kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
54.211.245.222301 Moved Permanently 198 B URL HTTP/1.1 kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
IP 54.211.245.222:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash d376cb7afcf027d07d8b0ca4b780c541
2086bfe5297b3cecc04d35295025c7cc0549de72
bf68529032d5247c8fa9c39d28ef4ec834e494cd9ecbf07f8c0714b160072237
GET /2021/08/13/inside-wham-os-plan-to-slide-into-success/ HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Cache-control: no-cache="set-cookie"
Content-Type: text/html; charset=UTF-8
Date: Tue, 13 Sep 2022 15:47:38 GMT
Location: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Server: Microsoft-IIS/7.5
Set-Cookie: AWSELB=35EF471B105C2DDF03F7CD7DC2672A589A9B967929FF7AC5A86CA568BC9E29B389DA7A1C5D709017F886A4F43B28B17D0492AB7162248F0BFA72D63989E1B41A8EEBE5878E;PATH=/;MAX-AGE=7200
X-Powered-By: ASP.NET
Content-Length: 198
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4346
Expires: Tue, 13 Sep 2022 17:00:05 GMT
Date: Tue, 13 Sep 2022 15:47:39 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 13 Sep 2022 15:08:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: M2fiyg2Kq75l776gqNcN84IEPmm-zwpMgeeMQrNMsu7M_BbX-QI9iw==
Age: 2333
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 13 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: d9ag7dhuZiZq4-Nwji9PovC3SXQcmLvU0cG2zmQ9hVOA5q4n3XymOg==
age: 40345
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 15:47:39 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 13 Sep 2022 15:03:22 GMT
Expires: Tue, 13 Sep 2022 15:13:59 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Bva01eLm2FAai9Nh36jGt2sc-uS6C0LHVG8lZNfEgWr-x6z6vbMeFQ==
Age: 2657
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 9b3744dcd78137a6ae09b3b2c6eb2c5a
aef2d99f93f7d3d2b59ed85fea288d996fa986b0
6bfc4b9ec24b6edc57e9c5b9fc7f83b3dacc4bcbb9178d708ade1ad318518254
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Tue, 13 Sep 2022 15:47:39 GMT
Etag: "63206f7c-1d7"
Server: ECS (dcb/7EC7)
X-Cache: Miss from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Bzx_9i6E5qdR0rPV96aFT9l-B9LLnd1e3nFAiByytO-6AMmx4huMEQ==
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e96dbe1b54932c8f447bbbfc9d31cfb0
b15d4a54fbdf95b0af8bd34b6f8ef03055eef0cd
427326963ac1ef6ddeeaf52ab07807c694b82effa6111671ada8270b1faecdae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4224
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:40 GMT
Last-Modified: Tue, 13 Sep 2022 14:37:16 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.202.70.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.202.70.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kkASLiAoNsV78BPtZEGR0g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: aDkzp+4oamJHvYCRPA5ldxO3kOw=
kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
54.211.245.222200 OK 18 kB URL HTTP/1.1 kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
IP 54.211.245.222:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1724), with CRLF, LF line terminators
Hash a064f8f71a5e2dae4e1768493877ebf7
900dab4071e626152d4fcd5abc41be9906eb7c88
76c92213ff9a46e671f3efa2d7acf51a5cf8ab4c271a2b4df9618ae3bdfd75f7
GET /2021/08/13/inside-wham-os-plan-to-slide-into-success/ HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Tue, 13 Sep 2022 15:47:40 GMT
Link: <http://wp.me/p1lgPp-JBi>; rel=shortlink
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Pingback: https://kidscreen.com/wp/xmlrpc.php
X-Powered-By: PHP/5.5.11, ASP.NET
Content-Length: 18395
Connection: keep-alive
s7.addthis.com/js/300/addthis_widget.js
2.18.172.123200 OK 116 kB URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP 2.18.172.123:0
File type ASCII text, with very long lines (54602)
Size 116 kB (116401 bytes)
Hash 868623d1409b3a210c3d2fb002f0719d
62b6883ea77d31d81fbc939f7342bea9520079c8
b79b37bdcb4fabcafbfdb71d55b923f4e48579201675b9683f677c97dd782e7e
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-type: application/javascript
content-encoding: gzip
content-length: 116401
date: Tue, 13 Sep 2022 15:47:41 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
kidscreen.com/wp/wp-content/themes/kidscreen2021/scripts/fancybox/source/jquery.fancybox.css
54.211.245.222200 OK 1.7 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/scripts/fancybox/source/jquery.fancybox.css
IP 54.211.245.222:0
Hash bb5f07ce4ecd5f9110f98056f58113ca
5137762f9605aa383c33e741b297a2bf403caafb
027839b4004c2897b440c65c3d76939012781b9df73f7c2699e805f5328930db
GET /wp/wp-content/themes/kidscreen2021/scripts/fancybox/source/jquery.fancybox.css HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "f412513e9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:14 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 1742
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4a68e0856575d52f7778bc821b5c881b
0956533f660fd0e7096540292f9b60451f60f148
0fde07586af73476634e76ed5badfce43d8b4ec078fd0f172d80c28ad98e3d27
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4a68e0856575d52f7778bc821b5c881b
0956533f660fd0e7096540292f9b60451f60f148
0fde07586af73476634e76ed5badfce43d8b4ec078fd0f172d80c28ad98e3d27
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js
172.217.21.170200 OK 33 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js
IP 172.217.21.170:0
File type ASCII text, with very long lines (32086)
Hash 430e927c980ad4079de727fa59dd93f2
891aaada9a55a91292999f6d50fd300439905982
e8728df8617340bd8c10bc8d27d3a725a48871a269c850e8598689938ec6e2ed
GET /ajax/libs/jquery/1.11.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33434
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 11 Sep 2022 02:47:29 GMT
expires: Mon, 11 Sep 2023 02:47:29 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 219612
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 78f8bae58862d8be3437cfe9e927011d
fb01a9cfd346f2c9b7694276c72a76e213887b06
389d233aa4b3ea23315c9d6e8d72d96fb2f802e227d24199c788a5a89e96a19e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/jsapi
142.250.74.164301 Moved Permanently 237 B IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 362d5b448e14803e150656f8f2b2064f
46e929aad5f6323e61c895d51c8fa5f46171f16e
9361792c2d970710b9e66bb86b6dc9b17dab59a9294a30a5790bdb1e92b38021
GET /jsapi HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: https://www.gstatic.com/charts/loader.js
x-content-type-options: nosniff
server: sffe
content-length: 237
x-xss-protection: 0
date: Tue, 13 Sep 2022 15:44:13 GMT
expires: Tue, 13 Sep 2022 16:14:13 GMT
cache-control: public, max-age=1800
content-type: text/html; charset=UTF-8
age: 208
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7867c39e7f9a8357b7cbf76c1d0c6608
95d4871ec6d2a596efe4566136fbd694b37775f2
2211da0bd8010d25093de86243c09ab8796f8c28bb2ac0e7a5ee121bbde8bf28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.ca/cse/brand?form=cse-search-box&lang=en
142.250.74.99301 Moved Permanently 237 B URL HTTP/2 www.google.ca/cse/brand?form=cse-search-box&lang=en
IP 142.250.74.99:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash bda0dec939809d66ff8388fe5c716412
d768e1edcca0d64e15c1a26978d19c8fdfbd4e4f
334f05a39cdb64bac9f876dd2a2011649d08d578f6d751460c91ca294f3304cd
GET /cse/brand?form=cse-search-box&lang=en HTTP/1.1
Host: www.google.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: https://www.gstatic.com/prose/brandjs.js
x-content-type-options: nosniff
server: sffe
content-length: 237
x-xss-protection: 0
date: Tue, 13 Sep 2022 15:25:24 GMT
expires: Tue, 13 Sep 2022 15:55:24 GMT
cache-control: public, max-age=1800
content-type: text/html; charset=UTF-8
age: 1337
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4a68e0856575d52f7778bc821b5c881b
0956533f660fd0e7096540292f9b60451f60f148
0fde07586af73476634e76ed5badfce43d8b4ec078fd0f172d80c28ad98e3d27
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4a68e0856575d52f7778bc821b5c881b
0956533f660fd0e7096540292f9b60451f60f148
0fde07586af73476634e76ed5badfce43d8b4ec078fd0f172d80c28ad98e3d27
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b743089bdff5635e2f7c38d20c1910f6
f1874493bc88c2d9ba4a95a43e810da1cb452abd
3a60895d54c86a3e46a3dbcacfc07f3fae4ba79add296b16d0938baacc8d462a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b7e665b6b70fa840ee6a1417da402132
658fa05afcf7752e8cb02979c28874efb0f4ddd8
9905cee109c441b937300b368ceccd186877a0923164bf3e1eb0971a2a224400
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kidscreen.com/wp/wp-content/plugins/responsive-lightbox/assets/prettyphoto/css/prettyPhoto.css?ver=3.9.1
54.211.245.222200 OK 3.8 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/plugins/responsive-lightbox/assets/prettyphoto/css/prettyPhoto.css?ver=3.9.1
IP 54.211.245.222:0
File type ASCII text, with very long lines (402), with CRLF line terminators
Hash 7d4936e9e738b675acd42eec632a3bd7
fb6e5df39808f70be3cc46dcb8fe660aafdd806f
f0f72df95d08996adcb51d9b7ad18286b37ff185578c801ac726a066e0b2a807
GET /wp/wp-content/plugins/responsive-lightbox/assets/prettyphoto/css/prettyPhoto.css?ver=3.9.1 HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "b423f0379e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:03 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 3816
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7867c39e7f9a8357b7cbf76c1d0c6608
95d4871ec6d2a596efe4566136fbd694b37775f2
2211da0bd8010d25093de86243c09ab8796f8c28bb2ac0e7a5ee121bbde8bf28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/charts/loader.js
142.250.74.163200 OK 20 kB URL HTTP/2 www.gstatic.com/charts/loader.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (2134)
Hash f3341efa0432876b1697ccec98c33b01
55044e79afbe25d119b7b87dc7b5d1b3ec0c607a
