444juliegeorgeberita.blogspot.com/2022/10/2022-income-tax-brackets-federal.html
142.250.74.161301 Moved Permanently 219 B URL HTTP/1.1 444juliegeorgeberita.blogspot.com/2022/10/2022-income-tax-brackets-federal.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 3cc9df7778311984661ced987ec66110
772c8aacd5fe91fa0c13b0e73c3c71db08711780
d87ebca6e6cdcfade54f5eb8ae4deeb6997553c6cadf0a0bee5572ff4c3434db
GET /2022/10/2022-income-tax-brackets-federal.html HTTP/1.1
Host: 444juliegeorgeberita.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://444juliegeorgeberita.blogspot.com/2022/10/2022-income-tax-brackets-federal.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Wed, 26 Oct 2022 12:42:56 GMT
Expires: Wed, 26 Oct 2022 12:42:56 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 219
Server: GSE
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e36c852b5e145f2f09fe73111fb162e1
e439c6a462f86a3003d6464a8b9999b1c4d1e210
52a721168d0c41cb0854ff8c730fce3b79db2e804b383238e95ff1401922bd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52A721168D0C41CB0854FF8C730FCE3B79DB2E804B383238E95FF1401922BD74"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4392
Expires: Wed, 26 Oct 2022 13:56:08 GMT
Date: Wed, 26 Oct 2022 12:42:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a39eea1096852891690eaee02a64383e
c273000f799fc3676e8e3ef3617611a31252cffc
d9d95319013d64bc2ef6d9870f4adba902ee970b6f9e96279c9ed86f556e0001
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9D95319013D64BC2EF6D9870F4ADBA902EE970B6F9E96279C9ED86F556E0001"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13958
Expires: Wed, 26 Oct 2022 16:35:35 GMT
Date: Wed, 26 Oct 2022 12:42:57 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 45bfdf3b823cd24564c8ac296a8b5b19
b0c442eb4f87556b3beb18ca8039dd4399b73f16
32113c679dda1f710ba67e537fdd0d435ccc186a238e3b14e48deb7b0700c693
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5408
Cache-Control: max-age=166693
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Etag: "6358fe56-1d7"
Expires: Fri, 28 Oct 2022 11:01:10 GMT
Last-Modified: Wed, 26 Oct 2022 09:31:02 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: EKzJc5zkZOu+o8t8dfDg7GNVr/wJ5cCBvBm85ZBTDHxe2vcpwOWN2Bswr8FUjignqW88A3DC2e4=
x-amz-request-id: 1M5KFFFPNJ6FWGTG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 26 Oct 2022 12:39:12 GMT
age: 225
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 35ba93f7305eade9093c149ab8374c1f
29d352bf8c811674691a8d9bc737bc8bf27da37a
12c1af15ce9017b55fdd5e90a2206ff29d6ed1c0c2a35f9fad6e674bd56b5256
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 12:42:57 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 35ba93f7305eade9093c149ab8374c1f
29d352bf8c811674691a8d9bc737bc8bf27da37a
12c1af15ce9017b55fdd5e90a2206ff29d6ed1c0c2a35f9fad6e674bd56b5256
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dd283dfc036535bdeb8a8be1310ef930
d3b1c300dd75d7af630e0f3112e49d7492d66c17
578f9256faa188facb3f2d68b02b0c7fb2e30e02e2e74234d015429563cba7aa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5479
Cache-Control: max-age=161708
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Etag: "6358ea97-1d7"
Expires: Fri, 28 Oct 2022 09:38:05 GMT
Last-Modified: Wed, 26 Oct 2022 08:06:47 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 91b74d6ae217958f13ebc358f22f561d
3f77d30d7eaf3c53fc45594dbf932353b06c2873
9ec534d559ceb1575554743f2bc9ade643e5d5e5a7e32355699eee8cb67460d5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3383
Cache-Control: max-age=152087
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Etag: "6358cd31-116"
Expires: Fri, 28 Oct 2022 06:57:44 GMT
Last-Modified: Wed, 26 Oct 2022 06:01:21 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
444juliegeorgeberita.blogspot.com/2022/10/2022-income-tax-brackets-federal.html
142.250.74.161200 OK 66 kB URL HTTP/2 444juliegeorgeberita.blogspot.com/2022/10/2022-income-tax-brackets-federal.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (53463)
Hash 445068441fd475a2134ec10b2b602acf
22f0e367c7ce163e3008d7ff951e284e26682896
f8e1f977441e05b8ae3b33166301d0206a7d363996f76e92532ce95015734533
GET /2022/10/2022-income-tax-brackets-federal.html HTTP/1.1
Host: 444juliegeorgeberita.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Wed, 26 Oct 2022 12:42:57 GMT
date: Wed, 26 Oct 2022 12:42:57 GMT
cache-control: private, max-age=0
last-modified: Tue, 25 Oct 2022 08:37:54 GMT
etag: W/"a3c2ecdc283948f34b107353eae9da04a2c82d67d43cba4a6cb96cb99f837f89"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 65511
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e5e6bc5615a40b88a61736c1e24db5c4
25553fed7022761e18dffb94835a8fb310d40daa
65aa9296f715a2ff9cce4fbed08a058dc11889e77de0efb6f65325446914e105
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash d1b51ea8dfff80203b14cdb947bfcf81
4f5fbd4f6906e57a7664e5e93555d024c42ac78a
e49afa2aa0cc92afcb8d1d231975b9ae89f7f4b7544794b70b13c7c4e1f698a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5570
Cache-Control: max-age=163242
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Etag: "6358f039-116"
Expires: Fri, 28 Oct 2022 10:03:39 GMT
Last-Modified: Wed, 26 Oct 2022 08:30:49 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 3d56596917080475122c9bb51cc0c0b7
d0294ac77866e801f6c94862b39bc00b9735d72f
ae58a33a93b695e84e3cffd34c09c20ccb08f33b775f87dd849077d3fbdf36a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 3d56596917080475122c9bb51cc0c0b7
d0294ac77866e801f6c94862b39bc00b9735d72f
ae58a33a93b695e84e3cffd34c09c20ccb08f33b775f87dd849077d3fbdf36a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 3d56596917080475122c9bb51cc0c0b7
d0294ac77866e801f6c94862b39bc00b9735d72f
ae58a33a93b695e84e3cffd34c09c20ccb08f33b775f87dd849077d3fbdf36a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
142.250.74.105200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
IP 142.250.74.105:0
File type ASCII text, with very long lines (1441)
Hash f60e5037324bf7fd2256c16929886f09
aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde
GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 23:51:43 GMT
expires: Sat, 21 Oct 2023 23:51:43 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 21 Oct 2022 15:50:58 GMT
content-type: text/javascript
age: 391874
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
142.250.74.106200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (32077)
Hash fd2b58574f9637ba7ef639267349d848
6eda5ea93f549ceb5693f6f1c038893fa56a510d
75627d4b97e5e6294a8f88f5eeaf9b616696dc8600db9701c47ef05f067880ec
GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Oct 2022 18:44:59 GMT
expires: Fri, 20 Oct 2023 18:44:59 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 496678
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2216895134-widgets.js
142.250.74.105200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2216895134-widgets.js
IP 142.250.74.105:0
File type ASCII text, with very long lines (2221)
Hash 083268f093ceb61c3a61a818f199d053
97e2062e29efe96089c3e98a5e50f29cdcb05464
6dccb46111dff2073ee44dd7c4b0093f39d28ebc62ec17917c6ce6f8d42dba13
GET /static/v1/widgets/2216895134-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56821
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 02:07:25 GMT
expires: Tue, 24 Oct 2023 02:07:25 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 24 Oct 2022 00:51:25 GMT
content-type: text/javascript
age: 210932
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash d1b51ea8dfff80203b14cdb947bfcf81
4f5fbd4f6906e57a7664e5e93555d024c42ac78a
e49afa2aa0cc92afcb8d1d231975b9ae89f7f4b7544794b70b13c7c4e1f698a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5570
Cache-Control: max-age=163242
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Etag: "6358f039-116"
Expires: Fri, 28 Oct 2022 10:03:39 GMT
Last-Modified: Wed, 26 Oct 2022 08:30:49 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 91b74d6ae217958f13ebc358f22f561d
3f77d30d7eaf3c53fc45594dbf932353b06c2873
9ec534d559ceb1575554743f2bc9ade643e5d5e5a7e32355699eee8cb67460d5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3383
Cache-Control: max-age=152087
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Etag: "6358cd31-116"
Expires: Fri, 28 Oct 2022 06:57:44 GMT
Last-Modified: Wed, 26 Oct 2022 06:01:21 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e5e6bc5615a40b88a61736c1e24db5c4
25553fed7022761e18dffb94835a8fb310d40daa
65aa9296f715a2ff9cce4fbed08a058dc11889e77de0efb6f65325446914e105
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Oct 2022 05:42:51 GMT
expires: Fri, 20 Oct 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 543606
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 18:53:39 GMT
expires: Tue, 24 Oct 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 150558
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=7634595726368596129&zx=5d897f7c-cb6c-431a-b4db-7ece136a33c7
142.250.74.105200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=7634595726368596129&zx=5d897f7c-cb6c-431a-b4db-7ece136a33c7
IP 142.250.74.105:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=7634595726368596129&zx=5d897f7c-cb6c-431a-b4db-7ece136a33c7 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 26 Oct 2022 12:42:57 GMT
last-modified: Wed, 26 Oct 2022 12:42:57 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.189.35.180101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.189.35.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Scp4DCbIg3c+IMxFPYUKlw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: E/XC2t847RBEdDX28RHfdkVqYXA=
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/blogger_img_proxy/ANbyha2i7KlSvLbrtWqU5GcbYXzQwEdasIcU1dt54qmepefiCULuD1kGwRKmQkV08dTCGWJ5nuWu_y-c2tszE8JizCK9K7C2hcQVm8yojiZD1TEOcaok9F9ViIxU-B552coOJDvVWXaxKYyKv6lEQ2zQ1g=w72-h72-p-k-no-nu
142.250.74.33200 OK 3.2 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha2i7KlSvLbrtWqU5GcbYXzQwEdasIcU1dt54qmepefiCULuD1kGwRKmQkV08dTCGWJ5nuWu_y-c2tszE8JizCK9K7C2hcQVm8yojiZD1TEOcaok9F9ViIxU-B552coOJDvVWXaxKYyKv6lEQ2zQ1g=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash ae42fb727fc342d2b98578191acc9d55
d459cbaabd55b67fac16027ebc0a8c54d126f9a0
de36f55d9369f52c0e1fa754751dc9ecb18aab4d5a6500f9f0571a37864a5e0c
GET /blogger_img_proxy/ANbyha2i7KlSvLbrtWqU5GcbYXzQwEdasIcU1dt54qmepefiCULuD1kGwRKmQkV08dTCGWJ5nuWu_y-c2tszE8JizCK9K7C2hcQVm8yojiZD1TEOcaok9F9ViIxU-B552coOJDvVWXaxKYyKv6lEQ2zQ1g=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 27 Oct 2022 12:42:58 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 26 Oct 2022 12:42:58 GMT
server: fife
content-length: 3207
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha3pambq04VhyhYbA-ZMt-b4dGdLPfgCW2njy0MpRL2xxXCWg-XmNTFvFrgrDNjzMYf7TfxU_P7W77iYleWZGSRt3o4qR14cYcXffIXDidNJh7Q69OH5-TYxUHOCVWXGl-KI-6yV7L8CkC6I=w72-h72-p-k-no-nu
142.250.74.33200 OK 1.8 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha3pambq04VhyhYbA-ZMt-b4dGdLPfgCW2njy0MpRL2xxXCWg-XmNTFvFrgrDNjzMYf7TfxU_P7W77iYleWZGSRt3o4qR14cYcXffIXDidNJh7Q69OH5-TYxUHOCVWXGl-KI-6yV7L8CkC6I=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash f983dd8bb407dc0582c2f9f08e81f42e
cdbfd696fd3168bb40e8cfd008b3e9f0a0dbbea1
b02f9c9f28d4d176f334bd0d3611187c2db744887d9fb125eaed01a4810bb44e
GET /blogger_img_proxy/ANbyha3pambq04VhyhYbA-ZMt-b4dGdLPfgCW2njy0MpRL2xxXCWg-XmNTFvFrgrDNjzMYf7TfxU_P7W77iYleWZGSRt3o4qR14cYcXffIXDidNJh7Q69OH5-TYxUHOCVWXGl-KI-6yV7L8CkC6I=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 27 Oct 2022 12:42:58 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 26 Oct 2022 12:42:58 GMT
server: fife
content-length: 1816
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 3d56596917080475122c9bb51cc0c0b7
d0294ac77866e801f6c94862b39bc00b9735d72f
ae58a33a93b695e84e3cffd34c09c20ccb08f33b775f87dd849077d3fbdf36a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1Axm0CYLAAgY6SLZgiZ7GOgAz4C_juXGU9MJDbRbWC_MCkqV7d0EwciiXTHDHDoufII9113EToFQt9mzD2rj2EMTV0msojteIj6oxBcUcNjINd1mGEg5jl_6MdENasaTMLvxkQ8Sal2EKU2BgX99IZC3Q-2O-P2s2eh7WQ=w72-h72-p-k-no-nu
142.250.74.33200 OK 1.0 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1Axm0CYLAAgY6SLZgiZ7GOgAz4C_juXGU9MJDbRbWC_MCkqV7d0EwciiXTHDHDoufII9113EToFQt9mzD2rj2EMTV0msojteIj6oxBcUcNjINd1mGEg5jl_6MdENasaTMLvxkQ8Sal2EKU2BgX99IZC3Q-2O-P2s2eh7WQ=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash 52cbfd878ad0903b11a20bc5fcc36ba5
ed6f471af3e39c6eddc166fa5e7c63999fdb6643
617e7e87f9c5204ccb9b9900855527065102b8e85e76aa33cd57a3e545056214
GET /blogger_img_proxy/ANbyha1Axm0CYLAAgY6SLZgiZ7GOgAz4C_juXGU9MJDbRbWC_MCkqV7d0EwciiXTHDHDoufII9113EToFQt9mzD2rj2EMTV0msojteIj6oxBcUcNjINd1mGEg5jl_6MdENasaTMLvxkQ8Sal2EKU2BgX99IZC3Q-2O-P2s2eh7WQ=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 27 Oct 2022 12:42:58 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 26 Oct 2022 12:42:58 GMT
server: fife
content-length: 1018
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha2fnJc_QpJ975dZG4on9Gc8UjGdx-hFMyytRR0s96XhDQ21wuW5_uFHFv0yLQHhYsinzqrXjkQ8xSHD7p4X0BxOerLi3VNXn5iR0yue4iPKL3--J-3G2_nyhk0DX3dzpNCoPqGbyA-LYfZQ=w72-h72-p-k-no-nu
142.250.74.33200 OK 5.3 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha2fnJc_QpJ975dZG4on9Gc8UjGdx-hFMyytRR0s96XhDQ21wuW5_uFHFv0yLQHhYsinzqrXjkQ8xSHD7p4X0BxOerLi3VNXn5iR0yue4iPKL3--J-3G2_nyhk0DX3dzpNCoPqGbyA-LYfZQ=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash 7cdea7c320bc82b74eac5a40161f7035
d9e0ebbb2101c3e2cf803fc43522c21e431a0062
c64538db7fd49061840dd4c05471784412c5fe5ed40173348828743c6f9481e0
GET /blogger_img_proxy/ANbyha2fnJc_QpJ975dZG4on9Gc8UjGdx-hFMyytRR0s96XhDQ21wuW5_uFHFv0yLQHhYsinzqrXjkQ8xSHD7p4X0BxOerLi3VNXn5iR0yue4iPKL3--J-3G2_nyhk0DX3dzpNCoPqGbyA-LYfZQ=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 27 Oct 2022 12:42:58 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 26 Oct 2022 12:42:58 GMT
server: fife
content-length: 5256
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha2dFulqaLMYLyVsR2V4T2dbCzBmmxscsS7xOcWIyOqC9sVZDjp5Yz_nC_KWwJAvsvDuf89ds9NXaueVEH4hWbNIOb2l_6e65lcaudfbVIF4msnLlXv-dhCVgBgxQpqiPob3CLH91-UY5G75u331G18=w72-h72-p-k-no-nu
142.250.74.33200 OK 4.2 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha2dFulqaLMYLyVsR2V4T2dbCzBmmxscsS7xOcWIyOqC9sVZDjp5Yz_nC_KWwJAvsvDuf89ds9NXaueVEH4hWbNIOb2l_6e65lcaudfbVIF4msnLlXv-dhCVgBgxQpqiPob3CLH91-UY5G75u331G18=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash ac964bca7118dad4f5e402c1a3c036e1
9a7896a67c3511f37369e213c3e74aca09dc9697
6e975a2f83a20c1ffe8d8f3aed731d77ffaedfce4e478ea7c351a8df54e3f744
GET /blogger_img_proxy/ANbyha2dFulqaLMYLyVsR2V4T2dbCzBmmxscsS7xOcWIyOqC9sVZDjp5Yz_nC_KWwJAvsvDuf89ds9NXaueVEH4hWbNIOb2l_6e65lcaudfbVIF4msnLlXv-dhCVgBgxQpqiPob3CLH91-UY5G75u331G18=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 27 Oct 2022 12:42:58 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 26 Oct 2022 12:42:58 GMT
server: fife
content-length: 4219
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1Y2VotkptSmBGrV7qxGfb8sX_Mmf66W46uQdxlH0B4aQBRa7ImHXu2vjYGPecNofsvvA9KAMaE5ZrIVoImUwUUvvZIMt7OW2Ym4pXeutg5ayBnoQziXM6I2TTeVOojZebeCcXHUKkKP77pDVX4PuM=w72-h72-p-k-no-nu
142.250.74.33200 OK 11 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1Y2VotkptSmBGrV7qxGfb8sX_Mmf66W46uQdxlH0B4aQBRa7ImHXu2vjYGPecNofsvvA9KAMaE5ZrIVoImUwUUvvZIMt7OW2Ym4pXeutg5ayBnoQziXM6I2TTeVOojZebeCcXHUKkKP77pDVX4PuM=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 1c6a80ef28f1213e31ba3ff1b08b6fee
1e02f7b863e7c0b688389b0b6a51a91f4291503d
0887178cbc5ab477c531fde7ed2a763f1998b815b3438428a8358c00fb2c2526
GET /blogger_img_proxy/ANbyha1Y2VotkptSmBGrV7qxGfb8sX_Mmf66W46uQdxlH0B4aQBRa7ImHXu2vjYGPecNofsvvA9KAMaE5ZrIVoImUwUUvvZIMt7OW2Ym4pXeutg5ayBnoQziXM6I2TTeVOojZebeCcXHUKkKP77pDVX4PuM=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Thu, 27 Oct 2022 12:42:58 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 26 Oct 2022 12:42:58 GMT
server: fife
content-length: 11067
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b4e794a6054d87ac7b33c9ae8f4f5b05
69b648310a82e091880429d86d30790d7bec4379
f1ec0e5ab5963888c7208d0aadf716b904b84a644c181fcd522e8fed8778bd90
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F1EC0E5AB5963888C7208D0AADF716B904B84A644C181FCD522E8FED8778BD90"
Last-Modified: Tue, 25 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11212
Expires: Wed, 26 Oct 2022 15:49:50 GMT
Date: Wed, 26 Oct 2022 12:42:58 GMT
Connection: keep-alive
www.variouscreativeformats.com/9f0de11e5fd48835de6964cc4939507c/invoke.js
173.233.137.36200 OK 9.8 kB URL HTTP/1.1 www.variouscreativeformats.com/9f0de11e5fd48835de6964cc4939507c/invoke.js
IP 173.233.137.36:0
File type exported SGML document, ASCII text, with very long lines (26949), with no line terminators
Hash 7dcc19609eb24659ddae89a41fa3842d
984b5a7090ae95203e6b92f3f3fdccf60b6b31e6
5818f02389fb2b95e3cf8acbdf1c46fb81ebca9ced238980c16f19d56b92394e
Analyzer Verdict Alert quad9 Sinkholed
GET /9f0de11e5fd48835de6964cc4939507c/invoke.js HTTP/1.1
Host: www.variouscreativeformats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 26 Oct 2022 12:42:58 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b1706b1fa283788e4b35b601af2536fe
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
216.58.207.195200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 18:59:14 GMT
expires: Tue, 24 Oct 2023 18:59:14 GMT
cache-control: public, max-age=31536000
age: 150225
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
combinatronics.io/apriasmoro/ngiklan/main/stats-trending.js
172.67.71.154200 OK 2.5 kB URL HTTP/2 combinatronics.io/apriasmoro/ngiklan/main/stats-trending.js
IP 172.67.71.154:0
Hash d535b2f1bb6d0ef0ac351057f3a5d02a
390acfa974210bb47ec27300fa7443e404af980e
81af0a2529b308d8d76bedb27feb7060a20af685fe1ca030cd8defbfc46b33f1
GET /apriasmoro/ngiklan/main/stats-trending.js HTTP/1.1
Host: combinatronics.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:42:58 GMT
content-type: text/javascript; charset=utf-8
cache-control: no-store
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YnjYbegzc6NMTC9U1r1IsFmNoym38HWIMfUOxacU8pfo9d1sKzqIZO0Om%2B%2FvUbXZvGb1ehXzSh8bY0H%2BqQIhZqmR8VxqQ1R%2FzNukkcfk5H1ahyeX0DtC5I7Xb6kPVAY9OsHi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7603465fd8930b02-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 787b1fc5d5f4cff91f5aee14f0cc2abf
a27036e3eeb9e273c9d9b5175237ff400b341c92
02cf018bf2716a3128a827ea3cc1daca23e98e0469c0dd24807e140af1a8f7b2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=89719
Date: Wed, 26 Oct 2022 12:42:59 GMT
Etag: "6357d705-1d7"
Expires: Thu, 27 Oct 2022 13:38:18 GMT
Last-Modified: Tue, 25 Oct 2022 12:31:01 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4YB1fcund4avRilLNeFsL7TDqmc8-LunSY6OnABMHkNaZfE3189Bug==
Age: 4037
simplewebanalysis.com/stats
52.58.42.92200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.58.42.92:0
File type ASCII text, with no line terminators
Hash 4a15d23a47e1de18628dd9b1ceaf2469
e1de21c6616cc4cdf4bb4fbfc2f3518ff75c08b7
521c1db1ff1672c17697d3fdc6f11b9d868416d851cf5c04ba4df0cf5c5c4683
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:42:59 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://444juliegeorgeberita.blogspot.com
access-control-allow-credentials: true
set-cookie: uid_id2=8bd02132-afb4-4797-84df-d1ac6b96e641:1:1; expires=Sat, 23 Oct 2032 12:42:59 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2235
Expires: Wed, 26 Oct 2022 13:20:14 GMT
Date: Wed, 26 Oct 2022 12:42:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2235
Expires: Wed, 26 Oct 2022 13:20:14 GMT
Date: Wed, 26 Oct 2022 12:42:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2235
Expires: Wed, 26 Oct 2022 13:20:14 GMT
Date: Wed, 26 Oct 2022 12:42:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2235
Expires: Wed, 26 Oct 2022 13:20:14 GMT
Date: Wed, 26 Oct 2022 12:42:59 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b946c4f2f177828cf7b76c5764e97157
c3856686b98e1883133aa1824c496d34512769a0
be818a015fc9c745ea561a0b9c2aca6ba25ade24acd696fa651163d47b195371
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13796
x-amzn-requestid: 90b1e032-78c6-499d-b564-f25c15e20304
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2OG0SoAMFx-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358568e-599d0f526fc6a01f77b67dcf;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qxBQMJAnYNJVLBf5LSOTC7v3hPl9sh-G-OIqrK7d5KpdVITaQCcGMA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:47:18 GMT
age: 53741
etag: "c3856686b98e1883133aa1824c496d34512769a0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae122c0f-a41b-4abc-a703-a5de223ae39a.png
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae122c0f-a41b-4abc-a703-a5de223ae39a.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db946866312c734e0c5f91ca76255b2f
e8b8236baab9106a426a415eb01494cc4cc91ad1
a695e7bc87da2c6d9f5669c09e662fe22982e69cb139466efa5093429fe19866
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae122c0f-a41b-4abc-a703-a5de223ae39a.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8439
x-amzn-requestid: e0eed725-0725-4f5a-9c91-fec13ad0ebe5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ajKYQGWhIAMFdhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63578a9b-2a0115120e75f5271cea992f;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 07:04:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: WVz4PqWqT9Pk1juQ95Xzi-7HcEDBqKb5VAncjXxOYFfKTnjRbmodoA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 04:44:59 GMT
age: 28680
etag: "e8b8236baab9106a426a415eb01494cc4cc91ad1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F057530b7-f6b8-4f9b-b6fc-8fdc4a101f36.webp
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F057530b7-f6b8-4f9b-b6fc-8fdc4a101f36.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1cc61ad4b1d66ab4bce27288ee690e12
324e13ad5c99f628d713e55a2994ad4042ece70e
62cd88bc19bc1f0be2a37c3e990897158acd3d55aa3ddd299144d4f9596ba34e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F057530b7-f6b8-4f9b-b6fc-8fdc4a101f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6831
x-amzn-requestid: cc6f38ff-ab33-4b18-8cae-aa6bc061962f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alKjPH7ToAMFSiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635857ae-3db2790d0e6c5fab6c4bc81f;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:39:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tiWbOUwlRzaT2EnCWIgoFaT_ho55s3tgRxalb7yBbI21Pv0BhfLJOg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:52:53 GMT
age: 53406
etag: "324e13ad5c99f628d713e55a2994ad4042ece70e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fe27cf2-33a8-42cc-a8cd-f5e804e60e26.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fe27cf2-33a8-42cc-a8cd-f5e804e60e26.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c3ae78510434fd68063fc144bf614382
3bb87ca5274ce9f6d81da60ab940d23ccd12843b
f42d89328435cb37cba1111903a6bd5e900857d0942e1506ea2115b4e6301541
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fe27cf2-33a8-42cc-a8cd-f5e804e60e26.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7929
x-amzn-requestid: 6324abd6-8e27-4903-8bfc-a0fc6a8625be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alK9LEeoIAMF5mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585854-2900343b1ae208a903fe58fd;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:42:44 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5MR4UzoW6rVsSpEyPAWrcFb2LCRICaG-toy3JflaXRrzZwcgMs48VQ==
via: 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:49:35 GMT
age: 53604
etag: "3bb87ca5274ce9f6d81da60ab940d23ccd12843b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91ee720c15dc69de45080d0c951353af
5292b31a99d90bcb7071f327b93d52034bdf9dcb
7fbe9f0f6db08fd539f2e8d4ac22e3b4d5ca14f7cde69f8424cce8b361d026e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4524
x-amzn-requestid: a493efe7-11c7-4032-b36b-7f838f8180bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aljicH_6IAMFqpQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63587fa9-0f15eae7680ea7b15e5e47ec;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 00:30:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OV7g4Y4fcQGijljebzHQtnpKdcPKw6LTxqORxxBJL2lFPYQLLoyNuQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 00:34:40 GMT
age: 43699
etag: "5292b31a99d90bcb7071f327b93d52034bdf9dcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7feebb27-e9c6-46cc-a15e-dfe7e14961be.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7feebb27-e9c6-46cc-a15e-dfe7e14961be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6908328a8d186075fa9e59a172c12913
73771b4bb2eb936ee8efd4039ee4913a51f94f3e
6d1e1ec3b1a3eec27056c711f5f2b957247c7d1e3be6d99c65bb96df74715446
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7feebb27-e9c6-46cc-a15e-dfe7e14961be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8187
x-amzn-requestid: b90e37c2-4d82-4b09-a6b3-67f5a9c88914
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alK9MEahoAMFZOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585854-221e800e6d54e5d44afbd7c2;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:42:44 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 189_1wcqto3Iek7udaXURyw_eJxk87027N-J8SpJkeu6vH3ilDKcnw==
via: 1.1 1949caaabae48a894fcd770a3e1384f6.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:58:41 GMT
age: 53058
etag: "73771b4bb2eb936ee8efd4039ee4913a51f94f3e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
snapwidget.com/js/embed.main.min.b61fafc5de1ae792.js
172.67.75.33200 OK 64 kB URL HTTP/2 snapwidget.com/js/embed.main.min.b61fafc5de1ae792.js
IP 172.67.75.33:0
File type ASCII text, with very long lines (2862), with no line terminators
Hash 3e1dbcb3ad4d5d1466186c1a93e61cf9
a68f9be0c5de4ea758acc70808210169d2115b12
595c0645721161387f30c43eff4a3627f0bf70197f04c8b6102caef9d8824e1e
GET /js/embed.main.min.b61fafc5de1ae792.js HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:42:59 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
etag: W/"633d4340-b2e"
last-modified: Wed, 05 Oct 2022 08:41:36 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 155410
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lR2GCMflLznX4AcO75wXFIWI7DywMJFwT1bX63%2Blw%2BYVGfAQXJPHbikkM6%2Bn8bV55RXiS5N3BC09CiteoI5QbuDcwE5xlY6XOPuthaK%2BmVe9zYZ8XEiXeA%2Fyql4JsovQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 76034668efb80b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
snapwidget.com/images/icons/twitter.png
172.67.75.33200 OK 716 B URL HTTP/2 snapwidget.com/images/icons/twitter.png
IP 172.67.75.33:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 557dcf13a6c64edb6327ca8092bfa6fe
1a6de39ca44d62562f6b41d4c11d93e6e600505f
2308c6bccc5ec728fb77bc14121b7d154206d45de5754875b60d1690dad2af07
GET /images/icons/twitter.png HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/stylesheets/embed.style.min.307799cd3bc5b2ee.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:42:59 GMT
content-type: image/webp
content-length: 716
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=2371
content-disposition: inline; filename="twitter.webp"
vary: Accept
etag: "633d4249-943"
last-modified: Wed, 05 Oct 2022 08:37:29 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1698579
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7YXPui62m78eFpECCI1HFazXKFwT7SSv9iRSSOwOqOaOu0%2FxuahYrAfGkvHDKcNP%2FnQQnab7rz3vC0ZFPm5LDywr4o%2FfeLmBwrlHEf91f7LL6fXwQ8ece%2FAWiOQ17Kmm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 760346693ff90b49-OSL
X-Firefox-Spdy: h2
snapwidget.com/images/icons/facebook.png
172.67.75.33200 OK 648 B URL HTTP/2 snapwidget.com/images/icons/facebook.png
IP 172.67.75.33:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 54e9168996419eada721e6ca83b9866e
9a98cbd3f57f7cb3017e0ed1a4c4356094c0c2fb
4d1a80126c4bacaa62d2c046fd95b1378b5b874582f0ac4a7c453ff5cd1d33d7
GET /images/icons/facebook.png HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/stylesheets/embed.style.min.307799cd3bc5b2ee.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:42:59 GMT
content-type: image/webp
content-length: 648
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=2222
content-disposition: inline; filename="facebook.webp"
vary: Accept
etag: "633d4249-8ae"
last-modified: Wed, 05 Oct 2022 08:37:29 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1158727
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wn8kkxfMvPI3%2FoY2yX2EwqzgYKwWuo%2BJzL1a7AEm8%2BQDL2TZf7bwZptJ5Rs8bpmO%2B03sKY%2FZQ2m%2FeVg85SwzOyFne4S0fu4CAYXYCQv8QT7g7W3m3pTXIosg2Yxfpdqc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 760346693ff40b49-OSL
X-Firefox-Spdy: h2
snapwidget.com/stylesheets/embed.style.min.307799cd3bc5b2ee.css
172.67.75.33200 OK 4.1 kB URL HTTP/2 snapwidget.com/stylesheets/embed.style.min.307799cd3bc5b2ee.css
IP 172.67.75.33:0
File type ASCII text, with very long lines (15866)
Hash f61e1438990bfa08daaf75c9f60ada9d
debfd1a28b793bec0b898762c3be1f1f5c1c30a9
367be7b5d531efd988fccafbbb2cb6af5166c22b089ed3e392fcaa60b3ac4417
GET /stylesheets/embed.style.min.307799cd3bc5b2ee.css HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:42:59 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=15975
etag: W/"6332bb54-3e67"
last-modified: Tue, 27 Sep 2022 08:59:00 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 622296
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mS4fbXMZ0OcuABGiZwDZxKNAEwN5oICThXQwCoHjgYAnbAuTaDjDATl%2BvJnJByBwuBqo9qG%2BHiOy6NM0DS4H5y%2BQGkt4rD3FegVatWG7jroobxB2YwtF1yESEQ%2FfqS40"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 76034668dfae0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 26 Oct 2022 12:41:09 GMT
expires: Wed, 26 Oct 2022 14:41:09 GMT
cache-control: public, max-age=7200
age: 110
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e7f1de4025eee44eed5a0ada1e998d6c
fd8bfad40b964ffd3534ac3aff68aaf31d38ba37
fba4107e5627b68a00dc9c31a657be714c85dc7c648b8e8e1c7373cc305f8228
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
snapwidget.com/cdn-cgi/rum?
