d14c5cdc75dd79906c15c38f073f65210a7a7c0033660a3a30dcb
GET /a/api/fastlane.json?account_id=17210&site_id=215624&zone_id=1860494&size_id=15&p_pos=atf&rp_schain=1.0,1!adpone.com,cfc3efd8e1897bb744e5,1,,,&rf=offerteshopping.it&tg_i.page=https%3A%2F%2Fshare.offerteshopping.it%2F&tg_i.domain=share.offerteshopping.it&tg_i.pbadslot=adpn-adtag-1675156299403&tk_flint=pbjs_lite_v7.19.0&x_source.tid=7a8ad180-3242-42f8-9d0c-1c23a5db67eb&l_pb_bid_id=23a03452b85ea2&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.5751951467322426 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Tue, 31 Jan 2023 09:11:23 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDK0SSRU-4-MA24; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:23 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qoDc0H/0rCrqO9DtVM30fCguJiciBlYek0tekfboYQYkGSA67yr1l4QWYGHqZE0kQPgcRgjl6EitUpnyw34PUwK3OlDu/ORdD8=; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:23 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 360
X-Firefox-Spdy: h2
prg.smartadserver.com/prebid/v1
81.17.55.98200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 81.17.55.98:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 365
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Tue, 31 Jan 2023 09:11:22 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ap.lijit.com/rtb/bid?src=prebid_prebid_7.19.0
216.52.2.48200 OK 99 B URL HTTP/1.1 ap.lijit.com/rtb/bid?src=prebid_prebid_7.19.0
IP 216.52.2.48:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f19671ec02e85cdaf5b6c825745891f7
4f22dc4d4e6a03fd0bb0a353fd4a9e0355eb10ba
24f310dbf9ff62d1a9132c522ef32a797b10f41a3c41f8de355c8bb60c8e468d
POST /rtb/bid?src=prebid_prebid_7.19.0 HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 551
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:23 GMT
Content-Type: application/json
Access-Control-Allow-Origin: https://husfly.com
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
Vary: Accept-Encoding, User-Agent
Content-Encoding: gzip
Content-Length: 99
X-Sovrn-Pod: ad_ap5ams1
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.190.77204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.190.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 951
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
cache-control: no-cache, no-store, must-revalidate
date: Tue, 31 Jan 2023 09:11:23 GMT
X-Firefox-Spdy: h2
bidder.criteo.com/cdb?profileId=207&av=34&wv=7.19.0&cb=71237167538&lsavail=0
178.250.2.131200 OK 44 B URL HTTP/2 bidder.criteo.com/cdb?profileId=207&av=34&wv=7.19.0&cb=71237167538&lsavail=0
IP 178.250.2.131:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f1dcf53824ce88cdb7941d34db3f19d
4164a13e3f53e1f002606a807d64a92620720fb0
3a803b7520764b5266cfac90aa9f9b2ff931109f489d9a1deb24aa686c239a74
POST /cdb?profileId=207&av=34&wv=7.19.0&cb=71237167538&lsavail=0 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 491
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:23 GMT
vary: Origin
server: Finatra
content-type: application/json; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: https://husfly.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
content-encoding: gzip
content-length: 44
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
prebid-eu.creativecdn.com/bidder/prebid/bids
185.184.8.90204 No Content 0 B URL HTTP/2 prebid-eu.creativecdn.com/bidder/prebid/bids
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bidder/prebid/bids HTTP/1.1
Host: prebid-eu.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 499
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 09:11:23 GMT
access-control-allow-origin: https://husfly.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 3600
vary: Origin
X-Firefox-Spdy: h2
prg.smartadserver.com/prebid/v1
81.17.55.98200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 81.17.55.98:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 366
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Tue, 31 Jan 2023 09:11:23 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17210&site_id=215624&zone_id=1860494&size_id=15&p_pos=atf&rp_schain=1.0,1!adpone.com,cfc3efd8e1897bb744e5,1,,,&rf=offerteshopping.it&tg_i.page=https%3A%2F%2Fshare.offerteshopping.it%2F&tg_i.domain=share.offerteshopping.it&tg_i.pbadslot=adpn-adtag-1675156299470&tk_flint=pbjs_lite_v7.19.0&x_source.tid=72d3a22a-644e-4313-90d7-1814235c35a7&l_pb_bid_id=8f955d6ad9df928&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.7039672561682027
213.19.162.41200 OK 360 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17210&site_id=215624&zone_id=1860494&size_id=15&p_pos=atf&rp_schain=1.0,1!adpone.com,cfc3efd8e1897bb744e5,1,,,&rf=offerteshopping.it&tg_i.page=https%3A%2F%2Fshare.offerteshopping.it%2F&tg_i.domain=share.offerteshopping.it&tg_i.pbadslot=adpn-adtag-1675156299470&tk_flint=pbjs_lite_v7.19.0&x_source.tid=72d3a22a-644e-4313-90d7-1814235c35a7&l_pb_bid_id=8f955d6ad9df928&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.7039672561682027
IP 213.19.162.41:0
File type JSON data\012- , ASCII text, with very long lines (360), with no line terminators
Hash 1fa06810d4c1b52dd85e5b7142f8fe4d
c2316f79040189e818e01fc714eef40ee743a76c
414ee9d8ba85f37cca3bfd044a2fd084f5cfce3309dad3541ace88e000bdc6b7
GET /a/api/fastlane.json?account_id=17210&site_id=215624&zone_id=1860494&size_id=15&p_pos=atf&rp_schain=1.0,1!adpone.com,cfc3efd8e1897bb744e5,1,,,&rf=offerteshopping.it&tg_i.page=https%3A%2F%2Fshare.offerteshopping.it%2F&tg_i.domain=share.offerteshopping.it&tg_i.pbadslot=adpn-adtag-1675156299470&tk_flint=pbjs_lite_v7.19.0&x_source.tid=72d3a22a-644e-4313-90d7-1814235c35a7&l_pb_bid_id=8f955d6ad9df928&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.7039672561682027 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Tue, 31 Jan 2023 09:11:23 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDK0SSU8-F-K8XX; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:23 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qr/7Krjjg3xBe9DtVM30fCguJiciBlYek0tekfboYQYkGSA67yr1l4QWYGHqZE0kQPgcRgjl6EitUpnyw34PUwK3OlDu/ORdD8=; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:23 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 360
X-Firefox-Spdy: h2
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.190.77204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.190.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 950
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
cache-control: no-cache, no-store, must-revalidate
date: Tue, 31 Jan 2023 09:11:23 GMT
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6c0b4d2-6327-4501-8fe0-017b08501835.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6c0b4d2-6327-4501-8fe0-017b08501835.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ee0e708ca11a9468634d2a7dff56510f
40d7c0f07b5218c4ceabcd7fc90af26bb3dc2cf3
e944a184377a91dae9fbc38ebc686fb95e261cb16ae09c7d69ababacffa75e57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6c0b4d2-6327-4501-8fe0-017b08501835.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8529
x-amzn-requestid: 633fc342-7b5a-4103-970e-74730c08679b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbhguFesIAMFqVQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d47c6a-38e274c36d39ef4f2dd6034a;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 01:37:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: URqrtcPijXsHDSPMQ3K9PHbq20O0KYuk3YyO91rNW7t10zCuF3g5wg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 10:29:22 GMT
age: 81721
etag: "40d7c0f07b5218c4ceabcd7fc90af26bb3dc2cf3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ap.lijit.com/rtb/bid?src=prebid_prebid_7.19.0
216.52.2.48200 OK 100 B URL HTTP/1.1 ap.lijit.com/rtb/bid?src=prebid_prebid_7.19.0
IP 216.52.2.48:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1b6e87aacd6b0c6aa901939b24283387
1d844ecd6096daa73ad67e3673e14ab1d3990fe1
65d29b5502a52836c97ef03f8692495f330bdf2f94855af5dd3ff0f64a266f81
POST /rtb/bid?src=prebid_prebid_7.19.0 HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 550
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:23 GMT
Content-Type: application/json
Access-Control-Allow-Origin: https://husfly.com
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
Vary: Accept-Encoding, User-Agent
Content-Encoding: gzip
Content-Length: 100
X-Sovrn-Pod: ad_ap5ams1
www8.smartadserver.com/ac?nwid=1827&siteid=392138&pgid=1345107&fmtid=97506&async=1&visit=m&tmstp=&gdpr_consent=
81.17.55.112200 OK 1.0 kB URL HTTP/1.1 www8.smartadserver.com/ac?nwid=1827&siteid=392138&pgid=1345107&fmtid=97506&async=1&visit=m&tmstp=&gdpr_consent=
IP 81.17.55.112:0
ASN #60781 LeaseWeb Netherlands B.V.