6672904faeb4f203e0109279aa99d88f9e8690d2d696d80309ef50a974f88c77
GET /charts/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kidscreen.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 19937
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 15:43:29 GMT
expires: Tue, 13 Sep 2022 16:43:29 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 18:41:30 GMT
content-type: text/javascript
age: 252
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b7e665b6b70fa840ee6a1417da402132
658fa05afcf7752e8cb02979c28874efb0f4ddd8
9905cee109c441b937300b368ceccd186877a0923164bf3e1eb0971a2a224400
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/prose/brandjs.js
142.250.74.163200 OK 5.8 kB URL HTTP/2 www.gstatic.com/prose/brandjs.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (1352)
Hash 10aa07ab4f7de5535f4cafe167ca4fa7
6c804574a29f9d8a77ed2823a7879e56dbc42c22
d111484a9bceee10b129b20ebd4ead4639b5d7dd78117522249195fb84db3cf0
GET /prose/brandjs.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kidscreen.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 5807
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 18:45:16 GMT
expires: Tue, 13 Sep 2022 18:45:16 GMT
cache-control: public, max-age=86400
age: 75745
last-modified: Tue, 06 Apr 2021 15:14:29 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 6d4f4e95f7fa5c73ba923617c60d4814
dac6cb0c3374b442fe396190844d44cbaf4644e0
2d43e8f3eaf6ef9a9c0815187c2266c99a6e46fbfe67b0318e8c559f74260fef
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 13 Sep 2022 15:47:41 GMT
Last-Modified: Tue, 13 Sep 2022 14:10:50 GMT
Server: ECS (nyb/1D1D)
X-Cache: Miss from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MFAU5IwqR3mbke_rr5V5yYtkDXeUiQshE4LN6gYCjco_LGMKJaO_8w==
Age: 5811
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b7e665b6b70fa840ee6a1417da402132
658fa05afcf7752e8cb02979c28874efb0f4ddd8
9905cee109c441b937300b368ceccd186877a0923164bf3e1eb0971a2a224400
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kidscreen.com/wp/wp-content/plugins/yet-another-related-posts-plugin/style/widget.css?ver=3.9.1
54.211.245.222200 OK 513 B URL HTTP/1.1 kidscreen.com/wp/wp-content/plugins/yet-another-related-posts-plugin/style/widget.css?ver=3.9.1
IP 54.211.245.222:0
Hash 682c3bf835a566fdb017e723d754bd0c
4caf552a1f5ec13e48bfa5f0df82dac6d9e89140
ca7423a25184952617a60ff97d8cb0c87c182df8682f501e2a132a502257920c
GET /wp/wp-content/plugins/yet-another-related-posts-plugin/style/widget.css?ver=3.9.1 HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "3441cf339e22d41:0"
Last-Modified: Mon, 23 Jul 2018 15:59:56 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 513
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/styles/animate.css
54.211.245.222200 OK 7.8 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/styles/animate.css
IP 54.211.245.222:0
Hash 9c050ed4cd69d7d683d56f6486dc4f3f
3d07d28f1e89897bb46b92075d026a504bba3684
42baa3fd4d93be73cd443fed6ff677b9515c67428369b0e1da9aaa417fc4193f
GET /wp/wp-content/themes/kidscreen2021/styles/animate.css HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "b49ef63d9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:14 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 7761
Connection: keep-alive
kidscreen.com/wp/wp-content/plugins/wp-to-twitter/css/twitter-feed.css?ver=3.9.1
54.211.245.222200 OK 511 B URL HTTP/1.1 kidscreen.com/wp/wp-content/plugins/wp-to-twitter/css/twitter-feed.css?ver=3.9.1
IP 54.211.245.222:0
File type ASCII text, with CRLF line terminators
Hash d59b30ea93da75f1d5ab93b0e922d81f
d4cb6c48d95990cfb31e66030285f44337e51a19
b87ec6b04bb0007e99225deb8e72763768138a7a317b36c025bae9d786acadea
GET /wp/wp-content/plugins/wp-to-twitter/css/twitter-feed.css?ver=3.9.1 HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "b554d3cbdbc6cf1:0"
Last-Modified: Tue, 02 Sep 2014 18:29:13 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 511
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/style.css?v=2
54.211.245.222200 OK 26 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/style.css?v=2
IP 54.211.245.222:0
File type ASCII text, with very long lines (476), with CRLF line terminators
Hash b95e8e1e5f6e07bfa97b1a3ff4f104e2
099bd05f4b1840fb6334a1026f99bd9819564a42
cd9dcfcae68ce40d8c24e169bbe5fe938cee1e4eef1ce530ae27182fc538419f
GET /wp/wp-content/themes/kidscreen2021/style.css?v=2 HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "b3f4fb8d5d86d81:0"
Last-Modified: Wed, 22 Jun 2022 17:28:57 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 26348
Connection: keep-alive
kidscreen.com/wp/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
54.211.245.222200 OK 3.7 kB URL HTTP/1.1 kidscreen.com/wp/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
IP 54.211.245.222:0
File type ASCII text, with very long lines (7085), with CRLF line terminators
Hash 34771854e8e9e3620a3e346397fbc545
3a5d854a9129fe4a638095441bd6c9a8ee2ad8b6
5e259e3be73d6b1905554c55832cb2e38ef84217d2e131f899ff62bcc9b4a34b
GET /wp/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "3a5ba0aa7991cf1:0"
Last-Modified: Thu, 26 Jun 2014 20:03:15 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 3655
Connection: keep-alive
kidscreen.com/wp/wp-content/plugins/responsive-lightbox/assets/prettyphoto/js/jquery.prettyPhoto.js?ver=3.9.1
54.211.245.222200 OK 7.7 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/plugins/responsive-lightbox/assets/prettyphoto/js/jquery.prettyPhoto.js?ver=3.9.1
IP 54.211.245.222:0
File type Unicode text, UTF-8 text, with very long lines (21775), with CRLF line terminators
Hash ced22962f79ce895d953dda38d2e4f30
4163645979f14a82c5b25b01f1ba12e861088b77
940c2d73becf9d95726b5a98ccfa2dfebc1a1591565938b4f6e56973ef5749ec
GET /wp/wp-content/plugins/responsive-lightbox/assets/prettyphoto/js/jquery.prettyPhoto.js?ver=3.9.1 HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "1485f2379e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:03 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 7695
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4411
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 15:47:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4411
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 15:47:41 GMT
Connection: keep-alive
kidscreen.com/wp/wp-includes/js/jquery/jquery.js?ver=1.11.0
54.211.245.222200 OK 43 kB URL HTTP/1.1 kidscreen.com/wp/wp-includes/js/jquery/jquery.js?ver=1.11.0
IP 54.211.245.222:0
File type ASCII text, with very long lines (32341)
Hash 7ea10f60936b30204ec8f32e53a4ecb6
2d335ef61befc12f13c4ad3837b5b6b94198b9b6
fe9a0f3bbf1725ec36c960da2ffc079267e92a5ec9bf08997fc006cd69ec6d05
GET /wp/wp-includes/js/jquery/jquery.js?ver=1.11.0 HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "2a7096aa7991cf1:0"
Last-Modified: Thu, 26 Jun 2014 20:03:15 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 42844
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4411
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 15:47:41 GMT
Connection: keep-alive
kidscreen.com/wp/wp-content/plugins/responsive-lightbox/js/front.js?ver=3.9.1
54.211.245.222200 OK 1.7 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/plugins/responsive-lightbox/js/front.js?ver=3.9.1
IP 54.211.245.222:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (651), with CRLF line terminators
Hash 9489ad0944435b77c430f1a46d170537
a0a9eeab89aedf2b685cda1f597311c2b6363be3
78f871c668e9e158e4abaa5a6c8d6bde49ca057580a85775d5c11da5d5a0fedf
GET /wp/wp-content/plugins/responsive-lightbox/js/front.js?ver=3.9.1 HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "b44429389e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:04 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 1657
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb9bab12-4fd5-4be7-b453-25dfb0d4c606.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb9bab12-4fd5-4be7-b453-25dfb0d4c606.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6c824a7db30839607b01c7a164f6f6ec
bbab791971056750a46dd6ed9c5d7c8e12ab457e
872262a28a383a9eafd1f453014a3edfde4872160b772874271be6358a47449f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb9bab12-4fd5-4be7-b453-25dfb0d4c606.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9606
x-amzn-requestid: bf72ce8c-1272-42df-8958-d392210106c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIR7NFh2oAMFXIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631996ad-4646091a428db21e2dce1a61;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:15:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4skZVE5BinFMAJV196j5-qtDez6m26DtU8NZvU6K2VuhFnC7E1zXWw==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:56:19 GMT
age: 64282
etag: "bbab791971056750a46dd6ed9c5d7c8e12ab457e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9ab2ec10c79b91d15edb1d1e3dc763c
744fee4a0baa22ba3aa352d60620a916972b47dd
f7bb66f5bb572d73f936fc74823f51ede1f2c4e309a939b39d9529ff8f757fbe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9945
x-amzn-requestid: a347749f-a63a-4533-a274-7151b9f235ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXcX8HAKoAMF5EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa765-56cff18515b2a5b3397231df;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:40:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lZ3FmD1gM8YBgZNt97kuYSol1kj0GQqRjyLT_7715VtH9GR1WpMDxA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:42:20 GMT
age: 65121
etag: "744fee4a0baa22ba3aa352d60620a916972b47dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
stats.wordpress.com/e-202237.js
192.0.78.26200 OK 12 kB URL HTTP/2 stats.wordpress.com/e-202237.js
IP 192.0.78.26:0
File type ASCII text, with very long lines (2690)
Hash ab516268b3159a746e553d28c7734d29
a21c44387ee3a6d123b245dd288836adc9ac1a4a