172.67.75.33204 No Content 33 kB URL HTTP/2 snapwidget.com/cdn-cgi/rum?
IP 172.67.75.33:0
File type gzip compressed data, max compression\012- data
Hash 9e6c799fc8b757d6f6b81d0239bbdd59
3bee3d5f44f1c12f73a919573c409ebc7a6fe3f9
6e9f503b264e9b4e1dab78f64c9c2bc32220b3335a34aebc45c1fd4ca262fd35
POST /cdn-cgi/rum? HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: VQICUlZUGwcFV1BRAA==
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjE0NTMwNyIsImFwIjoiNDUzMTUwIiwiaWQiOiI1YTlkOTUxMTFiNTllYmU3IiwidHIiOiIwNzAyNjUzYTI5MWViMDc0MTc3NmRmYTJiNjEyMjJhOCIsInRpIjoxNjY2Nzg4MTc2MTc0fX0=
traceparent: 00-0702653a291eb0741776dfa2b61222a8-5a9d95111b59ebe7-01
tracestate: 145307@nr=0-1-145307-453150-5a9d95111b59ebe7----1666788176174
content-type: application/json
Content-Length: 3155
Origin: https://snapwidget.com
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Wed, 26 Oct 2022 12:42:59 GMT
access-control-allow-origin: https://snapwidget.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 76034669f8cc0b49-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
js-agent.newrelic.com/nr-1216.min.js
151.101.86.137200 OK 14 kB URL HTTP/2 js-agent.newrelic.com/nr-1216.min.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (32022)
Hash b7c09cc097b2847f9edc784adba62dcb
5aa648623cf5e3b4b215fe5d068a7904c59f2925
6da450b6a3ba53bdab36f6529e987a245cdfca9a37b77790f06dfd8d5797bdaa
GET /nr-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Vf9xsFZHH0UI6bmTnW+KeBzegICGOxvtMLIWtbljNKoJtdkUEk/MfmbYPFui+bgtiUf/4lC5dk8=
x-amz-request-id: 4AV5AVKCCR961CNG
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "9f533d8cd24b2c5e3b4dc886ecbd43e8"
x-amz-version-id: mHHzJIqOizHibcYt0xqAszRr0gQRiNYy
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:42:59 GMT
via: 1.1 varnish
x-served-by: cache-bma1665-BMA
x-cache: HIT
x-cache-hits: 623
x-timer: S1666788180.566425,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 14391
X-Firefox-Spdy: h2
snapwidget.com/stylesheets/embed.vendor.min.760717b3f565c387.css
172.67.75.33200 OK 1.2 kB URL HTTP/2 snapwidget.com/stylesheets/embed.vendor.min.760717b3f565c387.css
IP 172.67.75.33:0
File type ASCII text, with very long lines (2359), with no line terminators
Hash c6745ec688bc6a31b2bf2fb196324ac0
fe78d466d912041b108c088df6ac09eec97f5249
439120690721af021f81ddbd47d334732fe36ee46626790bb0aac51a1bdc98f7
GET /stylesheets/embed.vendor.min.760717b3f565c387.css HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:42:59 GMT
content-type: text/css
cf-bgj: minify
etag: W/"6332bb13-937"
last-modified: Tue, 27 Sep 2022 08:57:55 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 622296
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KlcTNEcUm47wcbRyDxWJKYcCWFvUsedpkxC8FaCJn5USU50Uy6dZKmEfiIy0J%2BMTi5Z1HGkyLpmqUs%2B8MKAMDQJgacn0SzO%2FS%2F1Iwm4UfQ5KwfoxMPACngrzTTtdI9jE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 76034668dfab0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
i.pinimg.com/originals/70/d0/41/70d04100ddd656b49eca5c1faa9405c1.jpg
151.101.84.84200 OK 32 kB URL HTTP/2 i.pinimg.com/originals/70/d0/41/70d04100ddd656b49eca5c1faa9405c1.jpg
IP 151.101.84.84:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1440x546, components 3\012- data
Hash fb284ba1139a1383f087b0469690c0a0
f157c654a8a95fb3c5b9ea29183baf7bfc941687
7faab54d6d8e34cc3cc1ac8c39f7e2b63b800975d9164a3ddb07bde8215811f9
GET /originals/70/d0/41/70d04100ddd656b49eca5c1faa9405c1.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "fb284ba1139a1383f087b0469690c0a0"
content-type: image/jpeg
cache-control: max-age=31536000, immutable
accept-ranges: bytes
vary: Origin
x-cdn: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
date: Wed, 26 Oct 2022 12:42:59 GMT
content-length: 32232
X-Firefox-Spdy: h2
theme-daddy.disqus.com/embed.js
151.101.84.134200 OK 26 kB URL HTTP/1.1 theme-daddy.disqus.com/embed.js
IP 151.101.84.134:0
File type ASCII text, with very long lines (32036)
Hash d71e43fac14d9f52f82a505cde174c0e
3302036959d74bc2616ce5fe0c9a74f12320c120
160a26bd2ffaa778295c6f7c057e9041f85aede4d157602540455d08882bf8d2
GET /embed.js HTTP/1.1
Host: theme-daddy.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 25490
Server: openresty
Content-Type: application/javascript; charset=utf-8
X-Service: router
Content-Encoding: gzip
Date: Wed, 26 Oct 2022 12:42:59 GMT
Age: 76
Vary: Accept-Encoding
Cache-Control: private, max-age=60
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
i.pinimg.com/736x/e0/47/39/e04739cbbcf836628ffc558f19035be9.jpg
151.101.84.84200 OK 27 kB URL HTTP/2 i.pinimg.com/736x/e0/47/39/e04739cbbcf836628ffc558f19035be9.jpg
IP 151.101.84.84:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 37x37, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Hash 74f5a9abad3eba09899ba4203985e8fb
c31bbc34f2cb4c50bf6fe073296c64c03ab9473e
a20244f73b19aefa81fdebd5d809b31359b30c356ac552c13f8307ea3d9493bf
GET /736x/e0/47/39/e04739cbbcf836628ffc558f19035be9.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "74f5a9abad3eba09899ba4203985e8fb"
content-type: image/jpeg
cache-control: max-age=31536000, immutable
accept-ranges: bytes
vary: Origin
x-cdn: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
date: Wed, 26 Oct 2022 12:42:59 GMT
content-length: 27449
X-Firefox-Spdy: h2
snapwidget.com/stylesheets/embed.grid.min.4069f6f840f9102b.css
172.67.75.33200 OK 854 B URL HTTP/2 snapwidget.com/stylesheets/embed.grid.min.4069f6f840f9102b.css
IP 172.67.75.33:0
File type ASCII text, with very long lines (2201), with no line terminators
Hash d42234e88046a98a8e2bdc0ad5ff120c
e58ca64e58ed16687d6f10ec34eb32e29ef59775
7f0601c1f579e2f9dda471f54e4ce972352b76ac1f91a028af9f0899d72cedd5
GET /stylesheets/embed.grid.min.4069f6f840f9102b.css HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:42:59 GMT
content-type: text/css
cf-bgj: minify
etag: W/"633d431d-899"
last-modified: Wed, 05 Oct 2022 08:41:01 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 622272
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vHI%2B5dyTNmlwr%2FgK4FjPOrSNimGZiwG9930PYop1Rvsrcwj7FA4M09l20V2fjeBz3Nef1A2ooze1OnCImLoMOfoaLFTtyfD%2BUU%2B0w4gwYJmVZHNCByRRD02ddXC5d5h5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 76034668dfb00b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e51b6855c0480724d286847fa91528fe
ee6a114e7bc79b1aa1f07b31cb90674c2ba77bbc
174e93f5d04840d025c9807d0c752ad4b96a4350ab968025b0856c5e59599d47
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2416
Cache-Control: max-age=107508
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:59 GMT
Etag: "635822d7-1d7"
Expires: Thu, 27 Oct 2022 18:34:47 GMT
Last-Modified: Tue, 25 Oct 2022 17:54:31 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
i.pinimg.com/736x/e4/1d/c1/e41dc120ab619776ca34735be5c61edc.jpg
151.101.84.84200 OK 81 kB URL HTTP/2 i.pinimg.com/736x/e4/1d/c1/e41dc120ab619776ca34735be5c61edc.jpg
IP 151.101.84.84:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 735x1139, components 3\012- data
Hash 2d1e933ba29c2e3347e9e2d4b83aa896
faa47867994ea04711d54e657cbb60d2253959dd
c273a3fd6fa755806642a3bfcb1bc036582b6206bc875f2272180a96fafc0898
GET /736x/e4/1d/c1/e41dc120ab619776ca34735be5c61edc.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "2d1e933ba29c2e3347e9e2d4b83aa896"
content-type: image/jpeg
cache-control: max-age=31536000, immutable
accept-ranges: bytes
vary: Origin
x-cdn: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
date: Wed, 26 Oct 2022 12:42:59 GMT
content-length: 81170
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0c68f55ceed40c88b3ac6e21da050b99
c4d919780047bf35565d3d509cb075f0e7993867
e7adad7796124741c54c3a2b968fb0e5cca87c69b73452247e1a1745873f9568
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E7ADAD7796124741C54C3A2B968FB0E5CCA87C69B73452247E1A1745873F9568"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14405
Expires: Wed, 26 Oct 2022 16:43:04 GMT
Date: Wed, 26 Oct 2022 12:42:59 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 77b5da0f60755df91da1b98333c6d33c
0c36c5f1063e2ef41d02e26ddf9ed1e0a490e6b4
085b499d52d53965301db8affc692e09876290e5d67bf09c83178cc54384999f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bfa50adb5c45e1105c81a0ad982667fd
4d3ab11c71cd1faa8de320041ea94d50ff03bd41
533468ad412d5386403bf2cae0f18973a59ac04ad8f3edaf6bed1a4eaec07bbc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4772
Cache-Control: max-age=106269
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:59 GMT
Etag: "635814cc-1d7"
Expires: Thu, 27 Oct 2022 18:14:08 GMT
Last-Modified: Tue, 25 Oct 2022 16:54:36 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 130509513bc271340f20f1c556b2592a
6fd8b0623344d4c06ecf4e0708eb51a37d79ed9d
6a69bfbb5b21f5cfae366b21ab59426e78d51467926430c7bbf44d7f8ac704de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/sdk.js
157.240.221.16200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 157.240.221.16:0
File type ASCII text, with very long lines (1961)
Hash 737168cdd47424afe872b38d175badd6
28f1095aae5544f9f90b1c689bd66189c2f78d8c
38522879268a76e08288459a9df5b314deb885cfaa0291eb4fc4b854d88e75fc
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 7776e7eb3a1d5053bcfa849ab9acae2a
etag: "8e9381180a5cfff12ad24206a95aa103"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 26 Oct 2022 12:58:06 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: c3FozdR0JK/ocrONF1ut1g==
x-fb-debug: 6JCKw/7gbjWzYBBZYo1S0xmwgWAQVdLpmBacVSRGdNk6TXZbk7xr9g8vOXDlk9NdACFexLlTMVs+HF+aNiemyw==
priority: u=3,i
content-length: 1686
x-fb-trip-id: 1679558926
date: Wed, 26 Oct 2022 12:42:59 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bfa50adb5c45e1105c81a0ad982667fd
4d3ab11c71cd1faa8de320041ea94d50ff03bd41
533468ad412d5386403bf2cae0f18973a59ac04ad8f3edaf6bed1a4eaec07bbc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4772
Cache-Control: max-age=106269
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:59 GMT
Etag: "635814cc-1d7"
Expires: Thu, 27 Oct 2022 18:14:08 GMT
Last-Modified: Tue, 25 Oct 2022 16:54:36 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bfa50adb5c45e1105c81a0ad982667fd
4d3ab11c71cd1faa8de320041ea94d50ff03bd41
533468ad412d5386403bf2cae0f18973a59ac04ad8f3edaf6bed1a4eaec07bbc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4429
Cache-Control: max-age=105926
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:59 GMT
Etag: "635814cc-1d7"
Expires: Thu, 27 Oct 2022 18:08:25 GMT
Last-Modified: Tue, 25 Oct 2022 16:54:36 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
142.250.74.164200 OK 666 B URL HTTP/2 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP 142.250.74.164:0
File type ASCII text, with very long lines (1034), with no line terminators
Hash 1ee4fcc6bc5d4a74841bde5e2be52621
c04bd68b2e519e021037dd1e4d624189b46a374d
00913f63ee8bc6cbc6499378b6039e4e82b017b956000524296a2f842f2a3122
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 26 Oct 2022 12:42:59 GMT
date: Wed, 26 Oct 2022 12:42:59 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 666
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s10.histats.com/js15_as.js
46.105.201.240200 OK 4.4 kB URL HTTP/2 s10.histats.com/js15_as.js
IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (11440), with no line terminators
Hash ed192092c129db6123a3397855f42619
067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:33:18 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 769196932
content-type: application/javascript; charset=UTF-8
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
216.58.207.206200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 216.58.207.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Wed, 26 Oct 2022 12:42:59 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+024; expires=Fri, 25-Oct-2024 12:42:59 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Wed, 26 Oct 2022 12:42:59 GMT
cache-control: private
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 71ea103082f510224854520db0f9ae29
6b7576b8b932821018ea0b8f3842e6e5bd48b18a
fa3cf94e96ddb808ea0737a91865b5ddc6d2226ce5c580dbf99e3bef40fa02c4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4323
Cache-Control: max-age=135003
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:59 GMT
Etag: "635886cb-1d7"
Expires: Fri, 28 Oct 2022 02:13:02 GMT
Last-Modified: Wed, 26 Oct 2022 01:00:59 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
play.google.com/log?format=json&hasfast=true&authuser=0
216.58.207.206200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 216.58.207.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 2974
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Wed, 26 Oct 2022 12:42:59 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+993; expires=Fri, 25-Oct-2024 12:42:59 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Wed, 26 Oct 2022 12:42:59 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e51b6855c0480724d286847fa91528fe
ee6a114e7bc79b1aa1f07b31cb90674c2ba77bbc
174e93f5d04840d025c9807d0c752ad4b96a4350ab968025b0856c5e59599d47
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4493
Cache-Control: max-age=109585
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:59 GMT
Etag: "635822d7-1d7"
Expires: Thu, 27 Oct 2022 19:09:24 GMT
Last-Modified: Tue, 25 Oct 2022 17:54:31 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
i.pinimg.com/736x/e4/81/6d/e4816d2d3a58f1671a89a48179ddc137.jpg
151.101.84.84200 OK 8.8 kB URL HTTP/2 i.pinimg.com/736x/e4/81/6d/e4816d2d3a58f1671a89a48179ddc137.jpg
IP 151.101.84.84:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Hash c3f3c4a912f1ed0723464bafd666e935
323ff6d500bf18a02a43a38574d8697cca890fb8
3b9e011ed471f6c03b9e4d6bd096fa9f39f5369a4c1c4a29110993e75cebcac5
GET /736x/e4/81/6d/e4816d2d3a58f1671a89a48179ddc137.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "c3f3c4a912f1ed0723464bafd666e935"
content-type: image/jpeg
cache-control: max-age=31536000, immutable
accept-ranges: bytes
vary: Origin
x-cdn: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
date: Wed, 26 Oct 2022 12:42:59 GMT
content-length: 8846
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 130509513bc271340f20f1c556b2592a
6fd8b0623344d4c06ecf4e0708eb51a37d79ed9d
6a69bfbb5b21f5cfae366b21ab59426e78d51467926430c7bbf44d7f8ac704de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bfa50adb5c45e1105c81a0ad982667fd
4d3ab11c71cd1faa8de320041ea94d50ff03bd41
533468ad412d5386403bf2cae0f18973a59ac04ad8f3edaf6bed1a4eaec07bbc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4772
Cache-Control: max-age=106269
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:59 GMT
Etag: "635814cc-1d7"
Expires: Thu, 27 Oct 2022 18:14:08 GMT
Last-Modified: Tue, 25 Oct 2022 16:54:36 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 130509513bc271340f20f1c556b2592a
6fd8b0623344d4c06ecf4e0708eb51a37d79ed9d
6a69bfbb5b21f5cfae366b21ab59426e78d51467926430c7bbf44d7f8ac704de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:42:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js
142.250.74.163200 OK 160 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (608)
Size 160 kB (159789 bytes)
Hash 1230a090d5cedcb9e764406ab9497c1b
3d175bcf4ad9957c3e32611713c01347299b173e
585cafe3d6a3b932804aaa5aeb19a650688a2c15767f513d0d60c1941475c428
GET /recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 159789
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 21:08:18 GMT
expires: Tue, 24 Oct 2023 21:08:18 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 02 Oct 2022 20:02:07 GMT
content-type: text/javascript
age: 142481
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
scontent.cdninstagram.com/v/t51.2885-15/307034507_134862639286265_5017407683172020676_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeEMHHqKMFTVyG48Aat6Xfe7k2r5yGkAmBWTavnIaQCYFfboVJ-BfZ1nnspsOy77504&_nc_ohc=DmNuVEvL_V8AX88V-Eq&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8g-jlveFO_uzq9UdfuB2_wmD3XtLyG2tpnrU5orszO3A&oe=635EDCF6
157.240.221.63200 OK 195 kB URL HTTP/2 scontent.cdninstagram.com/v/t51.2885-15/307034507_134862639286265_5017407683172020676_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeEMHHqKMFTVyG48Aat6Xfe7k2r5yGkAmBWTavnIaQCYFfboVJ-BfZ1nnspsOy77504&_nc_ohc=DmNuVEvL_V8AX88V-Eq&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8g-jlveFO_uzq9UdfuB2_wmD3XtLyG2tpnrU5orszO3A&oe=635EDCF6
IP 157.240.221.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size 195 kB (194568 bytes)
Hash 377b7319fe22c590f88f3ed5ba18a136
c209c2bc6fd0bc8a5d9f4cf64b7e45f5818ea59a
662ddaf2407b561c7765011d03f7aca57869bfdbe4ce74482ea7924859d541fd
GET /v/t51.2885-15/307034507_134862639286265_5017407683172020676_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeEMHHqKMFTVyG48Aat6Xfe7k2r5yGkAmBWTavnIaQCYFfboVJ-BfZ1nnspsOy77504&_nc_ohc=DmNuVEvL_V8AX88V-Eq&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8g-jlveFO_uzq9UdfuB2_wmD3XtLyG2tpnrU5orszO3A&oe=635EDCF6 HTTP/1.1
Host: scontent.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sat, 17 Sep 2022 08:48:52 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 2755561000
x-needle-checksum: 2488025995
content-digest: adler32=2488025995
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 194568
x-fb-trip-id: 1679558926
date: Wed, 26 Oct 2022 12:42:59 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent.cdninstagram.com/v/t51.2885-15/244052366_242723337818957_487001981621570713_n.jpg?_nc_cat=107&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeEtaTgkZ8wXBlu-YL4c8VuVEAx6B4XSJkcQDHoHhdImR3AAm9zgV6zDOYIzm9CiYu0&_nc_ohc=y7z78di9o2kAX8P5Y5R&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8Ni8CK_ZT6c-vo1fzN7sGoxWT1dAEROQuN0XY6C4gkaA&oe=635DEE5F
157.240.221.63200 OK 173 kB URL HTTP/2 scontent.cdninstagram.com/v/t51.2885-15/244052366_242723337818957_487001981621570713_n.jpg?_nc_cat=107&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeEtaTgkZ8wXBlu-YL4c8VuVEAx6B4XSJkcQDHoHhdImR3AAm9zgV6zDOYIzm9CiYu0&_nc_ohc=y7z78di9o2kAX8P5Y5R&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8Ni8CK_ZT6c-vo1fzN7sGoxWT1dAEROQuN0XY6C4gkaA&oe=635DEE5F
IP 157.240.221.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size 173 kB (172726 bytes)
Hash 302dae2eb8ddcd13f322a4d485960049
f8e0419f41a234335029d49410dc7fc56524da2d
b3f40f0428d938013319a075526d995822884ebb9bdb1c1368a9ab50cee29a5b
GET /v/t51.2885-15/244052366_242723337818957_487001981621570713_n.jpg?_nc_cat=107&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeEtaTgkZ8wXBlu-YL4c8VuVEAx6B4XSJkcQDHoHhdImR3AAm9zgV6zDOYIzm9CiYu0&_nc_ohc=y7z78di9o2kAX8P5Y5R&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT8Ni8CK_ZT6c-vo1fzN7sGoxWT1dAEROQuN0XY6C4gkaA&oe=635DEE5F HTTP/1.1
Host: scontent.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Fri, 01 Oct 2021 10:43:36 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 388708087
x-needle-checksum: 2911320566
content-digest: adler32=2911320566
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 172726
x-fb-trip-id: 1679558926
date: Wed, 26 Oct 2022 12:42:59 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
literalcorpulent.com/watch.466954046067?key=9f0de11e5fd48835de6964cc4939507c&kw=%5B%222022%22%2C%22income%22%2C%22tax%22%2C%22brackets%22%2C%22federal%22%5D&refer=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&tz=0&dev=r&res=12.31&uuid=8bd02132-afb4-4797-84df-d1ac6b96e641%3A1%3A1
173.233.139.164200 OK 115 B URL HTTP/1.1 literalcorpulent.com/watch.466954046067?key=9f0de11e5fd48835de6964cc4939507c&kw=%5B%222022%22%2C%22income%22%2C%22tax%22%2C%22brackets%22%2C%22federal%22%5D&refer=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&tz=0&dev=r&res=12.31&uuid=8bd02132-afb4-4797-84df-d1ac6b96e641%3A1%3A1
IP 173.233.139.164:0
File type ASCII text, with no line terminators
Hash 16579cc322e9e105427ecfa57890ef69
8bb47ec30cf894ab49032d7271a45f0c778baa05
f28ce5befe08ed90a2e12b6b2a5e9fdafaa6ad173503079155260aa480c66590
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.466954046067?key=9f0de11e5fd48835de6964cc4939507c&kw=%5B%222022%22%2C%22income%22%2C%22tax%22%2C%22brackets%22%2C%22federal%22%5D&refer=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&tz=0&dev=r&res=12.31&uuid=8bd02132-afb4-4797-84df-d1ac6b96e641%3A1%3A1 HTTP/1.1
Host: literalcorpulent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Cookie: u_pl=16266998
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 26 Oct 2022 12:42:59 GMT
Content-Type: text/html
Content-Length: 115
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 621d282a1f76dd03413b9cad1879bfa2
Strict-Transport-Security: max-age=0; includeSubdomains
i.pinimg.com/736x/75/50/92/75509264a7f60b6978f3291d76033438.jpg
151.101.84.84200 OK 45 kB URL HTTP/2 i.pinimg.com/736x/75/50/92/75509264a7f60b6978f3291d76033438.jpg
IP 151.101.84.84:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, progressive, precision 8, 718x743, components 3\012- data
Hash 410f6f724e157889a085fe41dd2101f9
fc94574c2bd1ef6084c718cf5313c75422653d88
22502dafc34db20114a40bf56774eddf39415d7a43daab8f60dbbf94a821eca2
GET /736x/75/50/92/75509264a7f60b6978f3291d76033438.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-replication-status: FAILED
etag: "410f6f724e157889a085fe41dd2101f9"
content-type: image/jpeg
cache-control: max-age=31536000, immutable
accept-ranges: bytes
vary: Origin
x-cdn: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
date: Wed, 26 Oct 2022 12:43:00 GMT
content-length: 44912
X-Firefox-Spdy: h2
scontent.cdninstagram.com/v/t51.2885-15/269751951_277845444315548_3618974636877083108_n.jpg?_nc_cat=105&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeHwyf9ST6KTSa4NFnWyNwVjquLJe-1AOJ2q4sl77UA4nVhF9E7xOI5zWX0-2_sfUCY&_nc_ohc=GwZpuegExU8AX_deXky&_nc_oc=AQmR5Qfxf9i-nXCG0iZE2dUqAEG6McGHYTVlECwvxzEYxYojNzoWeMJhBumIratvP3o&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT_a9FGgyOq09kfI0ISosIT1NUf1xIIz0OvzdtZofUJX8Q&oe=635EAB67
157.240.221.63200 OK 198 kB URL HTTP/2 scontent.cdninstagram.com/v/t51.2885-15/269751951_277845444315548_3618974636877083108_n.jpg?_nc_cat=105&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeHwyf9ST6KTSa4NFnWyNwVjquLJe-1AOJ2q4sl77UA4nVhF9E7xOI5zWX0-2_sfUCY&_nc_ohc=GwZpuegExU8AX_deXky&_nc_oc=AQmR5Qfxf9i-nXCG0iZE2dUqAEG6McGHYTVlECwvxzEYxYojNzoWeMJhBumIratvP3o&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT_a9FGgyOq09kfI0ISosIT1NUf1xIIz0OvzdtZofUJX8Q&oe=635EAB67
IP 157.240.221.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size 198 kB (198291 bytes)
Hash 864f7647d5439c9c330c9331ea94bf0c
fa6395a4b4fe5f92ffb999f3d801a650c3fe2c36
4cdaed13602d43c54018b0b91b75b33b48749d8ec92aa7c673337ce990815c56
GET /v/t51.2885-15/269751951_277845444315548_3618974636877083108_n.jpg?_nc_cat=105&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeHwyf9ST6KTSa4NFnWyNwVjquLJe-1AOJ2q4sl77UA4nVhF9E7xOI5zWX0-2_sfUCY&_nc_ohc=GwZpuegExU8AX_deXky&_nc_oc=AQmR5Qfxf9i-nXCG0iZE2dUqAEG6McGHYTVlECwvxzEYxYojNzoWeMJhBumIratvP3o&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT_a9FGgyOq09kfI0ISosIT1NUf1xIIz0OvzdtZofUJX8Q&oe=635EAB67 HTTP/1.1
Host: scontent.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sun, 19 Dec 2021 15:39:33 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 549129686
x-needle-checksum: 3585315655
content-length: 198291
content-digest: adler32=3585315655
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1679558926
date: Wed, 26 Oct 2022 12:42:59 GMT
x-fb-edge-debug: dZnynwJhoA-Y57Z5KDxFjopI4uzTFPLOfHrupGyFsUi2Fnmu9wK25uQPnISLAa34MYpdMEKdQo3biAVJ_NC2HAc0P3GUdgnfIlUMZqCf1BM
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent.cdninstagram.com/v/t51.2885-15/308267587_1281003269393015_7290580284912778718_n.jpg?_nc_cat=106&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeEkK2fZW4YX1Oz0cVcW1Hck447gxrJHrr3jjuDGskeuveto3owNDjcYlKwyp9fHah4&_nc_ohc=M-jQyLWvx7UAX9FB0TJ&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT9QEz3Sk8R3_DehA7ZY2KJwRWPv5LKe8ISvSH1eagwLhQ&oe=635D408C
157.240.221.63200 OK 204 kB URL HTTP/2 scontent.cdninstagram.com/v/t51.2885-15/308267587_1281003269393015_7290580284912778718_n.jpg?_nc_cat=106&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeEkK2fZW4YX1Oz0cVcW1Hck447gxrJHrr3jjuDGskeuveto3owNDjcYlKwyp9fHah4&_nc_ohc=M-jQyLWvx7UAX9FB0TJ&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT9QEz3Sk8R3_DehA7ZY2KJwRWPv5LKe8ISvSH1eagwLhQ&oe=635D408C
IP 157.240.221.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size 204 kB (204501 bytes)
Hash 45b55621e1551f8c09296be0ae3dfb42
d6b177f296013372ddf9cbe20f0faa4171c4fc40
619a654c895bbd3f87aaa1836f505d62ba538ce1e8c8cec224eb52e6f9b62e98
GET /v/t51.2885-15/308267587_1281003269393015_7290580284912778718_n.jpg?_nc_cat=106&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeEkK2fZW4YX1Oz0cVcW1Hck447gxrJHrr3jjuDGskeuveto3owNDjcYlKwyp9fHah4&_nc_ohc=M-jQyLWvx7UAX9FB0TJ&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT9QEz3Sk8R3_DehA7ZY2KJwRWPv5LKe8ISvSH1eagwLhQ&oe=635D408C HTTP/1.1
Host: scontent.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Fri, 23 Sep 2022 11:37:04 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 1622451726
x-needle-checksum: 3473014402