File type ASCII text, with CRLF, LF line terminators
Hash 8c09b7d471c0f319bca11e39f7488643
189e4c51b8c2ae3eb099d9a4ee059fe1f2d4d8f4
8d32a55bbb2dd6cbfb7fa8b79c2e68fbb46293f537fe0dffbb756ac5325be404
GET /ac?nwid=1827&siteid=392138&pgid=1345107&fmtid=97506&async=1&visit=m&tmstp=&gdpr_consent= HTTP/1.1
Host: www8.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: application/javascript; charset=UTF-8
date: Tue, 31 Jan 2023 09:11:22 GMT
cache-control: no-cache,no-store
content-encoding: br
pragma: no-cache
set-cookie: pbw=%24b%3d12999%3b%24o%3d11100; expires=Wed, 31 Jan 2024 09:11:23 GMT; domain=.smartadserver.com; path=/
vs=392138=5302631; domain=.smartadserver.com; path=/
TestIfCookie=ok; domain=.smartadserver.com; path=/
TestIfCookieP=ok; expires=Wed, 31 Jan 2024 09:11:23 GMT; domain=.smartadserver.com; path=/
pid=3136215579862493084; expires=Wed, 31 Jan 2024 09:11:23 GMT; domain=.smartadserver.com; path=/
sasd2=q=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0&c=1&l=819242284&lo=988266927<=638107530838066824&o=1; expires=Wed, 01 Feb 2023 09:11:23 GMT; domain=.smartadserver.com; path=/
sasd=%24qc%3D1311348260%3B%24ql%3DMedium%3B%24qpc%3D1006%3B%24qt%3D216_1430_41056t%3B%24dma%3D0; expires=Wed, 01 Feb 2023 09:11:23 GMT; domain=.smartadserver.com; path=/
transfer-encoding: chunked
vary: Accept-Encoding
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
x-smrt-i: 10166347
secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=smartadserver&endpoint=eu
104.110.14.155301 Moved Permanently 0 B URL HTTP/2 secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=smartadserver&endpoint=eu
IP 104.110.14.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utils/xapi/multi-sync.html?p=smartadserver&endpoint=eu HTTP/1.1
Host: secure-assets.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=smartadserver&endpoint=eu
date: Tue, 31 Jan 2023 09:11:23 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.html?p=smartadserver&endpoint=eu
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?p=smartadserver&endpoint=eu
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?p=smartadserver&endpoint=eu HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://share.offerteshopping.it/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Tue, 31 Jan 2023 09:11:23 GMT
Connection: keep-alive
Vary: Accept-Encoding
prg.smartadserver.com/prebid/v1
81.17.55.98200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 81.17.55.98:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 365
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Tue, 31 Jan 2023 09:11:23 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
bidder.criteo.com/cdb?profileId=207&av=34&wv=7.19.0&cb=29552571157&lsavail=0
178.250.2.131200 OK 44 B URL HTTP/2 bidder.criteo.com/cdb?profileId=207&av=34&wv=7.19.0&cb=29552571157&lsavail=0
IP 178.250.2.131:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f1dcf53824ce88cdb7941d34db3f19d
4164a13e3f53e1f002606a807d64a92620720fb0
3a803b7520764b5266cfac90aa9f9b2ff931109f489d9a1deb24aa686c239a74
POST /cdb?profileId=207&av=34&wv=7.19.0&cb=29552571157&lsavail=0 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 491
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:23 GMT
vary: Origin
server: Finatra
content-type: application/json; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: https://husfly.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
content-encoding: gzip
content-length: 44
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
prebid-eu.creativecdn.com/bidder/prebid/bids
185.184.8.90204 No Content 0 B URL HTTP/2 prebid-eu.creativecdn.com/bidder/prebid/bids
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bidder/prebid/bids HTTP/1.1
Host: prebid-eu.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 499
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 09:11:23 GMT
access-control-allow-origin: https://husfly.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 3600
vary: Origin
X-Firefox-Spdy: h2
prg.smartadserver.com/prebid/v1
81.17.55.98200 OK 0 B URL HTTP/1.1 prg.smartadserver.com/prebid/v1
IP 81.17.55.98:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /prebid/v1 HTTP/1.1
Host: prg.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 367
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 0
content-type: application/json; charset=UTF-8
date: Tue, 31 Jan 2023 09:11:23 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
cache-control: no-cache,no-store
pragma: no-cache
vary: Origin
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ad2.payclick.it/extra/unico_v2/pc_unico2_min.js
54.246.26.100200 OK 76 kB URL HTTP/2 ad2.payclick.it/extra/unico_v2/pc_unico2_min.js
IP 54.246.26.100:0
Hash 19251471ebd82f4145ebe5b2dc89fb48
6bbcdddf3b6c4a956b1f9e8723f437e4fa7a39d5
003359505411e7c52b8a36df3065a2f2efb419e3a28e4c8ec2c8e14309e8ec7b
GET /extra/unico_v2/pc_unico2_min.js HTTP/1.1
Host: ad2.payclick.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:19 GMT
content-type: application/javascript
server: Apache/2.4.41 (Ubuntu)
last-modified: Tue, 24 Aug 2021 13:38:41 GMT
etag: "3d4d9-5ca4e40776ba2-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ap.lijit.com/rtb/bid?src=prebid_prebid_7.19.0
216.52.2.48200 OK 100 B URL HTTP/1.1 ap.lijit.com/rtb/bid?src=prebid_prebid_7.19.0
IP 216.52.2.48:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e14a0761d0e48767827e5152bf4e32ab
ad3ddb748745b51d988fc1882068a23c2cbf7426
cf1bb8f863b91a5288dfd28ea58cfceb381ad8aca2dcd01375fda82ae4e70b4c
POST /rtb/bid?src=prebid_prebid_7.19.0 HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 550
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:23 GMT
Content-Type: application/json
Access-Control-Allow-Origin: https://husfly.com
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
Vary: Accept-Encoding, User-Agent
Content-Encoding: gzip
Content-Length: 100
X-Sovrn-Pod: ad_ap5ams1
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17210&site_id=215624&zone_id=1860494&size_id=15&p_pos=atf&rp_schain=1.0,1!adpone.com,cfc3efd8e1897bb744e5,1,,,&rf=offerteshopping.it&tg_i.page=https%3A%2F%2Fshare.offerteshopping.it%2F&tg_i.domain=share.offerteshopping.it&tg_i.pbadslot=adpn-adtag-1675156299779&tk_flint=pbjs_lite_v7.19.0&x_source.tid=6c734cb1-fb35-4105-9c47-5e15616f371a&l_pb_bid_id=60af987e0e1a04&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.14923201505194272
213.19.162.41200 OK 360 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17210&site_id=215624&zone_id=1860494&size_id=15&p_pos=atf&rp_schain=1.0,1!adpone.com,cfc3efd8e1897bb744e5,1,,,&rf=offerteshopping.it&tg_i.page=https%3A%2F%2Fshare.offerteshopping.it%2F&tg_i.domain=share.offerteshopping.it&tg_i.pbadslot=adpn-adtag-1675156299779&tk_flint=pbjs_lite_v7.19.0&x_source.tid=6c734cb1-fb35-4105-9c47-5e15616f371a&l_pb_bid_id=60af987e0e1a04&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.14923201505194272
IP 213.19.162.41:0
File type JSON data\012- , ASCII text, with very long lines (360), with no line terminators
Hash 31f9f47252651c74cb8b1905856692b9
755792e382e60373e629942b3f7aa36a026ad4b3
a5335912b93737caf999fbe96795862ef3ef99d354495a4a94877830995cdbf2
GET /a/api/fastlane.json?account_id=17210&site_id=215624&zone_id=1860494&size_id=15&p_pos=atf&rp_schain=1.0,1!adpone.com,cfc3efd8e1897bb744e5,1,,,&rf=offerteshopping.it&tg_i.page=https%3A%2F%2Fshare.offerteshopping.it%2F&tg_i.domain=share.offerteshopping.it&tg_i.pbadslot=adpn-adtag-1675156299779&tk_flint=pbjs_lite_v7.19.0&x_source.tid=6c734cb1-fb35-4105-9c47-5e15616f371a&l_pb_bid_id=60af987e0e1a04&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&slots=1&rand=0.14923201505194272 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Tue, 31 Jan 2023 09:11:24 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDK0ST3E-K-8MFB; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:23 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|SDziDG3X/EgBxUbpldBMZu9DtVM30fCguJiciBlYek0tekfboYQYkGSA67yr1l4QWYGHqZE0kQPgcRgjl6EitUpnyw34PUwK3OlDu/ORdD8=; Domain=.rubiconproject.com; Path=/; Expires=Wed, 31-Jan-2024 09:11:23 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 360
X-Firefox-Spdy: h2
static1.dmcdn.net/playerv5/photon/dmp.omweb.ee6e6979792a1b55d936.js
178.79.212.177200 OK 13 kB URL HTTP/2 static1.dmcdn.net/playerv5/photon/dmp.omweb.ee6e6979792a1b55d936.js
IP 178.79.212.177:0
File type ASCII text, with very long lines (37869), with no line terminators
Hash 7ba7972d82eedf7759a190954468694b