0885e18d388a9f1995712df58a7a8153064c44d544065f9b04210ef6c2620e77
GET /e-202237.js HTTP/1.1
Host: stats.wordpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 15:47:41 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
expires: Wed, 13 Sep 2023 15:47:41 GMT
cache-control: max-age=31536000
content-encoding: br
x-ac: 3.arn _dca
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 838f709437b2dfbede4ee15307afe217
2ab2ee20e720b78be6deb55f967ac0d8b7dad048
a3b47ce595b475f2aab6f7378888d15ba3e98453d6c8a3d88946efc5d65eedba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10849
x-amzn-requestid: 722d8d75-0911-4b59-af65-2b408bc09d80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXbx6E9-oAMFT8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa672-74ea9343619d4a1865e34818;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:36:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4rpwcrZLDlgcwBtH7wpoHMOb8hhFbKbZSQpjWqUqbt_Sl4ud3dm9Vg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:42:18 GMT
age: 65123
etag: "2ab2ee20e720b78be6deb55f967ac0d8b7dad048"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f033f00-b116-4419-9d21-3aed9c73ea2e.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f033f00-b116-4419-9d21-3aed9c73ea2e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d97e56f75165efcc71ae54952ded405
28d47359e70789115b2954b6c94711bb783b3c8c
564eac2ae99724e5f43aa1ae0afe4dec03697f888f51774e70e1b9c273c2d9d6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f033f00-b116-4419-9d21-3aed9c73ea2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8764
x-amzn-requestid: 48f44e2c-3d91-46cf-8701-3c5028e0a86d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YE-gLG4_oAMFn-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63184467-46abfc77601bd90f39a2c840;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 07:12:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tE5GZDktiELwfFRC_IEAqoat6cN7vb_TA17d-zRO6saTLEGRqB94Pw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:01:47 GMT
age: 63954
etag: "28d47359e70789115b2954b6c94711bb783b3c8c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6b50df-cdcd-4b44-9ed3-90a502ea29ad.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6b50df-cdcd-4b44-9ed3-90a502ea29ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 239262b6ab17cb19414c35cd4f761092
48eddcf9838e980e67cc8f9cbb05b475df2f0331
cd27cbce632d769288d9c33c5c8e887ba02df5677f10f7a6d03139b590ba24b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6b50df-cdcd-4b44-9ed3-90a502ea29ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9815
x-amzn-requestid: 89243e57-94eb-4c6b-903f-aa01df030ecc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUIxnEAjoAMF_Ig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e54d6-199403e2695b214711f5117f;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:36:23 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: gUhO_jZ9W_10cAK-2lOVSmQ9r1DIZvNDaqpJs5oc6lt85qAkWbBcXg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:48:14 GMT
age: 64767
etag: "48eddcf9838e980e67cc8f9cbb05b475df2f0331"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
kidscreen.com/wp/wp-content/themes/kidscreen2021/scripts/fancybox/source/jquery.fancybox.js
54.211.245.222200 OK 18 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/scripts/fancybox/source/jquery.fancybox.js
IP 54.211.245.222:0
Hash badfa43bd908efbdbcac1d1db8cc1c9d
709cbc7849dee298e57e49228792789984db18e7
c59aa189f85817f2838844d3155c39c9e53c232af0f1fe8080329ee1413d6154
GET /wp/wp-content/themes/kidscreen2021/scripts/fancybox/source/jquery.fancybox.js HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "94b14e3e9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:14 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 18123
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/scripts/jquery.jcarousel.min.js
54.211.245.222200 OK 6.5 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/scripts/jquery.jcarousel.min.js
IP 54.211.245.222:0
File type ASCII text, with very long lines (17342)
Hash 709004c2e07aa643fa6853a1b4feba28
7fd7695c6efc3ee61d871f2a0230db60066d234f
c9ff75f016df1374cdb583734640be20ebaf5077dcc79bb21c77d893c7333944
GET /wp/wp-content/themes/kidscreen2021/scripts/jquery.jcarousel.min.js HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "b4e0683e9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:14 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 6476
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/style-ks.css?v=2
54.211.245.222200 OK 24 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/style-ks.css?v=2
IP 54.211.245.222:0
File type ASCII text, with very long lines (605), with CRLF line terminators
Hash 5511c7dc17bcacf764b155fb6b5f5071
de08dac5d94ae4abded586884d1ad9719bab7fd3
7b40fb2849dbdd554a4d575df238823e4ebcc1db45cefaf5fdfeac3942d26ea1
GET /wp/wp-content/themes/kidscreen2021/style-ks.css?v=2 HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "936cb796b1c6d81:0"
Last-Modified: Mon, 12 Sep 2022 14:11:44 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 23548
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/scripts/jquery.cookie.js
54.211.245.222200 OK 1.6 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/scripts/jquery.cookie.js
IP 54.211.245.222:0
Hash dce42688a4317fd280222e2804ade2cd
3e0a6872867472adcaccf37c19c482824e2de8f3
0c41d8521b6041cb12f1e6c86650a39e2c6ffcb0cb6df72c52cc9d5bdc72ee28
Analyzer Verdict Alert fortinet Malware
GET /wp/wp-content/themes/kidscreen2021/scripts/jquery.cookie.js HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "b4e0683e9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:14 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 1647
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/scripts/jcarousel.connected-carousels.js
54.211.245.222200 OK 1.3 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/scripts/jcarousel.connected-carousels.js
IP 54.211.245.222:0
File type ASCII text, with CRLF line terminators
Hash c90a400f46a9472664fe7e2e507291f8
2036f0a43281543f3145c86eae1a0e83738ef4c0
dff19646490776411c73db4e10d9be98a7a91b0b559c52813b2a3b0183f89a6e
GET /wp/wp-content/themes/kidscreen2021/scripts/jcarousel.connected-carousels.js HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "547f663e9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:14 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 1322
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/scripts/wow.js
54.211.245.222200 OK 3.2 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/scripts/wow.js
IP 54.211.245.222:0
Hash 8eba334d473cfa543a72937a70df5cab
3855cc3fa4f58cc646c58385e8eb6571e2cfe423
3d9bff1fb4c06156556538e0bb0f003428c68ecfa1c396a959948e1a68b11a13
GET /wp/wp-content/themes/kidscreen2021/scripts/wow.js HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "07bf13d9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:14 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 3162
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/scripts/scripts.js
54.211.245.222200 OK 6.7 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/scripts/scripts.js
IP 54.211.245.222:0
File type HTML document, ASCII text, with very long lines (346), with CRLF line terminators
Hash d3b80dd41e958c0c5a41e3f45d83ddde
c10e6f83882de347f49a4aa5c143d3c08b370ad3
1fe2a33732c354cf651734278731e0e6dde6cc454aac142fabc697bf60904157
GET /wp/wp-content/themes/kidscreen2021/scripts/scripts.js HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "8068aa87b2c6d81:0"
Last-Modified: Mon, 12 Sep 2022 14:18:29 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 6680
Connection: keep-alive
kidscreen.com/scripts/marketo.tracker.js?v=1
54.211.245.222200 OK 4.0 kB URL HTTP/1.1 kidscreen.com/scripts/marketo.tracker.js?v=1
IP 54.211.245.222:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash fd0b60efce3d925b83fa8b03fdbe9fcb
a3302e04c65e898c47b33ec80f4c4e7bec96478f
54232cf417293f98f04939d7b390f7c596068361aab8b418c3497d163dd4c68f
GET /scripts/marketo.tracker.js?v=1 HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "344d2409e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:17 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 4043
Connection: keep-alive
kidscreen.com/wp/wp-content/plugins/yet-another-related-posts-plugin/style/related.css?ver=3.9.1
54.211.245.222200 OK 452 B URL HTTP/1.1 kidscreen.com/wp/wp-content/plugins/yet-another-related-posts-plugin/style/related.css?ver=3.9.1
IP 54.211.245.222:0
Hash 0bb613d9fed0fb198263893910387dee
6f1a30fd7e57607da83411a13e6ed67762c97845
0d9c7c2ea1727b01c9e1ab4c8a64b5ecd2f02c5cbd5b7f9d4bf50746dd5f24ff
GET /wp/wp-content/plugins/yet-another-related-posts-plugin/style/related.css?ver=3.9.1 HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css
Date: Tue, 13 Sep 2022 15:47:40 GMT
ETag: "3441cf339e22d41:0"
Last-Modified: Mon, 23 Jul 2018 15:59:56 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 452
Connection: keep-alive
kidscreen.com/content/js/shared.js
54.211.245.222200 OK 675 B URL HTTP/1.1 kidscreen.com/content/js/shared.js
IP 54.211.245.222:0
File type HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (417), with CRLF line terminators
Hash a368c47633bb6234538094ad15508ba3
5672212525248fd5b8026638dd4b383ddf4346a0
231e72808711242bc0f6313bc75e9792eddac50f0d71be7d61212463fdce2070
GET /content/js/shared.js HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: public,max-age=2592000
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "942c55449e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:24 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 675
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/scripts/jquery.touchSwipe.js