content-digest: adler32=3473014402
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 204501
x-fb-trip-id: 1679558926
date: Wed, 26 Oct 2022 12:42:59 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent.cdninstagram.com/v/t51.2885-15/306047190_605023417750987_2209349381291975566_n.jpg?_nc_cat=108&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeHiYApyAp7N7por4leFUdpus_aH00G9_byz9ofTQb39vNq9v1c-Esvn9_qL1joLCOs&_nc_ohc=c-edS3--hBQAX9CGsVw&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-ENvFcnW5LCp9Xr-4v_PgGucXCHuOgPYIfQvUBzFQs5Q&oe=635E43E3
157.240.221.63200 OK 227 kB URL HTTP/2 scontent.cdninstagram.com/v/t51.2885-15/306047190_605023417750987_2209349381291975566_n.jpg?_nc_cat=108&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeHiYApyAp7N7por4leFUdpus_aH00G9_byz9ofTQb39vNq9v1c-Esvn9_qL1joLCOs&_nc_ohc=c-edS3--hBQAX9CGsVw&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-ENvFcnW5LCp9Xr-4v_PgGucXCHuOgPYIfQvUBzFQs5Q&oe=635E43E3
IP 157.240.221.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size 227 kB (226690 bytes)
Hash 40c6e0f989fd04dd2557d54be26c72e2
d1b3521947de29d617ff397485232575481151c4
79f91b7c681a5dc2bcdd5ce9642dbe060cd390c3e539adff93a1f5e57429554b
GET /v/t51.2885-15/306047190_605023417750987_2209349381291975566_n.jpg?_nc_cat=108&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeHiYApyAp7N7por4leFUdpus_aH00G9_byz9ofTQb39vNq9v1c-Esvn9_qL1joLCOs&_nc_ohc=c-edS3--hBQAX9CGsVw&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-ENvFcnW5LCp9Xr-4v_PgGucXCHuOgPYIfQvUBzFQs5Q&oe=635E43E3 HTTP/1.1
Host: scontent.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Sat, 10 Sep 2022 16:29:40 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 2592134114
x-needle-checksum: 743166225
content-digest: adler32=743166225
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 226690
x-fb-trip-id: 1679558926
date: Wed, 26 Oct 2022 12:42:59 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent.cdninstagram.com/v/t51.2885-15/306772431_2173143222863449_7278280663831954741_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeEvG70__E4nLlFfvqCA_YY-sSArlx7buROxICuXHtu5E7rLk5_pOCpdAL5iLzoJYoM&_nc_ohc=s41gIYyQ9LMAX88yAGz&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-Tvv3ks3fW8RuNA1viWFitViy79aQSksVSKM31yDwplg&oe=635D4172
157.240.221.63200 OK 201 kB URL HTTP/2 scontent.cdninstagram.com/v/t51.2885-15/306772431_2173143222863449_7278280663831954741_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeEvG70__E4nLlFfvqCA_YY-sSArlx7buROxICuXHtu5E7rLk5_pOCpdAL5iLzoJYoM&_nc_ohc=s41gIYyQ9LMAX88yAGz&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-Tvv3ks3fW8RuNA1viWFitViy79aQSksVSKM31yDwplg&oe=635D4172
IP 157.240.221.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size 201 kB (201172 bytes)
Hash fed02588e27720fe9728e82af2048f69
257a51910e1536803fdea6c2a4ad58f89df9243e
9f6eb68aaff795ccd01dc5e0eb2d128321d763c7883c560b08728c7fea5e2d7f
GET /v/t51.2885-15/306772431_2173143222863449_7278280663831954741_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_eui2=AeEvG70__E4nLlFfvqCA_YY-sSArlx7buROxICuXHtu5E7rLk5_pOCpdAL5iLzoJYoM&_nc_ohc=s41gIYyQ9LMAX88yAGz&_nc_ht=scontent.cdninstagram.com&edm=AM6HXa8EAAAA&oh=00_AT-Tvv3ks3fW8RuNA1viWFitViy79aQSksVSKM31yDwplg&oe=635D4172 HTTP/1.1
Host: scontent.cdninstagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Wed, 14 Sep 2022 00:44:10 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 12436044
x-needle-checksum: 2397077507
content-length: 201172
content-digest: adler32=2397077507
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1679558926
date: Wed, 26 Oct 2022 12:42:59 GMT
x-fb-edge-debug: ZnorXbbFKoeUEFhFElLmM3ENqq9Lqq3tNBQNl3hMN6nU1hmfMcQ9Y2uVf1Q82XlecFUdUJCxdxiUQYnYps_rptR67nXhJJUaChJnUmFn_v4
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7846045d315e63f4885df53537aaac95
02d94ff333d2895a00d5ccb1b44a5fde89d8ff3f
9784e6643a10c7f4c9a0fc13a09d54599a849c26abd876d5fb5c6662f92059ac
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3480
Cache-Control: max-age=121561
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:43:00 GMT
Etag: "63585596-1d7"
Expires: Thu, 27 Oct 2022 22:29:01 GMT
Last-Modified: Tue, 25 Oct 2022 21:31:02 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
bam.nr-data.net/1/a53393d12f?a=453137&v=1216.487a282&to=ZlNSMUNXWBcFW0FRCV8ZcQZFX1kKS3lFSDp5QkQVbXVZChBKWlQKVERDOXRbVAEAe1pWEkNZXAlURHYXDFdCbRVURHUIU1NS&rst=435&ck=1&ref=https://snapwidget.com/embed/956730&ap=62&be=74&fe=228&dc=159&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1666788175921,%22n%22:0,%22f%22:0,%22dn%22:0,%22dne%22:0,%22c%22:0,%22s%22:0,%22ce%22:0,%22rq%22:6,%22rp%22:18,%22rpe%22:19,%22dl%22:62,%22di%22:116,%22ds%22:158,%22de%22:159,%22dc%22:227,%22l%22:227,%22le%22:229%7D,%22navigation%22:%7B%7D%7D&fcp=115&at=ShRRRwtNSxk%3D&jsonp=NREUM.setToken
162.247.241.14200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/a53393d12f?a=453137&v=1216.487a282&to=ZlNSMUNXWBcFW0FRCV8ZcQZFX1kKS3lFSDp5QkQVbXVZChBKWlQKVERDOXRbVAEAe1pWEkNZXAlURHYXDFdCbRVURHUIU1NS&rst=435&ck=1&ref=https://snapwidget.com/embed/956730&ap=62&be=74&fe=228&dc=159&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1666788175921,%22n%22:0,%22f%22:0,%22dn%22:0,%22dne%22:0,%22c%22:0,%22s%22:0,%22ce%22:0,%22rq%22:6,%22rp%22:18,%22rpe%22:19,%22dl%22:62,%22di%22:116,%22ds%22:158,%22de%22:159,%22dc%22:227,%22l%22:227,%22le%22:229%7D,%22navigation%22:%7B%7D%7D&fcp=115&at=ShRRRwtNSxk%3D&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/a53393d12f?a=453137&v=1216.487a282&to=ZlNSMUNXWBcFW0FRCV8ZcQZFX1kKS3lFSDp5QkQVbXVZChBKWlQKVERDOXRbVAEAe1pWEkNZXAlURHYXDFdCbRVURHUIU1NS&rst=435&ck=1&ref=https://snapwidget.com/embed/956730&ap=62&be=74&fe=228&dc=159&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1666788175921,%22n%22:0,%22f%22:0,%22dn%22:0,%22dne%22:0,%22c%22:0,%22s%22:0,%22ce%22:0,%22rq%22:6,%22rp%22:18,%22rpe%22:19,%22dl%22:62,%22di%22:116,%22ds%22:158,%22de%22:159,%22dc%22:227,%22l%22:227,%22le%22:229%7D,%22navigation%22:%7B%7D%7D&fcp=115&at=ShRRRwtNSxk%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:43:00 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 7603466dc84db4ff-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=69cdc5b1fb11670; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
disqus.com/embed/comments/?base=default&f=theme-daddy&t_u=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&t_d=%0A2022%20Income%20Tax%20Brackets%20Federal%0A&t_t=%0A2022%20Income%20Tax%20Brackets%20Federal%0A&s_o=default
151.101.128.134200 OK 2.8 kB URL HTTP/1.1 disqus.com/embed/comments/?base=default&f=theme-daddy&t_u=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&t_d=%0A2022%20Income%20Tax%20Brackets%20Federal%0A&t_t=%0A2022%20Income%20Tax%20Brackets%20Federal%0A&s_o=default
IP 151.101.128.134:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2939)
Hash f166af3d5fa5ccf1384d5b1b9f310aee
e742801dfebd544beaf90c87360ccb447f37f4ce
b446cad309512889513d6e114abfd24d1ab07ed0f288ee13a6bfa4ddf1d84eaa
GET /embed/comments/?base=default&f=theme-daddy&t_u=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&t_d=%0A2022%20Income%20Tax%20Brackets%20Federal%0A&t_t=%0A2022%20Income%20Tax%20Brackets%20Federal%0A&s_o=default HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 2818
Server: nginx
Content-Type: text/html; charset=utf-8
Content-Security-Policy: script-src https://*.twitter.com:* https://www.gstatic.com/recaptcha/ https://a.disquscdn.com https://c.disquscdn.com c.disquscdn.com https://*.services.disqus.com:* https://cdn.boomtrain.com/p13n/ https://com-disqus.netmng.com:* 'unsafe-inline' https://referrer.disqus.com/juggler/ https://connect.facebook.net/en_US/sdk.js https://cdn.syndication.twimg.com/tweets.json https://apis.google.com https://www.google.com/recaptcha/ https://cf.ignitionone.com:* https://disqus.com
Last-Modified: Fri, 21 Oct 2022 10:48:13 GMT
ETag: W/"lounge:view:9408460587.284d5805ca2b58737f33b912a4f6d5c4.2"
Link: <https://c.disquscdn.com>;rel=preconnect,<https://c.disquscdn.com>;rel=dns-prefetch
Cache-Control: stale-if-error=3600, s-stalewhilerevalidate=3600, stale-while-revalidate=30, no-cache, must-revalidate, public, s-maxage=5
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Referrer-Policy: no-referrer-when-downgrade
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
Date: Wed, 26 Oct 2022 12:43:00 GMT
Age: 0
Vary: Accept-Encoding
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
c.disquscdn.com/next/embed/lounge.load.f61148c2dd1494a1b27fa873adab6e5f.js
143.204.55.127200 OK 496 B URL HTTP/2 c.disquscdn.com/next/embed/lounge.load.f61148c2dd1494a1b27fa873adab6e5f.js
IP 143.204.55.127:0
File type ASCII text, with very long lines (958), with no line terminators
Hash bb078ca404a1baf857079eeedc4c3290
92101b1e2c1e35c38c7fe38ffd936b3f5e92c977
a7fe80aa07135a063cc7a22e8b2bd14c349d5e27d48a3b75be02fc586858eb27
GET /next/embed/lounge.load.f61148c2dd1494a1b27fa873adab6e5f.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://disqus.com
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 496
date: Tue, 25 Oct 2022 18:57:14 GMT
server: nginx
last-modified: Mon, 24 Oct 2022 22:04:28 GMT
etag: "63570bec-1f0"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 25 Oct 2023 18:57:14 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: upHrHxFbaoElIyCnhaUpt-Phx_bMUW6OZFu3BkMJXniMONcKLxn--g==
age: 63946
X-Firefox-Spdy: h2
referrer.disqus.com/juggler/event.gif?imp=69c8v9vcv4feb&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=theme-daddy&zone=thread&version=f61148c2dd1494a1b27fa873adab6e5f&page_url=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&page_referrer=&object_type=provider&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough§ion=default&verb=call&adjective=1&forum_id=4314102
151.101.84.134200 OK 43 B URL HTTP/1.1 referrer.disqus.com/juggler/event.gif?imp=69c8v9vcv4feb&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=theme-daddy&zone=thread&version=f61148c2dd1494a1b27fa873adab6e5f&page_url=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&page_referrer=&object_type=provider&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough§ion=default&verb=call&adjective=1&forum_id=4314102
IP 151.101.84.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/event.gif?imp=69c8v9vcv4feb&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=theme-daddy&zone=thread&version=f61148c2dd1494a1b27fa873adab6e5f&page_url=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&page_referrer=&object_type=provider&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough§ion=default&verb=call&adjective=1&forum_id=4314102 HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Wed, 26 Oct 2022 12:43:00 GMT
Cross-Origin-Resource-Policy: cross-origin
referrer.disqus.com/juggler/event.gif?imp=69c8v9vcv4feb&experiment=network_default&variant=fallthrough&service=dynamic&area=bottom&product=embed&forum=theme-daddy&zone=thread&version=f61148c2dd1494a1b27fa873adab6e5f&page_url=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&page_referrer=&object_type=provider&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough§ion=default&verb=call&adjective=1&forum_id=4314102
151.101.84.134200 OK 43 B URL HTTP/1.1 referrer.disqus.com/juggler/event.gif?imp=69c8v9vcv4feb&experiment=network_default&variant=fallthrough&service=dynamic&area=bottom&product=embed&forum=theme-daddy&zone=thread&version=f61148c2dd1494a1b27fa873adab6e5f&page_url=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&page_referrer=&object_type=provider&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough§ion=default&verb=call&adjective=1&forum_id=4314102
IP 151.101.84.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/event.gif?imp=69c8v9vcv4feb&experiment=network_default&variant=fallthrough&service=dynamic&area=bottom&product=embed&forum=theme-daddy&zone=thread&version=f61148c2dd1494a1b27fa873adab6e5f&page_url=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&page_referrer=&object_type=provider&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough§ion=default&verb=call&adjective=1&forum_id=4314102 HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Wed, 26 Oct 2022 12:43:00 GMT
Cross-Origin-Resource-Policy: cross-origin
connect.facebook.net/en_US/sdk.js?hash=2df79e616554d00aac5f4e7b02c02c16
157.240.221.16200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=2df79e616554d00aac5f4e7b02c02c16
IP 157.240.221.16:0
File type ASCII text, with very long lines (13192)
Hash 12413eb7dc65a3f4c2593680152a075f
97a4df8507138b515f9a250453e65abfa7415e32
87f380b530e18a0a53513040ca2e2f1b371082a4684db4208081f2b9272c8e94
GET /en_US/sdk.js?hash=2df79e616554d00aac5f4e7b02c02c16 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 1a65451e5f26232f4a5cdfe700944bd7
etag: "59614b92e008875ccd0c8835a62d0101"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 26 Oct 2023 10:25:07 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: EkE+t9xlo/TCWTaAFSoHXw==
x-fb-debug: sgRFau9Uu2kFL2BIDUvAGL9ex+S5/pcgI0IL5ADoRHGBMDmJIgfptt1vRDv6NJH10UWI1VAlFKxpM3Cxr+p3Kw==
priority: u=3,i
content-length: 86930
x-fb-trip-id: 1679558926
date: Wed, 26 Oct 2022 12:43:00 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
theme-daddy.disqus.com/recommendations.js
151.101.84.134200 OK 21 kB URL HTTP/1.1 theme-daddy.disqus.com/recommendations.js
IP 151.101.84.134:0
File type ASCII text, with very long lines (32111)
Hash 6f3cdc7d65383a996d71047e31da931c
1162387683db7985d460a747d01a84d80e698f92
2bca0d9fa4689caa5225a7274d830133724001207c148ea419d3f339bb55fd4b
GET /recommendations.js HTTP/1.1
Host: theme-daddy.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 21318
Server: openresty
Content-Type: application/javascript; charset=utf-8
Cache-Control: stale-while-revalidate=60, public, stale-if-error=86400, max-age=60
X-Service: router
Content-Encoding: gzip
Date: Wed, 26 Oct 2022 12:43:00 GMT
Age: 0
Vary: Accept-Encoding, Accept, Accept-Encoding, X-Forwarded-Proto, X-Disqus-Shortname, X-Disqus-Device, X-Disqus-Experiment, X-Disqus-Is-Private, X-Disqus-Development-Base
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
c.disquscdn.com/next/embed/common.bundle.c817aead0064c1fa134fcaa6055ca127.js
143.204.55.127200 OK 95 kB URL HTTP/2 c.disquscdn.com/next/embed/common.bundle.c817aead0064c1fa134fcaa6055ca127.js
IP 143.204.55.127:0
File type ASCII text, with very long lines (32023)
Hash e9fbef6f4bab8b18badabca33462577d
b5446389651f33fd9454ab24d1bc96dde7000090
188ff7dd708927779c5d467bab4db53d65e99cd3251ea1c43591399d1a08de6c
GET /next/embed/common.bundle.c817aead0064c1fa134fcaa6055ca127.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 94757
date: Fri, 14 Oct 2022 12:36:27 GMT
server: nginx
last-modified: Fri, 14 Oct 2022 12:15:46 GMT
etag: "634952f2-17225"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 14 Oct 2023 12:36:27 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: U8H-o0ArdST9EmeMirwRBinIC0jPi8wKJb7urHBeUhuM_MzuYZ-0BA==
age: 1037192
X-Firefox-Spdy: h2
tempest.services.disqus.com/ads-iframe/taboola/?position=bottom&shortname=theme-daddy&experiment=network_default&variant=fallthrough&service=dynamic&anchorColor=%23e51515&colorScheme=light&sourceUrl=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&typeface=sans-serif&canonicalUrl=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&disqus_version=current
151.101.84.64200 OK 9.3 kB URL HTTP/1.1 tempest.services.disqus.com/ads-iframe/taboola/?position=bottom&shortname=theme-daddy&experiment=network_default&variant=fallthrough&service=dynamic&anchorColor=%23e51515&colorScheme=light&sourceUrl=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&typeface=sans-serif&canonicalUrl=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&disqus_version=current
IP 151.101.84.64:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (817)
Hash bc94ae9d8c866025ff6f8435fadcd598
e63950135bd8699f3790b30071d8ebef18aff75b
239bb5932ed05d609d5f9b44e08ef8a473e65584a80b912887144432e7263b7e
GET /ads-iframe/taboola/?position=bottom&shortname=theme-daddy&experiment=network_default&variant=fallthrough&service=dynamic&anchorColor=%23e51515&colorScheme=light&sourceUrl=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&typeface=sans-serif&canonicalUrl=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&disqus_version=current HTTP/1.1
Host: tempest.services.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 9349
Server: openresty
Content-Type: text/html; charset=utf-8
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=300
X-Service: router
Content-Encoding: gzip
Date: Wed, 26 Oct 2022 12:43:00 GMT
Age: 0
Vary: Accept-Encoding,
Cross-Origin-Resource-Policy: cross-origin
tempest.services.disqus.com/ads-iframe/taboola/?position=top&shortname=theme-daddy&experiment=network_default&variant=fallthrough&service=dynamic&anchorColor=%23e51515&colorScheme=light&sourceUrl=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&typeface=sans-serif&canonicalUrl=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&disqus_version=current
151.101.84.64200 OK 9.3 kB URL HTTP/1.1 tempest.services.disqus.com/ads-iframe/taboola/?position=top&shortname=theme-daddy&experiment=network_default&variant=fallthrough&service=dynamic&anchorColor=%23e51515&colorScheme=light&sourceUrl=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&typeface=sans-serif&canonicalUrl=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&disqus_version=current
IP 151.101.84.64:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (811)
Hash be34fe1f013a56c26e591604e2ef9b84
3d741e2f62fa2d8529b90bfbf6be4340b2714f48
6ee6a22b88561de072a75017f6e4e3421e387f02560cdf09c7d9b3335c60b413
GET /ads-iframe/taboola/?position=top&shortname=theme-daddy&experiment=network_default&variant=fallthrough&service=dynamic&anchorColor=%23e51515&colorScheme=light&sourceUrl=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&typeface=sans-serif&canonicalUrl=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&disqus_version=current HTTP/1.1
Host: tempest.services.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 9348
Server: openresty
Content-Type: text/html; charset=utf-8
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=300
X-Service: router
Content-Encoding: gzip
Date: Wed, 26 Oct 2022 12:43:00 GMT
Age: 0
Vary: Accept-Encoding,
Cross-Origin-Resource-Policy: cross-origin
c.disquscdn.com/next/embed/styles/lounge.4da01105e3422b4671a57e6d013c64c2.css
143.204.55.127200 OK 27 kB URL HTTP/2 c.disquscdn.com/next/embed/styles/lounge.4da01105e3422b4671a57e6d013c64c2.css
IP 143.204.55.127:0
File type ASCII text, with very long lines (65469)
Hash 4f7aad278e83cfdb33b20bff7b3e3513
aee839e6e24693a9e3c938573e4dd21fa61b1a36
f1ce047d256634073c9a7512d4867185cabaa1861c00f89462a12203f11e5766
GET /next/embed/styles/lounge.4da01105e3422b4671a57e6d013c64c2.css HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-length: 26994
date: Tue, 25 Oct 2022 18:57:13 GMT
server: nginx
last-modified: Mon, 24 Oct 2022 22:04:28 GMT
etag: "63570bec-6972"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 25 Oct 2023 18:57:13 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Vj9oeXf3Rxp_EsaRZIpdobjnBYoqcEZFRAVoliVdwZBiif6nZ7VikA==
age: 63946
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/lounge.bundle.034fc7e30c05b68d12ba25d7be2be8ef.js
143.204.55.127200 OK 126 kB URL HTTP/2 c.disquscdn.com/next/embed/lounge.bundle.034fc7e30c05b68d12ba25d7be2be8ef.js
IP 143.204.55.127:0
File type ASCII text, with very long lines (32035)
Size 126 kB (125461 bytes)
Hash b6ec5e843135c0292a8c62ddfcdcddc4
ba878d4647ff1e420c14697a5accdbc6c6d82fcf
9c62db0e2e42964213813117a27100079a08306ebccc18eadfcc6b48da77ee45
GET /next/embed/lounge.bundle.034fc7e30c05b68d12ba25d7be2be8ef.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 125461
date: Tue, 25 Oct 2022 18:57:24 GMT
server: nginx
last-modified: Mon, 24 Oct 2022 22:04:28 GMT
etag: "63570bec-1ea15"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 25 Oct 2023 18:57:24 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bjyk0CPl0Ung2Cjnpwd7sxtGjEYitNwKYOXZpEdpCd6dfwz65GUr1Q==
age: 63936
X-Firefox-Spdy: h2
disqus.com/next/config.js
151.101.128.134200 OK 16 kB URL HTTP/1.1 disqus.com/next/config.js
IP 151.101.128.134:0
File type ASCII text, with very long lines (16502), with no line terminators
Hash 93efb521e0e8f1c09be6441e31e174b2
50e6330b965fc7b489bfa6209e0b256b5201d85b
7b68d44d04f7c09a39d6570a779721337c33e973302ab4ec06cd3da9289f781e
GET /next/config.js HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=theme-daddy&t_u=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&t_d=%0A2022%20Income%20Tax%20Brackets%20Federal%0A&t_t=%0A2022%20Income%20Tax%20Brackets%20Federal%0A&s_o=default
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 16502
Server: nginx
Content-Type: application/javascript; charset=UTF-8
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Cache-Control: public, stale-while-revalidate=300, s-stalewhilerevalidate=3600, max-age=60
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Wed, 26 Oct 2022 12:43:00 GMT
Age: 44
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
s4.histats.com/stats/0.php?4571949&@f16&@g1&@h1&@i1&@j1666788176542&@k0&@l1&@m2022%20Income%20Tax%20Brackets%20Federal&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:108385829&@b3:1666788177&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&@w
158.69.251.190200 OK 51 B URL HTTP/1.1 s4.histats.com/stats/0.php?4571949&@f16&@g1&@h1&@i1&@j1666788176542&@k0&@l1&@m2022%20Income%20Tax%20Brackets%20Federal&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:108385829&@b3:1666788177&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&@w
IP 158.69.251.190:0
File type ASCII text, with no line terminators
Hash 69d3c94d16df2fb0b5c37e601dcca2d0
1a522b5291349e820f9cdfa78a93de57aa828e7d
ed1dbc347e614bb15f34de2371ccf9ecfb524a652a49c9bc3aa4856f752f220e
GET /stats/0.php?4571949&@f16&@g1&@h1&@i1&@j1666788176542&@k0&@l1&@m2022%20Income%20Tax%20Brackets%20Federal&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:108385829&@b3:1666788177&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:43:00 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 51
Connection: close
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash cf3906f0559ab3bd232ecb90a3d9d7cd
671fd38254d8fd2c7ed7dc71a619962973e92355
eeae7e75d742d58741db2c07790f34076178af7b6d4e04fa8953f88d140d736b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5148
Cache-Control: max-age=135091
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:43:00 GMT
Etag: "635883eb-116"
Expires: Fri, 28 Oct 2022 02:14:31 GMT
Last-Modified: Wed, 26 Oct 2022 00:48:43 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278
upload.wikimedia.org/wikipedia/en/thumb/c/c3/Flag_of_France.svg/1200px-Flag_of_France.svg.png
91.198.174.208200 OK 162 B URL HTTP/2 upload.wikimedia.org/wikipedia/en/thumb/c/c3/Flag_of_France.svg/1200px-Flag_of_France.svg.png
IP 91.198.174.208:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 28ff70723f7d0738fd6a8ac3b1699ab0
8dbec1cd3ce4cf8784fcd03e54dc35caea97ed1a
4ba082a9cebefeeb1a1823eed96822eb1804a97d9b72fa0fae9b5683b11bfe4a
GET /wikipedia/en/thumb/c/c3/Flag_of_France.svg/1200px-Flag_of_France.svg.png HTTP/1.1
Host: upload.wikimedia.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 25 Oct 2022 18:10:27 GMT
content-type: image/webp
content-length: 162
content-disposition: inline;filename*=UTF-8''Flag_of_France.svg.webp
last-modified: Fri, 26 Aug 2022 06:10:20 GMT
etag: 28ff70723f7d0738fd6a8ac3b1699ab0
server: ATS/9.1.3
age: 66754
x-cache: cp3057 hit, cp3059 hit/102
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3059"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 86400, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 86400, "failure_fraction": 0.05, "success_fraction": 0.0}
accept-ch: Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version
permissions-policy: interest-cohort=(),ch-ua-arch=(self "intake-analytics.wikimedia.org"),ch-ua-bitness=(self "intake-analytics.wikimedia.org"),ch-ua-full-version-list=(self "intake-analytics.wikimedia.org"),ch-ua-model=(self "intake-analytics.wikimedia.org"),ch-ua-platform-version=(self "intake-analytics.wikimedia.org")
x-client-ip: 91.90.42.154
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/disqus-widget-safetylevel20longtail09/loader.js
151.101.85.44200 OK 58 kB URL HTTP/2 cdn.taboola.com/libtrc/disqus-widget-safetylevel20longtail09/loader.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (60704)
Hash fe44f90e01dce17094dfd16710d437bb
3783ea5083670662040c4b49200a4ebb230ef42a
e2c177b2ca76f52462b4b643aaafd4fdaa2d57456d38f5dd7987bdc6e6a71b00
GET /libtrc/disqus-widget-safetylevel20longtail09/loader.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Ij18hIJmAouudcKDNc1mJY4c2uBaNzWONrQ54EWNtj0DhiHoEnap6DFTlajYNg8vafHTsPVsuEc=
x-amz-request-id: 45F4X2G900GFTPNP
last-modified: Wed, 26 Oct 2022 12:28:09 GMT
etag: "8f7d1f10ab61d0e9e127bb56cc097037"
x-amz-version-id: ng5wOsG5gnwqtsT2YccbQ9JLDjaYnpA.