8f1a781723f170d01704a66326375faf7eb50021
a3de911746da38d9188a556d12401d89adbbbceef019d6b1ef9019ce50cfdf93
GET /playerv5/photon/dmp.omweb.ee6e6979792a1b55d936.js HTTP/1.1
Host: static1.dmcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://geo.dailymotion.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: DMS/1.0.42
content-type: application/x-javascript
server-timing: total;dur=0, dc;desc="dc3"
timing-allow-origin: *
accept-ranges: bytes
etag: "63cf93f3-93ed"
content-encoding: gzip
vary: Accept-Encoding
x-llid: 24d9829f92c46aeb1152b37f69609131
age: 595693
date: Tue, 31 Jan 2023 09:11:24 GMT
last-modified: Tue, 24 Jan 2023 08:16:51 GMT
expires: Thu, 23 Feb 2023 11:43:11 GMT
content-length: 13008
cache-control: max-age=2592000
access-control-allow-origin: *
X-Firefox-Spdy: h2
static1.dmcdn.net/playerv5/photon/dmp.omid_session_client.70930bd5001b8104a1c9.js
178.79.212.177200 OK 12 kB URL HTTP/2 static1.dmcdn.net/playerv5/photon/dmp.omid_session_client.70930bd5001b8104a1c9.js
IP 178.79.212.177:0
File type ASCII text, with very long lines (61822), with no line terminators
Hash 65c44b5fc9e659b42b22dd7750ad53ef
10547bc424fce10edad21e9ba2f5344077fe93fb
8705c9e7fd740ddc01ccac3c9336f186be395fcb2ef5b8ae0b10fe00bcc69b1a
GET /playerv5/photon/dmp.omid_session_client.70930bd5001b8104a1c9.js HTTP/1.1
Host: static1.dmcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://geo.dailymotion.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: DMS/1.0.42
content-type: application/x-javascript
server-timing: total;dur=0, dc;desc="dc3"
timing-allow-origin: *
accept-ranges: bytes
etag: "63c551bf-f17e"
content-encoding: gzip
vary: Accept-Encoding
x-llid: 10cdcde5e9abf17f35063e3bcb800d27
age: 1258241
date: Tue, 31 Jan 2023 09:11:24 GMT
last-modified: Mon, 16 Jan 2023 13:31:43 GMT
expires: Wed, 15 Feb 2023 19:40:43 GMT
content-length: 11922
cache-control: max-age=2592000
access-control-allow-origin: *
X-Firefox-Spdy: h2
static1.dmcdn.net/playerv5/photon/fonts/Retina-Regular.039feafb8e07151a9fa79dd01263f273.woff2
178.79.212.177200 OK 37 kB URL HTTP/2 static1.dmcdn.net/playerv5/photon/fonts/Retina-Regular.039feafb8e07151a9fa79dd01263f273.woff2
IP 178.79.212.177:0
File type Web Open Font Format (Version 2), TrueType, length 37144, version 1.65\012- data
Hash 49fd812d7b9f4290a91ae4d609dfffa3
69d7de1572fdff6ca435fc6510a7d1269755b93b
9f0384a2c4cddef7a95fce9cc026e0901482723d031610c2dc33f23864e8d5c3
GET /playerv5/photon/fonts/Retina-Regular.039feafb8e07151a9fa79dd01263f273.woff2 HTTP/1.1
Host: static1.dmcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://geo.dailymotion.com/
Origin: https://geo.dailymotion.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: DMS/1.0.42
content-type: application/octet-stream
server-timing: total;dur=0, dc;desc="dc3"
timing-allow-origin: *
accept-ranges: bytes
etag: "63cf93f3-9118"
x-llid: d7671b61868e234ef2d11a634a5640d1
age: 595693
date: Tue, 31 Jan 2023 09:11:24 GMT
last-modified: Tue, 24 Jan 2023 08:16:51 GMT
expires: Thu, 23 Feb 2023 11:43:11 GMT
content-length: 37144
cache-control: max-age=2592000
access-control-allow-origin: *
X-Firefox-Spdy: h2
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.190.77204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.190.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 951
Origin: https://husfly.com
Connection: keep-alive
Referer: https://husfly.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://husfly.com
cache-control: no-cache, no-store, must-revalidate
date: Tue, 31 Jan 2023 09:11:24 GMT
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=156192&gdpr=0&gdpr_consent=
23.38.200.201200 OK 5.6 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=156192&gdpr=0&gdpr_consent=
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15889), with no line terminators
Hash 18a6bc0e051c0767f814f63ff07e65f9
8fbe4eb399d8501b90276723d38c9ffb4ab483fa
26341482a8d6c8384b2cb91aba95833ac2002bd284ff690adbd2009bf76cb95b
GET /AdServer/js/user_sync.html?kdntuid=1&p=156192&gdpr=0&gdpr_consent= HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 06:36:49 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5554
content-type: text/html
cache-control: max-age=78041
expires: Wed, 01 Feb 2023 06:52:05 GMT
date: Tue, 31 Jan 2023 09:11:24 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.html?gdpr=0
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?gdpr=0
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?gdpr=0 HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Tue, 31 Jan 2023 09:11:24 GMT
Connection: keep-alive
Vary: Accept-Encoding
husfly.com/r/p.html?f=dphrlhed&e=1748322777535
54.230.111.36200 OK 19 kB URL HTTP/2 husfly.com/r/p.html?f=dphrlhed&e=1748322777535
IP 54.230.111.36:0
File type HTML document, ASCII text, with CRLF line terminators
Hash ca2d23f396ea7bc73aeb714b2fa5e224
1c700a2af42a78f8a87694e1d5d7fa271df57422
9317fcf1b9a5cb0453b9441878d9785f5073e428905bcab5607b10ef77cedfc8
GET /r/p.html?f=dphrlhed&e=1748322777535 HTTP/1.1
Host: husfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Tue, 25 Oct 2022 13:58:03 GMT
x-amz-version-id: 6P847P_3pwRq3kg1dbhEI8vZo9rD1MSu
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 06:51:37 GMT
etag: W/"1d799671c4d6a9304651b1b9d6a783fb"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PLNqjsd3DJ7xFkDJ0y6OQwKvBWVOaz0KEqlKH7pSeAh_yQ8iAocVXQ==
age: 8385
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 734d640008ea3a0ddaaea67b137ff4ef
07f48006dfb6871a46041d34aa7f20d04650a376
822572bee1f09dd920cac5efbcf0c68e19afab1aac7c3a683f0f23149ddc9d72
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 31 Jan 2023 09:11:23 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 30 Jan 2023 21:56:02 GMT
Expires: Tue, 31 Jan 2023 21:56:02 GMT
ETag: "07f48006dfb6871a46041d34aa7f20d04650a376"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
hb.adpone.com/prebid7.19.0.js
172.67.73.228200 OK 124 kB URL HTTP/2 hb.adpone.com/prebid7.19.0.js
IP 172.67.73.228:0
File type ASCII text, with very long lines (64662)
Size 124 kB (124537 bytes)
Hash 4dae4c8fe26fc402eef3b05240aabe5a
fe7f4f92a9491cbac77fd3afef0235c91e0e6e11
a551ee6ebfc30a3d71b85f243fa7bc5cc88103730919d5945824dfe82587d4f8
GET /prebid7.19.0.js HTTP/1.1
Host: hb.adpone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:21 GMT
content-type: application/javascript
x-amz-id-2: z8zPPgpChpmPHjrETbNpCXccjPHhgx/GJFcxrGv5xpYywnazjILxUOl1MmK1mgPPDqHEJdhQRpw=
x-amz-request-id: AZB8RQQA6SHSSEK2
last-modified: Tue, 25 Oct 2022 11:05:38 GMT
etag: W/"c5676242a8c3f69dca478f87ab473b3a"
x-amz-version-id: mrzpmMNa6L0T_nTXd2e.MsW_mFVsXsAR
cache-control: max-age=14400
cf-cache-status: HIT
age: 5301
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wJPaaZViWmvITdsZy5JZ5nV3zvIoeOJtUp6rxBPjjgZ1aKLpPo%2FzIBI9HPP7yb29LzJ%2FTrSQVJXe6nc5XhUYY4gdN%2FYct6X5cbYMbikmC7Q%2FFSN06uLbLU8ipGJk38I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151c82f58b50c-OSL
content-encoding: br
X-Firefox-Spdy: h2
vendorlist.dmcdn.net/v2/vendor-list.json
178.79.212.177200 OK 54 kB URL HTTP/2 vendorlist.dmcdn.net/v2/vendor-list.json
IP 178.79.212.177:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 7eeac4a9bcd7ff06591245f34c7aabec
1ffd622b9acceaa82b4144689dce3c84431a3614
a7de8690c58618885f46c0b1672abb8ed21787e4250162eddc425b7299258c6e
GET /v2/vendor-list.json HTTP/1.1
Host: vendorlist.dmcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://geo.dailymotion.com/
Origin: https://geo.dailymotion.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
x-amz-version-id: h._Kbz2.GCYWzK9.HTniAJSupPyps7dw
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
via: 1.1 f35aa6bf386bb517249eff682674d4c4.cloudfront.net (CloudFront)
x-amz-cf-pop: CDG3-C1
x-amz-cf-id: CniL8bJbRuD9bgJmg6ci3xk-G7FOxniE9If8RguY2hM-mmT-thM2_A==
x-llid: 7882f077549ee163d541c358cad94b76
age: 406867
date: Tue, 31 Jan 2023 09:11:24 GMT
last-modified: Thu, 26 Jan 2023 16:05:24 GMT
expires: Thu, 02 Feb 2023 16:10:17 GMT
content-length: 54041
x-ip-address: 178.79.213.119
cache-control: max-age=604800
access-control-allow-origin: *
X-Firefox-Spdy: h2
onetag-sys.com/usync/?cb=1675156298124&gdpr=0
51.38.120.206204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?cb=1675156298124&gdpr=0
IP 51.38.120.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?cb=1675156298124&gdpr=0 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
pebed.dm-event.net/
188.65.124.58200 OK 15 B IP 188.65.124.58:0
ASN #41690 Dailymotion S.A.