54.211.245.222200 OK 4.6 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/scripts/jquery.touchSwipe.js
IP 54.211.245.222:0
File type ASCII text, with very long lines (11414), with no line terminators
Hash 63603cb22863fdcd4a101dce32ca1e3a
11197b835e5e97a52c3f2f4424323f40e9138027
c4e28fe7e1fec18029a80f941a6022af538bf6934238679b29792f96506a833f
GET /wp/wp-content/themes/kidscreen2021/scripts/jquery.touchSwipe.js HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "b4e0683e9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:14 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 4596
Connection: keep-alive
kidscreen.com/content/js/ads.js
54.211.245.222200 OK 137 B URL HTTP/1.1 kidscreen.com/content/js/ads.js
IP 54.211.245.222:0
File type ASCII text, with no line terminators
Hash 735faf54bf889265d44063231c65df0b
cfce8f6497b9f591aa94de18b35ebb489e61d276
0fe6fc86ad047023ea562fc2d5cef8c9c352637e72e9987e13064705c20e0adf
Analyzer Verdict Alert fortinet Malware
GET /content/js/ads.js HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: public,max-age=2592000
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "f48d57449e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:24 GMT
Server: Microsoft-IIS/7.5
Vary: Accept-Encoding
X-Powered-By: ASP.NET
Content-Length: 137
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 89dc4294d8e50675a5cb111e84d38452
993b0be337e43de62b8a33bef20c972881c8a646
27e6f64589d2befddc951fc27b83d03e1113bcfe301c76a2e412a20d2558a0c3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagservices.com/tag/js/gpt.js
216.58.211.2200 OK 29 kB URL HTTP/2 www.googletagservices.com/tag/js/gpt.js
IP 216.58.211.2:0
File type ASCII text, with very long lines (45046)
Hash 0e4c6106ecfbb8404e60bb0a4a790ef3
598daf445a579ab59ce61f5f55daba3e307851f8
c62b3eeb0c6b6ad2ef5b9bb42145f3c998d914c51d71309bee1c4f55c14abcde
GET /tag/js/gpt.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 28695
date: Tue, 13 Sep 2022 15:47:41 GMT
expires: Tue, 13 Sep 2022 15:47:41 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1332 / 94 of 1000 / last-modified: 1663067144"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-kidscreen.png
54.211.245.222200 OK 4.3 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-kidscreen.png
IP 54.211.245.222:0
File type PNG image data, 366 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 46289489f9e46c01a9c3981848758528
b7ca85c21e72d74160990004a0655687af164764
e26512d99992d89fe5b7158ebfac8bada5bacbf69de31f315627759ce9d029f8
GET /wp/wp-content/themes/kidscreen2021/images/logo-kidscreen.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "54e2113f9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:15 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 4344
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/event-small-cix.png
54.211.245.222200 OK 10 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/event-small-cix.png
IP 54.211.245.222:0
File type PNG image data, 350 x 125, 8-bit/color RGBA, non-interlaced\012- data
Hash f669e5185bf36cb29d2fd30fe4493715
5a5c006f8446b0539bdc295dc16d6711b32fda60
be07c2621c260b6fc384fb795c275551e10e8953af1608866e45c454c1ab9fe0
GET /wp/wp-content/themes/kidscreen2021/images/event-small-cix.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "3c80e8c6bac5d71:0"
Last-Modified: Wed, 20 Oct 2021 14:00:02 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 10438
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-realscreen.png
54.211.245.222200 OK 3.3 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-realscreen.png
IP 54.211.245.222:0
File type PNG image data, 265 x 68, 8-bit/color RGBA, non-interlaced\012- data
Hash 1686177bfa511ee955a3f5caffc063af
2c22e25916a3d8964788d4da20a9411a4812e8a5
362ae61700c448999ecaada37eb889e544d662d421ecd5c6434616f220a85d0a
GET /wp/wp-content/themes/kidscreen2021/images/logo-realscreen.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "f480f3f9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:15 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 3284
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-mic.png
54.211.245.222200 OK 2.4 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-mic.png
IP 54.211.245.222:0
File type PNG image data, 150 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 12dce6d987f32dab3a50adc1b0a65f71
c2b452f827abcf3ed27b3e58dee41a6f74931f5f
be52930235489d0a07458732debcad9e69b11b307ef313e3a1eacc31199d9410
GET /wp/wp-content/themes/kidscreen2021/images/logo-mic.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "54e2113f9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:15 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 2378
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-stimulant.png
54.211.245.222200 OK 1.6 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-stimulant.png
IP 54.211.245.222:0
File type PNG image data, 150 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 932b08b5ec21749204b04d2ec9c6fb79
9b69c63b042e94f4ac51a37515803810a4cd03fd
42bb4cc77a87a9ebcf2152725af75bc42617f8c87536178909c8d76fb3b0f7c7
GET /wp/wp-content/themes/kidscreen2021/images/logo-stimulant.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "f480f3f9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:15 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 1615
Connection: keep-alive
s3.amazonaws.com/brunicoextranet/Matrix/Kidscreen/7BGwGpYARmGhwJzyCytK_logo_footer_kidscreen.png
54.231.163.128200 OK 3.7 kB URL HTTP/1.1 s3.amazonaws.com/brunicoextranet/Matrix/Kidscreen/7BGwGpYARmGhwJzyCytK_logo_footer_kidscreen.png
IP 54.231.163.128:0
File type PNG image data, 300 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a87f5c57be79c3369e0f284adb3e045
3e293cfa12fa487d5e027ce1e80bfe894027f53d
d50ed0aa3c1cf184dbed3dfdfb174979f18adc2b2afe74f2677bc1ad074d22fb
GET /brunicoextranet/Matrix/Kidscreen/7BGwGpYARmGhwJzyCytK_logo_footer_kidscreen.png HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: TY3skYlTkPwu82BBRjXvNQhdQv1f7kw8IFjr8KZYwjooX/43F7L2jVgdHjbNcba0hBK4WU2qOQ0=
x-amz-request-id: E417WRPPEQKP6S1D
Date: Tue, 13 Sep 2022 15:47:42 GMT
Last-Modified: Thu, 02 Dec 2021 19:11:03 GMT
ETag: "9a87f5c57be79c3369e0f284adb3e045"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 3740
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-playback.png
54.211.245.222200 OK 1.9 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-playback.png
IP 54.211.245.222:0
File type PNG image data, 362 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 3611fd968b07eb5c187b650538c6e55a
c9ac20a80f9e67d1c080770e3c70efa38205540a
a798ef21fcfdc1d3af90a65f2e7cd7cf02cc1cd8d7fdd94df37cf0f05390382c
GET /wp/wp-content/themes/kidscreen2021/images/logo-playback.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "f480f3f9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:15 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 1936
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 89dc4294d8e50675a5cb111e84d38452
993b0be337e43de62b8a33bef20c972881c8a646
27e6f64589d2befddc951fc27b83d03e1113bcfe301c76a2e412a20d2558a0c3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-strategy.png
54.211.245.222200 OK 3.2 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-strategy.png
IP 54.211.245.222:0
File type PNG image data, 263 x 65, 8-bit/color RGBA, non-interlaced\012- data
Hash 3d3c8f97906626a16971babac943c17d
c99aa1835c265bc7554e3f1bb78ad18fe3f5a1ef
18b744e49790e7a765e1ed0ac90798f5ab3512c15cdfe7408939330587ffd7ee
GET /wp/wp-content/themes/kidscreen2021/images/logo-strategy.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "941fd3f9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:15 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 3242
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/placeholder-mid.jpg
54.211.245.222200 OK 8.4 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/placeholder-mid.jpg
IP 54.211.245.222:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 354x200, components 3\012- data
Hash 1a780870d627e81e8e0dc2a91bd8b7d7
c37f8d3e146aa7547106a15cabc0135123520c20
cd5c000e679c90968af80e2bfe81bd11c0ffab7053670f0ca6bbe65753812212
GET /wp/wp-content/themes/kidscreen2021/images/placeholder-mid.jpg HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/jpeg
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "f480f3f9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:15 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 8404
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/lug-facebook.png
54.211.245.222200 OK 253 B URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/lug-facebook.png
IP 54.211.245.222:0
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 0864c44869238b0e520d6f0a1a8beac0
ce7701acf6f07d45d40b8c2d114b46701efa6686
0d02270a03f63ebd0f2f53820c2484fd4fec42a2902def1ca1e8d662a10b296f
GET /wp/wp-content/themes/kidscreen2021/images/lug-facebook.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "34bea3f9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:15 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 253
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/lug-twitter.png
54.211.245.222200 OK 362 B URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/lug-twitter.png
IP 54.211.245.222:0
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash d15bddcacff81803d904562eed4488eb
b888dcfc32b6ae512459dbacb5cba2d707b98e0f
f7fb87d0c4b2ca243ccfa23b3745b33cb5b76dacf4ee3c1ae1819054723c858d
GET /wp/wp-content/themes/kidscreen2021/images/lug-twitter.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "b443143f9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:15 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 362
Connection: keep-alive