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:00 GMT
via: 1.1 varnish
age: 886
x-served-by: cache-bma1644-BMA
x-cache: HIT
x-cache-hits: 14
x-timer: S1666788181.907241,VS0,VE0
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 43
content-length: 58245
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ed5956051c718574a22dced657a5710b
d6284f95e47d079e7ee0593fb85936bbe0d2cd33
a376b0c9dd0cfd6dd2457b4a55fa5646bbdbffcb76a69ae0f754a3818db28d30
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5875
Cache-Control: max-age=91929
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:43:00 GMT
Etag: "6357d87a-1d7"
Expires: Thu, 27 Oct 2022 14:15:09 GMT
Last-Modified: Tue, 25 Oct 2022 12:37:14 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
disqus.com/recommendations/?base=default&f=theme-daddy&t_u=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&t_d=%0A2022%20Income%20Tax%20Brackets%20Federal%0A&t_t=%0A2022%20Income%20Tax%20Brackets%20Federal%0A
151.101.128.134200 OK 2.4 kB URL HTTP/1.1 disqus.com/recommendations/?base=default&f=theme-daddy&t_u=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&t_d=%0A2022%20Income%20Tax%20Brackets%20Federal%0A&t_t=%0A2022%20Income%20Tax%20Brackets%20Federal%0A
IP 151.101.128.134:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2875)
Hash c2146fdbd2e544e141018f9795209b08
635cc90a95d4be93ee7c3219548cd27466c4ec59
9ee745f540d60240ee8e2bf7b47f9b2084f39769356e2d2cf2b32dba742fa5b6
GET /recommendations/?base=default&f=theme-daddy&t_u=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&t_d=%0A2022%20Income%20Tax%20Brackets%20Federal%0A&t_t=%0A2022%20Income%20Tax%20Brackets%20Federal%0A HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 2364
Server: nginx
Content-Type: text/html; charset=utf-8
Content-Security-Policy: script-src https://*.twitter.com:* https://www.gstatic.com/recaptcha/ https://a.disquscdn.com https://c.disquscdn.com c.disquscdn.com https://*.services.disqus.com:* https://cdn.boomtrain.com/p13n/ https://com-disqus.netmng.com:* 'unsafe-inline' https://referrer.disqus.com/juggler/ https://connect.facebook.net/en_US/sdk.js https://cdn.syndication.twimg.com/tweets.json https://apis.google.com https://www.google.com/recaptcha/ https://cf.ignitionone.com:* https://disqus.com
Last-Modified: Tue, 24 May 2022 18:30:12 GMT
Link: <https://c.disquscdn.com>;rel=preconnect,<https://c.disquscdn.com>;rel=dns-prefetch
Cache-Control: stale-while-revalidate=30, no-cache, must-revalidate, stale-if-error=3600, public
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
Date: Wed, 26 Oct 2022 12:43:00 GMT
Age: 0
Vary: Accept-Encoding
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
upload.wikimedia.org/wikipedia/commons/4/4d/Constitution_sceau.jpg
91.198.174.208200 OK 3.0 kB URL HTTP/2 upload.wikimedia.org/wikipedia/commons/4/4d/Constitution_sceau.jpg
IP 91.198.174.208:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 92x92, components 3\012- data
Hash 577fdbcd26313e95db9107fad16bdb87
e55acbfa94d6bd519f325adda9dc422e9456cf5d
6eee213c5095c7363605b5835e737dd21119b92f042edb3801e4a638fc6fcedc
GET /wikipedia/commons/4/4d/Constitution_sceau.jpg HTTP/1.1
Host: upload.wikimedia.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 08:56:26 GMT
content-type: image/jpeg
content-length: 145772
x-object-meta-sha1base36: 024d3y37zqidvc2pil07iw7leagizgk
etag: 53460fc7463eb82977479145f8f088ac
last-modified: Sat, 05 Oct 2013 03:12:04 GMT
accept-ranges: bytes
server: ATS/9.1.3
age: 13594
x-cache: cp3051 hit, cp3059 miss
x-cache-status: hit-local
server-timing: cache;desc="hit-local", host;desc="cp3059"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 86400, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 86400, "failure_fraction": 0.05, "success_fraction": 0.0}
accept-ch: Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version
permissions-policy: interest-cohort=(),ch-ua-arch=(self "intake-analytics.wikimedia.org"),ch-ua-bitness=(self "intake-analytics.wikimedia.org"),ch-ua-full-version-list=(self "intake-analytics.wikimedia.org"),ch-ua-model=(self "intake-analytics.wikimedia.org"),ch-ua-platform-version=(self "intake-analytics.wikimedia.org")
x-client-ip: 91.90.42.154
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/71QERa8SHTS.jpg
143.204.53.204200 OK 182 kB URL HTTP/2 m.media-amazon.com/images/I/71QERa8SHTS.jpg
IP 143.204.53.204:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x1231, components 3\012- data
Size 182 kB (182151 bytes)
Hash 7bbf35b2c52acf435e4c9e436810eadf
78f74a717508ab7590bd0272ab385a5ff761bff6
685dcc43c0c09bb55e6d2f115108e3b191310fe9c149509b2ff7902f257bab46
GET /images/I/71QERa8SHTS.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 182151
server: Server
date: Wed, 26 Oct 2022 12:43:00 GMT
x-amz-ir-id: c6b91db7-e53e-4961-b8df-fc228e8d5b9e
expires: Tue, 21 Oct 2042 12:43:00 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-941 /images/I/71QERa8SHTS
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-941,/images/I/71QERa8SHTS
access-control-allow-origin: *
last-modified: Thu, 15 Jul 2021 21:50:50 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ksIvGi0RS6V27gju2IF8EaVqjbQt1tEjHLACIlV9giwURYNlZvCVSw==
server-timing: cdn-upstream-layer;desc="Origin Shield",cdn-upstream-dns;dur=0,cdn-upstream-connect;dur=0,cdn-upstream-fbl;dur=82,cdn-cache-miss,cdn-pop;desc="OSL50-C1",cdn-rid;desc="ksIvGi0RS6V27gju2IF8EaVqjbQt1tEjHLACIlV9giwURYNlZvCVSw==",cdn-downstream-fbl;dur=194
X-Firefox-Spdy: h2
disqus.com/api/3.0/forums/details?forum=theme-daddy&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
151.101.128.134200 OK 3.1 kB URL HTTP/1.1 disqus.com/api/3.0/forums/details?forum=theme-daddy&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
IP 151.101.128.134:0
File type JSON data\012- , ASCII text, with very long lines (3136), with no line terminators
Hash 808c9dbec3ac8a76c0d322001a979f75
a236f1038ca2fcbff080444197a7281feb08aa0c
ccefc8955c43494d90ee4f304b807a0b978ed7eede50e91fa6f47aa6cd0f35df
GET /api/3.0/forums/details?forum=theme-daddy&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=theme-daddy&t_u=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&t_d=%0A2022%20Income%20Tax%20Brackets%20Federal%0A&t_t=%0A2022%20Income%20Tax%20Brackets%20Federal%0A&s_o=default
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 3136
Server: nginx
Content-Type: application/json
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Wed, 26 Oct 2022 12:43:01 GMT
Age: 0
Vary: Origin, Cookie
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg
143.204.55.127200 OK 13 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg
IP 143.204.55.127:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (13079), with no line terminators
Hash 4da5413f5086c5755b46094b813dbfcd
87669f231ce245cdd9b7d80ebf8194e2ae62e7b1
3270642c89180c12db93775e2a774b6dadd9bd98cffc963075c85afd2c17b6e4
GET /next/embed/assets/img/svg-sprite.4da5413f5086c5755b46094b813dbfcd.svg HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.4da01105e3422b4671a57e6d013c64c2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml; charset=utf-8
content-length: 13079
date: Mon, 19 Sep 2022 03:05:23 GMT
server: nginx
last-modified: Fri, 16 Sep 2022 08:34:41 GMT
etag: "63243521-3317"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 19 Sep 2023 03:05:23 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ngJE9HdnfFSIigrihuwvZ2-bCNJkCP2zGERLbP4Cn-ZVFmBam5GdVA==
age: 3231458
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif
143.204.55.127200 OK 3.0 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif
IP 143.204.55.127:0
File type GIF image data, version 87a, 62 x 20\012- data
Hash ba7c86e8b4b6135bb668d05223f8f127
ae07a576af9eab682281921075436798438e902e
4c4491dcfa94cb46fb73742fc2caf49a1cd59027304af1830c7dc6ce1889857c
GET /next/embed/assets/img/loader.ba7c86e8b4b6135bb668d05223f8f127.gif HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.4da01105e3422b4671a57e6d013c64c2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 2971
date: Sun, 21 Aug 2022 05:31:16 GMT
server: nginx
last-modified: Thu, 18 Aug 2022 14:28:43 GMT
etag: "62fe4c9b-b9b"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Mon, 21 Aug 2023 05:31:16 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ehW-jo6m-WDUxc-O3MQhbpHLBYYgi0_wJybRzI6QdKIyWZRCyeakCQ==
age: 5728305
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png
143.204.55.127200 OK 1.8 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png
IP 143.204.55.127:0
File type PNG image data, 172 x 81, 8-bit colormap, non-interlaced\012- data
Hash ad630a07080a45451f139a7487853ff8
c2673d7404fc947fab20eed21416f9656149018d
9714221c828961b20f45a782c3281c0596f6652cfe1299bee18097f98e8fb7b3
GET /next/embed/assets/img/sprite.ad630a07080a45451f139a7487853ff8.png HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.disquscdn.com/next/embed/styles/lounge.4da01105e3422b4671a57e6d013c64c2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1763
date: Tue, 20 Sep 2022 11:48:31 GMT
server: nginx
last-modified: Fri, 16 Sep 2022 08:34:41 GMT
etag: "63243521-6e3"
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 20 Sep 2023 11:48:31 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QXEatVnzJFacgFwbPbXhJOt296_1LDVNjOu3tvY2pU2f9ckjVd88Kg==
age: 3113670
X-Firefox-Spdy: h2
c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2
143.204.55.127200 OK 7.9 kB URL HTTP/2 c.disquscdn.com/next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2
IP 143.204.55.127:0
File type Web Open Font Format (Version 2), TrueType, length 7900, version 1.0\012- data
Hash 4cc7a703d2fdfe684151ff8ac24d45f1
046adee74e5ce76db11491906a21c09399391571
f2a341fc815d45c21da726d4c843c2c5d3e1f333465347c3c75d040d556df4e5
GET /next/embed/assets/font/icons.4cc7a703d2fdfe684151ff8ac24d45f1.woff2 HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://disqus.com
Connection: keep-alive
Referer: https://c.disquscdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 7900
date: Mon, 29 Aug 2022 03:15:49 GMT
server: nginx
last-modified: Fri, 26 Aug 2022 22:07:42 GMT
etag: "6309442e-1edc"
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 29 Aug 2023 03:15:49 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vI7-5MvjEklwEE-gCvtwMf8T2BxOso2rcgmtGO-miDuhuGtF2EfAVQ==
age: 5045232
X-Firefox-Spdy: h2
bristoluniversitypressdigital.com/cover/covers/9781529220247.jpg
52.19.45.73200 110 kB URL HTTP/1.1 bristoluniversitypressdigital.com/cover/covers/9781529220247.jpg
IP 52.19.45.73:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 600x892, components 3\012- data
Size 110 kB (110414 bytes)
Hash a42bb78bcb3d29a0a17a087b95fa76fb
b49265e0740a43c45a7dad4df1c15428c0a09bde
8d20fe62bb1391674271f0101fbe6c6a672820a96aa4384d4f7a87f312f288bb
GET /cover/covers/9781529220247.jpg HTTP/1.1
Host: bristoluniversitypressdigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
last-modified: Fri, 08 Jul 2022 18:04:55 MSK
expires: Wed, 02 Nov 2022 15:43:00 MSK
cache-control: max-age=604800,public,must-revalidate
etag: 493b599c10e13a77c63444c02bc922ed
content-type: image/jpeg
content-length: 110414
date: Wed, 26 Oct 2022 12:43:00 GMT
content-security-policy: frame-ancestors 'self'
x-content-type-options: nosniff
set-cookie: ServerID=bup-web-2-live; path=/
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash cf3906f0559ab3bd232ecb90a3d9d7cd
671fd38254d8fd2c7ed7dc71a619962973e92355
eeae7e75d742d58741db2c07790f34076178af7b6d4e04fa8953f88d140d736b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4484
Cache-Control: max-age=134426
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:43:01 GMT
Etag: "635883eb-116"
Expires: Fri, 28 Oct 2022 02:03:27 GMT
Last-Modified: Wed, 26 Oct 2022 00:48:43 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
c.disquscdn.com/next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js
143.204.55.127200 OK 27 kB URL HTTP/2 c.disquscdn.com/next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js
IP 143.204.55.127:0
File type ASCII text, with very long lines (32024)
Hash 0c2785ae737e4a3a6baf270c42954aaa
ba03fa7243d6e4f184c3f2f05f733f5f40b96cc3
75310b8dcb511e824684c40202fb6edb67136e7b747e2d42c71a628bce42c2f2
GET /next/embed/alfie_v4.63f1ab6d6b9d5807dc0c94ef3fe0b851.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 26578
date: Thu, 08 Sep 2022 01:31:12 GMT
server: nginx
last-modified: Tue, 30 Aug 2022 17:50:38 GMT
etag: "630e4dee-67d2"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Fri, 08 Sep 2023 01:31:12 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -eDuO5_cNPCIXQA7VSiDeGmDBJ60tm1JauKl35c8Kf_67hLy-RWqgA==
age: 4187509
X-Firefox-Spdy: h2
pubs.acs.org/cms/10.1021/acs.chemrev.2c00115/asset/images/acs.chemrev.2c00115.social.jpeg_v03
104.18.3.147200 OK 106 kB URL HTTP/2 pubs.acs.org/cms/10.1021/acs.chemrev.2c00115/asset/images/acs.chemrev.2c00115.social.jpeg_v03
IP 104.18.3.147:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1200x628, components 3\012- data
Size 106 kB (106395 bytes)
Hash 9f3b96d856f24d7893fa98dd846be024
bf93f02cdb531b679a6d8428d076ee19d84d0deb
8d52fa1a61458687f3a391b9d0121cb8f22d06c3f44261928cf85f56df1641fd
GET /cms/10.1021/acs.chemrev.2c00115/asset/images/acs.chemrev.2c00115.social.jpeg_v03 HTTP/1.1
Host: pubs.acs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:01 GMT
content-type: image/jpeg; charset=UTF-8
content-length: 106395
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=15552000
x-frame-options: SAMEORIGIN
x-webstats-respid: 61d3d3ea580d8df14fa91d2a4f0ba971
content-disposition: inline; filename=images/acs.chemrev.2c00115.social.jpeg_v03
edge-control: !no-store,cache-maxage=0s,must-revalidate
last-modified: Fri, 23 Sep 2022 11:15:31 GMT
accept-ranges: bytes
cache-control: public, max-age=31536000
cf-cache-status: DYNAMIC
set-cookie: ACSEnt=605041_6105_1666788180959; domain=.acs.org; path=/; secure
__cf_bm=nRk.av6YUv5YE0p476qpuYTuyqgr68HlhnCQsbIgi.I-1666788181-0-AbI/y4tdqzSrpuCcFBaRh8K8GNHGwBVZgJ7w5GH2zMNg8N1RmLgJfzmgdm3JmgRWcMbMHgp4ISe1jk37CiAxKPI=; path=/; expires=Wed, 26-Oct-22 13:13:01 GMT; domain=.pubs.acs.org; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7603467268f7b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/impl.20221026-6-RELEASE.js
151.101.85.44200 OK 146 kB URL HTTP/2 cdn.taboola.com/libtrc/impl.20221026-6-RELEASE.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (65509)
Size 146 kB (145921 bytes)
Hash 430ae47723eb9ffba86330a78ef9d5cd
c8d89d5abc91fb2bf4257a1897d9d3efd79d53e8
e1a5ac03db6f70af6ff0ade8328b07e846df7664c511b0eeeaf49eb77c0ce24f
GET /libtrc/impl.20221026-6-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: KNicphla2906fg5uJkKnzA7a9lPskPT91zY8CXK85lGM6lauivFPhYQDC2zQeeAuPrrLr99L9kU=
x-amz-request-id: NCBFSQ8BB0BE1XNG
last-modified: Wed, 26 Oct 2022 11:40:56 GMT
etag: "430ae47723eb9ffba86330a78ef9d5cd"
content-encoding: br
x-amz-version-id: 7qGQ39Frv4_ZIUDUeEVcGW0P1QNSbUkF
content-type: application/javascript
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:01 GMT
via: 1.1 varnish
age: 3713
x-served-by: cache-bma1644-BMA
x-cache: HIT
x-cache-hits: 629
x-timer: S1666788181.112568,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 14
server: AmazonS3-br
content-length: 145921
X-Firefox-Spdy: h2
referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=412&event=init_embed&thread=9408460587&forum=theme-daddy&forum_id=4314102&imp=69c8v9vcv4feb&thread_slug=2022_income_tax_brackets_federal_63&user_type=anon&referrer=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default&variant=fallthrough&service=dynamic&promoted_enabled=true&max_enabled=true
151.101.84.134200 OK 43 B URL HTTP/1.1 referrer.disqus.com/juggler/event.gif?abe=0&embed_hidden=0&load_time=412&event=init_embed&thread=9408460587&forum=theme-daddy&forum_id=4314102&imp=69c8v9vcv4feb&thread_slug=2022_income_tax_brackets_federal_63&user_type=anon&referrer=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default&variant=fallthrough&service=dynamic&promoted_enabled=true&max_enabled=true
IP 151.101.84.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/event.gif?abe=0&embed_hidden=0&load_time=412&event=init_embed&thread=9408460587&forum=theme-daddy&forum_id=4314102&imp=69c8v9vcv4feb&thread_slug=2022_income_tax_brackets_federal_63&user_type=anon&referrer=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F&theme=next&dnt=0&tracking_enabled=0&experiment=network_default&variant=fallthrough&service=dynamic&promoted_enabled=true&max_enabled=true HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://disqus.com/embed/comments/?base=default&f=theme-daddy&t_u=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&t_d=%0A2022%20Income%20Tax%20Brackets%20Federal%0A&t_t=%0A2022%20Income%20Tax%20Brackets%20Federal%0A&s_o=default
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Wed, 26 Oct 2022 12:43:01 GMT
Cross-Origin-Resource-Policy: cross-origin
sb.scorecardresearch.com/beacon.js
143.204.55.8200 OK 1.9 kB URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 143.204.55.8:0
File type ASCII text, with very long lines (3936)
Hash ccbe1595614949962ea0f4c9ec84e783
65525e8918223db782724d28fce74efb513a0fb0
f422f26d9197a10abf1a13a13a87a5fcc4b98ad57aae11fadfddf2df02b591f5
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Wed, 26 Oct 2022 01:02:50 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cZNTHwHaUfT9d8X6lsw16j66n-5krRQae8_fBkMLUZV-9p7wR0hJYQ==
age: 42189
X-Firefox-Spdy: h2
sb.scorecardresearch.com/b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1666788177879&ns_c=UTF-8&ns_if=1&c7=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&c8=&c9=
143.204.55.8204 No Content 0 B URL HTTP/2 sb.scorecardresearch.com/b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1666788177879&ns_c=UTF-8&ns_if=1&c7=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&c8=&c9=
IP 143.204.55.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1666788177879&ns_c=UTF-8&ns_if=1&c7=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&c8=&c9= HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 26 Oct 2022 12:43:01 GMT
set-cookie: UID=1145d115a2184f68b211ca81666788181; domain=.scorecardresearch.com; path=/; max-age=62208000
x-cache: Miss from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LT11LautOwVykbIttSa866YPw6odwzuVJACKnrKe-iFbor-D6A_2PQ==
X-Firefox-Spdy: h2
c.disquscdn.com/next/recommendations/recommendations.load.7a082d4d9e6984f11865f847c931559a.js
143.204.55.127200 OK 445 B URL HTTP/2 c.disquscdn.com/next/recommendations/recommendations.load.7a082d4d9e6984f11865f847c931559a.js
IP 143.204.55.127:0
File type ASCII text, with very long lines (923), with no line terminators
Hash b6fbdd310521ab59ed8d9efdc3ea6541
85976cfaa2706e49314f86ae17931fc3edc76af4
b9b66f8df345812dea4c74786ce4c10c1652a3cd345ebd66d6e2b9fe26411d0e
GET /next/recommendations/recommendations.load.7a082d4d9e6984f11865f847c931559a.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://disqus.com
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 445
date: Fri, 14 Oct 2022 12:36:18 GMT
server: nginx
last-modified: Fri, 14 Oct 2022 12:15:46 GMT
etag: "634952f2-1bd"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 14 Oct 2023 12:36:18 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5L0BJp1ydw5bNj7rWE-zu-MstkdJ6cMcpaEdr1aMfTEw-NSSjwqGGw==
age: 1037203
X-Firefox-Spdy: h2
c.disquscdn.com/next/recommendations/common.bundle.9bc23671d54f97492fac0752f3590c1f.js
143.204.55.127200 OK 89 kB URL HTTP/2 c.disquscdn.com/next/recommendations/common.bundle.9bc23671d54f97492fac0752f3590c1f.js
IP 143.204.55.127:0
File type ASCII text, with very long lines (32023)
Hash 41963370325cd7b935d42c594d0d40f8
81085ee701fadc9664bb303791e5cc359f1812f3
47289130bb5fe68799e9942b268f13d999bf234a925415877f12819abe24a877
GET /next/recommendations/common.bundle.9bc23671d54f97492fac0752f3590c1f.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 88801
date: Fri, 14 Oct 2022 12:36:18 GMT
server: nginx
last-modified: Fri, 14 Oct 2022 12:15:46 GMT
etag: "634952f2-15ae1"
content-encoding: gzip
x-served-by: static-web-2
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 14 Oct 2023 12:36:18 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qMm1hOBV0zMImnTeeTFC-_F6UvR6aw-t4lTxpgOPw32VrPfsxC7-0Q==
age: 1037203
X-Firefox-Spdy: h2
ocsp.comodoca4.com/
172.64.155.188200 OK 282 B IP 172.64.155.188:0
Hash 8f6051d71cbccd0c021aad80001edc7f
64d11c01833286deed9ba1ed8e281fda762c13db
6abaf027d20b982e0c2eab48c3c660467610cd36b581d22baea39af57a1cd6e7
POST / HTTP/1.1
Host: ocsp.comodoca4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:43:01 GMT
Content-Type: application/ocsp-response
Content-Length: 282
Connection: keep-alive
Last-Modified: Tue, 25 Oct 2022 12:47:14 GMT
Expires: Tue, 01 Nov 2022 12:47:13 GMT
Etag: "64d11c01833286deed9ba1ed8e281fda762c13db"
Cache-Control: max-age=518051,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 760346754ab50b59-OSL
cdn.viglink.com/images/pixel.gif?ch=2&rn=3.6017994480829643
104.16.161.13200 OK 43 B URL HTTP/2 cdn.viglink.com/images/pixel.gif?ch=2&rn=3.6017994480829643
IP 104.16.161.13:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /images/pixel.gif?ch=2&rn=3.6017994480829643 HTTP/1.1
Host: cdn.viglink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:01 GMT
content-type: image/gif
content-length: 43
x-amz-id-2: DKooxv1hnVb14U7tRfofRlXkRWdAROqFTeVdJoYhgJujYE//2ob7xvZ4F6AurymI+gMMM6LbsRM=
x-amz-request-id: ZF3JJ27GZVXBFS73
last-modified: Tue, 10 Feb 2015 03:29:39 GMT
etag: "221d8352905f2c38b3cb2bd191d630b0"
cache-control: max-age=15, must-revalidate
cf-cache-status: HIT
age: 8
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76034675bdf8b512-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 2ea5dd0c3f8c3d544c478e17bcba76da
6de6c92bef7740a4a1104a7732f26f09a29e40d7
a5a189c9a0a14d59abfcb5c2e19278084183b9c48e6f8d057d747c63f3d6514b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3905
Cache-Control: max-age=138871
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:43:01 GMT
Etag: "6358978b-13a"
Expires: Fri, 28 Oct 2022 03:17:32 GMT
Last-Modified: Wed, 26 Oct 2022 02:12:27 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 314
c.disquscdn.com/next/recommendations/styles/recommendations.10022a97346f1c6e3798931bbd8e4bb5.css
143.204.55.127200 OK 3.0 kB URL HTTP/2 c.disquscdn.com/next/recommendations/styles/recommendations.10022a97346f1c6e3798931bbd8e4bb5.css
IP 143.204.55.127:0
File type ASCII text, with very long lines (14131), with no line terminators
Hash e469e3b929d327230768372d944c950f
a153a1db31549e58f4fb957c38f7e737075cec28
92ad1ac4b05d52f039295fc4b974be49f3ef60b8eb951bf0d2c9b87ae1898289
GET /next/recommendations/styles/recommendations.10022a97346f1c6e3798931bbd8e4bb5.css HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-length: 2978
date: Sun, 11 Sep 2022 02:38:28 GMT
server: nginx
last-modified: Tue, 30 Aug 2022 17:50:39 GMT
etag: "630e4def-ba2"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Mon, 11 Sep 2023 02:38:28 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kl7HfPkepxqxBwZI4CZEDAfD-BQjlZ0wl83FW-tDtmuoZHy9ybbFTg==
age: 3924273
X-Firefox-Spdy: h2
c.disquscdn.com/next/recommendations/recommendations.bundle.926bc472e4859a48daa346b4ba2ab4f4.js
143.204.55.127200 OK 20 kB URL HTTP/2 c.disquscdn.com/next/recommendations/recommendations.bundle.926bc472e4859a48daa346b4ba2ab4f4.js
IP 143.204.55.127:0
File type Unicode text, UTF-8 text, with very long lines (32013)
Hash 501fc13fb1b3245395a385814c69c170
44f5b53ea6bc20e68046fef72d6a85178589f189
e9064283a719b2d7d740631bbee2e2dfef68419606eefd9cb0cbfd02afd65ea4
GET /next/recommendations/recommendations.bundle.926bc472e4859a48daa346b4ba2ab4f4.js HTTP/1.1
Host: c.disquscdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://disqus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 20244
date: Fri, 23 Sep 2022 02:48:53 GMT
server: nginx
last-modified: Thu, 22 Sep 2022 16:09:35 GMT
etag: "632c88bf-4f14"
content-encoding: gzip
x-served-by: static-web-1
x-cache-hits: 0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 23 Sep 2023 02:48:53 GMT
cache-control: max-age=31536000, public, immutable, no-transform
access-control-allow-origin: *
timing-allow-origin: *
surrogate-key: next
cross-origin-resource-policy: cross-origin
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fCRAf7QBSH2k9WRuxgkovypeEa0IqiMy6LSfxMZWRO5rTu3u6X5UKg==
age: 2886848
X-Firefox-Spdy: h2
trc-events.taboola.com/disqus-widget-safetylevel20longtail09/log/3/bulk-metrics?lti=deflated&bulkSize=1
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/disqus-widget-safetylevel20longtail09/log/3/bulk-metrics?lti=deflated&bulkSize=1
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /disqus-widget-safetylevel20longtail09/log/3/bulk-metrics?lti=deflated&bulkSize=1 HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 553
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 26 Oct 2022 12:43:01 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://444juliegeorgeberita.blogspot.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
trc-events.taboola.com/disqus-widget-safetylevel20longtail09/log/2/debug?tim=12%3A42%3A58.019&type=usage&msg=rtus&llvl=2&id=2543&cv=20221026-6-RELEASE<=deflated&uuid=9b69e487e143c9278ea58224daf8d522ad0a063ffa110b87a977517a10e76dfb&dcc=1&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/disqus-widget-safetylevel20longtail09/log/2/debug?tim=12%3A42%3A58.019&type=usage&msg=rtus&llvl=2&id=2543&cv=20221026-6-RELEASE<=deflated&uuid=9b69e487e143c9278ea58224daf8d522ad0a063ffa110b87a977517a10e76dfb&dcc=1&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /disqus-widget-safetylevel20longtail09/log/2/debug?tim=12%3A42%3A58.019&type=usage&msg=rtus&llvl=2&id=2543&cv=20221026-6-RELEASE<=deflated&uuid=9b69e487e143c9278ea58224daf8d522ad0a063ffa110b87a977517a10e76dfb&dcc=1&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 26 Oct 2022 12:43:01 GMT