File type JSON data\012- , ASCII text, with no line terminators
Hash 0f0479874bf6f4a7281099b15df27c27
55a490e280d48996e564d00492437eb17faadd28
a29ee2b15c494311c52521766e44af56a3ad2248e7a8ab465e5206463c13d288
POST / HTTP/1.1
Host: pebed.dm-event.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://geo.dailymotion.com/
Content-Type: text/plain; charset=UTF-8
X-Dm-EventBus-Compression-Duration: 0
X-Dm-EventBus-Worker-Duration: 0
Content-Length: 2327
Origin: https://geo.dailymotion.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Encoding, X-Dm-EventBus-Compression-Duration, X-Dm-EventBus-Worker-Duration
Access-Control-Allow-Methods: POST
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 604800
Content-Type: application/json
Server: edward-ed/2.2.1
Date: Tue, 31 Jan 2023 09:11:24 GMT
Content-Length: 15
pixel.onaudience.com/?partner=210&mapped=3136215579862493084
141.94.170.64302 Found 0 B URL HTTP/1.1 pixel.onaudience.com/?partner=210&mapped=3136215579862493084
IP 141.94.170.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?partner=210&mapped=3136215579862493084 HTTP/1.1
Host: pixel.onaudience.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
set-cookie: cookie=bff1a1ccaafe8a12; Max-Age=31536000; Expires=Wed, 31 Jan 2024 09:11:24 GMT; Path=/; Domain=.onaudience.com; Secure; SameSite=None
done_redirects147=1; Max-Age=86400; Expires=Wed, 1 Feb 2023 09:11:24 GMT; Path=/; Domain=.onaudience.com; Secure; SameSite=None
location: https://match.adsrvr.org/track/cmf/generic?ttd_pid=xksw9la&ttd_tpi=1&gdpr=0
content-length: 0
eb2.3lift.com/sync?
76.223.111.18200 OK 37 B IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /sync? HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:24 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7f98a7e7749bdfd8d1aaa7af2ff874c8
1d3864ec634180888e32fcdc7ab106cef125bfbf
196e315cc2462b6ee3c1bedcddf1655691db8439630161cd49ecf5ee4c3c4c14
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "196E315CC2462B6EE3C1BEDCDDF1655691DB8439630161CD49ECF5EE4C3C4C14"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10776
Expires: Tue, 31 Jan 2023 12:11:00 GMT
Date: Tue, 31 Jan 2023 09:11:24 GMT
Connection: keep-alive
csync.smilewanted.com/
104.22.68.131200 OK 2.0 kB IP 104.22.68.131:0
File type HTML document, ASCII text, with very long lines (1926)
Hash 1adb79fe12342dce1e3feef774986fce
b3b339c4ec6a49b2dbbd61dbc26808c33ca6a933
66f90d3ef23b632dc7d5239a2a5000aadbf7458142d265f5462f6da1da7dd668
GET / HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:24 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 792151d84e3b95ea-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 314 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 2a71e6a5b4d2d459eba6573a05d3b2b4
3b1f633d0e7911c66eab80b734120b6f6f5ae814
beb879c9c6d9c1b024f12ab1254f8fe70eabe92102fd089bc8e309fe7af52202
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 09:11:24 GMT
Content-Type: application/ocsp-response
Content-Length: 314
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 13:14:40 GMT
Expires: Sun, 05 Feb 2023 13:14:39 GMT
Etag: "3b1f633d0e7911c66eab80b734120b6f6f5ae814"
Cache-Control: max-age=445994,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792151d92c57fabc-OSL
csync.smilewanted.com/
104.22.68.131200 OK 2.4 kB IP 104.22.68.131:0
Hash 4f988255a07296cac7dfa5e4680c85d5
6014cfe1b71968bb591bb522dc835bd134f54996
1448a7ee469818d93cfa7bd036e995cc4ba9b9ac1081a5e8cfa0e5922cfbd30e
GET / HTTP/1.1
Host: csync.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:24 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 792151d8ae8f95ea-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
speedtest.dailymotion.com/latencies.js
188.65.124.91200 OK 2.0 kB URL HTTP/1.1 speedtest.dailymotion.com/latencies.js
IP 188.65.124.91:0
ASN #41690 Dailymotion S.A.
File type ASCII text, with very long lines (608)
Hash c5d0f288c2b963c364966eb8b05269c4
7ad46f3eaf9ca403e8f5bbe29d40017e96b550d7
4f779607bcf3c23601c6bd4166a649610d3079e5e5b4ca28fb16a2be49f0e6e0
GET /latencies.js HTTP/1.1
Host: speedtest.dailymotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://geo.dailymotion.com/
Connection: keep-alive
Cookie: dmvk=63d8db36389d6; ts=194220; v1st=37872062-bfc7-4b2f-a253-2bd865b7c292; usprivacy=1---
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=21600, public
Content-Encoding: gzip
Content-Length: 2041
Content-Type: application/javascript
Expires: Tue, 31 Jan 2023 15:11:24 GMT
Last-Modified: Thu, 17 Sep 2020 07:44:45 GMT
Date: Tue, 31 Jan 2023 09:11:24 GMT
antenna.ayads.co/?a=296764&at=skinz&device=d&et=3802&ga=0&gc=1&gcp=1&gm=1&gs=0&isssp=1&puid=p4588114060552076747&rt=1045&sqid=5&src=wf&sspname=sspv3-appnexus&sspplid=26496929&sspr=2&suid=s9497264698958098680&t=1675156297989&tfz=2602&tse=1675156300591&ver=20230127155355&z=36829&e=sspko
34.243.240.54204 No Content 0 B URL HTTP/2 antenna.ayads.co/?a=296764&at=skinz&device=d&et=3802&ga=0&gc=1&gcp=1&gm=1&gs=0&isssp=1&puid=p4588114060552076747&rt=1045&sqid=5&src=wf&sspname=sspv3-appnexus&sspplid=26496929&sspr=2&suid=s9497264698958098680&t=1675156297989&tfz=2602&tse=1675156300591&ver=20230127155355&z=36829&e=sspko
IP 34.243.240.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?a=296764&at=skinz&device=d&et=3802&ga=0&gc=1&gcp=1&gm=1&gs=0&isssp=1&puid=p4588114060552076747&rt=1045&sqid=5&src=wf&sspname=sspv3-appnexus&sspplid=26496929&sspr=2&suid=s9497264698958098680&t=1675156297989&tfz=2602&tse=1675156300591&ver=20230127155355&z=36829&e=sspko HTTP/1.1
Host: antenna.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 31 Jan 2023 09:11:24 GMT
X-Firefox-Spdy: h2
cdn.unblockia.com/h.js
54.230.111.117200 OK 0 B IP 54.230.111.117:0
GET /h.js HTTP/1.1
Host: cdn.unblockia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 Jan 2023 12:36:49 GMT
last-modified: Mon, 30 Jan 2023 12:36:41 GMT
etag: W/"98fc3bbd88283d1c72f41b1bacfbd6dc"
x-amz-version-id: dpuRlA4rBfi4UXIX.2bc8GkhcTke_.nu
server: AmazonS3
content-encoding: br
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TTdWyxqvJUZnsc6PzAroAMSjusMr63pyI1pP6eEZhcNfFgUEcIOlgg==
age: 74069
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
adx.adform.net/adx/?CC=1&mid=554021&cturl=https://optimized-by.4wnetwork.com/show/MDswOzIxNjg2NzsxMDQ4NzU7NzQxNDE7MTgzNDk1OzA7MTY3NTE1NjI4MDAwMDs5MS45MC40Mi4xNTQ7ZGYxNmMwODFjMjUzMDY2NTRhMGVmYjg5Yjg3NjFhMDg7MTQ1NDM1O0NPUFlfQ09QWV93YWxsO1dBTExQQVBFUjtSRURJUkVDVDs7OzsxO2FzeW5jO3N0YW5kYXJkX3lpZWxkOzA7MDswOzE7/?&iturl=https%253A%252F%252Foptimized-by.4wnetwork.com%252Fimpression_cb.php%253Fcode%253D216867%253B104875%253B74141%253B0%253B%2526campaignId%253D40687%2526advId%253D183495%2526deliveryMethod%253D0%2526yield_method%253Dstandard_yield%2526userId%253D63d8db38bfaf1%2526geolocation%253D161%2526nug%253D%2526npa%253D%2526nocookie%253D1&cachebuster=1675156280837&rnd=%3Crandom_number%3E
37.157.2.234200 OK 0 B URL HTTP/2 adx.adform.net/adx/?CC=1&mid=554021&cturl=https://optimized-by.4wnetwork.com/show/MDswOzIxNjg2NzsxMDQ4NzU7NzQxNDE7MTgzNDk1OzA7MTY3NTE1NjI4MDAwMDs5MS45MC40Mi4xNTQ7ZGYxNmMwODFjMjUzMDY2NTRhMGVmYjg5Yjg3NjFhMDg7MTQ1NDM1O0NPUFlfQ09QWV93YWxsO1dBTExQQVBFUjtSRURJUkVDVDs7OzsxO2FzeW5jO3N0YW5kYXJkX3lpZWxkOzA7MDswOzE7/?&iturl=https%253A%252F%252Foptimized-by.4wnetwork.com%252Fimpression_cb.php%253Fcode%253D216867%253B104875%253B74141%253B0%253B%2526campaignId%253D40687%2526advId%253D183495%2526deliveryMethod%253D0%2526yield_method%253Dstandard_yield%2526userId%253D63d8db38bfaf1%2526geolocation%253D161%2526nug%253D%2526npa%253D%2526nocookie%253D1&cachebuster=1675156280837&rnd=%3Crandom_number%3E