securepubads.g.doubleclick.net/gpt/pubads_impl_2022090801.js
142.250.74.66200 OK 133 kB URL HTTP/2 securepubads.g.doubleclick.net/gpt/pubads_impl_2022090801.js
IP 142.250.74.66:0
File type ASCII text, with very long lines (65439)
Size 133 kB (133090 bytes)
Hash dc454f46d595dd65e710b0e1c9812bc0
ffcecb021fcdacbd617eb7f6a579b85e0613df03
42c80df63fb3cc5709cbd4b450b5698c23cb2bc730742c21fadbdcfebc9071ef
GET /gpt/pubads_impl_2022090801.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 133090
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 10:31:33 GMT
expires: Fri, 08 Sep 2023 10:31:33 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 08 Sep 2022 08:35:47 GMT
content-type: text/javascript
age: 450968
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/icon-newsletter-white.png
54.211.245.222200 OK 1.4 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/icon-newsletter-white.png
IP 54.211.245.222:0
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 38586137f043429343c7f4dc151bfd03
bea4268dfd85f22f5493a062c14035ac6dd49abe
384f09bc875606cac663b61fd9287c923da7260a8e4b1cb7a25b1c5b5d41518b
GET /wp/wp-content/themes/kidscreen2021/images/icon-newsletter-white.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "2f7f938fc77fd11:0"
Last-Modified: Wed, 16 Mar 2016 21:05:25 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 1350
Connection: keep-alive
kidscreen.com/wp/wp-content/uploads/2022/09/MV5BODkwMDExMTI5M15BMl5BanBnXkFtZTgwNjM5MjYyMjE@._V1_-1-354x200.jpg
54.211.245.222200 OK 24 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/uploads/2022/09/MV5BODkwMDExMTI5M15BMl5BanBnXkFtZTgwNjM5MjYyMjE@._V1_-1-354x200.jpg
IP 54.211.245.222:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 354x200, components 3\012- data
Hash 66b3d51ab4e8a52867a1cb7378035eb4
93d7e7d498ed4c4722ebe75292dffa30333abffb
8273327eabd2760e8c53e52a60ccf0ae38de7379d287fdab5d245f2bf383105c
GET /wp/wp-content/uploads/2022/09/MV5BODkwMDExMTI5M15BMl5BanBnXkFtZTgwNjM5MjYyMjE@._V1_-1-354x200.jpg HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/jpeg
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "ac7b289db9c6d81:0"
Last-Modified: Mon, 12 Sep 2022 15:09:11 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 23728
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-ksxchange.png
54.211.245.222200 OK 1.9 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-ksxchange.png
IP 54.211.245.222:0
File type PNG image data, 200 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash 4631e96294e298062e82f9ac01fb2899
c458d7fbd6b7436eb16de7fca6a988254fd3cc75
023b91f19eb3bfcba10d73bf5e12e93984764002e2abcf75dc532b1e026b9a71
GET /wp/wp-content/themes/kidscreen2021/images/logo-ksxchange.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "941fd3f9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:15 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 1897
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-bruniconew.png
54.211.245.222200 OK 9.9 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-bruniconew.png
IP 54.211.245.222:0
File type PNG image data, 660 x 157, 8-bit/color RGBA, non-interlaced\012- data
Hash 45a02a92a6427a4ccb1b27b77e57b72b
c5279d9ff942c2fbdd89009010d5b00efca4e4df
0ba51b66a70100ec9ae4bdfd2778a256fd00f2dce5213c31296e7beeb53a1c26
GET /wp/wp-content/themes/kidscreen2021/images/logo-bruniconew.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "941fd3f9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:15 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 9906
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-header.png
54.211.245.222200 OK 7.6 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-header.png
IP 54.211.245.222:0
File type PNG image data, 450 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash af84c03b8618082d0c73061b857d25ed
782ce62b23511ac2facce0682ad6c2c4c01ab227
04af2d5eddee6a15ba4f51871eacde4175bad259e34b8ff46ceda21023162473
GET /wp/wp-content/themes/kidscreen2021/images/logo-header.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "b443143f9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:15 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 7645
Connection: keep-alive
kidscreen.com/wp/wp-content/uploads/2020/10/Rubiks-Cube-354x200.jpg
54.211.245.222200 OK 16 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/uploads/2020/10/Rubiks-Cube-354x200.jpg
IP 54.211.245.222:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 354x200, components 3\012- data
Hash 18595b211c2b039fe433929a019eb8a8
1e55cfe8e6c0aec1c3892b07a9d78cb3d00a6f34
4356a10809e111cf1683b1a05697fbf7efd09e3051877dd6248f45803ba76d55
GET /wp/wp-content/uploads/2020/10/Rubiks-Cube-354x200.jpg HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/jpeg
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "17e4e9196facd61:0"
Last-Modified: Tue, 27 Oct 2020 14:40:23 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 15720
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo_footer_kidscreen.png
54.211.245.222200 OK 2.9 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo_footer_kidscreen.png
IP 54.211.245.222:0
File type PNG image data, 300 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 46f8a358efdba2ae8856d902f33a0081
6f53c97d68dac4eca32b0fc2dfb5e8903e672dc8
ae49770e8181ef261a530922fbf190c9dbd94c8f3c38868085ca27e836f954fb
GET /wp/wp-content/themes/kidscreen2021/images/logo_footer_kidscreen.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "01660904468d71:0"
Last-Modified: Wed, 23 Jun 2021 15:29:32 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 2925
Connection: keep-alive
kidscreen.com/wp/wp-content/uploads/2014/10/Slip-n-slide-300x199.jpeg
54.211.245.222200 OK 17 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/uploads/2014/10/Slip-n-slide-300x199.jpeg
IP 54.211.245.222:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 300x199, components 3\012- data
Hash e92dbd4bac75dcfce138f984fa22dd70
4e41596a70a6fa2c844406bd08853fcde4ca7790
e9bfd5bff5c184c24a0e5efc6f9c0279b56c270c089b0b41a431161da48bee20
GET /wp/wp-content/uploads/2014/10/Slip-n-slide-300x199.jpeg HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/jpeg
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "1cbb86c55eedcf1:0"
Last-Modified: Tue, 21 Oct 2014 18:42:31 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 16643
Connection: keep-alive
kidscreen.com/wp/wp-content/uploads/2021/06/little-adventures-of-penguin-354x200.jpg
54.211.245.222200 OK 21 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/uploads/2021/06/little-adventures-of-penguin-354x200.jpg
IP 54.211.245.222:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 354x200, components 3\012- data
Hash 6f8ff99c19c45532f699defb292aa4b5
0c6a820711dfc2187d71f962cec35348528d2834
67d383f2e6576cf59298f99939833afc176f5c0fa1d1e0058cb4b57a13c229fc
GET /wp/wp-content/uploads/2021/06/little-adventures-of-penguin-354x200.jpg HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/jpeg
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "e959dd84ae63d71:0"
Last-Modified: Thu, 17 Jun 2021 19:25:23 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 21320
Connection: keep-alive
kidscreen.com/wp/wp-content/uploads/2021/03/Slip-N-Slide-354x200.jpg
54.211.245.222200 OK 36 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/uploads/2021/03/Slip-N-Slide-354x200.jpg
IP 54.211.245.222:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 354x200, components 3\012- data
Hash 1c369cb22859b1311aed206af7df23ec
81dbc9bd3cb9d54ce76a3e15b74b7704f0e2811e
c3af2e867c4f58a3ec3b22fdd180c48c862ef6c0d117589d797f70cacc2fe4c2
GET /wp/wp-content/uploads/2021/03/Slip-N-Slide-354x200.jpg HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/jpeg
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "6453c89e291fd71:0"
Last-Modified: Mon, 22 Mar 2021 14:42:44 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 36351
Connection: keep-alive
kidscreen.com/wp/wp-content/uploads/2022/09/toybox-astronaut-1-354x200.jpg
54.211.245.222200 OK 9.1 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/uploads/2022/09/toybox-astronaut-1-354x200.jpg
IP 54.211.245.222:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 354x200, components 3\012- data
Hash 6926e2ca07dced06b5f02bd5eb8d47f7
fbd02fcf608db650092ddadff51e6bdf95520a78
90426547f6047344fe0740891448e3d9c744ca1daff4c9e136def228b277ef84
GET /wp/wp-content/uploads/2022/09/toybox-astronaut-1-354x200.jpg HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/jpeg
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "d61b95e97dc7d81:0"
Last-Modified: Tue, 13 Sep 2022 14:34:21 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 9074
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo_footer_instagram.png
54.211.245.222200 OK 679 B URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo_footer_instagram.png
IP 54.211.245.222:0
File type PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash f35f62fb4ce71929620569e9cac9135d
622e469bad47555d6044c9065d89eb59f6218edd
74ce2cd2062d1deec2a4c55204d5c6d677b7c5d21f51818f7fe4f3d70ec73e3c
GET /wp/wp-content/themes/kidscreen2021/images/logo_footer_instagram.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "01660904468d71:0"
Last-Modified: Wed, 23 Jun 2021 15:29:32 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 679
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo_footer_twitter.png
54.211.245.222200 OK 625 B URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo_footer_twitter.png
IP 54.211.245.222:0
File type PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 67a19f9244b642e7c00ac7e26cef13b0
cf3dc51ddaaa239cdc50d55c7a3cd201a52c131d
8c7718c4f9a7ac347d5a8a38add72a9b4400a41446e20baf94ccea606fb5579c