x-fastly-to-nlb-rtt: 22119
access-control-allow-credentials: true
X-Firefox-Spdy: h2
trc-events.taboola.com/disqus-widget-safetylevel20longtail09/log/2/debug?tim=12%3A42%3A58.067&type=usage&msg=rtus&llvl=2&id=8419&cv=20221026-6-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/disqus-widget-safetylevel20longtail09/log/2/debug?tim=12%3A42%3A58.067&type=usage&msg=rtus&llvl=2&id=8419&cv=20221026-6-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /disqus-widget-safetylevel20longtail09/log/2/debug?tim=12%3A42%3A58.067&type=usage&msg=rtus&llvl=2&id=8419&cv=20221026-6-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 26 Oct 2022 12:43:01 GMT
x-fastly-to-nlb-rtt: 22119
access-control-allow-credentials: true
X-Firefox-Spdy: h2
disqus.com/api/3.0/forums/details?forum=theme-daddy&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
151.101.128.134200 OK 3.1 kB URL HTTP/1.1 disqus.com/api/3.0/forums/details?forum=theme-daddy&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
IP 151.101.128.134:0
File type JSON data\012- , ASCII text, with very long lines (3136), with no line terminators
Hash 808c9dbec3ac8a76c0d322001a979f75
a236f1038ca2fcbff080444197a7281feb08aa0c
ccefc8955c43494d90ee4f304b807a0b978ed7eede50e91fa6f47aa6cd0f35df
GET /api/3.0/forums/details?forum=theme-daddy&attach=forumFeatures&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://disqus.com/recommendations/?base=default&f=theme-daddy&t_u=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&t_d=%0A2022%20Income%20Tax%20Brackets%20Federal%0A&t_t=%0A2022%20Income%20Tax%20Brackets%20Federal%0A
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 3136
Server: nginx
Content-Type: application/json
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Wed, 26 Oct 2022 12:43:01 GMT
Age: 1
Vary: Origin, Cookie
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
cdn.taboola.com/libtrc/userx.20221026-6-RELEASE.es6.js
151.101.85.44200 OK 5.4 kB URL HTTP/2 cdn.taboola.com/libtrc/userx.20221026-6-RELEASE.es6.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (17842)
Hash e7b4c74eaf6d73ed8753eb374330c2e2
2231856760513093d9a4356db1571e7728364fd6
e1df4d383af0f87050795d95abcc503b5915ffbd2fe22486d9b82c7a2d842bd5
GET /libtrc/userx.20221026-6-RELEASE.es6.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Wg4Khjgbfy3NerLAR1uPKO9ncxwqFUTR0kq9/yDxln9/XXJs/0eF7jyeBZM786/1B7UZKAgUhzY=
x-amz-request-id: 7Y6XJSBPBYP7TGWN
x-amz-replication-status: COMPLETED
last-modified: Wed, 26 Oct 2022 12:20:01 GMT
etag: "9dc36f2f0dc88979ad96987664ef268c"
x-amz-version-id: dH.27uD3ylHEKR41gYgzVhNfju1Tv5lS
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:01 GMT
via: 1.1 varnish
age: 1133
x-served-by: cache-bma1644-BMA
x-cache: HIT
x-cache-hits: 116
x-timer: S1666788182.632882,VS0,VE0
cache-control: private,max-age=14400
vary: Accept-Encoding
abp: 14
content-length: 5397
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/44dd7285-cd6a-4a0f-9085-8137587509a3/images/podtac-water-pipes-old-cam__8cf14304-3d22-4993-a27e-4b679aeafcd6_1000x600.jpeg
151.101.85.44200 OK 12 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/44dd7285-cd6a-4a0f-9085-8137587509a3/images/podtac-water-pipes-old-cam__8cf14304-3d22-4993-a27e-4b679aeafcd6_1000x600.jpeg
IP 151.101.85.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0dcfb46e9c3691135035b41422593b06
7c66b6e03b4238091ed829e5bedc27059309357a
d7d7f1a2a6e32924847cd3887f5a2edec29fbf24fe918b8b3c2056ca7123829b
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/44dd7285-cd6a-4a0f-9085-8137587509a3/images/podtac-water-pipes-old-cam__8cf14304-3d22-4993-a27e-4b679aeafcd6_1000x600.jpeg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 509019910273114216949299999832288963242,534554604223319601008643105194670925976,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 509019910273114216949299999832288963242,534554604223319601008643105194670925976,29ecf9b93bbf306179626feeda1fab70
etag: "6f41345fc0f98876ff76c6d5de01e2d7"
last-modified: Wed, 07 Sep 2022 11:45:04 GMT
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 5279970e3c1762626d41bb244ca108df
x-envoy-upstream-service-time: 382
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb201
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:01 GMT
age: 4230332
x-served-by: cache-iad-kcgs7200098-IAD, cache-iad-kiad7000022-IAD, cache-bur-kbur8200170-BUR, cache-iad-kcgs7200128-IAD, cache-bma1644-BMA
x-cache: MISS, MISS, MISS, HIT, HIT
x-cache-hits: 0, 0, 0, 6, 1
x-timer: S1666788182.644132,VS0,VE9
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/44dd7285-cd6a-4a0f-9085-8137587509a3/images/podtac-water-pipes-old-cam__8cf14304-3d22-4993-a27e-4b679aeafcd6_1000x600.jpeg
x-vcl-time-ms: 9
content-length: 11910
X-Firefox-Spdy: h2
ocsp.comodoca4.com/
172.64.155.188200 OK 282 B IP 172.64.155.188:0
Hash 8f6051d71cbccd0c021aad80001edc7f
64d11c01833286deed9ba1ed8e281fda762c13db
6abaf027d20b982e0c2eab48c3c660467610cd36b581d22baea39af57a1cd6e7
POST / HTTP/1.1
Host: ocsp.comodoca4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:43:01 GMT
Content-Type: application/ocsp-response
Content-Length: 282
Connection: keep-alive
Last-Modified: Tue, 25 Oct 2022 12:47:14 GMT
Expires: Tue, 01 Nov 2022 12:47:13 GMT
Etag: "64d11c01833286deed9ba1ed8e281fda762c13db"
Cache-Control: max-age=518051,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76034675497d1bfa-OSL
cdn.viglink.com/images/pixel.gif?ch=1&rn=3.6017994480829643
104.16.161.13200 OK 43 B URL HTTP/2 cdn.viglink.com/images/pixel.gif?ch=1&rn=3.6017994480829643
IP 104.16.161.13:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /images/pixel.gif?ch=1&rn=3.6017994480829643 HTTP/1.1
Host: cdn.viglink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:01 GMT
content-type: image/gif
content-length: 43
x-amz-id-2: DKooxv1hnVb14U7tRfofRlXkRWdAROqFTeVdJoYhgJujYE//2ob7xvZ4F6AurymI+gMMM6LbsRM=
x-amz-request-id: ZF3JJ27GZVXBFS73
last-modified: Tue, 10 Feb 2015 03:29:39 GMT
etag: "221d8352905f2c38b3cb2bd191d630b0"
cache-control: max-age=15, must-revalidate
cf-cache-status: HIT
age: 8
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 760346777823b512-OSL
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.imgur.com/FbDsyQe.jpg
151.101.85.44200 OK 17 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.imgur.com/FbDsyQe.jpg
IP 151.101.85.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a0257c94e7fb772cc309cd7802c5a947
1ecc60bd88e4b99afcccfed2fbc22e69d613e023
fadb083b4ca5dd1e575eab37e4dad28a5d19a18e42a72be81a6a53e255c306c1
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.imgur.com/FbDsyQe.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 515412177035319118345810119142813659636,546258356133206624604668415934860700180,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 515412177035319118345810119142813659636,546258356133206624604668415934860700180,29ecf9b93bbf306179626feeda1fab70
etag: "239d66d1744edf3f21c00ff8821a456b"
last-modified: Fri, 16 Sep 2022 09:44:14 GMT
req-referer: https://www.jamaicaobserver.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 59e74e006c544f5b6b6d388e28492de6
x-envoy-upstream-service-time: 204
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb202
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:01 GMT
age: 3457024
x-served-by: cache-iad-kiad7000164-IAD, cache-iad-kcgs7200159-IAD, cache-bur-kbur8200099-BUR, cache-iad-kjyo7100124-IAD, cache-bma1644-BMA
x-cache: MISS, HIT, MISS, HIT, HIT
x-cache-hits: 0, 1, 0, 33, 1
x-timer: S1666788182.704760,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.imgur.com/FbDsyQe.jpg
x-vcl-time-ms: 1
content-length: 17166
X-Firefox-Spdy: h2
15.taboola.com/tb?oid=15&pubnm=disqus-widget-safetylevel20longtail09&unitType=226&tbloc=&pageType=text&pstn=%7B%22domain%22%3A%20%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%22%2C%20%22experiment%22%3A%20%22network_default%22%2C%20%22position%22%3A%20%22bottom%22%2C%20%22shortname%22%3A%20%22theme-daddy%22%2C%20%22variant%22%3A%20%22fallthrough%22%7D&uuip=&cisrf=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F&cirf=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&encoded=1&uid=02534485-1fdb-4bc3-8fda-f30ad336bde9-tucta52b0d5&variant=-100|478542&callback=TRC.videoTagCallbacks.videoCallback1&cb=1666788178286&tagid=&cntry=NO&platform=1&sesid=b4886013d9d57c1ec308dfe7001b71d2&itemid=/2022/10/2022-income-tax-brackets-federal.html&viewid=1666788178021&geolat=&geoing=&deviceifa=&appid=&sd=v2_b4886013d9d57c1ec308dfe7001b71d2_02534485-1fdb-4bc3-8fda-f30ad336bde9-tucta52b0d5_1666788181_1666788181_CIi3jgYQktQ_GOXwxKLBMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABo_9iV8p6d99_dAXAA&ri=7bd7041ddb90c08160a14df31b20447a&appname=&cdb=&gdprApplies=true&rid=&sii=&oee=true&tpubid=1042962&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=®ion=03&hasGDPRConsent=true&tcfVersion=&cmpStatus=&tnetid=1003147&prcnt=&layer=&normp=1&gvv=-50
151.101.85.44200 OK 27 kB URL HTTP/2 15.taboola.com/tb?oid=15&pubnm=disqus-widget-safetylevel20longtail09&unitType=226&tbloc=&pageType=text&pstn=%7B%22domain%22%3A%20%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%22%2C%20%22experiment%22%3A%20%22network_default%22%2C%20%22position%22%3A%20%22bottom%22%2C%20%22shortname%22%3A%20%22theme-daddy%22%2C%20%22variant%22%3A%20%22fallthrough%22%7D&uuip=&cisrf=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F&cirf=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&encoded=1&uid=02534485-1fdb-4bc3-8fda-f30ad336bde9-tucta52b0d5&variant=-100|478542&callback=TRC.videoTagCallbacks.videoCallback1&cb=1666788178286&tagid=&cntry=NO&platform=1&sesid=b4886013d9d57c1ec308dfe7001b71d2&itemid=/2022/10/2022-income-tax-brackets-federal.html&viewid=1666788178021&geolat=&geoing=&deviceifa=&appid=&sd=v2_b4886013d9d57c1ec308dfe7001b71d2_02534485-1fdb-4bc3-8fda-f30ad336bde9-tucta52b0d5_1666788181_1666788181_CIi3jgYQktQ_GOXwxKLBMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABo_9iV8p6d99_dAXAA&ri=7bd7041ddb90c08160a14df31b20447a&appname=&cdb=&gdprApplies=true&rid=&sii=&oee=true&tpubid=1042962&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=®ion=03&hasGDPRConsent=true&tcfVersion=&cmpStatus=&tnetid=1003147&prcnt=&layer=&normp=1&gvv=-50
IP 151.101.85.44:0
Hash f58b66e1329f5161ddbf760d38b421c5
60bb7929442b19520853a50a00dc5b83941bcc8a
aaaf8a536a788e064bd4c0f799d4774aacb1c2290ae50bc240c6912761daab87
GET /tb?oid=15&pubnm=disqus-widget-safetylevel20longtail09&unitType=226&tbloc=&pageType=text&pstn=%7B%22domain%22%3A%20%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%22%2C%20%22experiment%22%3A%20%22network_default%22%2C%20%22position%22%3A%20%22bottom%22%2C%20%22shortname%22%3A%20%22theme-daddy%22%2C%20%22variant%22%3A%20%22fallthrough%22%7D&uuip=&cisrf=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F&cirf=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&encoded=1&uid=02534485-1fdb-4bc3-8fda-f30ad336bde9-tucta52b0d5&variant=-100|478542&callback=TRC.videoTagCallbacks.videoCallback1&cb=1666788178286&tagid=&cntry=NO&platform=1&sesid=b4886013d9d57c1ec308dfe7001b71d2&itemid=/2022/10/2022-income-tax-brackets-federal.html&viewid=1666788178021&geolat=&geoing=&deviceifa=&appid=&sd=v2_b4886013d9d57c1ec308dfe7001b71d2_02534485-1fdb-4bc3-8fda-f30ad336bde9-tucta52b0d5_1666788181_1666788181_CIi3jgYQktQ_GOXwxKLBMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABo_9iV8p6d99_dAXAA&ri=7bd7041ddb90c08160a14df31b20447a&appname=&cdb=&gdprApplies=true&rid=&sii=&oee=true&tpubid=1042962&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=®ion=03&hasGDPRConsent=true&tcfVersion=&cmpStatus=&tnetid=1003147&prcnt=&layer=&normp=1&gvv=-50 HTTP/1.1
Host: 15.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/html;charset=ISO-8859-1
machineid: 1442
link: <https://am-wf.taboola.com>; rel=preconnect
xvid-debug: mrmr - :
pragma: no-cache
cache-control: no-cache,must-revalidate,no-store,max-age=0,s-maxage=0
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: https://444juliegeorgeberita.blogspot.com
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:01 GMT
via: 1.1 varnish
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666788182.636853,VS0,VE30
vary: Accept-Encoding
X-Firefox-Spdy: h2
trc.taboola.com/disqus-widget-safetylevel20longtail09/log/3/fix-user-id?lti=deflated&ri=72c25320c12e576cb8ae22c274520b86&sd=v2_52fd34b2c9c07a652c0ad0f8ebd4a5d8_be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5_1666788181_1666788181_CIi3jgYQktQ_GOXwxKLBMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABo_9iV8p6d99_dAXAA&ui=be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5&pi=/2022/10/2022-income-tax-brackets-federal.html&wi=6585195347814896403&pt=text&vi=1666788178021&time=1666788178301&fromUser=02534485-1fdb-4bc3-8fda-f30ad336bde9-tucta52b0d5&toUser=be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5&fromSD=v2_b4886013d9d57c1ec308dfe7001b71d2_02534485-1fdb-4bc3-8fda-f30ad336bde9-tucta52b0d5_1666788181_1666788181_CIi3jgYQktQ_GOXwxKLBMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABo_9iV8p6d99_dAXAA&toSD=v2_52fd34b2c9c07a652c0ad0f8ebd4a5d8_be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5_1666788181_1666788181_CIi3jgYQktQ_GOXwxKLBMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABo_9iV8p6d99_dAXAA&tim=12%3A42%3A58.301&id=600&llvl=2&cv=20221026-6-RELEASE&
151.101.85.44204 No Content 0 B URL HTTP/2 trc.taboola.com/disqus-widget-safetylevel20longtail09/log/3/fix-user-id?lti=deflated&ri=72c25320c12e576cb8ae22c274520b86&sd=v2_52fd34b2c9c07a652c0ad0f8ebd4a5d8_be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5_1666788181_1666788181_CIi3jgYQktQ_GOXwxKLBMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABo_9iV8p6d99_dAXAA&ui=be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5&pi=/2022/10/2022-income-tax-brackets-federal.html&wi=6585195347814896403&pt=text&vi=1666788178021&time=1666788178301&fromUser=02534485-1fdb-4bc3-8fda-f30ad336bde9-tucta52b0d5&toUser=be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5&fromSD=v2_b4886013d9d57c1ec308dfe7001b71d2_02534485-1fdb-4bc3-8fda-f30ad336bde9-tucta52b0d5_1666788181_1666788181_CIi3jgYQktQ_GOXwxKLBMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABo_9iV8p6d99_dAXAA&toSD=v2_52fd34b2c9c07a652c0ad0f8ebd4a5d8_be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5_1666788181_1666788181_CIi3jgYQktQ_GOXwxKLBMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABo_9iV8p6d99_dAXAA&tim=12%3A42%3A58.301&id=600&llvl=2&cv=20221026-6-RELEASE&
IP 151.101.85.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /disqus-widget-safetylevel20longtail09/log/3/fix-user-id?lti=deflated&ri=72c25320c12e576cb8ae22c274520b86&sd=v2_52fd34b2c9c07a652c0ad0f8ebd4a5d8_be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5_1666788181_1666788181_CIi3jgYQktQ_GOXwxKLBMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABo_9iV8p6d99_dAXAA&ui=be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5&pi=/2022/10/2022-income-tax-brackets-federal.html&wi=6585195347814896403&pt=text&vi=1666788178021&time=1666788178301&fromUser=02534485-1fdb-4bc3-8fda-f30ad336bde9-tucta52b0d5&toUser=be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5&fromSD=v2_b4886013d9d57c1ec308dfe7001b71d2_02534485-1fdb-4bc3-8fda-f30ad336bde9-tucta52b0d5_1666788181_1666788181_CIi3jgYQktQ_GOXwxKLBMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABo_9iV8p6d99_dAXAA&toSD=v2_52fd34b2c9c07a652c0ad0f8ebd4a5d8_be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5_1666788181_1666788181_CIi3jgYQktQ_GOXwxKLBMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABo_9iV8p6d99_dAXAA&tim=12%3A42%3A58.301&id=600&llvl=2&cv=20221026-6-RELEASE& HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:01 GMT
via: 1.1 varnish
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666788182.648132,VS0,VE84
x-vcl-time-ms: 84
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=rtus&topUrl=444juliegeorgeberita.blogspot.com
178.250.0.157200 OK 35 kB URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=444juliegeorgeberita.blogspot.com
IP 178.250.0.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (51460)
Hash 82a8b83c7f79cc69cd737409eda918fc
fb2bf77091e8e2ecf2c212eca38980bdaeabb5a8
d2063b3888602d23a0905ea290aaeb4db43599e2c8ba48332e73376d5b08bbb5
GET /syncframe?origin=rtus&topUrl=444juliegeorgeberita.blogspot.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:00 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=baede0b3-d8c7-4704-b10b-8f2e9b948c73; expires=Mon, 20 Nov 2023 12:43:01 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 691905
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/a6cb1edf-85ae-42d3-8ce3-0c3ef2d08771/3275de353479742dfb42b9fff6759745_1000x600_be3e67c9322b4c203b94595a86689860.png
151.101.85.44200 OK 5.9 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/a6cb1edf-85ae-42d3-8ce3-0c3ef2d08771/3275de353479742dfb42b9fff6759745_1000x600_be3e67c9322b4c203b94595a86689860.png
IP 151.101.85.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8169af16d62947c2b63806b482261b4c
fc1f656b0b85dff9df60dd78d6d3f41d5b6bebc9
be0cadcc5c0b72153193d3b097c3673491626d0d16606305ff61f844fc652cf9
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/a6cb1edf-85ae-42d3-8ce3-0c3ef2d08771/3275de353479742dfb42b9fff6759745_1000x600_be3e67c9322b4c203b94595a86689860.png HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 294827291374924268504357358991688177522,534554604223319601008643105194670925976,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 294827291374924268504357358991688177522,534554604223319601008643105194670925976,29ecf9b93bbf306179626feeda1fab70
etag: "1b277c78dd2901d19425b36bdf66f3fe"
expiration: expiry-date="Fri, 30 Sep 2022 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Tue, 30 Aug 2022 07:25:43 GMT
req-referer: https://www.jamaicaobserver.com/
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 205
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb801
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:01 GMT
age: 2980698
x-served-by: cache-iad-kjyo7100064-IAD, cache-iad-kcgs7200061-IAD, cache-lga21924-LGA, cache-iad-kiad7000026-IAD, cache-bma1644-BMA
x-cache: MISS, MISS, HIT, HIT, HIT
x-cache-hits: 0, 0, 1, 60, 1
x-timer: S1666788182.740779,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/a6cb1edf-85ae-42d3-8ce3-0c3ef2d08771/3275de353479742dfb42b9fff6759745_1000x600_be3e67c9322b4c203b94595a86689860.png
x-vcl-time-ms: 1
content-length: 5946
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/7b7540a63cc4a5b2cfa4b2badb5b5fbe.png
151.101.85.44200 OK 4.4 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/7b7540a63cc4a5b2cfa4b2badb5b5fbe.png
IP 151.101.85.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6dc38ad5c3d5469a636a1bfda60a2da4
e7486e739ce7b8f1bff128f979debdc62ea6cf52
4a73b1443b1afc174905f489bf5639b57f3078946ffffbc3028989d24aa1203f
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/7b7540a63cc4a5b2cfa4b2badb5b5fbe.png HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 585739043857237900932226832743965991296,534554604223319601008643105194670925976,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 585739043857237900932226832743965991296,534554604223319601008643105194670925976,29ecf9b93bbf306179626feeda1fab70
etag: "736ae414e29ede5591b15504ffde11be"
last-modified: Thu, 20 Oct 2022 08:51:46 GMT
req-referer: https://elcorreodeespana.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: e3277005f74ade61e143fadefeb8ab62
x-envoy-upstream-service-time: 415
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb201
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:01 GMT
age: 483980
x-served-by: cache-iad-kjyo7100146-IAD, cache-iad-kjyo7100105-IAD, cache-bur-kbur8200033-BUR, cache-iad-kcgs7200020-IAD, cache-bma1644-BMA
x-cache: MISS, MISS, MISS, HIT, HIT
x-cache-hits: 0, 0, 0, 27, 1
x-timer: S1666788182.740652,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/7b7540a63cc4a5b2cfa4b2badb5b5fbe.png
x-vcl-time-ms: 1
content-length: 4396
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_334%2Cw_400%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/87f5b022334bd9363e4e396140ebb7d4.jpeg
151.101.85.44200 OK 48 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_334%2Cw_400%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/87f5b022334bd9363e4e396140ebb7d4.jpeg
IP 151.101.85.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash cb2c2b19c2e49ba371bb837d0cdd970d
bcd6a3be41497654c620ced767c682811b36e364
f0454f1a19a0c06840957145a3706990d2887c735db776b79298ae4ecc8e9ae4
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_334%2Cw_400%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/87f5b022334bd9363e4e396140ebb7d4.jpeg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 374761137377613625038690979774723506457,352635776853417681536589699696160363519,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 374761137377613625038690979774723506457,352635776853417681536589699696160363519,29ecf9b93bbf306179626feeda1fab70
etag: "3facb75db5fd9bfdd5217d3d252e048f"
last-modified: Mon, 05 Sep 2022 09:05:16 GMT
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 061b3f6e479c166279b9876ac967e754
x-envoy-upstream-service-time: 139
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb803
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:01 GMT
age: 3118060
x-served-by: cache-iad-kcgs7200055-IAD, cache-iad-kcgs7200089-IAD, cache-lga21943-LGA, cache-iad-kiad7000042-IAD, cache-bma1644-BMA
x-cache: HIT, MISS, HIT, HIT, HIT
x-cache-hits: 1, 0, 1, 125, 1
x-timer: S1666788182.740442,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_334%2Cw_400%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/87f5b022334bd9363e4e396140ebb7d4.jpeg
x-vcl-time-ms: 1
content-length: 47998
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/a6cb1edf-85ae-42d3-8ce3-0c3ef2d08771/images/9f73ed33-d8b2-4a87-a0e4-8b725b9cf38e_1000x600.jpeg
151.101.85.44200 OK 6.2 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/a6cb1edf-85ae-42d3-8ce3-0c3ef2d08771/images/9f73ed33-d8b2-4a87-a0e4-8b725b9cf38e_1000x600.jpeg
IP 151.101.85.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash e8a852f70b5b9485f17f8bd42d67b9ba
afd79d686089dc2312cae7ce8fedaab3ea462242
c1b08a328dfe88afff93699c4f0b54e243991f1c7569fa3e6c67cf389bb7ce58
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/a6cb1edf-85ae-42d3-8ce3-0c3ef2d08771/images/9f73ed33-d8b2-4a87-a0e4-8b725b9cf38e_1000x600.jpeg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 519317090121970953407989033386020157113,534554604223319601008643105194670925976,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 519317090121970953407989033386020157113,534554604223319601008643105194670925976,29ecf9b93bbf306179626feeda1fab70
etag: "c9b280b9563ec76d9182b6e9fb54673b"
last-modified: Fri, 09 Sep 2022 22:48:50 GMT
req-referer: https://onedio.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: d69a10fac4c53f9ad12897363a21dfd0
x-envoy-upstream-service-time: 205
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb203
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:01 GMT
age: 3725956
x-served-by: cache-iad-kjyo7100037-IAD, cache-iad-kjyo7100037-IAD, cache-bur-kbur8200027-BUR, cache-iad-kjyo7100033-IAD, cache-bma1644-BMA
x-cache: HIT, HIT, MISS, HIT, HIT
x-cache-hits: 1, 3, 0, 19, 1
x-timer: S1666788182.729946,VS0,VE13
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/a6cb1edf-85ae-42d3-8ce3-0c3ef2d08771/images/9f73ed33-d8b2-4a87-a0e4-8b725b9cf38e_1000x600.jpeg
x-vcl-time-ms: 13
content-length: 6158
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_334%2Cw_400%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/a6cb1edf-85ae-42d3-8ce3-0c3ef2d08771/images/d15c88eb0cb8c616dd24024a8d05840c__b1b33f13-cc84-4d36-be63-69bfcc09590c_1000x600.jpeg
151.101.85.44200 OK 11 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_334%2Cw_400%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/a6cb1edf-85ae-42d3-8ce3-0c3ef2d08771/images/d15c88eb0cb8c616dd24024a8d05840c__b1b33f13-cc84-4d36-be63-69bfcc09590c_1000x600.jpeg
IP 151.101.85.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 15d96bef6d3d1a5d8215dcb1ac84d623
5a92b971059c67a9ac9bd3d94b479728ca093f81
2b55e79893e58f05b1baa3b03b2033e31f635793ead8289829df7e1ef6433ef3
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_334%2Cw_400%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/a6cb1edf-85ae-42d3-8ce3-0c3ef2d08771/images/d15c88eb0cb8c616dd24024a8d05840c__b1b33f13-cc84-4d36-be63-69bfcc09590c_1000x600.jpeg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 560803308082641633590472937231592465907,511320169514815208339615988714053385614,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 560803308082641633590472937231592465907,511320169514815208339615988714053385614,29ecf9b93bbf306179626feeda1fab70
etag: "b976481cf6b484bb3d2ba1476cc92340"
last-modified: Tue, 27 Sep 2022 14:50:52 GMT
req-referer: https://crankyyankeef1.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: dfc88d048bb57e78e5a80193d7b5e750
x-envoy-upstream-service-time: 103
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb802
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:01 GMT
age: 2495533
x-served-by: cache-iad-kcgs7200125-IAD, cache-iad-kcgs7200057-IAD, cache-lga21965-LGA, cache-iad-kiad7000020-IAD, cache-bma1644-BMA
x-cache: MISS, HIT, HIT, HIT, HIT
x-cache-hits: 0, 1, 1, 161, 1
x-timer: S1666788182.740454,VS0,VE4
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_334%2Cw_400%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/a6cb1edf-85ae-42d3-8ce3-0c3ef2d08771/images/d15c88eb0cb8c616dd24024a8d05840c__b1b33f13-cc84-4d36-be63-69bfcc09590c_1000x600.jpeg
x-vcl-time-ms: 4
content-length: 11360
X-Firefox-Spdy: h2