IP 37.157.2.234:0
GET /adx/?CC=1&mid=554021&cturl=https://optimized-by.4wnetwork.com/show/MDswOzIxNjg2NzsxMDQ4NzU7NzQxNDE7MTgzNDk1OzA7MTY3NTE1NjI4MDAwMDs5MS45MC40Mi4xNTQ7ZGYxNmMwODFjMjUzMDY2NTRhMGVmYjg5Yjg3NjFhMDg7MTQ1NDM1O0NPUFlfQ09QWV93YWxsO1dBTExQQVBFUjtSRURJUkVDVDs7OzsxO2FzeW5jO3N0YW5kYXJkX3lpZWxkOzA7MDswOzE7/?&iturl=https%253A%252F%252Foptimized-by.4wnetwork.com%252Fimpression_cb.php%253Fcode%253D216867%253B104875%253B74141%253B0%253B%2526campaignId%253D40687%2526advId%253D183495%2526deliveryMethod%253D0%2526yield_method%253Dstandard_yield%2526userId%253D63d8db38bfaf1%2526geolocation%253D161%2526nug%253D%2526npa%253D%2526nocookie%253D1&cachebuster=1675156280837&rnd=%3Crandom_number%3E HTTP/1.1
Host: adx.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://share.offerteshopping.it/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 09:11:20 GMT
content-type: text/javascript
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2
cmp.quantcast.com/choice/qsBtbGkzaJ_M0/share.offerteshopping.it/choice.js?tag_version=V2
54.230.111.39200 OK 0 B URL HTTP/2 cmp.quantcast.com/choice/qsBtbGkzaJ_M0/share.offerteshopping.it/choice.js?tag_version=V2
IP 54.230.111.39:0
GET /choice/qsBtbGkzaJ_M0/share.offerteshopping.it/choice.js?tag_version=V2 HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 08:17:51 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: br
cache-control: max-age=3600
date: Tue, 31 Jan 2023 09:11:17 GMT
etag: W/"382ef13ad2804101470711f588ed3ff7"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HMosHTJ_5p4E4WPZToe9VuvgJsRQhSWgQ6n7-XZ2Sf-5ENWtjWI33Q==
age: 3
X-Firefox-Spdy: h2
husfly.com/r/p.html?f=lwqgw&e=1748322777535
54.230.111.36200 OK 0 B URL HTTP/2 husfly.com/r/p.html?f=lwqgw&e=1748322777535
IP 54.230.111.36:0
GET /r/p.html?f=lwqgw&e=1748322777535 HTTP/1.1
Host: husfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Tue, 25 Oct 2022 13:58:03 GMT
x-amz-version-id: 6P847P_3pwRq3kg1dbhEI8vZo9rD1MSu
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 09:11:21 GMT
etag: W/"1d799671c4d6a9304651b1b9d6a783fb"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 49Vt6biHG48LXlDScBDmSwUxVwJGEl4INiBydGrMHLLJP8XyhJrgqA==
age: 8385
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
husfly.com/r/p.html?f=nwuekkzrk&e=1748322777535
54.230.111.36200 OK 0 B URL HTTP/2 husfly.com/r/p.html?f=nwuekkzrk&e=1748322777535
IP 54.230.111.36:0
GET /r/p.html?f=nwuekkzrk&e=1748322777535 HTTP/1.1
Host: husfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Tue, 25 Oct 2022 13:58:03 GMT
x-amz-version-id: 6P847P_3pwRq3kg1dbhEI8vZo9rD1MSu
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 09:11:21 GMT
etag: W/"1d799671c4d6a9304651b1b9d6a783fb"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2tl4A89dbLVhIG4o4Hefy5Uz4vt03xCAvAkJh5IPDqPow0kfjPkQHg==
age: 8385
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
config.seedtag.com/loader.js?v=0.6970973538386154
104.18.133.145200 OK 0 B URL HTTP/2 config.seedtag.com/loader.js?v=0.6970973538386154
IP 104.18.133.145:0
GET /loader.js?v=0.6970973538386154 HTTP/1.1
Host: config.seedtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-type: application/javascript
cf-ray: 792151ad1c01b4f1-OSL
access-control-allow-origin: *
age: 6686
cache-control: public, max-age=1200
etag: W/"9ef84985034d0e07b0724444dd1b29a6"
expires: Tue, 31 Jan 2023 09:31:17 GMT
last-modified: Mon, 30 Jan 2023 19:19:03 GMT
vary: X-Goog-Allowed-Resources, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-expose-headers: *
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
jsc.mgid.com/e/n/entiredigital.com.155604.js?t=1230319
104.19.135.78200 OK 0 B URL HTTP/2 jsc.mgid.com/e/n/entiredigital.com.155604.js?t=1230319
IP 104.19.135.78:0
GET /e/n/entiredigital.com.155604.js?t=1230319 HTTP/1.1
Host: jsc.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=2663
etag: W/"7f18c4bd031a31195be56c9fc5e9aa89"
last-modified: Thu, 29 Dec 2022 12:52:21 GMT
x-amz-id-2: Q9aazc6aee0YiSgWH0TLxmyTSdgDhgNaHW+25CG17m5ELbu+ClwblGKlAritNxh+qjL8whlgB9A=
x-amz-request-id: 1AQ9NM0ZW84G2ARK
x-amz-version-id: xggwinYyWS2e7_fS2xo5yPcrgmmhL1wi
cf-cache-status: HIT
age: 5173
expires: Tue, 31 Jan 2023 12:11:17 GMT
cache-control: public, max-age=10800
set-cookie: __cf_bm=VZ5SqDvMYfdOAKgng6cQpU4APknoLjyBBXppU5aH8Mw-1675156277-0-Afal0RJ++rgppHijTy/k6GBeBZ170em2EIIklhLA2EVTuZf71ltETTawqlTN/qBgsh52us5fQH5qnLjw1K1+VXs=; path=/; expires=Tue, 31-Jan-23 09:41:17 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151af7a0bb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
jsc.epeex.io/o/f/offerteshopping.it.1234370.js
104.17.156.114200 OK 0 B URL HTTP/2 jsc.epeex.io/o/f/offerteshopping.it.1234370.js
IP 104.17.156.114:0
GET /o/f/offerteshopping.it.1234370.js HTTP/1.1
Host: jsc.epeex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-type: text/javascript
x-amz-id-2: XIVa7wSpJQX8n7BtbjGwaet3Dp3MwrQKk3yguytMFxGSARy91eHb61mTjwxOg3xqwe/oxFDqVp4=
x-amz-request-id: DZT0CQX89ZGM9AJF
last-modified: Wed, 18 Jan 2023 10:17:47 GMT
etag: W/"6d45493f862590965822dd803c395952"
x-amz-version-id: .jqEVqBTfnTi2lxfcuCo4pCXUJEaWTpM
cf-cache-status: MISS
expires: Tue, 31 Jan 2023 10:11:17 GMT
cache-control: public, max-age=3600
vary: Accept-Encoding
server: cloudflare
cf-ray: 792151af2c78b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnb.4strokemedia.com/dexTag3.min.js
54.230.111.125200 OK 0 B URL HTTP/2 cdnb.4strokemedia.com/dexTag3.min.js
IP 54.230.111.125:0
GET /dexTag3.min.js HTTP/1.1
Host: cdnb.4strokemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
date: Sat, 28 Jan 2023 03:43:55 GMT
last-modified: Mon, 01 Aug 2022 09:33:06 GMT
etag: W/"98345c12980ab319bd8647e0f0ef8cdf"
cache-control: max-age=604800
x-amz-meta-cb-modifiedtime: Mon, 01 Aug 2022 09:30:23 GMT
x-amz-version-id: cw20C8s9QrJy03q3FqFmj_wXKPERBA8s
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2f6gcG0OuAiIw_JhTf_Bt_83HTuP7xnbByukS-3l5f0V4m5zdz1xCQ==
age: 278849
X-Firefox-Spdy: h2
sb.scorecardresearch.com/beacon.js
54.230.111.73200 OK 0 B URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 54.230.111.73:0
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 31 Jan 2023 01:20:11 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fNB5nBCVKvJu9OfLF_3tPH5ifPvAqcInj4CFdtgkwm5DZnTXAiidoQ==
age: 28268
X-Firefox-Spdy: h2
static.4wnetwork.com/asset/js/allscriptIMA.min.js?v=3
54.230.111.52200 OK 0 B URL HTTP/2 static.4wnetwork.com/asset/js/allscriptIMA.min.js?v=3
IP 54.230.111.52:0
GET /asset/js/allscriptIMA.min.js?v=3 HTTP/1.1
Host: static.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Cookie: profiler=eyJjYW4iOnRydWV9; ad_simply_viewer=63d8db35c3b550.37864978; know=63d8db35c3b550.37864978
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 31 Jan 2023 01:54:53 GMT
server: nginx
last-modified: Mon, 30 Jan 2023 11:26:04 GMT
etag: W/"63d7a94c-41ad2"
expires: Tue, 07 Feb 2023 01:54:53 GMT
cache-control: max-age=604800, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XY2PPDSEjQJ4xouaa0Q04zju6lyi0m2rQLEB0IK_cUd9Vz9bylrZPA==
age: 26186
X-Firefox-Spdy: h2
husfly.com/r/p.html?f=oheajwc&e=1748322777535
54.230.111.36200 OK 0 B URL HTTP/2 husfly.com/r/p.html?f=oheajwc&e=1748322777535
IP 54.230.111.36:0
GET /r/p.html?f=oheajwc&e=1748322777535 HTTP/1.1
Host: husfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Tue, 25 Oct 2022 13:58:03 GMT
x-amz-version-id: 6P847P_3pwRq3kg1dbhEI8vZo9rD1MSu