GET /wp/wp-content/themes/kidscreen2021/images/logo_footer_twitter.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "01660904468d71:0"
Last-Modified: Wed, 23 Jun 2021 15:29:32 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 625
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo_footer_facebook.png
54.211.245.222200 OK 320 B URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo_footer_facebook.png
IP 54.211.245.222:0
File type PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash e38ee9ce5d5cb1286f424983fa981c76
707340e070b6dbb4d61c6f40292a0123090cfab9
095cce30d48f1998896c4e3fd3fad6108951a03d7a68f1495dc9dc67563d7e69
GET /wp/wp-content/themes/kidscreen2021/images/logo_footer_facebook.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "01660904468d71:0"
Last-Modified: Wed, 23 Jun 2021 15:29:32 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 320
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-banff-white.png
54.211.245.222200 OK 9.5 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-banff-white.png
IP 54.211.245.222:0
File type PNG image data, 300 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 42d21135b3986e1214640092de7f6da8
267c319d5dde475fcd12ffe174c3be8fbd08e844
999f728575c9ed7f5bc0203a3d1f0939d9f2e69a6a53efd7a79ff0e972ff7770
GET /wp/wp-content/themes/kidscreen2021/images/logo-banff-white.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "5fa4efc6bac5d71:0"
Last-Modified: Wed, 20 Oct 2021 14:00:02 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 9520
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-brunico.png
54.211.245.222200 OK 13 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo-brunico.png
IP 54.211.245.222:0
File type PNG image data, 1000 x 239, 8-bit/color RGBA, non-interlaced\012- data
Hash 2b802c7a720143c097dc137203ce70e5
843571149bdd30b9374b3eaff4bd595b68fede32
9e466d331ee5f313076f25bcedd4d76b6816e0643e9a355fb7fda42a4a55cc47
GET /wp/wp-content/themes/kidscreen2021/images/logo-brunico.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "c05f2c6bac5d71:0"
Last-Modified: Wed, 20 Oct 2021 14:00:02 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 13117
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo_footer_linkedIn.png
54.211.245.222200 OK 467 B URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/logo_footer_linkedIn.png
IP 54.211.245.222:0
File type PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash bff4599775b2e460c95f24eb842fd004
1daefcb690b360e61a473615ab437662e7415811
8a14589c9ac830e2adad7c03423c887097d034de87c6a50e23fd2822858ac383
GET /wp/wp-content/themes/kidscreen2021/images/logo_footer_linkedIn.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "01660904468d71:0"
Last-Modified: Wed, 23 Jun 2021 15:29:32 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 467
Connection: keep-alive
kidscreen.com/wp/wp-content/uploads/2021/08/Wham-O.jpg
54.211.245.222200 OK 554 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/uploads/2021/08/Wham-O.jpg
IP 54.211.245.222:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 680x510, components 3\012- data
Size 554 kB (554039 bytes)
Hash 954c187fd563c3a1b38c245295789313
344dd031b3a4a6ffd6a91fad47c6d8647552a14a
bc28556a159e3c734a35c2811b4b9d48f4bb5a16f76e7e7fa7234c360ad25e39
GET /wp/wp-content/uploads/2021/08/Wham-O.jpg HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/jpeg
Date: Tue, 13 Sep 2022 15:47:41 GMT
ETag: "fb955c89b98fd71:0"
Last-Modified: Thu, 12 Aug 2021 20:35:06 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 554039
Connection: keep-alive
secure.gravatar.com/avatar/8f10f9f0700588d58b3368d782e51469?s=300&d=https%3A%2F%2Fsecure.gravatar.com%2Favatar%2Fad516503a11cd5ca435acc9bb6523536%3Fs%3D300&r=G
192.0.73.2200 OK 23 kB URL HTTP/2 secure.gravatar.com/avatar/8f10f9f0700588d58b3368d782e51469?s=300&d=https%3A%2F%2Fsecure.gravatar.com%2Favatar%2Fad516503a11cd5ca435acc9bb6523536%3Fs%3D300&r=G
IP 192.0.73.2:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash e36ed04a52f4e3f2056049020c878afe
b3a60a8da1622eb07efe2e8c2b00394435cc9a39
24927e186165b90479574f7ab2c7357ed6123bdef1f47c5faa3789a7375ad262
GET /avatar/8f10f9f0700588d58b3368d782e51469?s=300&d=https%3A%2F%2Fsecure.gravatar.com%2Favatar%2Fad516503a11cd5ca435acc9bb6523536%3Fs%3D300&r=G HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 15:47:43 GMT
content-type: image/jpeg
content-length: 22935
last-modified: Mon, 13 Jun 2016 16:14:32 GMT
link: <https://www.gravatar.com/avatar/8f10f9f0700588d58b3368d782e51469?s=300&d=https%3A%2F%2Fsecure.gravatar.com%2Favatar%2Fad516503a11cd5ca435acc9bb6523536%3Fs%3D300&r=G>; rel="canonical"
content-disposition: inline; filename="8f10f9f0700588d58b3368d782e51469.jpeg"
access-control-allow-origin: *
expires: Tue, 13 Sep 2022 15:52:43 GMT
cache-control: max-age=300
x-nc: HIT arn 3
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c79a6d9219e52788c0288a4288601f0b
a55c74c35279d08872bb4b0805d3f8ff684bc322
345482ec25a567e189a52a824fa13f6bbcfa8ce636c40f3619232b9cff65fa6a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.google-analytics.com/ga.js
142.250.74.136200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP 142.250.74.136:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Tue, 13 Sep 2022 14:17:11 GMT
expires: Tue, 13 Sep 2022 16:17:11 GMT
cache-control: public, max-age=7200
age: 5432
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b743089bdff5635e2f7c38d20c1910f6
f1874493bc88c2d9ba4a95a43e810da1cb452abd
3a60895d54c86a3e46a3dbcacfc07f3fae4ba79add296b16d0938baacc8d462a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/KS_Favicon.png
54.211.245.222200 OK 805 B URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/KS_Favicon.png
IP 54.211.245.222:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ccfaa109a29720a210a48008960ab5dc
28b5cd1178a94941542960ed2db544bb9d346b7a
e3f067c85bcbc3f02842ea9002184e0fe5997ceea4a507de7de1357565552e47
GET /wp/wp-content/themes/kidscreen2021/images/KS_Favicon.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:42 GMT
ETag: "c3f1111797add81:0"
Last-Modified: Thu, 11 Aug 2022 15:29:04 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 805
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c79a6d9219e52788c0288a4288601f0b
a55c74c35279d08872bb4b0805d3f8ff684bc322
345482ec25a567e189a52a824fa13f6bbcfa8ce636c40f3619232b9cff65fa6a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cse.google.com/cse/cse.js?cx=015835469144508199941:deb78dobmiw
142.250.74.46200 OK 3.5 kB URL HTTP/2 cse.google.com/cse/cse.js?cx=015835469144508199941:deb78dobmiw
IP 142.250.74.46:0
File type ASCII text, with very long lines (3170)
Hash 2d16a86b46e7e6c200fe81651688ecac
e1ffa415c171455e54e61e30bd060670ebc8322c
ff4762c16d2a68cf3611a5734922ea6cab13d1a02b9ceb194c63c032e73a1659
GET /cse/cse.js?cx=015835469144508199941:deb78dobmiw HTTP/1.1
Host: cse.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kidscreen.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Tue, 13 Sep 2022 15:47:43 GMT
server: gws
content-length: 3490
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+385; expires=Thu, 12-Sep-2024 15:47:43 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Tue, 13 Sep 2022 15:47:43 GMT
cache-control: private
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash fb66d8d9c4798bf6c3c6249b711a6f51
4ee33091db9b4296c3cb3683808cf2e9d0046a71
b19edf061b4cbe04270d5c7a6864432a5f430c1e190714ca0ae734a3ed2d2eef
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 13 Sep 2022 15:47:43 GMT
Last-Modified: Tue, 13 Sep 2022 14:54:07 GMT
Server: ECS (dcb/7F80)
X-Cache: Miss from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QW04Roqx2LgFgL3r05pJn8blMwlOBCmTxqQqa28LKl8yiu02U3R90A==
Age: 3216
api-v2.brunico.com/api/misc/isourip/
52.0.170.132200 OK 5 B URL HTTP/1.1 api-v2.brunico.com/api/misc/isourip/
IP 52.0.170.132:0
File type ASCII text, with no line terminators
Hash 68934a3e9455fa72420237eb05902327
7cb6efb98ba5972a9b5090dc2e517fe14d12cb04
fcbcf165908dd18a9e49f7ff27810176db8e9f63b4352213741664245224f8aa
GET /api/misc/isourip/ HTTP/1.1
Host: api-v2.brunico.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kidscreen.com
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: no-cache
Content-Type: application/json; charset=utf-8
Date: Tue, 13 Sep 2022 15:47:43 GMT
Expires: -1
Pragma: no-cache
Server: Microsoft-IIS/7.5
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Content-Length: 5
Connection: keep-alive
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.163200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kidscreen.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 17:10:21 GMT
expires: Wed, 06 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 599842
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a44521d3957cdba57b0fc21915252110
e04f70e8f3271d219d22be1a0c54f7a047abdd55
aaca825919de7c1d549ae107d482a8ac35cf518c1141ef3054018267a26067bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=kidscreen.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=kidscreen.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=kidscreen.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 13 Sep 2022 15:47:43 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=kidscreen.com
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=kidscreen.com
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=kidscreen.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 13 Sep 2022 15:47:43 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
142.250.74.163200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kidscreen.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 17:10:21 GMT
expires: Wed, 06 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 599842
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:400,300,700,700italic,400italic,300italic