trc.taboola.com/disqus-widget-safetylevel20longtail09/trc/3/json?tim=12%3A42%3A58.023<i=deflated&data=%7B%22id%22%3A930%2C%22ii%22%3A%22%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1666787274411%2C%22vi%22%3A1666788178021%2C%22cv%22%3A%2220221026-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22plf%22%3A%7B%22ack_exm%22%3Atrue%7D%2C%22bu%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22vpi%22%3A%22%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22e%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A670%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A17%2C%22dw%22%3A670%2C%22dh%22%3A27%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A6%2C%22uim%22%3A%22thumbnails-b%3Aabp%3D0%22%2C%22uip%22%3A%22%7B%5C%22domain%5C%22%3A%20%5C%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%5C%22%2C%20%5C%22experiment%5C%22%3A%20%5C%22network_default%5C%22%2C%20%5C%22position%5C%22%3A%20%5C%22bottom%5C%22%2C%20%5C%22shortname%5C%22%3A%20%5C%22theme-daddy%5C%22%2C%20%5C%22variant%5C%22%3A%20%5C%22fallthrough%5C%22%7D%22%2C%22orig_uip%22%3A%22%7B%5C%22domain%5C%22%3A%20%5C%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%5C%22%2C%20%5C%22experiment%5C%22%3A%20%5C%22network_default%5C%22%2C%20%5C%22position%5C%22%3A%20%5C%22bottom%5C%22%2C%20%5C%22shortname%5C%22%3A%20%5C%22theme-daddy%5C%22%2C%20%5C%22variant%5C%22%3A%20%5C%22fallthrough%5C%22%7D%22%2C%22cd%22%3A27%2C%22mw%22%3A0%7D%5D%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2
151.101.85.44200 OK 20 kB URL HTTP/2 trc.taboola.com/disqus-widget-safetylevel20longtail09/trc/3/json?tim=12%3A42%3A58.023<i=deflated&data=%7B%22id%22%3A930%2C%22ii%22%3A%22%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1666787274411%2C%22vi%22%3A1666788178021%2C%22cv%22%3A%2220221026-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22plf%22%3A%7B%22ack_exm%22%3Atrue%7D%2C%22bu%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22vpi%22%3A%22%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22e%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A670%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A17%2C%22dw%22%3A670%2C%22dh%22%3A27%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A6%2C%22uim%22%3A%22thumbnails-b%3Aabp%3D0%22%2C%22uip%22%3A%22%7B%5C%22domain%5C%22%3A%20%5C%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%5C%22%2C%20%5C%22experiment%5C%22%3A%20%5C%22network_default%5C%22%2C%20%5C%22position%5C%22%3A%20%5C%22bottom%5C%22%2C%20%5C%22shortname%5C%22%3A%20%5C%22theme-daddy%5C%22%2C%20%5C%22variant%5C%22%3A%20%5C%22fallthrough%5C%22%7D%22%2C%22orig_uip%22%3A%22%7B%5C%22domain%5C%22%3A%20%5C%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%5C%22%2C%20%5C%22experiment%5C%22%3A%20%5C%22network_default%5C%22%2C%20%5C%22position%5C%22%3A%20%5C%22bottom%5C%22%2C%20%5C%22shortname%5C%22%3A%20%5C%22theme-daddy%5C%22%2C%20%5C%22variant%5C%22%3A%20%5C%22fallthrough%5C%22%7D%22%2C%22cd%22%3A27%2C%22mw%22%3A0%7D%5D%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2
IP 151.101.85.44:0
Hash 4975b43e1f3258b6e3df6c2c3ad67e22
c2c3d4f9e1ea20548b78241bb9bfac00576b19ba
b3aa4ec3a9e86520a3a6626f6bd7ac269c60ca053e699e3907724b0ad0ddebae
GET /disqus-widget-safetylevel20longtail09/trc/3/json?tim=12%3A42%3A58.023<i=deflated&data=%7B%22id%22%3A930%2C%22ii%22%3A%22%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1666787274411%2C%22vi%22%3A1666788178021%2C%22cv%22%3A%2220221026-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22plf%22%3A%7B%22ack_exm%22%3Atrue%7D%2C%22bu%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22vpi%22%3A%22%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22e%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A670%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A17%2C%22dw%22%3A670%2C%22dh%22%3A27%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A6%2C%22uim%22%3A%22thumbnails-b%3Aabp%3D0%22%2C%22uip%22%3A%22%7B%5C%22domain%5C%22%3A%20%5C%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%5C%22%2C%20%5C%22experiment%5C%22%3A%20%5C%22network_default%5C%22%2C%20%5C%22position%5C%22%3A%20%5C%22bottom%5C%22%2C%20%5C%22shortname%5C%22%3A%20%5C%22theme-daddy%5C%22%2C%20%5C%22variant%5C%22%3A%20%5C%22fallthrough%5C%22%7D%22%2C%22orig_uip%22%3A%22%7B%5C%22domain%5C%22%3A%20%5C%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%5C%22%2C%20%5C%22experiment%5C%22%3A%20%5C%22network_default%5C%22%2C%20%5C%22position%5C%22%3A%20%5C%22bottom%5C%22%2C%20%5C%22shortname%5C%22%3A%20%5C%22theme-daddy%5C%22%2C%20%5C%22variant%5C%22%3A%20%5C%22fallthrough%5C%22%7D%22%2C%22cd%22%3A27%2C%22mw%22%3A0%7D%5D%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://444juliegeorgeberita.blogspot.com
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:01 GMT
via: 1.1 varnish
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666788181.396358,VS0,VE182
vary: Accept-Encoding
x-vcl-time-ms: 182
X-Firefox-Spdy: h2
trc.taboola.com/disqus-widget-safetylevel20longtail09/trc/3/json?tim=12%3A42%3A58.071<i=deflated&data=%7B%22id%22%3A543%2C%22ii%22%3A%22%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1666787274411%2C%22vi%22%3A1666788178021%2C%22cv%22%3A%2220221026-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22plf%22%3A%7B%22ack_exm%22%3Atrue%7D%2C%22bu%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22vpi%22%3A%22%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22e%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A670%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A17%2C%22dw%22%3A670%2C%22dh%22%3A27%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A6%2C%22uim%22%3A%22thumbnails-a%3Aabp%3D0%22%2C%22uip%22%3A%22%7B%5C%22domain%5C%22%3A%20%5C%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%5C%22%2C%20%5C%22experiment%5C%22%3A%20%5C%22network_default%5C%22%2C%20%5C%22position%5C%22%3A%20%5C%22top%5C%22%2C%20%5C%22shortname%5C%22%3A%20%5C%22theme-daddy%5C%22%2C%20%5C%22variant%5C%22%3A%20%5C%22fallthrough%5C%22%7D%22%2C%22orig_uip%22%3A%22%7B%5C%22domain%5C%22%3A%20%5C%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%5C%22%2C%20%5C%22experiment%5C%22%3A%20%5C%22network_default%5C%22%2C%20%5C%22position%5C%22%3A%20%5C%22top%5C%22%2C%20%5C%22shortname%5C%22%3A%20%5C%22theme-daddy%5C%22%2C%20%5C%22variant%5C%22%3A%20%5C%22fallthrough%5C%22%7D%22%2C%22cd%22%3A27%2C%22mw%22%3A0%7D%5D%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2
151.101.85.44200 OK 14 kB URL HTTP/2 trc.taboola.com/disqus-widget-safetylevel20longtail09/trc/3/json?tim=12%3A42%3A58.071<i=deflated&data=%7B%22id%22%3A543%2C%22ii%22%3A%22%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1666787274411%2C%22vi%22%3A1666788178021%2C%22cv%22%3A%2220221026-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22plf%22%3A%7B%22ack_exm%22%3Atrue%7D%2C%22bu%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22vpi%22%3A%22%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22e%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A670%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A17%2C%22dw%22%3A670%2C%22dh%22%3A27%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A6%2C%22uim%22%3A%22thumbnails-a%3Aabp%3D0%22%2C%22uip%22%3A%22%7B%5C%22domain%5C%22%3A%20%5C%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%5C%22%2C%20%5C%22experiment%5C%22%3A%20%5C%22network_default%5C%22%2C%20%5C%22position%5C%22%3A%20%5C%22top%5C%22%2C%20%5C%22shortname%5C%22%3A%20%5C%22theme-daddy%5C%22%2C%20%5C%22variant%5C%22%3A%20%5C%22fallthrough%5C%22%7D%22%2C%22orig_uip%22%3A%22%7B%5C%22domain%5C%22%3A%20%5C%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%5C%22%2C%20%5C%22experiment%5C%22%3A%20%5C%22network_default%5C%22%2C%20%5C%22position%5C%22%3A%20%5C%22top%5C%22%2C%20%5C%22shortname%5C%22%3A%20%5C%22theme-daddy%5C%22%2C%20%5C%22variant%5C%22%3A%20%5C%22fallthrough%5C%22%7D%22%2C%22cd%22%3A27%2C%22mw%22%3A0%7D%5D%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2
IP 151.101.85.44:0
Hash b48e40ccd03e356a1470ffae1d305d12
e5deadb0c5babcffad7a5252120a02a49404a48a
174ebd8f41783e078b41e2e5bcb54d068f09521d1ca377dcd53e97ad13c6eaa1
GET /disqus-widget-safetylevel20longtail09/trc/3/json?tim=12%3A42%3A58.071<i=deflated&data=%7B%22id%22%3A543%2C%22ii%22%3A%22%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1666787274411%2C%22vi%22%3A1666788178021%2C%22cv%22%3A%2220221026-6-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22plf%22%3A%7B%22ack_exm%22%3Atrue%7D%2C%22bu%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22vpi%22%3A%22%2F2022%2F10%2F2022-income-tax-brackets-federal.html%22%2C%22e%22%3A%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A670%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A17%2C%22dw%22%3A670%2C%22dh%22%3A27%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A6%2C%22uim%22%3A%22thumbnails-a%3Aabp%3D0%22%2C%22uip%22%3A%22%7B%5C%22domain%5C%22%3A%20%5C%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%5C%22%2C%20%5C%22experiment%5C%22%3A%20%5C%22network_default%5C%22%2C%20%5C%22position%5C%22%3A%20%5C%22top%5C%22%2C%20%5C%22shortname%5C%22%3A%20%5C%22theme-daddy%5C%22%2C%20%5C%22variant%5C%22%3A%20%5C%22fallthrough%5C%22%7D%22%2C%22orig_uip%22%3A%22%7B%5C%22domain%5C%22%3A%20%5C%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%5C%22%2C%20%5C%22experiment%5C%22%3A%20%5C%22network_default%5C%22%2C%20%5C%22position%5C%22%3A%20%5C%22top%5C%22%2C%20%5C%22shortname%5C%22%3A%20%5C%22theme-daddy%5C%22%2C%20%5C%22variant%5C%22%3A%20%5C%22fallthrough%5C%22%7D%22%2C%22cd%22%3A27%2C%22mw%22%3A0%7D%5D%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://444juliegeorgeberita.blogspot.com
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:01 GMT
via: 1.1 varnish
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666788181.420918,VS0,VE173
vary: Accept-Encoding
x-vcl-time-ms: 173
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/a6cb1edf-85ae-42d3-8ce3-0c3ef2d08771/images/5595b055-fa92-4cf7-b139-65d0a15223fc_1000x600.jpeg
151.101.85.44200 OK 13 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/a6cb1edf-85ae-42d3-8ce3-0c3ef2d08771/images/5595b055-fa92-4cf7-b139-65d0a15223fc_1000x600.jpeg
IP 151.101.85.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f697e183ecceb97b17d2dc3338d32ba5
4aa693826a4c088c2ff8adcaae94bb2ae68828b2
dc45c714371a68f23b9db572bf7aa6d71542f3f6d11e9076556ff93fe3d3ec0a
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/a6cb1edf-85ae-42d3-8ce3-0c3ef2d08771/images/5595b055-fa92-4cf7-b139-65d0a15223fc_1000x600.jpeg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 485044639695218924217884019282823531025,534554604223319601008643105194670925976,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 485044639695218924217884019282823531025,534554604223319601008643105194670925976,29ecf9b93bbf306179626feeda1fab70
etag: "269db9ce2b3f15a564bd2e0496206365"
expiration: expiry-date="Thu, 06 Oct 2022 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Mon, 05 Sep 2022 06:36:52 GMT
req-referer: https://www.laprensa.hn/
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 63
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb801
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:01 GMT
age: 4368812
x-served-by: cache-iad-kcgs7200150-IAD, cache-iad-kiad7000133-IAD, cache-lga21976-LGA, cache-iad-kiad7000080-IAD, cache-bma1644-BMA
x-cache: HIT, MISS, MISS, HIT, HIT
x-cache-hits: 1, 0, 0, 52, 1
x-timer: S1666788182.744940,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_217%2Cw_260%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//console.brax-cdn.com/creatives/a6cb1edf-85ae-42d3-8ce3-0c3ef2d08771/images/5595b055-fa92-4cf7-b139-65d0a15223fc_1000x600.jpeg
x-vcl-time-ms: 1
content-length: 12664
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 29 kB URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
Hash 3ed06354b016d9ef9ca79a03c6e57cd4
1a488155d8bcc61f3af44c0d95f8018a1348826d
82b29bcc60ce9fed9ac4dccc846a2ba765503590963a76f3508c614fcd4a5ea0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:00 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 592606
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
vidstat.taboola.com/lite-unit/3.9.5/UnitWidgetItemDesktop.min.js
151.101.85.44304 Not Modified 0 B URL HTTP/2 vidstat.taboola.com/lite-unit/3.9.5/UnitWidgetItemDesktop.min.js
IP 151.101.85.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /lite-unit/3.9.5/UnitWidgetItemDesktop.min.js HTTP/1.1
Host: vidstat.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Tue, 13 Sep 2022 09:04:05 GMT
If-None-Match: "8b1ffbd4f9c44c447f9a11e92fbb9112"
TE: trailers
HTTP/2 304 Not Modified
date: Wed, 26 Oct 2022 12:43:01 GMT
via: 1.1 varnish
cache-control: public, max-age=2592000
etag: "8b1ffbd4f9c44c447f9a11e92fbb9112"
age: 2602863
x-served-by: cache-bma1644-BMA
x-cache: HIT
x-cache-hits: 40172
x-timer: S1666788182.791461,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-headers: *
X-Firefox-Spdy: h2
referrer.disqus.com/juggler/event.gif?imp=69c8v9vcv4feb&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=theme-daddy&zone=thread&version=f61148c2dd1494a1b27fa873adab6e5f&page_url=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&page_referrer=&object_type=advertisement&provider=taboola&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough&object_id=%5B184193%5D§ion=default&verb=load&advertisement_id=184193&forum_id=4314102
151.101.84.134200 OK 43 B URL HTTP/1.1 referrer.disqus.com/juggler/event.gif?imp=69c8v9vcv4feb&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=theme-daddy&zone=thread&version=f61148c2dd1494a1b27fa873adab6e5f&page_url=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&page_referrer=&object_type=advertisement&provider=taboola&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough&object_id=%5B184193%5D§ion=default&verb=load&advertisement_id=184193&forum_id=4314102
IP 151.101.84.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/event.gif?imp=69c8v9vcv4feb&experiment=network_default&variant=fallthrough&service=dynamic&area=top&product=embed&forum=theme-daddy&zone=thread&version=f61148c2dd1494a1b27fa873adab6e5f&page_url=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&page_referrer=&object_type=advertisement&provider=taboola&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough&object_id=%5B184193%5D§ion=default&verb=load&advertisement_id=184193&forum_id=4314102 HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Wed, 26 Oct 2022 12:43:01 GMT
Cross-Origin-Resource-Policy: cross-origin
referrer.disqus.com/juggler/event.gif?imp=69c8v9vcv4feb&experiment=network_default&variant=fallthrough&service=dynamic&area=bottom&product=embed&forum=theme-daddy&zone=thread&version=f61148c2dd1494a1b27fa873adab6e5f&page_url=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&page_referrer=&object_type=advertisement&provider=taboola&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough&object_id=%5B184193%5D§ion=default&verb=load&advertisement_id=184193&forum_id=4314102
151.101.84.134200 OK 43 B URL HTTP/1.1 referrer.disqus.com/juggler/event.gif?imp=69c8v9vcv4feb&experiment=network_default&variant=fallthrough&service=dynamic&area=bottom&product=embed&forum=theme-daddy&zone=thread&version=f61148c2dd1494a1b27fa873adab6e5f&page_url=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&page_referrer=&object_type=advertisement&provider=taboola&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough&object_id=%5B184193%5D§ion=default&verb=load&advertisement_id=184193&forum_id=4314102
IP 151.101.84.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/event.gif?imp=69c8v9vcv4feb&experiment=network_default&variant=fallthrough&service=dynamic&area=bottom&product=embed&forum=theme-daddy&zone=thread&version=f61148c2dd1494a1b27fa873adab6e5f&page_url=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&page_referrer=&object_type=advertisement&provider=taboola&event=activity&ad_product_name=iab_display&ad_product_layout=iab_display&bin=embed%3Apromoted_discovery%3Adynamic%3Anetwork_default%3Afallthrough&object_id=%5B184193%5D§ion=default&verb=load&advertisement_id=184193&forum_id=4314102 HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Wed, 26 Oct 2022 12:43:01 GMT
Cross-Origin-Resource-Policy: cross-origin
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash a5e62abe7fa36ccefa5c0ed784d4ff2b
f3719c351b07f0616a889cc53d5123c2fe8cb503
4fa2d9c40a9633b2c60ece922a4cd775bf54d0918165e2f0cef7954f174edece
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 101
Cache-Control: max-age=138324
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:43:01 GMT
Etag: "6358a444-139"
Expires: Fri, 28 Oct 2022 03:08:25 GMT
Last-Modified: Wed, 26 Oct 2022 03:06:44 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash a5e62abe7fa36ccefa5c0ed784d4ff2b
f3719c351b07f0616a889cc53d5123c2fe8cb503
4fa2d9c40a9633b2c60ece922a4cd775bf54d0918165e2f0cef7954f174edece
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 208
Cache-Control: max-age=138431
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:43:01 GMT
Etag: "6358a444-139"
Expires: Fri, 28 Oct 2022 03:10:12 GMT
Last-Modified: Wed, 26 Oct 2022 03:06:44 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
disqus.com/api/3.0/discovery/listRecommendations.json?forum=theme-daddy&thread=url%3Ahttps%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&limit=8&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
151.101.128.134200 OK 7.1 kB URL HTTP/1.1 disqus.com/api/3.0/discovery/listRecommendations.json?forum=theme-daddy&thread=url%3Ahttps%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&limit=8&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F
IP 151.101.128.134:0
File type JSON data\012- , ASCII text, with very long lines (7100), with no line terminators
Hash 231438ebeae25a6c96936556830964ed
2c9b618a1f28be1e632501aed84bd5cce5563315
41c1e0dc5043af504c99c8f4249e06d9875330506b7d77755dd0f5770dbf53c9
GET /api/3.0/discovery/listRecommendations.json?forum=theme-daddy&thread=url%3Ahttps%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&limit=8&api_key=E8Uh5l5fHZ6gD8U3KycjAIAk46f68Zw7C6eW8WSjZvCLXebZ7p0r1yrYDrLilk2F HTTP/1.1
Host: disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://disqus.com/recommendations/?base=default&f=theme-daddy&t_u=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&t_d=%0A2022%20Income%20Tax%20Brackets%20Federal%0A&t_t=%0A2022%20Income%20Tax%20Brackets%20Federal%0A
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 7100
Server: nginx
Content-Type: application/json
Cache-Control: stale-while-revalidate=450, public, max-age=1800
X-Frame-Options: SAMEORIGIN
p3p: CP="DSP IDC CUR ADM DELi STP NAV COM UNI INT PHY DEM"
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Wed, 26 Oct 2022 12:43:01 GMT
Age: 0
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
Strict-Transport-Security: max-age=300; includeSubdomains
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:01 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=4TR5-V80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3lFdjBES2VCeXhTWkNwOXNoTDVwUUZhZyUyRjdmT0dPQ0kxeThOJTJCV1A4RFZr; expires=Mon, 20 Nov 2023 12:43:01 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 261754
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:01 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=7U5_E180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3huQ0lsQVp2bXhQUkg5UzhNRzBiR2RkU24wY3cyV0dPek9weVBZemNRbUI; expires=Mon, 20 Nov 2023 12:43:01 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 217543
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
15.taboola.com/tb?oid=15&pubnm=disqus-widget-safetylevel20longtail09&unitType=226&tbloc=&pageType=text&pstn=%7B%22domain%22%3A%20%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%22%2C%20%22experiment%22%3A%20%22network_default%22%2C%20%22position%22%3A%20%22top%22%2C%20%22shortname%22%3A%20%22theme-daddy%22%2C%20%22variant%22%3A%20%22fallthrough%22%7D&uuip=&cisrf=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F&cirf=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&encoded=1&uid=be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5&variant=-100|478542&callback=TRC.videoTagCallbacks.videoCallback1&cb=1666788178322&tagid=&cntry=NO&platform=1&sesid=52fd34b2c9c07a652c0ad0f8ebd4a5d8&itemid=/2022/10/2022-income-tax-brackets-federal.html&viewid=1666788178021&geolat=&geoing=&deviceifa=&appid=&sd=v2_52fd34b2c9c07a652c0ad0f8ebd4a5d8_be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5_1666788181_1666788181_CIi3jgYQktQ_GOXwxKLBMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABo_9iV8p6d99_dAXAA&ri=72c25320c12e576cb8ae22c274520b86&appname=&cdb=&gdprApplies=true&rid=&sii=&oee=true&tpubid=1042962&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=®ion=03&hasGDPRConsent=true&tcfVersion=&cmpStatus=&tnetid=1003147&prcnt=&layer=&normp=1&gvv=7891
151.101.85.44200 OK 9.9 kB URL HTTP/2 15.taboola.com/tb?oid=15&pubnm=disqus-widget-safetylevel20longtail09&unitType=226&tbloc=&pageType=text&pstn=%7B%22domain%22%3A%20%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%22%2C%20%22experiment%22%3A%20%22network_default%22%2C%20%22position%22%3A%20%22top%22%2C%20%22shortname%22%3A%20%22theme-daddy%22%2C%20%22variant%22%3A%20%22fallthrough%22%7D&uuip=&cisrf=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F&cirf=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&encoded=1&uid=be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5&variant=-100|478542&callback=TRC.videoTagCallbacks.videoCallback1&cb=1666788178322&tagid=&cntry=NO&platform=1&sesid=52fd34b2c9c07a652c0ad0f8ebd4a5d8&itemid=/2022/10/2022-income-tax-brackets-federal.html&viewid=1666788178021&geolat=&geoing=&deviceifa=&appid=&sd=v2_52fd34b2c9c07a652c0ad0f8ebd4a5d8_be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5_1666788181_1666788181_CIi3jgYQktQ_GOXwxKLBMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABo_9iV8p6d99_dAXAA&ri=72c25320c12e576cb8ae22c274520b86&appname=&cdb=&gdprApplies=true&rid=&sii=&oee=true&tpubid=1042962&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=®ion=03&hasGDPRConsent=true&tcfVersion=&cmpStatus=&tnetid=1003147&prcnt=&layer=&normp=1&gvv=7891
IP 151.101.85.44:0
Hash a42b2b9df21485f6cac831abde34aa07
5e51fb0ba7ec81fd0eb3fdc2ec78247a735b4673
e5ded5054f7efdc1653ca0c8de3df99337ed919821c201b93aa1675b8ee4a845
GET /tb?oid=15&pubnm=disqus-widget-safetylevel20longtail09&unitType=226&tbloc=&pageType=text&pstn=%7B%22domain%22%3A%20%22https%3A%2F%2F444juliegeorgeberita.blogspot.com%22%2C%20%22experiment%22%3A%20%22network_default%22%2C%20%22position%22%3A%20%22top%22%2C%20%22shortname%22%3A%20%22theme-daddy%22%2C%20%22variant%22%3A%20%22fallthrough%22%7D&uuip=&cisrf=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F&cirf=https%3A%2F%2F444juliegeorgeberita.blogspot.com%2F2022%2F10%2F2022-income-tax-brackets-federal.html&encoded=1&uid=be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5&variant=-100|478542&callback=TRC.videoTagCallbacks.videoCallback1&cb=1666788178322&tagid=&cntry=NO&platform=1&sesid=52fd34b2c9c07a652c0ad0f8ebd4a5d8&itemid=/2022/10/2022-income-tax-brackets-federal.html&viewid=1666788178021&geolat=&geoing=&deviceifa=&appid=&sd=v2_52fd34b2c9c07a652c0ad0f8ebd4a5d8_be9774f5-e3fa-4d98-a581-b64fdb0d6200-tucta52b0d5_1666788181_1666788181_CIi3jgYQktQ_GOXwxKLBMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABo_9iV8p6d99_dAXAA&ri=72c25320c12e576cb8ae22c274520b86&appname=&cdb=&gdprApplies=true&rid=&sii=&oee=true&tpubid=1042962&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=®ion=03&hasGDPRConsent=true&tcfVersion=&cmpStatus=&tnetid=1003147&prcnt=&layer=&normp=1&gvv=7891 HTTP/1.1
Host: 15.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/html;charset=ISO-8859-1
machineid: 1443
link: <https://am-wf.taboola.com>; rel=preconnect
xvid-debug: mrmr - :
pragma: no-cache
cache-control: no-cache,must-revalidate,no-store,max-age=0,s-maxage=0
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: https://444juliegeorgeberita.blogspot.com
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:01 GMT
via: 1.1 varnish
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666788182.669501,VS0,VE31
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e2b0d6d1015a7972f71c1c8355280813
2bc636af19cef098baa23787a80be98dd3da9480
bc322b80f560226a39bfc168c96428ae76c48d0174942c0e01d2bcd83b097d22
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2319
Cache-Control: max-age=161792
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:43:01 GMT
Etag: "6358f746-139"
Expires: Fri, 28 Oct 2022 09:39:33 GMT
Last-Modified: Wed, 26 Oct 2022 09:00:54 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e2b0d6d1015a7972f71c1c8355280813
2bc636af19cef098baa23787a80be98dd3da9480
bc322b80f560226a39bfc168c96428ae76c48d0174942c0e01d2bcd83b097d22
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2319
Cache-Control: max-age=161792
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:43:01 GMT
Etag: "6358f746-139"
Expires: Fri, 28 Oct 2022 09:39:33 GMT
Last-Modified: Wed, 26 Oct 2022 09:00:54 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
il-trc-events.taboola.com/disqus-widget-safetylevel20longtail09/log/3/bulk-metrics?route=AM%3AIL%3AV<i=deflated&bulkSize=1
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/disqus-widget-safetylevel20longtail09/log/3/bulk-metrics?route=AM%3AIL%3AV<i=deflated&bulkSize=1
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /disqus-widget-safetylevel20longtail09/log/3/bulk-metrics?route=AM%3AIL%3AV<i=deflated&bulkSize=1 HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1037
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 26 Oct 2022 12:43:01 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://444juliegeorgeberita.blogspot.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
referrer.disqus.com/juggler/stat.gif?event=failed_recommendations.server.undefined
151.101.84.134200 OK 43 B URL HTTP/1.1 referrer.disqus.com/juggler/stat.gif?event=failed_recommendations.server.undefined