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 09:11:21 GMT
etag: W/"1d799671c4d6a9304651b1b9d6a783fb"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2sVHOPap7LZAFq5TlxoUXB8F2497-igBnkl-bLgo09J8PZFqSjgE-w==
age: 8385
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
test.cmp.quantcast.com/GVL-v2/cmp-list.json
54.230.111.108200 OK 0 B URL HTTP/2 test.cmp.quantcast.com/GVL-v2/cmp-list.json
IP 54.230.111.108:0
GET /GVL-v2/cmp-list.json HTTP/1.1
Host: test.cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 86400
cache-control: max-age=172800
date: Tue, 31 Jan 2023 03:00:37 GMT
last-modified: Sun, 29 Jan 2023 19:52:29 GMT
etag: W/"104d73e097947079d97b7ce656d124ce"
x-amz-server-side-encryption: AES256
x-amz-version-id: 4AIQAJ98xxQb5Z9H_UdCs9PW1_AVpdm2
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xIvsCmeckWlwH7Wb8pegMV43JwUV_4X71xJPURP4-ulQdfRxK64ouw==
age: 22245
X-Firefox-Spdy: h2
optimized-by.4wnetwork.com/simply_loader.js?4wvideo=true
54.230.111.52200 OK 0 B URL HTTP/2 optimized-by.4wnetwork.com/simply_loader.js?4wvideo=true
IP 54.230.111.52:0
GET /simply_loader.js?4wvideo=true HTTP/1.1
Host: optimized-by.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 31 Jan 2023 01:55:29 GMT
server: nginx
x-powered-by: PHP/7.3.33
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aMFiBn4dg3AhCz16YmqjWIADp84SXtIGSVq2dqnA-47JxWi6vsjh5w==
age: 26148
X-Firefox-Spdy: h2
ocsp.entrust.net/
23.60.19.38200 OK 0 B IP 23.60.19.38:0
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "A47A6A9B26293EDCF81C96EC7B20321829537DF05F8F84605D97943650F1B90B"
Last-Modified: Tue, 31 Jan 2023 02:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3554
Expires: Tue, 31 Jan 2023 10:10:31 GMT
Date: Tue, 31 Jan 2023 09:11:17 GMT
Connection: keep-alive
c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
54.230.111.210200 OK 0 B URL HTTP/2 c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
IP 54.230.111.210:0
GET /bao-csm/aps-comm/aps_csm.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Fri, 23 Dec 2022 01:05:48 GMT
x-amz-version-id: 1R3b4YI9dI20q9Y7Gq1DHxVUnq3Fp2gn
server: AmazonS3
content-encoding: gzip
date: Mon, 30 Jan 2023 19:45:57 GMT
cache-control: public, max-age=86400
etag: W/"a4d296427fc806b21335359e398c025c"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5i6z2lnQLH0eK-dCP9KbDW6ZwA8oFXGq6FOKczYcjbvEiL4gjoh3MQ==
age: 48323
X-Firefox-Spdy: h2
adx.4strokemedia.com/www/delivery/lg.php?bannerid=13999&campaignid=256&zoneid=8712&loc=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&cb=58f21eb94c
3.125.16.173200 OK 0 B URL HTTP/2 adx.4strokemedia.com/www/delivery/lg.php?bannerid=13999&campaignid=256&zoneid=8712&loc=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&cb=58f21eb94c
IP 3.125.16.173:0
GET /www/delivery/lg.php?bannerid=13999&campaignid=256&zoneid=8712&loc=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&cb=58f21eb94c HTTP/1.1
Host: adx.4strokemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Cookie: OAGEO=2%7CNO%7CEU%7C%7C%7C%7C59.9452%7C10.7559%7C200%7CEurope%2FOslo%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C; OAID=01000111010001000101000001010010
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:24 GMT
content-type: image/gif
server: nginx/1.22.0
x-powered-by: PHP/8.0.20
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
access-control-allow-origin: *
p3p: policyref="http://4strokemedia.com/privacy.html", CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=01000111010001000101000001010010; expires=Wed, 31-Jan-2024 09:11:24 GMT; Max-Age=31536000; path=/; secure; SameSite=none
X-Firefox-Spdy: h2
cloudflare.com/cdn-cgi/trace
104.16.133.229200 OK 0 B URL HTTP/2 cloudflare.com/cdn-cgi/trace
IP 104.16.133.229:0
GET /cdn-cgi/trace HTTP/1.1
Host: cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://share.offerteshopping.it
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 792151ae7d6d0b39-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
adx.4strokemedia.com/www/delivery/lg.php?bannerid=14743&campaignid=256&zoneid=8852&loc=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&cb=3f14400947
3.125.16.173200 OK 0 B URL HTTP/2 adx.4strokemedia.com/www/delivery/lg.php?bannerid=14743&campaignid=256&zoneid=8852&loc=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&cb=3f14400947
IP 3.125.16.173:0
GET /www/delivery/lg.php?bannerid=14743&campaignid=256&zoneid=8852&loc=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&cb=3f14400947 HTTP/1.1
Host: adx.4strokemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Cookie: OAGEO=2%7CNO%7CEU%7C%7C%7C%7C59.9452%7C10.7559%7C200%7CEurope%2FOslo%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C; OAID=01000111010001000101000001010010
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:24 GMT
content-type: image/gif
server: nginx/1.22.0
x-powered-by: PHP/8.0.20
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
access-control-allow-origin: *
p3p: policyref="http://4strokemedia.com/privacy.html", CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=01000111010001000101000001010010; expires=Wed, 31-Jan-2024 09:11:24 GMT; Max-Age=31536000; path=/; secure; SameSite=none
X-Firefox-Spdy: h2
share.offerteshopping.it/dove-comprare-online-a-poco-prezzo/
188.114.97.1200 OK 0 B URL HTTP/2 share.offerteshopping.it/dove-comprare-online-a-poco-prezzo/
IP 188.114.97.1:0
GET /dove-comprare-online-a-poco-prezzo/ HTTP/1.1
Host: share.offerteshopping.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:16 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.14
x-ua-compatible: IE=edge
link: <https://www.offerteshopping.it/wp-json/>; rel="https://api.w.org/"
is_mobile:
expires: Tue, 31 Jan 2023 08:44:41 GMT
cache-control: public, max-age=3600
v-maxage: 86400.000
v-uncacheable: false
v-backend: web03
x-varnish: 555549555 556466182
age: 2194
via: 1.1 varnish (Varnish/6.5)
v-hit: 27
v-director: magazine
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=55zceVC2tfjPq7qw7jQpXi4sE7i3nZdYqy2Xhc29KrAfDbFPBHUyM%2BaaEmlPpOaqRzt8taU3W9L2TiQYN8skOXwCmvifMlFaM7MEBdJ9BFAvPqHa5SK3rBDmw4urjcAYeIzZ%2BHg5lziW8c0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792151a6ae8fb517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
adx.4strokemedia.com/www/delivery/asyncjs.php
3.125.16.173200 OK 0 B URL HTTP/2 adx.4strokemedia.com/www/delivery/asyncjs.php
IP 3.125.16.173:0
GET /www/delivery/asyncjs.php HTTP/1.1
Host: adx.4strokemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-type: text/javascript;charset=UTF-8
server: nginx/1.22.0
x-powered-by: PHP/8.0.20
etag: 6609ba8ff88606794e22ff360400bcea
expire: Tue, 31 Jan 2023 10:11:17 GMT
cache-control: private, max-age=3600
p3p: policyref="http://4strokemedia.com/privacy.html", CP="CUR ADM OUR NOR STA NID"
set-cookie: OAGEO=2%7CNO%7CEU%7C%7C%7C%7C59.9452%7C10.7559%7C200%7CEurope%2FOslo%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C; path=/; secure; SameSite=none
X-Firefox-Spdy: h2
husfly.com/r/p.html?f=lkvxxnn&e=1748322777535
54.230.111.36200 OK 0 B URL HTTP/2 husfly.com/r/p.html?f=lkvxxnn&e=1748322777535
IP 54.230.111.36:0
GET /r/p.html?f=lkvxxnn&e=1748322777535 HTTP/1.1
Host: husfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Tue, 25 Oct 2022 13:58:03 GMT
x-amz-version-id: 6P847P_3pwRq3kg1dbhEI8vZo9rD1MSu
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 06:51:37 GMT
etag: W/"1d799671c4d6a9304651b1b9d6a783fb"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mIUAIeZJquf3iBfkH6_h9eZEYCmQSiOahPNN0WM24nE9quyK9BHDcA==