142.250.74.10200 OK 25 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:400,300,700,700italic,400italic,300italic
IP 142.250.74.10:0
Hash 68f8cd163650ba0d93993a829035d9e2
d6ef5f810741d7f0161b073f6277392d09e76122
e753e43973191f955648033eadfaa891b67d7c06ef56c1baee5d02c6da7f16d8
GET /css?family=Lato:400,300,700,700italic,400italic,300italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 13 Sep 2022 15:47:41 GMT
date: Tue, 13 Sep 2022 15:47:41 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
142.250.74.163200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kidscreen.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 17:17:25 GMT
expires: Wed, 06 Sep 2023 17:17:25 GMT
cache-control: public, max-age=31536000
age: 599418
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a44521d3957cdba57b0fc21915252110
e04f70e8f3271d219d22be1a0c54f7a047abdd55
aaca825919de7c1d549ae107d482a8ac35cf518c1141ef3054018267a26067bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/arrow-up.png
54.211.245.222200 OK 1.1 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/arrow-up.png
IP 54.211.245.222:0
File type PNG image data, 14 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 838fa17c6714e396cf57e911aa9d9f9e
8bc2867b5fd1c536399f55f47d9eb78f55a0767a
bd68cf2d447f2945357a7bfa4bc86c9110df782a2c9d27c21598474415e72e84
GET /wp/wp-content/themes/kidscreen2021/images/arrow-up.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/wp/wp-content/themes/kidscreen2021/style.css?v=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:43 GMT
ETag: "f480f3f9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:15 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 1081
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/images/arrow-right.png
54.211.245.222200 OK 2.9 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/images/arrow-right.png
IP 54.211.245.222:0
File type PNG image data, 14 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 81c4081a64049b955419f5b69db2bba5
c7fa4e6a70822433d9862267b7a07d99432d1a47
9a0d014f1aafad42da755e2ef9d774cb9b8af5bdcc323c1aa9d55b457033f80c
GET /wp/wp-content/themes/kidscreen2021/images/arrow-right.png HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/wp/wp-content/themes/kidscreen2021/style.css?v=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Tue, 13 Sep 2022 15:47:43 GMT
ETag: "941fd3f9e22d41:0"
Last-Modified: Mon, 23 Jul 2018 16:00:15 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 2924
Connection: keep-alive
kidscreen.com/wp/wp-content/themes/kidscreen2021/fonts/glyphicons-halflings-regular.woff
54.211.245.222200 OK 23 kB URL HTTP/1.1 kidscreen.com/wp/wp-content/themes/kidscreen2021/fonts/glyphicons-halflings-regular.woff
IP 54.211.245.222:0
File type Web Open Font Format, TrueType, length 23320, version 1.0\012- data
Hash 68ed1dac06bf0409c18ae7bc62889170
22037a3455914e5662fa51a596677bdb329e2c5c
fc969dc1c6ff531abcf368089dcbaf5775133b0626ff56b52301a059fc0f9e1e
GET /wp/wp-content/themes/kidscreen2021/fonts/glyphicons-halflings-regular.woff HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://kidscreen.com/wp/wp-content/themes/kidscreen2021/style-ks.css?v=2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/font-woff
Date: Tue, 13 Sep 2022 15:47:43 GMT
ETag: "e1bc478def8ad71:0"
Last-Modified: Fri, 06 Aug 2021 18:19:10 GMT
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Content-Length: 23320
Connection: keep-alive
pixel.wp.com/g.gif?v=ext&j=1&blog=19845915&post=175292&host=kidscreen.com&ref=&fcp=4844&rand=0.47073055236458916
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&j=1&blog=19845915&post=175292&host=kidscreen.com&ref=&fcp=4844&rand=0.47073055236458916
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&j=1&blog=19845915&post=175292&host=kidscreen.com&ref=&fcp=4844&rand=0.47073055236458916 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 15:47:44 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1fabae3908a939ef130ed811e7f219d5
3f15a97caba2af9aac9239bd8f7b7f07f3f278f2
75c1397703dad9e85505d2d774df9acb38a51153ad1973ac2d7f4a5660a5769c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75C1397703DAD9E85505D2D774DF9ACB38A51153AD1973AC2D7F4A5660A5769C"
Last-Modified: Sun, 11 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5348
Expires: Tue, 13 Sep 2022 17:16:52 GMT
Date: Tue, 13 Sep 2022 15:47:44 GMT
Connection: keep-alive
s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
2.18.172.123200 OK 78 kB URL HTTP/2 s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
IP 2.18.172.123:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash ac1b5db6377f89a6d7f517c571b8ddba
87205f72f7338d717dd2966119ecb6aae22d5835
9164225c4ffa9eded3fd96fd8403249cf67e2047354fc245fb349216565d00a2
GET /static/layers.fa6cd1947ce26e890d3d.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-41cf5"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 77691
date: Tue, 13 Sep 2022 15:47:44 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
2bdddf6bc8ae8084f6c10351298784fe.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
142.250.74.65200 OK 3.1 kB URL HTTP/2 2bdddf6bc8ae8084f6c10351298784fe.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
IP 142.250.74.65:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5835)
Hash 3fa5e95a358d660ddb3c45769ae1357f
5f6164fbaf8cfbccfd061b00ae48dedfc16bbcd9
d32f4b680031c0e11222eb17385aa9d3b11d2903b05bff34c3d4eb6292631137
GET /safeframe/1-0-38/html/container.html HTTP/1.1
Host: 2bdddf6bc8ae8084f6c10351298784fe.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 3108
date: Tue, 13 Sep 2022 15:47:44 GMT
expires: Wed, 13 Sep 2023 15:47:44 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 02 Mar 2021 20:17:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
disqus.com/forums/kidscreen/count.js
151.101.192.134302 Found 0 B URL HTTP/1.1 disqus.com/forums/kidscreen/count.js
IP 151.101.192.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /forums/kidscreen/count.js HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Connection: close
Content-Length: 0
Server: Varnish
Location: https://kidscreen.disqus.com/count.js
Cache-Control: public, max-age=3600
Date: Tue, 13 Sep 2022 15:47:44 GMT
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
z.moatads.com/addthismoatframe568911941483/moatframe.js
95.101.172.146200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP 95.101.172.146:0
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TYrAmp44ddThNKrHeBmfOrJOox8ItZdAJeP4Uj7Uut6T7Jvp1PpX/XFzXT0gU1oJH/SwK8Irisw=
x-amz-request-id: 598E0BAF9E725A50
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
unused62: 8096267
cache-control: max-age=44879
date: Tue, 13 Sep 2022 15:47:44 GMT
X-Firefox-Spdy: h2
a.omappapi.com/app/js/api.min.js
194.242.11.186200 OK 43 kB URL HTTP/2 a.omappapi.com/app/js/api.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type Unicode text, UTF-8 text, with very long lines (65136), with no line terminators
Hash 1a131b881bdd288b32f623c5320f58a9
7a5fe57725425c6f0a1c33519e74fc5b91c138a1
8a0a0c6c9cd6711d8d2dce3b0fee3b4faaf2a56f63b3ce2f90e3e71355d10aaf
GET /app/js/api.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 13 Sep 2022 15:47:44 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"3820a63294d5f90189b74664d6ee5172"
last-modified: Mon, 12 Sep 2022 17:13:35 GMT
perma-cache: MISS
x-amz-id-2: 0Mtk3+Ld4T0RVBehXzRHneaumBwRFkk5evRDeOKtOO2MsJ+BBJFuWcudKdIHURX2GWJffH2XGcyeEyXAa3Yz6A==
x-amz-request-id: XJYPSVDM0E2FPR8P
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/12/2022 17:13:44
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: ae8dc163f444cb894d15c3eabff703aa
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
kidscreen.com/account/headerlogin/?differfun=47+31
54.211.245.222200 OK 43 B URL HTTP/1.1 kidscreen.com/account/headerlogin/?differfun=47+31
IP 54.211.245.222:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ff2f622188028570d14679662cac2987
7901143a6009019ce5bd5520fff709cd4ca7165f
da22ff4e999101c430cb09d6b3e63759a6a9cc3252da0241d0dbf0756943d22d
GET /account/headerlogin/?differfun=47+31 HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Cookie: __utma=120185303.1424639049.1663084051.1663084051.1663084051.1; __utmb=120185303.1.10.1663084051; __utmc=120185303; __utmz=120185303.1663084051.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: application/json; charset=utf-8
Date: Tue, 13 Sep 2022 15:47:43 GMT
Server: Microsoft-IIS/7.5
X-AspNet-Version: 4.0.30319
X-AspNetMvc-Version: 2.0
X-Powered-By: ASP.NET
Content-Length: 43
Connection: keep-alive
kidscreen.com/account/addlog/?logaction=https%3A%2F%2Fkidscreen.com%2F2021%2F08%2F13%2Finside-wham-os-plan-to-slide-into-success%2F
54.211.245.222200 OK 50 B URL HTTP/1.1 kidscreen.com/account/addlog/?logaction=https%3A%2F%2Fkidscreen.com%2F2021%2F08%2F13%2Finside-wham-os-plan-to-slide-into-success%2F
IP 54.211.245.222:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2b030b5b205cb37c456b624cbdc77312
0a45ad87da8ac0bfc90cad020e51c63f34b00237
6b96b37d751d18e75564e2bf30bc1f8c91c4bcdc0ca507f3efb3bb231d0148bb
GET /account/addlog/?logaction=https%3A%2F%2Fkidscreen.com%2F2021%2F08%2F13%2Finside-wham-os-plan-to-slide-into-success%2F HTTP/1.1
Host: kidscreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://kidscreen.com/2021/08/13/inside-wham-os-plan-to-slide-into-success/
Cookie: __utma=120185303.1424639049.1663084051.1663084051.1663084051.1; __utmb=120185303.1.10.1663084051; __utmc=120185303; __utmz=120185303.1663084051.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: application/json; charset=utf-8
Date: Tue, 13 Sep 2022 15:47:43 GMT
Server: Microsoft-IIS/7.5
X-AspNet-Version: 4.0.30319
X-AspNetMvc-Version: 2.0