IP 151.101.84.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /juggler/stat.gif?event=failed_recommendations.server.undefined HTTP/1.1
Host: referrer.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Server: nginx
Content-Type: image/gif
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Date: Wed, 26 Oct 2022 12:43:02 GMT
Cross-Origin-Resource-Policy: cross-origin
links.services.disqus.com/api/sync.gif?key=cfdfcf52dffd0a702a61bad27507376d
151.101.84.64200 OK 43 B URL HTTP/1.1 links.services.disqus.com/api/sync.gif?key=cfdfcf52dffd0a702a61bad27507376d
IP 151.101.84.64:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /api/sync.gif?key=cfdfcf52dffd0a702a61bad27507376d HTTP/1.1
Host: links.services.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 43
Cache-Control: no-cache, no-store
Content-Type: image/gif;charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Date: Wed, 26 Oct 2022 12:43:02 GMT
Set-Cookie: vglnk.Agent.p=3a702bf9af21b9daad52b1e43a8c4123; Expires=Thu, 26 Oct 2023 12:43:02 GMT; path=/
vglnk.PartnerRfsh.p=; Expires=Thu, 26 Oct 2023 12:43:02 GMT; path=/
links.services.disqus.com/api/domains
151.101.84.64200 OK 58 B URL HTTP/1.1 links.services.disqus.com/api/domains
IP 151.101.84.64:0
File type ASCII text, with no line terminators
Hash a43a3295cfbbd17f3ffa2c3b3d89ca1e
53e3e0e8a72f031fb5f1c9472050d18a9302616a
a69709d4922ca2e37a0adcddd11c27eb12288a50b8d53f4e440602e9be279466
POST /api/domains HTTP/1.1
Host: links.services.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 430
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 58
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://444juliegeorgeberita.blogspot.com
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Date: Wed, 26 Oct 2022 12:43:02 GMT
Set-Cookie: vglnk.Agent.p=ff090d741e53a490dbc862dcf8598661; Expires=Thu, 26 Oct 2023 12:43:02 GMT; path=/
vglnk.PartnerRfsh.p=; Expires=Thu, 26 Oct 2023 12:43:02 GMT; path=/
gum.criteo.com/sid/json?origin=rtus&domain=444juliegeorgeberita.blogspot.com&sn=FirefoxSyncframe&so=0&topUrl=444juliegeorgeberita.blogspot.com&info=5ILQbV80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3lFdjBES2VCeXhTWkNwOXNoTDVwUUdNWVhQeiUyRm9hcXZ0Z1loTGpxY0VWOQ&idsd=-439462497,-707904401&cw=1&rtusCallerId=72&lsw=1
178.250.0.157200 OK 337 B URL HTTP/2 gum.criteo.com/sid/json?origin=rtus&domain=444juliegeorgeberita.blogspot.com&sn=FirefoxSyncframe&so=0&topUrl=444juliegeorgeberita.blogspot.com&info=5ILQbV80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3lFdjBES2VCeXhTWkNwOXNoTDVwUUdNWVhQeiUyRm9hcXZ0Z1loTGpxY0VWOQ&idsd=-439462497,-707904401&cw=1&rtusCallerId=72&lsw=1
IP 178.250.0.157:0
File type JSON data\012- , ASCII text, with very long lines (422), with no line terminators
Hash be91f79d63035d1b0d7cab447088b1cc
dfcca34ad20ff050884042729f9897b39c366347
3cccfab25b492fe4bfbbdad30bff89c3aff881a04683d33ffad6019505af7916
GET /sid/json?origin=rtus&domain=444juliegeorgeberita.blogspot.com&sn=FirefoxSyncframe&so=0&topUrl=444juliegeorgeberita.blogspot.com&info=5ILQbV80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3lFdjBES2VCeXhTWkNwOXNoTDVwUUdNWVhQeiUyRm9hcXZ0Z1loTGpxY0VWOQ&idsd=-439462497,-707904401&cw=1&rtusCallerId=72&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=444juliegeorgeberita.blogspot.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:01 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1008339
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
185.235.84.94200 OK 424 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.94:0
File type JSON data\012- , ASCII text, with very long lines (466), with no line terminators
Hash dd76758f7ad4eda24d04ae80a046932d
2d103c2d1db74659aebe290d8c49fd3cb09ee6f4
e660a306e152d7e27ed3f56df6e19ff03080ad642e62346f1edfd141fc6d1935
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:01 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 109760
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
am-vid-events.taboola.com/st?cijs=convusmp&ttype=45&cisd=convusmp&cipid=8081305&crid=4807165&dast=V7Ie4CFgPxt5ETaz2EsgTxt5ETaz2EsgUAAAAGBuIHJLNYTEYe32wtMww2btFmYnJLbJ7ZWrQyrGyz2czkGM6GQHIjx8bkHC7WGtfMtBbNFja3cjJauRWOhcsws62MG5dlCoGhexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxLR33ARCySao99yujvcLot0IBEdXW6XW-QwmZwXsUAie1ieDrvpIh1IZA6z2XS0_F0_o0X9his0nQ6f614vGo2mrrPT5XP5LT-XxWV5mh52idnv8xz-prvG7_ZLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZDgAAAAAPAElZ_RA_gAAAEQAAAAASAAAAABQBFf8WAhcAAAAAGAAGGHMaAJ8cBO85-_0BANCgBQIAECBAAjBAWl0CQOFycgIAAAAAAAAAwPL___8fA7D3lCkDgDF20APw4APwQFQwWsQIAAAAYEtLRfNoUidUFlUAAATpVgBXAAABhBRRRrBhAAAAA2KQIoVTX53SXWML9LD4_WaHXeN3uwwAAAAAAAAAwOz_7B9N6G30Oi2IZfRa7RcQAGDtFxAAgE3dAADeAuBCTgVNp8PnuteLRqOp6-x0-Vx-y89lcVmepoddYvb7PIe_6a7xu_2iI2jFYLA6A9oNV6PJ7AAAAADu_v____EgRQqnvjqlu_RAajIzeUYTy8a5MewWttVkY1iYDDPjymIyLVwj4_YoSAwpMnvIR_sCQ_ci8rsdTrtFOpAITafD57rXi0ajqevsdPlcfsvPZXFZnqaHXWL2-zyHv-mu8bstYoFEZTy8LE-3y266SAcSucv0-1u-_pLL5nCdTRexQCL4e56mp99ukQ4kor_hIhZINEe_5XR3uF0W6UAiOrrcLrfIYTI5L2KBRPawPB1200U6kMgcZrPpaPm7fkaL-n4ULVnulrvVaLIYjZbLzW64GQ32J5CzAVK0ZLFaDle7yWK0WSwmy91wNJkgRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcKIy7nbjWautcozc7hFI-dwrXANF2uJbTQzWQwj22QwWIteH9PDNZkYRq4tCgZY7UVwkU5ETs_j9Xnrniafy_TWPGwu0_Pssr3MlsHYb_eZHk6zYTkRSzQni3Qiu-xbk5nJM5pYNs6NYbewrSYbw8JkmBlXFpNp4RoZ9xWXc7cbzVxrlWfmcItGzuFa4Rou1hLbaGayGEa2yWCwFr0-podrMjGMXPvGbDbbDYeL4WLfmM1mu-FwMVzsO0ymZ-pzNrqmR7_HJ_aOXzKFzWFQuAwW7-9zkTajjZtRpQ1bLKprceeaWHXa2MnYOZgNCt_fXNqKg9vIudyXHMQGgyKWCE4X6UT0Mp4uYonkaZFOdJONZbWZDDaOycq1m20sxoXLMtlYdqPVZDAxziZiidJ0kU70ksFkslcM9pLBZLJW2j1-t8stehjfEsvD43WZPm-Zy-SyPMx2oelttqj_yJCLuXIwF03mitVolQAAAAAAAAAAljBn3gQAAADgNJDNcDhYLRfgQV1CF9gEAAAAAACguPHjEnJ6Hq_PW_c0-Vymt-Zhc5meZ5ftZbYMxn67z_Rwmg3LKQM8OC0yb_ZMEGu1WtYAAAAC2AAAAAHcunkLwGbk-AluuFwM!&cmcv=&pix=31589837&cb=1666788178804&uv=3233&tms=1666788178804&abt=amplean_vF!Noappq22_vB!spa2_vB!ufm&ft=1&unm=WIDGET_ITEM&debug=pn:!sqg:!torgn:1666788176621!ts:1666788178804&mntl=1
141.226.228.48200 OK 0 B URL HTTP/2 am-vid-events.taboola.com/st?cijs=convusmp&ttype=45&cisd=convusmp&cipid=8081305&crid=4807165&dast=V7Ie4CFgPxt5ETaz2EsgTxt5ETaz2EsgUAAAAGBuIHJLNYTEYe32wtMww2btFmYnJLbJ7ZWrQyrGyz2czkGM6GQHIjx8bkHC7WGtfMtBbNFja3cjJauRWOhcsws62MG5dlCoGhexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxLR33ARCySao99yujvcLot0IBEdXW6XW-QwmZwXsUAie1ieDrvpIh1IZA6z2XS0_F0_o0X9his0nQ6f614vGo2mrrPT5XP5LT-XxWV5mh52idnv8xz-prvG7_ZLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZDgAAAAAPAElZ_RA_gAAAEQAAAAASAAAAABQBFf8WAhcAAAAAGAAGGHMaAJ8cBO85-_0BANCgBQIAECBAAjBAWl0CQOFycgIAAAAAAAAAwPL___8fA7D3lCkDgDF20APw4APwQFQwWsQIAAAAYEtLRfNoUidUFlUAAATpVgBXAAABhBRRRrBhAAAAA2KQIoVTX53SXWML9LD4_WaHXeN3uwwAAAAAAAAAwOz_7B9N6G30Oi2IZfRa7RcQAGDtFxAAgE3dAADeAuBCTgVNp8PnuteLRqOp6-x0-Vx-y89lcVmepoddYvb7PIe_6a7xu_2iI2jFYLA6A9oNV6PJ7AAAAADu_v____EgRQqnvjqlu_RAajIzeUYTy8a5MewWttVkY1iYDDPjymIyLVwj4_YoSAwpMnvIR_sCQ_ci8rsdTrtFOpAITafD57rXi0ajqevsdPlcfsvPZXFZnqaHXWL2-zyHv-mu8bstYoFEZTy8LE-3y266SAcSucv0-1u-_pLL5nCdTRexQCL4e56mp99ukQ4kor_hIhZINEe_5XR3uF0W6UAiOrrcLrfIYTI5L2KBRPawPB1200U6kMgcZrPpaPm7fkaL-n4ULVnulrvVaLIYjZbLzW64GQ32J5CzAVK0ZLFaDle7yWK0WSwmy91wNJkgRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcKIy7nbjWautcozc7hFI-dwrXANF2uJbTQzWQwj22QwWIteH9PDNZkYRq4tCgZY7UVwkU5ETs_j9Xnrniafy_TWPGwu0_Pssr3MlsHYb_eZHk6zYTkRSzQni3Qiu-xbk5nJM5pYNs6NYbewrSYbw8JkmBlXFpNp4RoZ9xWXc7cbzVxrlWfmcItGzuFa4Rou1hLbaGayGEa2yWCwFr0-podrMjGMXPvGbDbbDYeL4WLfmM1mu-FwMVzsO0ymZ-pzNrqmR7_HJ_aOXzKFzWFQuAwW7-9zkTajjZtRpQ1bLKprceeaWHXa2MnYOZgNCt_fXNqKg9vIudyXHMQGgyKWCE4X6UT0Mp4uYonkaZFOdJONZbWZDDaOycq1m20sxoXLMtlYdqPVZDAxziZiidJ0kU70ksFkslcM9pLBZLJW2j1-t8stehjfEsvD43WZPm-Zy-SyPMx2oelttqj_yJCLuXIwF03mitVolQAAAAAAAAAAljBn3gQAAADgNJDNcDhYLRfgQV1CF9gEAAAAAACguPHjEnJ6Hq_PW_c0-Vymt-Zhc5meZ5ftZbYMxn67z_Rwmg3LKQM8OC0yb_ZMEGu1WtYAAAAC2AAAAAHcunkLwGbk-AluuFwM!&cmcv=&pix=31589837&cb=1666788178804&uv=3233&tms=1666788178804&abt=amplean_vF!Noappq22_vB!spa2_vB!ufm&ft=1&unm=WIDGET_ITEM&debug=pn:!sqg:!torgn:1666788176621!ts:1666788178804&mntl=1
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /st?cijs=convusmp&ttype=45&cisd=convusmp&cipid=8081305&crid=4807165&dast=V7Ie4CFgPxt5ETaz2EsgTxt5ETaz2EsgUAAAAGBuIHJLNYTEYe32wtMww2btFmYnJLbJ7ZWrQyrGyz2czkGM6GQHIjx8bkHC7WGtfMtBbNFja3cjJauRWOhcsws62MG5dlCoGhexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxLR33ARCySao99yujvcLot0IBEdXW6XW-QwmZwXsUAie1ieDrvpIh1IZA6z2XS0_F0_o0X9his0nQ6f614vGo2mrrPT5XP5LT-XxWV5mh52idnv8xz-prvG7_ZLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZDgAAAAAPAElZ_RA_gAAAEQAAAAASAAAAABQBFf8WAhcAAAAAGAAGGHMaAJ8cBO85-_0BANCgBQIAECBAAjBAWl0CQOFycgIAAAAAAAAAwPL___8fA7D3lCkDgDF20APw4APwQFQwWsQIAAAAYEtLRfNoUidUFlUAAATpVgBXAAABhBRRRrBhAAAAA2KQIoVTX53SXWML9LD4_WaHXeN3uwwAAAAAAAAAwOz_7B9N6G30Oi2IZfRa7RcQAGDtFxAAgE3dAADeAuBCTgVNp8PnuteLRqOp6-x0-Vx-y89lcVmepoddYvb7PIe_6a7xu_2iI2jFYLA6A9oNV6PJ7AAAAADu_v____EgRQqnvjqlu_RAajIzeUYTy8a5MewWttVkY1iYDDPjymIyLVwj4_YoSAwpMnvIR_sCQ_ci8rsdTrtFOpAITafD57rXi0ajqevsdPlcfsvPZXFZnqaHXWL2-zyHv-mu8bstYoFEZTy8LE-3y266SAcSucv0-1u-_pLL5nCdTRexQCL4e56mp99ukQ4kor_hIhZINEe_5XR3uF0W6UAiOrrcLrfIYTI5L2KBRPawPB1200U6kMgcZrPpaPm7fkaL-n4ULVnulrvVaLIYjZbLzW64GQ32J5CzAVK0ZLFaDle7yWK0WSwmy91wNJkgRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcKIy7nbjWautcozc7hFI-dwrXANF2uJbTQzWQwj22QwWIteH9PDNZkYRq4tCgZY7UVwkU5ETs_j9Xnrniafy_TWPGwu0_Pssr3MlsHYb_eZHk6zYTkRSzQni3Qiu-xbk5nJM5pYNs6NYbewrSYbw8JkmBlXFpNp4RoZ9xWXc7cbzVxrlWfmcItGzuFa4Rou1hLbaGayGEa2yWCwFr0-podrMjGMXPvGbDbbDYeL4WLfmM1mu-FwMVzsO0ymZ-pzNrqmR7_HJ_aOXzKFzWFQuAwW7-9zkTajjZtRpQ1bLKprceeaWHXa2MnYOZgNCt_fXNqKg9vIudyXHMQGgyKWCE4X6UT0Mp4uYonkaZFOdJONZbWZDDaOycq1m20sxoXLMtlYdqPVZDAxziZiidJ0kU70ksFkslcM9pLBZLJW2j1-t8stehjfEsvD43WZPm-Zy-SyPMx2oelttqj_yJCLuXIwF03mitVolQAAAAAAAAAAljBn3gQAAADgNJDNcDhYLRfgQV1CF9gEAAAAAACguPHjEnJ6Hq_PW_c0-Vymt-Zhc5meZ5ftZbYMxn67z_Rwmg3LKQM8OC0yb_ZMEGu1WtYAAAAC2AAAAAHcunkLwGbk-AluuFwM!&cmcv=&pix=31589837&cb=1666788178804&uv=3233&tms=1666788178804&abt=amplean_vF!Noappq22_vB!spa2_vB!ufm&ft=1&unm=WIDGET_ITEM&debug=pn:!sqg:!torgn:1666788176621!ts:1666788178804&mntl=1 HTTP/1.1
Host: am-vid-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 12:43:02 GMT
content-length: 0
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.46200 OK 128 kB URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.46:0
Size 128 kB (128371 bytes)
Hash 9cfec619310829c7c502e7f9280a68b6
f90aa89ba714b53363b59bec7160db7a5cc2c029
4ba150614b5567bb936cee7675cb10571ca24de335297814f6f8d43833b06530
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:01 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 97420
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=442&height=248&pubid=169497&tagid=953497&crid=4807165&noaop=3&sortOrderType=0&cb=1666788178764&mimes=5,10,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=1&pv=1485&pt=1369142334&tz=0&viewable=true&ddast=V7X6wCFgOMz8nUYscLxgSMz8nUYscLxgUAAAAGBuIHJLXZ2Ey7jW-tMGxsa9FsuFgrPJPlWrlYzmzDhWO5WK6GQBI2y8o0G87WuplhsRbNPBO3cuIbrmWrxWI1GE0Wk8HMCoGkexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxKJ33T6uy1igURz9FtOd4fbZZEOJKKjy-1yixwmk_MiFkhkD8vTYTddpAOJzGE2m46Wv-tntKjfcIWm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43X7JYDLZKwZ7yWAyWSvtHr_b5RY9jG-J5eHxukyft8xlclkeZrvQ9DbbAQAAAOABICmrH-IHEAAgAgAAAEACAAAAgCKg4t9C4AIAAAAAA8AAY04D4JOD4D1nvz8AABq0QAAAAgRIAAZIq0sAKFxOTgAAAAAAAAAAWP7___9jAPaeMmUAMMYOegAefAAeiApEixgBAAAAbGmpaB5N6oTKogoAgCDdCuAKACCAkCLKyDEMAABgQAxSpHDqq1O6a2yBHha_3-ywa_xulwEAAAAAAAAAmP2f_aMJvY1epwWxjF6r_QICAKz9AgIAsKkbAMBbAFzIqaDpdPhc93rRaDR1nZ0un8tv-bksLsvT9LBLzH6f5_A33TV-t190BK0YDFZnQLvhajSZHQAAAMDd____Px6kSOHUV6d0lx6ImIbD2WCxGTlHrt3GsfJ4BsORzeUbDBYT32Jk2R6VgVarw6V6al8g6V5EfrfDabdIBxKh6XT4XPd60Wg0dZ2dLp_Lb_m5LC7L0_SwS8x-n-fwN901frdFLJCojIeX5el22U0X6UAid5l-f8vXX3LZHK6z6SIWSAR_z9P09Nst0oFE4jed_m6LWCDRHP2W093hdlmkA4no6HK73CKHyeS8iAUS2cPydNhNF-lAInOYzaaj5e_6GS3q-1G0ZLlb7lajyWI0Wi43u-FmNNifQM4GSNGSxWo5XO0mi9FmsZgsd8PRZIIULVktl8vVZrNa7UaL2WCzHG42SNGq1Wy0GQxXs8lst1sNB8PlaIQULVnulrvVaLIYjZbLzW64GQ2GCAOT1WY0Gq7WipnJ4hZNPJ61cGZyuGWewcLk2cwmJpdzLXp9TA_XZGIYubYoGGC1F8FFOhE5PY_X5617mnwu01vzsLlMz7PL9jJbBmO_3Wd6OM2G5UQs0Zws0onssq-YhsPZYLEZOUeu3cax8ngGw5HN5RsMFhPfYmTZFyarzWg0XK0VM5PFLZp4PGvhzORwyzyDhcmzmU1MLuda9PqYHq7JxDBy7Ruz2Ww3HC6Gi31jNpvthsPFcLHvMJmeqc_Z6Joe_R6f2Dt-yRQ2h0HhMli8v89F2ow2bkaVNmyxqK7FnWti1WljJ2PnYDYofH9zaSsObiPncl9yEBsMilgiOF2kE9HLeLqIJZKnRTrRTUy-wWgxMlmcg41huJgNFo7RyOZZTCyD0Wi3sIglStNFOtFLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIDTQDbD4WC1XIAHdQldYBMAAAAAAIDixo9LyOl5vD5v3dPkc5nemofNZXqeXbaX2TIY--0-08NpNiynDPDgtMi82TNBrNVqWQMAAAhgAwAABHDr5i0Am5HjH2jVYA!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=6&ft=1&pb=0&pagg=1&sd=undefined&ctsldr=0&dtagid=1322535&dpubid=238805&abtst=spa2_vA!ufm&mPre=0.033&cirf=https%3A%2F%2F444juliegeorgeberita.blogspot.com&en=1
151.101.85.44200 OK 8.8 kB URL HTTP/2 wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=442&height=248&pubid=169497&tagid=953497&crid=4807165&noaop=3&sortOrderType=0&cb=1666788178764&mimes=5,10,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=1&pv=1485&pt=1369142334&tz=0&viewable=true&ddast=V7X6wCFgOMz8nUYscLxgSMz8nUYscLxgUAAAAGBuIHJLXZ2Ey7jW-tMGxsa9FsuFgrPJPlWrlYzmzDhWO5WK6GQBI2y8o0G87WuplhsRbNPBO3cuIbrmWrxWI1GE0Wk8HMCoGkexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxKJ33T6uy1igURz9FtOd4fbZZEOJKKjy-1yixwmk_MiFkhkD8vTYTddpAOJzGE2m46Wv-tntKjfcIWm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43X7JYDLZKwZ7yWAyWSvtHr_b5RY9jG-J5eHxukyft8xlclkeZrvQ9DbbAQAAAOABICmrH-IHEAAgAgAAAEACAAAAgCKg4t9C4AIAAAAAA8AAY04D4JOD4D1nvz8AABq0QAAAAgRIAAZIq0sAKFxOTgAAAAAAAAAAWP7___9jAPaeMmUAMMYOegAefAAeiApEixgBAAAAbGmpaB5N6oTKogoAgCDdCuAKACCAkCLKyDEMAABgQAxSpHDqq1O6a2yBHha_3-ywa_xulwEAAAAAAAAAmP2f_aMJvY1epwWxjF6r_QICAKz9AgIAsKkbAMBbAFzIqaDpdPhc93rRaDR1nZ0un8tv-bksLsvT9LBLzH6f5_A33TV-t190BK0YDFZnQLvhajSZHQAAAMDd____Px6kSOHUV6d0lx6ImIbD2WCxGTlHrt3GsfJ4BsORzeUbDBYT32Jk2R6VgVarw6V6al8g6V5EfrfDabdIBxKh6XT4XPd60Wg0dZ2dLp_Lb_m5LC7L0_SwS8x-n-fwN901frdFLJCojIeX5el22U0X6UAid5l-f8vXX3LZHK6z6SIWSAR_z9P09Nst0oFE4jed_m6LWCDRHP2W093hdlmkA4no6HK73CKHyeS8iAUS2cPydNhNF-lAInOYzaaj5e_6GS3q-1G0ZLlb7lajyWI0Wi43u-FmNNifQM4GSNGSxWo5XO0mi9FmsZgsd8PRZIIULVktl8vVZrNa7UaL2WCzHG42SNGq1Wy0GQxXs8lst1sNB8PlaIQULVnulrvVaLIYjZbLzW64GQ2GCAOT1WY0Gq7WipnJ4hZNPJ61cGZyuGWewcLk2cwmJpdzLXp9TA_XZGIYubYoGGC1F8FFOhE5PY_X5617mnwu01vzsLlMz7PL9jJbBmO_3Wd6OM2G5UQs0Zws0onssq-YhsPZYLEZOUeu3cax8ngGw5HN5RsMFhPfYmTZFyarzWg0XK0VM5PFLZp4PGvhzORwyzyDhcmzmU1MLuda9PqYHq7JxDBy7Ruz2Ww3HC6Gi31jNpvthsPFcLHvMJmeqc_Z6Joe_R6f2Dt-yRQ2h0HhMli8v89F2ow2bkaVNmyxqK7FnWti1WljJ2PnYDYofH9zaSsObiPncl9yEBsMilgiOF2kE9HLeLqIJZKnRTrRTUy-wWgxMlmcg41huJgNFo7RyOZZTCyD0Wi3sIglStNFOtFLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIDTQDbD4WC1XIAHdQldYBMAAAAAAIDixo9LyOl5vD5v3dPkc5nemofNZXqeXbaX2TIY--0-08NpNiynDPDgtMi82TNBrNVqWQMAAAhgAwAABHDr5i0Am5HjH2jVYA!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=6&ft=1&pb=0&pagg=1&sd=undefined&ctsldr=0&dtagid=1322535&dpubid=238805&abtst=spa2_vA!ufm&mPre=0.033&cirf=https%3A%2F%2F444juliegeorgeberita.blogspot.com&en=1
IP 151.101.85.44:0
Hash e02d56cf090637914c08ef6fe90d8ef1
ebd8a548131d4c11a3cc7a802ac71eea6569c330
8c88bbd9c27efa3c20937307e8fda94f9ae833ed76295f279de012a0aeb47afc
POST /VideoBidRequestHandlerServlet?oid=15&width=442&height=248&pubid=169497&tagid=953497&crid=4807165&noaop=3&sortOrderType=0&cb=1666788178764&mimes=5,10,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=1&pv=1485&pt=1369142334&tz=0&viewable=true&ddast=V7X6wCFgOMz8nUYscLxgSMz8nUYscLxgUAAAAGBuIHJLXZ2Ey7jW-tMGxsa9FsuFgrPJPlWrlYzmzDhWO5WK6GQBI2y8o0G87WuplhsRbNPBO3cuIbrmWrxWI1GE0Wk8HMCoGkexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxKJ33T6uy1igURz9FtOd4fbZZEOJKKjy-1yixwmk_MiFkhkD8vTYTddpAOJzGE2m46Wv-tntKjfcIWm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43X7JYDLZKwZ7yWAyWSvtHr_b5RY9jG-J5eHxukyft8xlclkeZrvQ9DbbAQAAAOABICmrH-IHEAAgAgAAAEACAAAAgCKg4t9C4AIAAAAAA8AAY04D4JOD4D1nvz8AABq0QAAAAgRIAAZIq0sAKFxOTgAAAAAAAAAAWP7___9jAPaeMmUAMMYOegAefAAeiApEixgBAAAAbGmpaB5N6oTKogoAgCDdCuAKACCAkCLKyDEMAABgQAxSpHDqq1O6a2yBHha_3-ywa_xulwEAAAAAAAAAmP2f_aMJvY1epwWxjF6r_QICAKz9AgIAsKkbAMBbAFzIqaDpdPhc93rRaDR1nZ0un8tv-bksLsvT9LBLzH6f5_A33TV-t190BK0YDFZnQLvhajSZHQAAAMDd____Px6kSOHUV6d0lx6ImIbD2WCxGTlHrt3GsfJ4BsORzeUbDBYT32Jk2R6VgVarw6V6al8g6V5EfrfDabdIBxKh6XT4XPd60Wg0dZ2dLp_Lb_m5LC7L0_SwS8x-n-fwN901frdFLJCojIeX5el22U0X6UAid5l-f8vXX3LZHK6z6SIWSAR_z9P09Nst0oFE4jed_m6LWCDRHP2W093hdlmkA4no6HK73CKHyeS8iAUS2cPydNhNF-lAInOYzaaj5e_6GS3q-1G0ZLlb7lajyWI0Wi43u-FmNNifQM4GSNGSxWo5XO0mi9FmsZgsd8PRZIIULVktl8vVZrNa7UaL2WCzHG42SNGq1Wy0GQxXs8lst1sNB8PlaIQULVnulrvVaLIYjZbLzW64GQ2GCAOT1WY0Gq7WipnJ4hZNPJ61cGZyuGWewcLk2cwmJpdzLXp9TA_XZGIYubYoGGC1F8FFOhE5PY_X5617mnwu01vzsLlMz7PL9jJbBmO_3Wd6OM2G5UQs0Zws0onssq-YhsPZYLEZOUeu3cax8ngGw5HN5RsMFhPfYmTZFyarzWg0XK0VM5PFLZp4PGvhzORwyzyDhcmzmU1MLuda9PqYHq7JxDBy7Ruz2Ww3HC6Gi31jNpvthsPFcLHvMJmeqc_Z6Joe_R6f2Dt-yRQ2h0HhMli8v89F2ow2bkaVNmyxqK7FnWti1WljJ2PnYDYofH9zaSsObiPncl9yEBsMilgiOF2kE9HLeLqIJZKnRTrRTUy-wWgxMlmcg41huJgNFo7RyOZZTCyD0Wi3sIglStNFOtFLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIDTQDbD4WC1XIAHdQldYBMAAAAAAIDixo9LyOl5vD5v3dPkc5nemofNZXqeXbaX2TIY--0-08NpNiynDPDgtMi82TNBrNVqWQMAAAhgAwAABHDr5i0Am5HjH2jVYA!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=6&ft=1&pb=0&pagg=1&sd=undefined&ctsldr=0&dtagid=1322535&dpubid=238805&abtst=spa2_vA!ufm&mPre=0.033&cirf=https%3A%2F%2F444juliegeorgeberita.blogspot.com&en=1 HTTP/1.1
Host: wf.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 117
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/json;charset=utf-8
machineid: 1436
pragma: no-cache
cache-control: no-cache,must-revalidate,no-store,max-age=0,s-maxage=0
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: https://444juliegeorgeberita.blogspot.com
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:02 GMT
via: 1.1 varnish
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666788182.131126,VS0,VE86
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 1bbc045f64fa17baf001050dd609aab9
75a38f12dc8c8156bfcfc7a3b3bc4c058cd491b0
51585843dcb65de0af859f50fa84bfcfdd43d6a74688c7c29caea54798a28327
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3988
Cache-Control: max-age=100087
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:43:02 GMT
Etag: "6357ffb9-13a"
Expires: Thu, 27 Oct 2022 16:31:09 GMT
Last-Modified: Tue, 25 Oct 2022 15:24:41 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 314
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:01 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 9.2 kB URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
Hash e57dcba76b4aefffa54abc0dd38a4120
a69a4993f0151fd695ed2f4bbbe885c96d1f4187
0ce631fa42077f7c240b86356fdbdc8af8c65ebb2ba4bf15da0fae9e4da9b40f
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://444juliegeorgeberita.blogspot.com/
x-crto-bundle: uUVtWV90dXZmWFpVZ3k0cjc2RyUyRmJNMWklMkZ5cEtxT2RGZVhpVlRIOWNhekI0UnlvMyUyQjR2WkklMkY3Q1ZHcElhT2FUY3hLb0JjU1NlTVlwMWREeWNPYmp6VTVManVLUk9LbFQ3YlY1M2pSSGFMVkJDQiUyRkRzbTM3UldEQmZVeVUlMkZNZk1WUzgzNjZHTVIxbGJrR2pNWSUyQlBVWlN3T3ZURUNHYzZxZkNaUG5QNGI4b3B0UjVFYyUzRA
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:01 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://444juliegeorgeberita.blogspot.com
server-processing-duration-in-ticks: 2147633
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b092267b639c5533b57b1d62cf70a50f
bd169c488584385fd4ade873f6fb9e05b2843930
b2647fceb8cb757d4677001ea4169073d96365ec232c80454f332e5544a52d04
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4965
Cache-Control: max-age=129164
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:43:02 GMT
Etag: "63586d7d-1d7"
Expires: Fri, 28 Oct 2022 00:35:46 GMT
Last-Modified: Tue, 25 Oct 2022 23:13:01 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b092267b639c5533b57b1d62cf70a50f
bd169c488584385fd4ade873f6fb9e05b2843930
b2647fceb8cb757d4677001ea4169073d96365ec232c80454f332e5544a52d04
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5745
Cache-Control: max-age=129944
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:43:02 GMT
Etag: "63586d7d-1d7"
Expires: Fri, 28 Oct 2022 00:48:46 GMT
Last-Modified: Tue, 25 Oct 2022 23:13:01 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b092267b639c5533b57b1d62cf70a50f
bd169c488584385fd4ade873f6fb9e05b2843930
b2647fceb8cb757d4677001ea4169073d96365ec232c80454f332e5544a52d04
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2877
Cache-Control: max-age=127076
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:43:02 GMT
Etag: "63586d7d-1d7"
Expires: Fri, 28 Oct 2022 00:00:58 GMT
Last-Modified: Tue, 25 Oct 2022 23:13:01 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
185.94.180.126302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://imprammp.taboola.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 26 Oct 2022 12:43:02 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=bac67eb6-552b-11ed-b5de-14684a3a0406; expires=Wed, 23-Nov-2022 12:43:02 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bac67ef8-552b-11ed-b5de-14684a3a0406
X-fe: 117
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
imprammp.taboola.com/st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=8081305&crid=4807165&dast=V7X6wCFgOMz8nUYscLxgSMz8nUYscLxgUAAAAGBuIHJLXZ2Ey7jW-tMGxsa9FsuFgrPJPlWrlYzmzDhWO5WK6GQBI2y8o0G87WuplhsRbNPBO3cuIbrmWrxWI1GE0Wk8HMCoGkexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxKJ33T6uy1igURz9FtOd4fbZZEOJKKjy-1yixwmk_MiFkhkD8vTYTddpAOJzGE2m46Wv-tntKjfcIWm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43X7JYDLZKwZ7yWAyWSvtHr_b5RY9jG-J5eHxukyft8xlclkeZrvQ9DbbAQAAAOABICmrH-IHEAAgAgAAAEACAAAAgCKg4t9C4AIAAAAAA8AAY04D4JOD4D1nvz8AABq0QAAAAgRIAAZIq0sAKFxOTgAAAAAAAAAAWP7___9jAPaeMmUAMMYOegAefAAeiApEixgBAAAAbGmpaB5N6oTKogoAgCDdCuAKACCAkCLKyDEMAABgQAxSpHDqq1O6a2yBHha_3-ywa_xulwEAAAAAAAAAmP2f_aMJvY1epwWxjF6r_QICAKz9AgIAsKkbAMBbAFzIqaDpdPhc93rRaDR1nZ0un8tv-bksLsvT9LBLzH6f5_A33TV-t190BK0YDFZnQLvhajSZHQAAAMDd____Px6kSOHUV6d0lx6ImIbD2WCxGTlHrt3GsfJ4BsORzeUbDBYT32Jk2R6VgVarw6V6al8g6V5EfrfDabdIBxKh6XT4XPd60Wg0dZ2dLp_Lb_m5LC7L0_SwS8x-n-fwN901frdFLJCojIeX5el22U0X6UAid5l-f8vXX3LZHK6z6SIWSAR_z9P09Nst0oFE4jed_m6LWCDRHP2W093hdlmkA4no6HK73CKHyeS8iAUS2cPydNhNF-lAInOYzaaj5e_6GS3q-1G0ZLlb7lajyWI0Wi43u-FmNNifQM4GSNGSxWo5XO0mi9FmsZgsd8PRZIIULVktl8vVZrNa7UaL2WCzHG42SNGq1Wy0GQxXs8lst1sNB8PlaIQULVnulrvVaLIYjZbLzW64GQ2GCAOT1WY0Gq7WipnJ4hZNPJ61cGZyuGWewcLk2cwmJpdzLXp9TA_XZGIYubYoGGC1F8FFOhE5PY_X5617mnwu01vzsLlMz7PL9jJbBmO_3Wd6OM2G5UQs0Zws0onssq-YhsPZYLEZOUeu3cax8ngGw5HN5RsMFhPfYmTZFyarzWg0XK0VM5PFLZp4PGvhzORwyzyDhcmzmU1MLuda9PqYHq7JxDBy7Ruz2Ww3HC6Gi31jNpvthsPFcLHvMJmeqc_Z6Joe_R6f2Dt-yRQ2h0HhMli8v89F2ow2bkaVNmyxqK7FnWti1WljJ2PnYDYofH9zaSsObiPncl9yEBsMilgiOF2kE9HLeLqIJZKnRTrRTUy-wWgxMlmcg41huJgNFo7RyOZZTCyD0Wi3sIglStNFOtFLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIDTQDbD4WC1XIAHdQldYBMAAAAAAIDixo9LyOl5vD5v3dPkc5nemofNZXqeXbaX2TIY--0-08NpNiynDPDgtMi82TNBrNVqWQMAAAhgAwAABHDr5i0Am5HjH2jVYA!&cmcv=&pix=undefined&cb=1666788178746&uv=3233&tms=1666788178746&abt=spa2_vA!ufm&ft=1&unm=WIDGET_ITEM&aure=false&agl=1&cirid=53cf47c7-a0c6-4681-a329-919f68a19195&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1
151.101.85.44200 OK 965 B URL HTTP/2 imprammp.taboola.com/st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=8081305&crid=4807165&dast=V7X6wCFgOMz8nUYscLxgSMz8nUYscLxgUAAAAGBuIHJLXZ2Ey7jW-tMGxsa9FsuFgrPJPlWrlYzmzDhWO5WK6GQBI2y8o0G87WuplhsRbNPBO3cuIbrmWrxWI1GE0Wk8HMCoGkexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxKJ33T6uy1igURz9FtOd4fbZZEOJKKjy-1yixwmk_MiFkhkD8vTYTddpAOJzGE2m46Wv-tntKjfcIWm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43X7JYDLZKwZ7yWAyWSvtHr_b5RY9jG-J5eHxukyft8xlclkeZrvQ9DbbAQAAAOABICmrH-IHEAAgAgAAAEACAAAAgCKg4t9C4AIAAAAAA8AAY04D4JOD4D1nvz8AABq0QAAAAgRIAAZIq0sAKFxOTgAAAAAAAAAAWP7___9jAPaeMmUAMMYOegAefAAeiApEixgBAAAAbGmpaB5N6oTKogoAgCDdCuAKACCAkCLKyDEMAABgQAxSpHDqq1O6a2yBHha_3-ywa_xulwEAAAAAAAAAmP2f_aMJvY1epwWxjF6r_QICAKz9AgIAsKkbAMBbAFzIqaDpdPhc93rRaDR1nZ0un8tv-bksLsvT9LBLzH6f5_A33TV-t190BK0YDFZnQLvhajSZHQAAAMDd____Px6kSOHUV6d0lx6ImIbD2WCxGTlHrt3GsfJ4BsORzeUbDBYT32Jk2R6VgVarw6V6al8g6V5EfrfDabdIBxKh6XT4XPd60Wg0dZ2dLp_Lb_m5LC7L0_SwS8x-n-fwN901frdFLJCojIeX5el22U0X6UAid5l-f8vXX3LZHK6z6SIWSAR_z9P09Nst0oFE4jed_m6LWCDRHP2W093hdlmkA4no6HK73CKHyeS8iAUS2cPydNhNF-lAInOYzaaj5e_6GS3q-1G0ZLlb7lajyWI0Wi43u-FmNNifQM4GSNGSxWo5XO0mi9FmsZgsd8PRZIIULVktl8vVZrNa7UaL2WCzHG42SNGq1Wy0GQxXs8lst1sNB8PlaIQULVnulrvVaLIYjZbLzW64GQ2GCAOT1WY0Gq7WipnJ4hZNPJ61cGZyuGWewcLk2cwmJpdzLXp9TA_XZGIYubYoGGC1F8FFOhE5PY_X5617mnwu01vzsLlMz7PL9jJbBmO_3Wd6OM2G5UQs0Zws0onssq-YhsPZYLEZOUeu3cax8ngGw5HN5RsMFhPfYmTZFyarzWg0XK0VM5PFLZp4PGvhzORwyzyDhcmzmU1MLuda9PqYHq7JxDBy7Ruz2Ww3HC6Gi31jNpvthsPFcLHvMJmeqc_Z6Joe_R6f2Dt-yRQ2h0HhMli8v89F2ow2bkaVNmyxqK7FnWti1WljJ2PnYDYofH9zaSsObiPncl9yEBsMilgiOF2kE9HLeLqIJZKnRTrRTUy-wWgxMlmcg41huJgNFo7RyOZZTCyD0Wi3sIglStNFOtFLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIDTQDbD4WC1XIAHdQldYBMAAAAAAIDixo9LyOl5vD5v3dPkc5nemofNZXqeXbaX2TIY--0-08NpNiynDPDgtMi82TNBrNVqWQMAAAhgAwAABHDr5i0Am5HjH2jVYA!&cmcv=&pix=undefined&cb=1666788178746&uv=3233&tms=1666788178746&abt=spa2_vA!ufm&ft=1&unm=WIDGET_ITEM&aure=false&agl=1&cirid=53cf47c7-a0c6-4681-a329-919f68a19195&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1
IP 151.101.85.44:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2384), with no line terminators
Hash 742b1b7d0957f1b8496faa23880226da
05090afc7d7d5fca21049b76f377259d7e7813e5
7738e9b3ffef183bd97547ed83c536d5a6cb5cfbcfea58453b6a46d6a2a07bd0