age: 8385
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
husfly.com/r/p.html?f=qkilohzdm&e=1748322777535
54.230.111.36200 OK 0 B URL HTTP/2 husfly.com/r/p.html?f=qkilohzdm&e=1748322777535
IP 54.230.111.36:0
GET /r/p.html?f=qkilohzdm&e=1748322777535 HTTP/1.1
Host: husfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Tue, 25 Oct 2022 13:58:03 GMT
x-amz-version-id: 6P847P_3pwRq3kg1dbhEI8vZo9rD1MSu
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 09:11:21 GMT
etag: W/"1d799671c4d6a9304651b1b9d6a783fb"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Gwn2zdCyig9lXqGCUcrBRbPMdgMM-dMaoCRjT_yRMQQrY35fLkA4xQ==
age: 8385
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
adx.4strokemedia.com/www/delivery/lg.php?bannerid=0&campaignid=0&zoneid=10176&loc=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&cb=d333ee0e2a
3.125.16.173200 OK 0 B URL HTTP/2 adx.4strokemedia.com/www/delivery/lg.php?bannerid=0&campaignid=0&zoneid=10176&loc=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&cb=d333ee0e2a
IP 3.125.16.173:0
GET /www/delivery/lg.php?bannerid=0&campaignid=0&zoneid=10176&loc=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&cb=d333ee0e2a HTTP/1.1
Host: adx.4strokemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Cookie: OAGEO=2%7CNO%7CEU%7C%7C%7C%7C59.9452%7C10.7559%7C200%7CEurope%2FOslo%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C; OAID=01000111010001000101000001010010
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:24 GMT
content-type: image/gif
server: nginx/1.22.0
x-powered-by: PHP/8.0.20
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
access-control-allow-origin: *
p3p: policyref="http://4strokemedia.com/privacy.html", CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=01000111010001000101000001010010; expires=Wed, 31-Jan-2024 09:11:24 GMT; Max-Age=31536000; path=/; secure; SameSite=none
X-Firefox-Spdy: h2
husfly.com/r/p.html?f=thmnqyd&e=1748322777535
54.230.111.36200 OK 0 B URL HTTP/2 husfly.com/r/p.html?f=thmnqyd&e=1748322777535
IP 54.230.111.36:0
GET /r/p.html?f=thmnqyd&e=1748322777535 HTTP/1.1
Host: husfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Tue, 25 Oct 2022 13:58:03 GMT
x-amz-version-id: 6P847P_3pwRq3kg1dbhEI8vZo9rD1MSu
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 09:11:21 GMT
etag: W/"1d799671c4d6a9304651b1b9d6a783fb"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8W0_rkb1nMCgF8VG5nqGga9pmGkUQzLv56qGz-m0KOBoxjDdDub3FA==
age: 8385
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
husfly.com/r/p.html?f=bfqbfih&e=1748322777535
54.230.111.36200 OK 0 B URL HTTP/2 husfly.com/r/p.html?f=bfqbfih&e=1748322777535
IP 54.230.111.36:0
GET /r/p.html?f=bfqbfih&e=1748322777535 HTTP/1.1
Host: husfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Tue, 25 Oct 2022 13:58:03 GMT
x-amz-version-id: 6P847P_3pwRq3kg1dbhEI8vZo9rD1MSu
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 09:11:21 GMT
etag: W/"1d799671c4d6a9304651b1b9d6a783fb"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1_HfZqa34UNBANFXEJcKtTqJuC-C9eTzkXWyUFPpfb7q5Pv9ywayjw==
age: 8385
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
cdn.biddercore.io/tagman/WAIT/sites/offerteshopping.it/index.js
185.59.220.198200 OK 0 B URL HTTP/2 cdn.biddercore.io/tagman/WAIT/sites/offerteshopping.it/index.js
IP 185.59.220.198:0
ASN #60068 Datacamp Limited
GET /tagman/WAIT/sites/offerteshopping.it/index.js HTTP/1.1
Host: cdn.biddercore.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-type: application/javascript
server: BunnyCDN-DE1-723
cdn-pullzone: 60856
cdn-uid: 5e6a9ba4-da10-4b5e-9f52-4279c1fb9c70
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=30
etag: W/"63d02f3a-7b5b"
last-modified: Tue, 24 Jan 2023 19:19:22 GMT
cdn-storageserver: DE-51
cdn-fileserver: 310
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/31/2023 09:11:17
cdn-edgestorageid: 756
cdn-status: 200
cdn-requestid: 0058fa3af4f4c9e24e3daef56b328e50
cdn-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2
s2.shinystat.com/cgi-bin/csa.cgi?USER=presscommtech&NODW=yes&REFER=&COLOR=24&SIZE=1280&RES=1280X1024&CK=Y&HR=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&JV=N&VUT=-1&NUT=y&SSID=329063136769&TUP=0&PTUP=&FV=1&UV=1&US=1&DUP=0&PCNL=&PAG=https%3A//share.offerteshopping.it/dove-comprare-online-a-poco-prezzo/&JS=Y&VJS=4025&RM=119249798
185.206.85.85200 OK 0 B URL HTTP/2 s2.shinystat.com/cgi-bin/csa.cgi?USER=presscommtech&NODW=yes&REFER=&COLOR=24&SIZE=1280&RES=1280X1024&CK=Y&HR=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&JV=N&VUT=-1&NUT=y&SSID=329063136769&TUP=0&PTUP=&FV=1&UV=1&US=1&DUP=0&PCNL=&PAG=https%3A//share.offerteshopping.it/dove-comprare-online-a-poco-prezzo/&JS=Y&VJS=4025&RM=119249798
IP 185.206.85.85:0
GET /cgi-bin/csa.cgi?USER=presscommtech&NODW=yes&REFER=&COLOR=24&SIZE=1280&RES=1280X1024&CK=Y&HR=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&JV=N&VUT=-1&NUT=y&SSID=329063136769&TUP=0&PTUP=&FV=1&UV=1&US=1&DUP=0&PCNL=&PAG=https%3A//share.offerteshopping.it/dove-comprare-online-a-poco-prezzo/&JS=Y&VJS=4025&RM=119249798 HTTP/1.1
Host: s2.shinystat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:20 GMT
server: Apache
expires: Wed, 29 Mar 2000 10:00:00 GMT
cache-control: no-cache
pragma: no-cache
p3p: CP="NOI NID ADM OUR STP"
content-type: image/gif
X-Firefox-Spdy: h2
c.amazon-adsystem.com/aax2/apstag.js
54.230.111.210200 OK 0 B URL HTTP/2 c.amazon-adsystem.com/aax2/apstag.js
IP 54.230.111.210:0
GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 31 Jan 2023 08:26:46 GMT
last-modified: Wed, 25 Jan 2023 21:28:25 GMT
etag: W/"8a6d0f2d51de2b80e524e04684f71215"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
server: AmazonS3
content-encoding: gzip
via: 1.1 6fd3ab2be93b19c970fb371964d46d94.cloudfront.net (CloudFront), 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-P1
x-amz-cf-id: gLtaZI0WKiYi9EHhAxS8LUUvKQ3LFCt9pcO1qOaTpYL73wrayEeE8w==
age: 2672
X-Firefox-Spdy: h2
husfly.com/r/p.html?f=ttmzehntrgm&e=1748322777535
54.230.111.36200 OK 0 B URL HTTP/2 husfly.com/r/p.html?f=ttmzehntrgm&e=1748322777535
IP 54.230.111.36:0
GET /r/p.html?f=ttmzehntrgm&e=1748322777535 HTTP/1.1
Host: husfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Tue, 25 Oct 2022 13:58:03 GMT
x-amz-version-id: 6P847P_3pwRq3kg1dbhEI8vZo9rD1MSu
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 09:11:21 GMT
etag: W/"1d799671c4d6a9304651b1b9d6a783fb"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XAzN2EzPR72eUL2XKaxVnzWtN8wXTAeOR-aJRe6l5mYwuThCQr67hA==
age: 8385
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
husfly.com/r/p.html?f=nabircv&e=1748322777535
54.230.111.36200 OK 0 B URL HTTP/2 husfly.com/r/p.html?f=nabircv&e=1748322777535
IP 54.230.111.36:0
GET /r/p.html?f=nabircv&e=1748322777535 HTTP/1.1
Host: husfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Tue, 25 Oct 2022 13:58:03 GMT
x-amz-version-id: 6P847P_3pwRq3kg1dbhEI8vZo9rD1MSu
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 09:11:21 GMT
etag: W/"1d799671c4d6a9304651b1b9d6a783fb"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: upavRM0g2JknBIb_QhbwbdfWgkXxfLWWKgx90YgVnHbJiINEgx_p6A==
age: 8385
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
static.4wnetwork.com/js/sdk.min.js
54.230.111.52200 OK 0 B URL HTTP/2 static.4wnetwork.com/js/sdk.min.js
IP 54.230.111.52:0
GET /js/sdk.min.js HTTP/1.1
Host: static.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 Jan 2023 11:33:03 GMT