X-Powered-By: ASP.NET
Content-Length: 50
Connection: keep-alive
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
2.18.172.123200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP 2.18.172.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Tue, 13 Sep 2022 15:47:44 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
munchkin.marketo.net/162/munchkin.js
23.61.220.209200 OK 4.7 kB URL HTTP/1.1 munchkin.marketo.net/162/munchkin.js
IP 23.61.220.209:0
File type ASCII text, with very long lines (606)
Hash 3e9baed982956735f6e0a0e756d97ed9
9223be6a494a10959101a7942419df7b05b84d73
930a508ed0ea6b4861d19c0738360182514010913c4ebfe9352064ae5006f8a1
GET /162/munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "75daf56f6191efe42577301908659c29:1656637152.894482"
Last-Modified: Fri, 01 Jul 2022 00:59:12 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=8640000
Expires: Thu, 22 Dec 2022 15:47:44 GMT
Date: Tue, 13 Sep 2022 15:47:44 GMT
Content-Length: 4677
Connection: keep-alive
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
m.addthis.com/live/red_lojson/300lo.json?si=6320a6128f434aa7&bkl=0&bl=1&pdt=1881&sid=6320a6128f434aa7&pub=ra-5b3f750f7bfb9972&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=kidscreen.com&fp=2021%2F08%2F13%2Finside-wham-os-plan-to-slide-into-success%2F&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Kidscreen%2CKidscreen%20magazine%2Ckids%20entertainment%2Cchildren%27s%20entertainment%2Canimation%2Ckids%20business%2Cfilm%2Ctv%2Ccareers%2Cjobs&colc=1663084051153&jsl=33&uvs=6320a6129a470c88000&skipb=1&callback=addthis.cbs.jsonp__245552257856176630
2.18.172.123200 OK 90 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=6320a6128f434aa7&bkl=0&bl=1&pdt=1881&sid=6320a6128f434aa7&pub=ra-5b3f750f7bfb9972&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=kidscreen.com&fp=2021%2F08%2F13%2Finside-wham-os-plan-to-slide-into-success%2F&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Kidscreen%2CKidscreen%20magazine%2Ckids%20entertainment%2Cchildren%27s%20entertainment%2Canimation%2Ckids%20business%2Cfilm%2Ctv%2Ccareers%2Cjobs&colc=1663084051153&jsl=33&uvs=6320a6129a470c88000&skipb=1&callback=addthis.cbs.jsonp__245552257856176630
IP 2.18.172.123:0
File type ASCII text, with no line terminators
Hash 505a4a1c6fcefffbec8bde0e8b333fbd
2384d4b0737d990a690d260bbbb37e3f54fa8f00
ec3157a1e67b1445913c8ec4f0b2aa679f95ea9621b08d79d8c243b06235dd9f
GET /live/red_lojson/300lo.json?si=6320a6128f434aa7&bkl=0&bl=1&pdt=1881&sid=6320a6128f434aa7&pub=ra-5b3f750f7bfb9972&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=kidscreen.com&fp=2021%2F08%2F13%2Finside-wham-os-plan-to-slide-into-success%2F&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Kidscreen%2CKidscreen%20magazine%2Ckids%20entertainment%2Cchildren%27s%20entertainment%2Canimation%2Ckids%20business%2Cfilm%2Ctv%2Ccareers%2Cjobs&colc=1663084051153&jsl=33&uvs=6320a6129a470c88000&skipb=1&callback=addthis.cbs.jsonp__245552257856176630 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 90
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Tue, 13 Sep 2022 15:47:44 GMT
X-Firefox-Spdy: h2
v1.addthisedge.com/live/boost/ra-5b3f750f7bfb9972/_ate.track.config_resp
2.18.172.123200 OK 154 B URL HTTP/2 v1.addthisedge.com/live/boost/ra-5b3f750f7bfb9972/_ate.track.config_resp
IP 2.18.172.123:0
File type ASCII text, with no line terminators
Hash 1798455c51e19a1de93e52339a502e8d
a0457d200050e575fe5fce342ef18826773a19a2
3f695eaf6f5245ffc8385edd6ed3d174509a3faedc9b9e14e4bffb1f0a881fb0
GET /live/boost/ra-5b3f750f7bfb9972/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
etag: 659743217
content-disposition: attachment; filename=1.txt
content-encoding: gzip
content-length: 154
cache-control: public, max-age=56, s-maxage=86400
date: Tue, 13 Sep 2022 15:47:44 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
api.omappapi.com/v2/embed/8820?d=kidscreen.com
54.230.111.56401 Unauthorized 165 B URL HTTP/2 api.omappapi.com/v2/embed/8820?d=kidscreen.com
IP 54.230.111.56:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7c9894282d3f92c471d29c461ec73b8f
4c4c6edb3817c9fb9687a57b9c76e4f38543b3bf
b934ce9883949e7bceb88fa78a354125eefc85715f7e54da8ff529c94ebab0fe
GET /v2/embed/8820?d=kidscreen.com HTTP/1.1
Host: api.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kidscreen.com
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 401 Unauthorized
content-type: application/json
content-length: 165
date: Tue, 13 Sep 2022 15:47:35 GMT
access-control-allow-origin: *
access-control-allow-headers: X-CSRF-Token
expires: Tue, 13 Sep 2022 15:49:44 GMT
cache-control: public, max-age=120, stale-while-revalidate=1800
x-user-agent: standard--
x-cache-config: 0 0
vary: Accept-Encoding, User-Agent
server: Pagely Gateway/1.5.1
x-cache: Error from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mKcL2_aojpqwoRmBrXtNaXKWWK00uyYzJMfbgkgpGQerkLOh11C4qg==
X-Firefox-Spdy: h2
kidscreen.disqus.com/count.js
151.101.84.134200 OK 871 B URL HTTP/1.1 kidscreen.disqus.com/count.js
IP 151.101.84.134:0
File type ASCII text, with very long lines (528)
Hash a487039f9b553cb4f6928743872234e9
b3d835075d1983a8c2fe716285d173fcc3708f9c
364f622ba24e063adcee84f132da53c6e6071745f04a00d10937663deb24b822
GET /count.js HTTP/1.1
Host: kidscreen.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kidscreen.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 871
Content-Type: application/javascript; charset=utf-8
Server: nginx
Last-Modified: Thu, 08 Sep 2022 14:04:36 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
ETag: "6319f674-367"
X-Amz-Cf-Pop: DFW56-P4
X-Amz-Cf-Id: nj4p440ZzL6idC1j5VuSJ7I4-5QjacYe9i7syxVzpLi5anNLYVmAtA==
Cache-Control: public, max-age=300
Date: Tue, 13 Sep 2022 15:47:44 GMT
Age: 6
Vary: Accept-Encoding
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022090801&st=env
142.250.74.162200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022090801&st=env
IP 142.250.74.162:0
File type JSON data\012- , ASCII text, with very long lines (14555), with no line terminators
Hash 899d4d74c8d869e2167c0e7065c8561e
d64a32b60b76d6de8fe04d41892f8740fc9e6537
101c5058338e750cf609819b620689fd96062d337bfdedb0e3eb462dee25e988
GET /getconfig/sodar?sv=200&tid=gpt&tv=2022090801&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kidscreen.com
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 13 Sep 2022 15:47:44 GMT
server: cafe
cache-control: private
content-length: 11044
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 05bc7bf812fd8f43a72d719e0965c2a4
5ed98c7c5a8bea3de5f4d587b354961d79100a86
d713a9926ea0e55d29e1a9f96f0860fc0efaf33ec442a95993ea572b6e824acb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1513
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:44 GMT
Last-Modified: Tue, 13 Sep 2022 15:22:31 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b83eeef1819083d0f8d52290b58abdef
7f5d00f725bed6d26c8ba00628adafc8f43c0c93
cca1c281e84e9694db182f17cd47d5782d602bf36e2f4902ce7612f2c5d74bd8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 15:47:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
632-bmx-814.mktoresp.com/webevents/visitWebPage?_mchNc=1663084051328&_mchCn=&_mchId=632-BMX-814&_mchTk=_mch-kidscreen.com-1663084051328-89069&_mchHo=kidscreen.com&_mchPo=&_mchRu=%2F2021%2F08%2F13%2Finside-wham-os-plan-to-slide-into-success%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp=
192.28.144.124200 OK 28 B URL HTTP/1.1 632-bmx-814.mktoresp.com/webevents/visitWebPage?_mchNc=1663084051328&_mchCn=&_mchId=632-BMX-814&_mchTk=_mch-kidscreen.com-1663084051328-89069&_mchHo=kidscreen.com&_mchPo=&_mchRu=%2F2021%2F08%2F13%2Finside-wham-os-plan-to-slide-into-success%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp=
IP 192.28.144.124:0
File type ASCII text, with no line terminators
Hash 9dafc521bd59955b4986f0fc3777f77a
5a572b4730d4a2bce2fa35597a0993c649f26c74
e4e90a7b8bacdfe395361149a9fd42f9192b68bdf1497e4454d0ab4c4917f746
POST /webevents/visitWebPage?_mchNc=1663084051328&_mchCn=&_mchId=632-BMX-814&_mchTk=_mch-kidscreen.com-1663084051328-89069&_mchHo=kidscreen.com&_mchPo=&_mchRu=%2F2021%2F08%2F13%2Finside-wham-os-plan-to-slide-into-success%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp= HTTP/1.1
Host: 632-bmx-814.mktoresp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kidscreen.com
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 15:47:44 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Request-Id: 3d796335-243a-452a-ab9f-b4ac3dc6a535
Content-Encoding: gzip
Access-Control-Allow-Origin: *
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Tue, 13 Sep 2022 15:47:45 GMT
expires: Tue, 13 Sep 2022 15:47:45 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 12:27:00 GMT
expires: Wed, 13 Sep 2023 12:27:00 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 12045
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
a.omappapi.com/app/js/api.min.css
194.242.11.186200 OK 0 B URL HTTP/2 a.omappapi.com/app/js/api.min.css
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /app/js/api.min.css HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kidscreen.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 13 Sep 2022 15:47:44 GMT
content-type: text/css
server: BunnyCDN-NO-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"fdfc47d7f4872c3530f2516e9f42a6ed"
last-modified: Mon, 12 Sep 2022 17:13:35 GMT
perma-cache: MISS
x-amz-id-2: +gDv26j+OJ2HX9mnndZMZBtqTHtFZhDwVRGS68Lc0pIJhqXWWL1Ai/VR5PkKFT/lhFi7kHBx9SwhbqU74XwbLw==
x-amz-request-id: XJYTK79X654PS3J7
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/12/2022 17:13:43
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 3bd76ca19650e905000ccf4c89b177d3
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2