server: nginx
last-modified: Mon, 30 Jan 2023 11:26:04 GMT
etag: W/"63d7a94c-1641f"
expires: Tue, 31 Jan 2023 11:33:03 GMT
cache-control: max-age=86400, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iv20KCp3JG7EINeoobCXsts-3xlyd-DdWUnDPSP1Uj8iezGIMWOPyg==
age: 77894
X-Firefox-Spdy: h2
sac.ayads.co/sublime/30426
104.20.10.37200 OK 0 B URL HTTP/2 sac.ayads.co/sublime/30426
IP 104.20.10.37:0
GET /sublime/30426 HTTP/1.1
Host: sac.ayads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: public, max-age=3600
pragma: public
expires: Tue, 31 Jan 2023 10:11:17 GMT
content-encoding: gzip
last-modified: Tue, 31 Jan 2023 09:11:17 GMT
cf-cache-status: MISS
server: cloudflare
cf-ray: 792151aa7b7db4f9-OSL
X-Firefox-Spdy: h2
optimized-by.4wnetwork.com/js/_loaderjs.js
54.230.111.52200 OK 0 B URL HTTP/2 optimized-by.4wnetwork.com/js/_loaderjs.js
IP 54.230.111.52:0
GET /js/_loaderjs.js HTTP/1.1
Host: optimized-by.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 31 Jan 2023 05:03:32 GMT
server: nginx
last-modified: Mon, 30 Jan 2023 11:26:04 GMT
etag: W/"63d7a94c-627"
expires: Wed, 01 Feb 2023 05:03:32 GMT
cache-control: max-age=86400, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JqsKcl2_SCWZKkDxz5K2JTo_WhRdenoGJX5IyHyDdFtJHbTiReZ44w==
age: 14865
X-Firefox-Spdy: h2
pandg.tapad.com/tag?gdpr=0&referrer_url=&page_url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&owner=P%26G&bp_id=4witaly&ch=&initiator=js
34.102.243.38200 OK 0 B URL HTTP/2 pandg.tapad.com/tag?gdpr=0&referrer_url=&page_url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&owner=P%26G&bp_id=4witaly&ch=&initiator=js
IP 34.102.243.38:0
GET /tag?gdpr=0&referrer_url=&page_url=https%3A%2F%2Fshare.offerteshopping.it%2Fdove-comprare-online-a-poco-prezzo%2F&owner=P%26G&bp_id=4witaly&ch=&initiator=js HTTP/1.1
Host: pandg.tapad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:19 GMT
strict-transport-security: max-age=31536000
cache-control: no-store
content-security-policy: default-src 'none';img-src https://*.tapad.com https://match.adsrvr.org
access-control-max-age: 300
access-control-allow-origin: *
content-type: text/html;charset=utf-8
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dmp.adform.net/serving/cookie/match?CC=1&party=1056&rt=img&rnd=1151381926993
37.157.4.41200 OK 0 B URL HTTP/2 dmp.adform.net/serving/cookie/match?CC=1&party=1056&rt=img&rnd=1151381926993
IP 37.157.4.41:0
GET /serving/cookie/match?CC=1&party=1056&rt=img&rnd=1151381926993 HTTP/1.1
Host: dmp.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://share.offerteshopping.it/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 09:11:20 GMT
content-type: image/gif
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
husfly.com/r/p.html?f=tjdeugtyo&e=1748322777535
54.230.111.36200 OK 0 B URL HTTP/2 husfly.com/r/p.html?f=tjdeugtyo&e=1748322777535
IP 54.230.111.36:0
GET /r/p.html?f=tjdeugtyo&e=1748322777535 HTTP/1.1
Host: husfly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
last-modified: Tue, 25 Oct 2022 13:58:03 GMT
x-amz-version-id: 6P847P_3pwRq3kg1dbhEI8vZo9rD1MSu
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 09:11:21 GMT
etag: W/"1d799671c4d6a9304651b1b9d6a783fb"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iK8Vxe_dDL-Wp2ed4d2LsJBWqYadribERt3ySbIJZPvhBCAon1dpRA==
age: 8385
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
optimized-by.4wnetwork.com/js/sdk.min.js
54.230.111.52200 OK 0 B URL HTTP/2 optimized-by.4wnetwork.com/js/sdk.min.js
IP 54.230.111.52:0
GET /js/sdk.min.js HTTP/1.1
Host: optimized-by.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 Jan 2023 11:33:03 GMT
server: nginx
last-modified: Mon, 30 Jan 2023 11:26:04 GMT
etag: W/"63d7a94c-1641f"
expires: Tue, 31 Jan 2023 11:33:03 GMT
cache-control: max-age=86400, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pvYsc-QkUjZVIWXeCQoBIIA5fljkSYVb9JYunKJYlPI174mCN3jSeg==
age: 77894
X-Firefox-Spdy: h2
smooto.contents.media/embed/7209a9872
104.26.9.164200 OK 0 B URL HTTP/2 smooto.contents.media/embed/7209a9872
IP 104.26.9.164:0
GET /embed/7209a9872 HTTP/1.1
Host: smooto.contents.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-type: text/html; charset=utf-8
x-powered-by: PHP/5.6.40
set-cookie: PHPSESSID=rn1djvfmp87hp9i6vp8ipjur83; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, PUT, DELETE, OPTIONS
access-control-max-age: 600
timing-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FKiC14k%2F8bZ5oR4qQh2obkzm9l6O%2FARqOYP7fHf2v9ckvcjpfJiSAx3q%2BecLYz1opKsS7J5ahsFjlNI0yoUyZUn7hymrLwRWFNw59oGp9mRNY86KU08gijmboYT7yYBHiTraMDmEcg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792151ae49611c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.biddercore.io/tagman/WAIT/prebid.js
185.59.220.198200 OK 0 B URL HTTP/2 cdn.biddercore.io/tagman/WAIT/prebid.js
IP 185.59.220.198:0
ASN #60068 Datacamp Limited
GET /tagman/WAIT/prebid.js HTTP/1.1
Host: cdn.biddercore.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 09:11:17 GMT
content-type: application/javascript
server: BunnyCDN-DE1-723
cdn-pullzone: 60856
cdn-uid: 5e6a9ba4-da10-4b5e-9f52-4279c1fb9c70
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=30
etag: W/"63c6ddfa-60a5a"
last-modified: Tue, 17 Jan 2023 17:42:18 GMT
cdn-storageserver: DE-164
cdn-fileserver: 40
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/27/2023 15:16:17
cdn-edgestorageid: 1081
cdn-status: 200
cdn-requestid: 37506ec4e4aacaa8cb1d37f78d8bff2b
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.4wnetwork.com/js/neustar.js
54.230.111.52200 OK 0 B URL HTTP/2 static.4wnetwork.com/js/neustar.js
IP 54.230.111.52:0
GET /js/neustar.js HTTP/1.1
Host: static.4wnetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 31 Jan 2023 04:57:16 GMT
server: nginx
last-modified: Mon, 30 Jan 2023 11:26:04 GMT
etag: W/"63d7a94c-29cf"
expires: Wed, 01 Feb 2023 04:57:16 GMT
cache-control: max-age=86400, public
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ekUSJDlUeWNNOJH1mNPeAU4AXmVLGqtElpinfGWyP4MNBrvDOEBgxQ==
age: 15241
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/cmp2.js?referer=share.offerteshopping.it
54.230.111.39200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/cmp2.js?referer=share.offerteshopping.it
IP 54.230.111.39:0
GET /tcfv2/cmp2.js?referer=share.offerteshopping.it HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
last-modified: Thu, 10 Nov 2022 18:23:42 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-qc-ineu: True
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
cache-control: max-age=3600
date: Tue, 31 Jan 2023 08:51:36 GMT
etag: W/"37fdfbac0c6ef64496f7d86258c934a8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bUtwxkNJPT2iaWqm4ddGKwPuzYCwqlLvsIERyskFIL7wuQxK4Jj7kA==
age: 1185
X-Firefox-Spdy: h2
www.clarity.ms/eus/s/0.7.1/clarity.js
13.107.238.53200 OK 0 B URL HTTP/2 www.clarity.ms/eus/s/0.7.1/clarity.js
IP 13.107.238.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /eus/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://share.offerteshopping.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d933d16af8439e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
x-azure-ref-originshield: 0b8rXYwAAAACXKaxCtf+qTpdydoK8z4WCRlJBMjMxMDUwNDE4MDE3ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
x-azure-ref: 0ONvYYwAAAAD/5BXxnB14S6+KOUelJqrjQ1BIMzBFREdFMDQxMAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Tue, 31 Jan 2023 09:11:20 GMT
X-Firefox-Spdy: h2