GET /st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=8081305&crid=4807165&dast=V7X6wCFgOMz8nUYscLxgSMz8nUYscLxgUAAAAGBuIHJLXZ2Ey7jW-tMGxsa9FsuFgrPJPlWrlYzmzDhWO5WK6GQBI2y8o0G87WuplhsRbNPBO3cuIbrmWrxWI1GE0Wk8HMCoGkexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxKJ33T6uy1igURz9FtOd4fbZZEOJKKjy-1yixwmk_MiFkhkD8vTYTddpAOJzGE2m46Wv-tntKjfcIWm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43X7JYDLZKwZ7yWAyWSvtHr_b5RY9jG-J5eHxukyft8xlclkeZrvQ9DbbAQAAAOABICmrH-IHEAAgAgAAAEACAAAAgCKg4t9C4AIAAAAAA8AAY04D4JOD4D1nvz8AABq0QAAAAgRIAAZIq0sAKFxOTgAAAAAAAAAAWP7___9jAPaeMmUAMMYOegAefAAeiApEixgBAAAAbGmpaB5N6oTKogoAgCDdCuAKACCAkCLKyDEMAABgQAxSpHDqq1O6a2yBHha_3-ywa_xulwEAAAAAAAAAmP2f_aMJvY1epwWxjF6r_QICAKz9AgIAsKkbAMBbAFzIqaDpdPhc93rRaDR1nZ0un8tv-bksLsvT9LBLzH6f5_A33TV-t190BK0YDFZnQLvhajSZHQAAAMDd____Px6kSOHUV6d0lx6ImIbD2WCxGTlHrt3GsfJ4BsORzeUbDBYT32Jk2R6VgVarw6V6al8g6V5EfrfDabdIBxKh6XT4XPd60Wg0dZ2dLp_Lb_m5LC7L0_SwS8x-n-fwN901frdFLJCojIeX5el22U0X6UAid5l-f8vXX3LZHK6z6SIWSAR_z9P09Nst0oFE4jed_m6LWCDRHP2W093hdlmkA4no6HK73CKHyeS8iAUS2cPydNhNF-lAInOYzaaj5e_6GS3q-1G0ZLlb7lajyWI0Wi43u-FmNNifQM4GSNGSxWo5XO0mi9FmsZgsd8PRZIIULVktl8vVZrNa7UaL2WCzHG42SNGq1Wy0GQxXs8lst1sNB8PlaIQULVnulrvVaLIYjZbLzW64GQ2GCAOT1WY0Gq7WipnJ4hZNPJ61cGZyuGWewcLk2cwmJpdzLXp9TA_XZGIYubYoGGC1F8FFOhE5PY_X5617mnwu01vzsLlMz7PL9jJbBmO_3Wd6OM2G5UQs0Zws0onssq-YhsPZYLEZOUeu3cax8ngGw5HN5RsMFhPfYmTZFyarzWg0XK0VM5PFLZp4PGvhzORwyzyDhcmzmU1MLuda9PqYHq7JxDBy7Ruz2Ww3HC6Gi31jNpvthsPFcLHvMJmeqc_Z6Joe_R6f2Dt-yRQ2h0HhMli8v89F2ow2bkaVNmyxqK7FnWti1WljJ2PnYDYofH9zaSsObiPncl9yEBsMilgiOF2kE9HLeLqIJZKnRTrRTUy-wWgxMlmcg41huJgNFo7RyOZZTCyD0Wi3sIglStNFOtFLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIDTQDbD4WC1XIAHdQldYBMAAAAAAIDixo9LyOl5vD5v3dPkc5nemofNZXqeXbaX2TIY--0-08NpNiynDPDgtMi82TNBrNVqWQMAAAhgAwAABHDr5i0Am5HjH2jVYA!&cmcv=&pix=undefined&cb=1666788178746&uv=3233&tms=1666788178746&abt=spa2_vA!ufm&ft=1&unm=WIDGET_ITEM&aure=false&agl=1&cirid=53cf47c7-a0c6-4681-a329-919f68a19195&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1 HTTP/1.1
Host: imprammp.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/html;charset=ISO-8859-1
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:02 GMT
via: 1.1 varnish
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666788182.106923,VS0,VE24
vary: Accept-Encoding
X-Firefox-Spdy: h2
vidstat.taboola.com/vpaid/vPlayer/player/v14.8.5/OvaMediaPlayer.js
151.101.85.44200 OK 87 kB URL HTTP/2 vidstat.taboola.com/vpaid/vPlayer/player/v14.8.5/OvaMediaPlayer.js
IP 151.101.85.44:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 37f1d29f3f340126a8d87de26020b990
157ccc63f7608ed316e3e0d003379b56c213e917
fd033725fa5c7f08e4920ccc00497481766349c9362a2b072722a3eb71fece9b
GET /vpaid/vPlayer/player/v14.8.5/OvaMediaPlayer.js HTTP/1.1
Host: vidstat.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: pOAFugC7p8wsmuUo+i7YuDs6kkU0vhnIGQk1LVczAl9AHRD6gKvohsLUz/rP8jDEvocbdIB437Q=
x-amz-request-id: XWMC8N7PPY5CKERA
last-modified: Mon, 03 Oct 2022 10:56:43 GMT
etag: "37f1d29f3f340126a8d87de26020b990"
x-amz-meta-ctime: 1664794602
x-amz-meta-mode: 33188
x-amz-meta-gid: 0
x-amz-meta-uid: 0
x-amz-meta-mtime: 1664794590
content-type: application/javascript
cache-control: public, max-age=2592000
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:02 GMT
via: 1.1 varnish
age: 1993479
x-served-by: cache-bma1644-BMA
x-cache: HIT
x-cache-hits: 410410
x-timer: S1666788183.527000,VS0,VE0
vary: Accept-Encoding
server: AmazonS3-br
content-encoding: br
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-headers: *
content-length: 87174
X-Firefox-Spdy: h2
am-vid-events.taboola.com/st?cijs=convusmp&ttype=120&cisd=convusmp&cipid=8081305&crid=4807165&dast=V7Ie4CFgPxt5ETaz2EsgTxt5ETaz2EsgUAAAAGBuIHJLNYTEYe32wtMww2btFmYnJLbJ7ZWrQyrGyz2czkGM6GQHIjx8bkHC7WGtfMtBbNFja3cjJauRWOhcsws62MG5dlCoGhexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxLR33ARCySao99yujvcLot0IBEdXW6XW-QwmZwXsUAie1ieDrvpIh1IZA6z2XS0_F0_o0X9his0nQ6f614vGo2mrrPT5XP5LT-XxWV5mh52idnv8xz-prvG7_ZLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZDgAAAAAPAElZ_RA_gAAAEQAAAAASAAAAABQBFf8WAhcAAAAAGAAGGHMaAJ8cBO85-_0BANCgBQIAECBAAjBAWl0CQOFycgIAAAAAAAAAwPL___8fA7D3lCkDgDF20APw4APwQFQwWsQIAAAAYEtLRfNoUidUFlUAAATpVgBXAAABhBRRRrBhAAAAA2KQIoVTX53SXWML9LD4_WaHXeN3uwwAAAAAAAAAwOz_7B9N6G30Oi2IZfRa7RcQAGDtFxAAgE3dAADeAuBCTgVNp8PnuteLRqOp6-x0-Vx-y89lcVmepoddYvb7PIe_6a7xu_2iI2jFYLA6A9oNV6PJ7AAAAADu_v____EgRQqnvjqlu_RAajIzeUYTy8a5MewWttVkY1iYDDPjymIyLVwj4_YoSAwpMnvIR_sCQ_ci8rsdTrtFOpAITafD57rXi0ajqevsdPlcfsvPZXFZnqaHXWL2-zyHv-mu8bstYoFEZTy8LE-3y266SAcSucv0-1u-_pLL5nCdTRexQCL4e56mp99ukQ4kor_hIhZINEe_5XR3uF0W6UAiOrrcLrfIYTI5L2KBRPawPB1200U6kMgcZrPpaPm7fkaL-n4ULVnulrvVaLIYjZbLzW64GQ32J5CzAVK0ZLFaDle7yWK0WSwmy91wNJkgRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcKIy7nbjWautcozc7hFI-dwrXANF2uJbTQzWQwj22QwWIteH9PDNZkYRq4tCgZY7UVwkU5ETs_j9Xnrniafy_TWPGwu0_Pssr3MlsHYb_eZHk6zYTkRSzQni3Qiu-xbk5nJM5pYNs6NYbewrSYbw8JkmBlXFpNp4RoZ9xWXc7cbzVxrlWfmcItGzuFa4Rou1hLbaGayGEa2yWCwFr0-podrMjGMXPvGbDbbDYeL4WLfmM1mu-FwMVzsO0ymZ-pzNrqmR7_HJ_aOXzKFzWFQuAwW7-9zkTajjZtRpQ1bLKprceeaWHXa2MnYOZgNCt_fXNqKg9vIudyXHMQGgyKWCE4X6UT0Mp4uYonkaZFOdJONZbWZDDaOycq1m20sxoXLMtlYdqPVZDAxziZiidJ0kU70ksFkslcM9pLBZLJW2j1-t8stehjfEsvD43WZPm-Zy-SyPMx2oelttqj_yJCLuXIwF03mitVolQAAAAAAAAAAljBn3gQAAADgNJDNcDhYLRfgQV1CF9gEAAAAAACguPHjEnJ6Hq_PW_c0-Vymt-Zhc5meZ5ftZbYMxn67z_Rwmg3LKQM8OC0yb_ZMEGu1WtYAAAAC2AAAAAHcunkLwGbk-AluuFwM!&cmcv=&pix=&cb=1666788179305&uv=3233&tms=1666788179305&su=&abt=Noappq22_vB!amplean_vF!spa2_vB!t120!ufm_vA&ft=1&unm=WIDGET_ITEM&mntl=1&
141.226.228.48200 OK 0 B URL HTTP/2 am-vid-events.taboola.com/st?cijs=convusmp&ttype=120&cisd=convusmp&cipid=8081305&crid=4807165&dast=V7Ie4CFgPxt5ETaz2EsgTxt5ETaz2EsgUAAAAGBuIHJLNYTEYe32wtMww2btFmYnJLbJ7ZWrQyrGyz2czkGM6GQHIjx8bkHC7WGtfMtBbNFja3cjJauRWOhcsws62MG5dlCoGhexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxLR33ARCySao99yujvcLot0IBEdXW6XW-QwmZwXsUAie1ieDrvpIh1IZA6z2XS0_F0_o0X9his0nQ6f614vGo2mrrPT5XP5LT-XxWV5mh52idnv8xz-prvG7_ZLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZDgAAAAAPAElZ_RA_gAAAEQAAAAASAAAAABQBFf8WAhcAAAAAGAAGGHMaAJ8cBO85-_0BANCgBQIAECBAAjBAWl0CQOFycgIAAAAAAAAAwPL___8fA7D3lCkDgDF20APw4APwQFQwWsQIAAAAYEtLRfNoUidUFlUAAATpVgBXAAABhBRRRrBhAAAAA2KQIoVTX53SXWML9LD4_WaHXeN3uwwAAAAAAAAAwOz_7B9N6G30Oi2IZfRa7RcQAGDtFxAAgE3dAADeAuBCTgVNp8PnuteLRqOp6-x0-Vx-y89lcVmepoddYvb7PIe_6a7xu_2iI2jFYLA6A9oNV6PJ7AAAAADu_v____EgRQqnvjqlu_RAajIzeUYTy8a5MewWttVkY1iYDDPjymIyLVwj4_YoSAwpMnvIR_sCQ_ci8rsdTrtFOpAITafD57rXi0ajqevsdPlcfsvPZXFZnqaHXWL2-zyHv-mu8bstYoFEZTy8LE-3y266SAcSucv0-1u-_pLL5nCdTRexQCL4e56mp99ukQ4kor_hIhZINEe_5XR3uF0W6UAiOrrcLrfIYTI5L2KBRPawPB1200U6kMgcZrPpaPm7fkaL-n4ULVnulrvVaLIYjZbLzW64GQ32J5CzAVK0ZLFaDle7yWK0WSwmy91wNJkgRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcKIy7nbjWautcozc7hFI-dwrXANF2uJbTQzWQwj22QwWIteH9PDNZkYRq4tCgZY7UVwkU5ETs_j9Xnrniafy_TWPGwu0_Pssr3MlsHYb_eZHk6zYTkRSzQni3Qiu-xbk5nJM5pYNs6NYbewrSYbw8JkmBlXFpNp4RoZ9xWXc7cbzVxrlWfmcItGzuFa4Rou1hLbaGayGEa2yWCwFr0-podrMjGMXPvGbDbbDYeL4WLfmM1mu-FwMVzsO0ymZ-pzNrqmR7_HJ_aOXzKFzWFQuAwW7-9zkTajjZtRpQ1bLKprceeaWHXa2MnYOZgNCt_fXNqKg9vIudyXHMQGgyKWCE4X6UT0Mp4uYonkaZFOdJONZbWZDDaOycq1m20sxoXLMtlYdqPVZDAxziZiidJ0kU70ksFkslcM9pLBZLJW2j1-t8stehjfEsvD43WZPm-Zy-SyPMx2oelttqj_yJCLuXIwF03mitVolQAAAAAAAAAAljBn3gQAAADgNJDNcDhYLRfgQV1CF9gEAAAAAACguPHjEnJ6Hq_PW_c0-Vymt-Zhc5meZ5ftZbYMxn67z_Rwmg3LKQM8OC0yb_ZMEGu1WtYAAAAC2AAAAAHcunkLwGbk-AluuFwM!&cmcv=&pix=&cb=1666788179305&uv=3233&tms=1666788179305&su=&abt=Noappq22_vB!amplean_vF!spa2_vB!t120!ufm_vA&ft=1&unm=WIDGET_ITEM&mntl=1&
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /st?cijs=convusmp&ttype=120&cisd=convusmp&cipid=8081305&crid=4807165&dast=V7Ie4CFgPxt5ETaz2EsgTxt5ETaz2EsgUAAAAGBuIHJLNYTEYe32wtMww2btFmYnJLbJ7ZWrQyrGyz2czkGM6GQHIjx8bkHC7WGtfMtBbNFja3cjJauRWOhcsws62MG5dlCoGhexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxLR33ARCySao99yujvcLot0IBEdXW6XW-QwmZwXsUAie1ieDrvpIh1IZA6z2XS0_F0_o0X9his0nQ6f614vGo2mrrPT5XP5LT-XxWV5mh52idnv8xz-prvG7_ZLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZDgAAAAAPAElZ_RA_gAAAEQAAAAASAAAAABQBFf8WAhcAAAAAGAAGGHMaAJ8cBO85-_0BANCgBQIAECBAAjBAWl0CQOFycgIAAAAAAAAAwPL___8fA7D3lCkDgDF20APw4APwQFQwWsQIAAAAYEtLRfNoUidUFlUAAATpVgBXAAABhBRRRrBhAAAAA2KQIoVTX53SXWML9LD4_WaHXeN3uwwAAAAAAAAAwOz_7B9N6G30Oi2IZfRa7RcQAGDtFxAAgE3dAADeAuBCTgVNp8PnuteLRqOp6-x0-Vx-y89lcVmepoddYvb7PIe_6a7xu_2iI2jFYLA6A9oNV6PJ7AAAAADu_v____EgRQqnvjqlu_RAajIzeUYTy8a5MewWttVkY1iYDDPjymIyLVwj4_YoSAwpMnvIR_sCQ_ci8rsdTrtFOpAITafD57rXi0ajqevsdPlcfsvPZXFZnqaHXWL2-zyHv-mu8bstYoFEZTy8LE-3y266SAcSucv0-1u-_pLL5nCdTRexQCL4e56mp99ukQ4kor_hIhZINEe_5XR3uF0W6UAiOrrcLrfIYTI5L2KBRPawPB1200U6kMgcZrPpaPm7fkaL-n4ULVnulrvVaLIYjZbLzW64GQ32J5CzAVK0ZLFaDle7yWK0WSwmy91wNJkgRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcKIy7nbjWautcozc7hFI-dwrXANF2uJbTQzWQwj22QwWIteH9PDNZkYRq4tCgZY7UVwkU5ETs_j9Xnrniafy_TWPGwu0_Pssr3MlsHYb_eZHk6zYTkRSzQni3Qiu-xbk5nJM5pYNs6NYbewrSYbw8JkmBlXFpNp4RoZ9xWXc7cbzVxrlWfmcItGzuFa4Rou1hLbaGayGEa2yWCwFr0-podrMjGMXPvGbDbbDYeL4WLfmM1mu-FwMVzsO0ymZ-pzNrqmR7_HJ_aOXzKFzWFQuAwW7-9zkTajjZtRpQ1bLKprceeaWHXa2MnYOZgNCt_fXNqKg9vIudyXHMQGgyKWCE4X6UT0Mp4uYonkaZFOdJONZbWZDDaOycq1m20sxoXLMtlYdqPVZDAxziZiidJ0kU70ksFkslcM9pLBZLJW2j1-t8stehjfEsvD43WZPm-Zy-SyPMx2oelttqj_yJCLuXIwF03mitVolQAAAAAAAAAAljBn3gQAAADgNJDNcDhYLRfgQV1CF9gEAAAAAACguPHjEnJ6Hq_PW_c0-Vymt-Zhc5meZ5ftZbYMxn67z_Rwmg3LKQM8OC0yb_ZMEGu1WtYAAAAC2AAAAAHcunkLwGbk-AluuFwM!&cmcv=&pix=&cb=1666788179305&uv=3233&tms=1666788179305&su=&abt=Noappq22_vB!amplean_vF!spa2_vB!t120!ufm_vA&ft=1&unm=WIDGET_ITEM&mntl=1& HTTP/1.1
Host: am-vid-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 12:43:02 GMT
content-length: 0
X-Firefox-Spdy: h2
vidstatb.taboola.com/vid/blackScreen5.mp4
151.101.85.44206 Partial Content 91 kB URL HTTP/2 vidstatb.taboola.com/vid/blackScreen5.mp4
IP 151.101.85.44:0
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Hash b2b087fe4ae638c533731c347fcd4df8
62851c888c21bb51cc04f13b6fc0451279fe0425
0407dafc112212a135d1aa4dd9b40ba0208c6bb6b1959f5535af093254189d66
GET /vid/blackScreen5.mp4 HTTP/1.1
Host: vidstatb.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
content-type: video/mp4
last-modified: Sun, 02 Jul 2017 20:40:57 GMT
etag: "b2b087fe4ae638c533731c347fcd4df8"
x-amz-meta-mode: 33188
x-amz-meta-gid: 0
x-amz-meta-uid: 0
x-amz-meta-mtime: 1497790207
server: AmazonS3
via: 1.1 9803a30a87f1ec1047cb2b8ad5ecc43e.cloudfront.net (CloudFront), 1.1 varnish
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: gopM2XYfUoVUFmJXQ0440-QEF6IoAyvdLK0EUOquu3M35zK6ZGLwLg==
cache-control: public, max-age=2592000
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:02 GMT
age: 2614466
x-served-by: cache-bma1644-BMA
x-cache: Hit from cloudfront, HIT
x-cache-hits: 607708
x-timer: S1666788183.727257,VS0,VE0
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-headers: *
content-range: bytes 0-90783/90784
content-length: 90784
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png
151.101.85.44200 OK 254 B URL HTTP/2 cdn.taboola.com/libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png
IP 151.101.85.44:0
File type PNG image data, 12 x 12, 8-bit gray+alpha, non-interlaced\012- data
Hash dfa7b52c86e56bd67fa4002f6ed19854
7df722645482433c2b5c8d8ab4272a9874592f27
f68019eb4b4e5933301d4ee75969e0cb94ed8333bf514630fa749eb9c3e483c9
GET /libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: c3AK0F63Rmz1U+ZkwDZRH6hJiJRTGpZB8kTBPWz0vwbg9siBxtMOH8aEqr1NtVeNHtLhLAVUR9E=
x-amz-request-id: 4JKSR0YA3KVH073N
x-amz-replication-status: COMPLETED
last-modified: Wed, 24 Jun 2015 07:14:11 GMT
etag: "dfa7b52c86e56bd67fa4002f6ed19854"
x-amz-meta-s3cmd-attrs: uid:0/gname:root/uname:root/gid:0/mode:33188/mtime:1377415166/atime:1435052450/md5:dfa7b52c86e56bd67fa4002f6ed19854/ctime:1422381567
x-amz-version-id: hL.cyLD7Q4TL5ceY.7JQwF9m5IYI8mkC
content-type: image/png
server: AmazonS3
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:02 GMT
via: 1.1 varnish
age: 18682
x-served-by: cache-bma1644-BMA
x-cache: HIT
x-cache-hits: 2385
x-timer: S1666788183.740163,VS0,VE0
cache-control: private,max-age=31536000
abp: 14
content-length: 254
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
185.94.180.126302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-match.taboola.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 26 Oct 2022 12:43:02 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=bb01551d-552b-11ed-8c65-1365eaaf0306; expires=Wed, 23-Nov-2022 12:43:02 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb015569-552b-11ed-8c65-1365eaaf0306
X-fe: 6
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bac67ef8-552b-11ed-b5de-14684a3a0406
185.94.180.126204 No Content 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bac67ef8-552b-11ed-b5de-14684a3a0406
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bac67ef8-552b-11ed-b5de-14684a3a0406 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://imprammp.taboola.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Wed, 26 Oct 2022 12:43:02 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=bb020785-552b-11ed-876c-1f057aaa0506; expires=Wed, 23-Nov-2022 12:43:02 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 131
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
185.94.180.126302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-match.taboola.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 26 Oct 2022 12:43:02 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=bb01495d-552b-11ed-a76c-1ac857eb0406; expires=Wed, 23-Nov-2022 12:43:02 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb0149a7-552b-11ed-a76c-1ac857eb0406
X-fe: 72
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
185.94.180.126302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://imprammp.taboola.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 26 Oct 2022 12:43:02 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=bb0182c8-552b-11ed-9ccb-16a7f9820506; expires=Wed, 23-Nov-2022 12:43:02 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb0182fe-552b-11ed-9ccb-16a7f9820506
X-fe: 106
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
vidstatb.taboola.com/vid/blackScreen5.mp4
151.101.85.44304 Not Modified 0 B URL HTTP/2 vidstatb.taboola.com/vid/blackScreen5.mp4
IP 151.101.85.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vid/blackScreen5.mp4 HTTP/1.1
Host: vidstatb.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Sun, 02 Jul 2017 20:40:57 GMT
If-None-Match: "b2b087fe4ae638c533731c347fcd4df8"
TE: trailers
HTTP/2 304 Not Modified
date: Wed, 26 Oct 2022 12:43:02 GMT
via: 1.1 varnish
cache-control: public, max-age=2592000
etag: "b2b087fe4ae638c533731c347fcd4df8"
age: 2614467
x-served-by: cache-bma1644-BMA
x-cache: HIT
x-cache-hits: 607709
x-timer: S1666788183.783899,VS0,VE0
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-headers: *
X-Firefox-Spdy: h2
trc.taboola.com/disqus-widget-safetylevel20longtail09/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=1
151.101.85.44204 No Content 0 B URL HTTP/2 trc.taboola.com/disqus-widget-safetylevel20longtail09/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=1
IP 151.101.85.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /disqus-widget-safetylevel20longtail09/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=1 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 4206
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://444juliegeorgeberita.blogspot.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:02 GMT
via: 1.1 varnish
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666788183.738323,VS0,VE82
x-vcl-time-ms: 82
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=rtus&topUrl=444juliegeorgeberita.blogspot.com
178.250.0.157200 OK 6.9 kB URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=444juliegeorgeberita.blogspot.com
IP 178.250.0.157:0
Hash 78c3f8f4493b1bc159d2ca2a38f9cf0d
eec60cbde54608b4d004abaab0a46364f6f6b911
88af67396821368511ec0795acb65fc6caa6bd3ab1208c0f86a89babf63f229b
GET /syncframe?origin=rtus&topUrl=444juliegeorgeberita.blogspot.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:01 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=ceb3163c-b889-4d0c-8d2b-b09c9e26cbe4; expires=Mon, 20 Nov 2023 12:43:01 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 605783
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb015569-552b-11ed-8c65-1365eaaf0306
185.94.180.126204 No Content 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb015569-552b-11ed-8c65-1365eaaf0306
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb015569-552b-11ed-8c65-1365eaaf0306 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://am-match.taboola.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Wed, 26 Oct 2022 12:43:02 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=bb0d84f8-552b-11ed-ae5b-169e7f670206; expires=Wed, 23-Nov-2022 12:43:02 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 38
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb0149a7-552b-11ed-a76c-1ac857eb0406
185.94.180.126204 No Content 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb0149a7-552b-11ed-a76c-1ac857eb0406
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb0149a7-552b-11ed-a76c-1ac857eb0406 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://am-match.taboola.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Wed, 26 Oct 2022 12:43:02 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=bb0dd9f6-552b-11ed-8256-1fe3cd8f0406; expires=Wed, 23-Nov-2022 12:43:02 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 23
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb0182fe-552b-11ed-9ccb-16a7f9820506
185.94.180.126204 No Content 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb0182fe-552b-11ed-9ccb-16a7f9820506
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb0182fe-552b-11ed-9ccb-16a7f9820506 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://imprammp.taboola.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Wed, 26 Oct 2022 12:43:02 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=bb0de803-552b-11ed-8bd5-1384e0ef0106; expires=Wed, 23-Nov-2022 12:43:02 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 45
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
trc.taboola.com/disqus-widget-safetylevel20longtail09/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=1
151.101.85.44204 No Content 0 B URL HTTP/2 trc.taboola.com/disqus-widget-safetylevel20longtail09/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=1
IP 151.101.85.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /disqus-widget-safetylevel20longtail09/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=1 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 4234
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://444juliegeorgeberita.blogspot.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:02 GMT
via: 1.1 varnish
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666788183.787510,VS0,VE87
x-vcl-time-ms: 87
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
185.94.180.126302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-match.taboola.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 26 Oct 2022 12:43:02 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=bb1109aa-552b-11ed-95e9-1a377c5d0206; expires=Wed, 23-Nov-2022 12:43:02 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb1109e0-552b-11ed-95e9-1a377c5d0206
X-fe: 65
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f7bc71d1dedd46fe7b3c55d1b8253e3
c2801ce00bb18c2df3cb62a1372fb5675b23ee52
6ff9983077c745e1742138c6ca58d21bf22741f42dbe698681197a8514b89da8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 96
Cache-Control: max-age=91861
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 12:43:02 GMT
Etag: "6357eecb-1d7"
Expires: Thu, 27 Oct 2022 14:14:03 GMT
Last-Modified: Tue, 25 Oct 2022 14:12:27 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb0d243d-552b-11ed-81e6-1e5bf6c20506
185.94.180.126204 No Content 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb0d243d-552b-11ed-81e6-1e5bf6c20506
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb0d243d-552b-11ed-81e6-1e5bf6c20506 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://am-match.taboola.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Wed, 26 Oct 2022 12:43:02 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=bb14c5d8-552b-11ed-a4c0-1bf9ad920106; expires=Wed, 23-Nov-2022 12:43:02 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 138
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb1109e0-552b-11ed-95e9-1a377c5d0206
185.94.180.126204 No Content 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb1109e0-552b-11ed-95e9-1a377c5d0206
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=bb1109e0-552b-11ed-95e9-1a377c5d0206 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://am-match.taboola.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Wed, 26 Oct 2022 12:43:02 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=bb1710cd-552b-11ed-b306-1f6fc1870106; expires=Wed, 23-Nov-2022 12:43:02 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 10
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 20e8d0472964e95d572fc1ea9a2d6f1a
efa5e1f66a64ade16b21206ad90e8d245b4bd304
5073e84878fa739771e6f22b55b9a626ef1cfea911b241fcdfcb1878f7c20243
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:43:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sun, 30 Oct 2022 08:06:49 GMT
ETag: "efa5e1f66a64ade16b21206ad90e8d245b4bd304"
Last-Modified: Wed, 26 Oct 2022 08:06:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3310
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7603467f4e36b4f7-OSL
ups.analytics.yahoo.com/ups/58534/occ
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58534/occ
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58534/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://imprammp.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 26 Oct 2022 12:43:02 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58534/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBFYrWWMCENqPDZjGzytC0Zc4f_nFunkFEgEBAQF8WmNjYwAAAAAA_eMAAA&S=AQAAAvbOzAzcJCvgglhoINtkyv8; Expires=Thu, 26 Oct 2023 18:43:02 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
match.adsrvr.org/track/cmf/generic?gdpr=1&ttd_pid=054f32o&us_privacy=1---&ttd_tpi=1
3.33.220.150200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?gdpr=1&ttd_pid=054f32o&us_privacy=1---&ttd_tpi=1
IP 3.33.220.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?gdpr=1&ttd_pid=054f32o&us_privacy=1---&ttd_tpi=1 HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://imprammp.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:02 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58534/occ?verify=true
18.156.0.31204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58534/occ?verify=true
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58534/occ?verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://imprammp.taboola.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 26 Oct 2022 12:43:02 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBFYrWWMCEKvyOkpQu3QURQas4vRcm5QFEgEBAQF8WmNjYwAAAAAA_eMAAA&S=AQAAAjshFsFFG4By8ptxLNQc1P8; Expires=Thu, 26 Oct 2023 18:43:02 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash dcb0d6e71e0ec55016c95a66eb02e6b1
a6be3dc6aa5e89c91cf7409e1e95e0179d99269c
0b3e7289e636e73bf50a05fd2670b47b03ee79dcaaaad0587a54341d08e58a3a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 26 Oct 2022 12:43:03 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 25 Oct 2022 13:56:48 GMT
Expires: Tue, 01 Nov 2022 13:56:47 GMT
Etag: "a6be3dc6aa5e89c91cf7409e1e95e0179d99269c"
Cache-Control: max-age=522223,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7603467f2fde0b51-OSL
x.bidswitch.net/sync?gdpr=1&us_privacy=1---&ssp=taboola
35.156.130.54200 OK 43 B URL HTTP/1.1 x.bidswitch.net/sync?gdpr=1&us_privacy=1---&ssp=taboola
IP 35.156.130.54:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?gdpr=1&us_privacy=1---&ssp=taboola HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://imprammp.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Wed, 26 Oct 2022 12:43:03 GMT
Content-Length: 43
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 32c0028f176cb1e66c3c68459e0902ce
8e63a178baca50c712129877c0f6326627d0d619
40af20c41b79ee15f5751966a7b98daee5b87a052c0bf85f43cd1cd05ffcd130
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=103967
Date: Wed, 26 Oct 2022 12:43:03 GMT
Etag: "63580b14-1d7"
Expires: Thu, 27 Oct 2022 17:35:50 GMT
Last-Modified: Tue, 25 Oct 2022 16:13:08 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Q7bO72DYo5cvZoUkpsndMfM9EPlxecYN2ASx6BN-Wmg8yM8ThhFbRw==
Age: 4962
taboola-supply-partners.tremorhub.com/sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo
3.208.157.225200 OK 1.4 kB URL HTTP/2 taboola-supply-partners.tremorhub.com/sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo
IP 3.208.157.225:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9cdd2df94b20c8a9c618d4ae24c17ae1
a722b0ba72d4f48de207240c3fbfa658bef3ae32
d701755528f87779993cf590af85ee32b61fb6e3d75bf8994c1ce1ad618d9832
GET /sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo HTTP/1.1
Host: taboola-supply-partners.tremorhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://imprammp.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:03 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
pips.taboola.com/
151.101.85.44200 OK 4 B IP 151.101.85.44:0
File type ASCII text, with no line terminators
Hash 6c3e226b4d4795d518ab341b0824ec29
eef19c54306daa69eda49c0272623bdb5e2b341f
fb329000228cc5a24c264c57139de8bf854fc86fc18bf1c04ab61a2b5cb4b921
GET / HTTP/1.1
Host: pips.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
access-control-allow-methods: GET
access-control-allow-origin: https://444juliegeorgeberita.blogspot.com
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1662-BMA
x-cache: HIT
x-cache-hits: 0
cache-control: no-store
content-length: 4
X-Firefox-Spdy: h2
pips.taboola.com/
151.101.85.44200 OK 4 B IP 151.101.85.44:0
File type ASCII text, with no line terminators
Hash 6c3e226b4d4795d518ab341b0824ec29
eef19c54306daa69eda49c0272623bdb5e2b341f
fb329000228cc5a24c264c57139de8bf854fc86fc18bf1c04ab61a2b5cb4b921
GET / HTTP/1.1
Host: pips.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
access-control-allow-methods: GET
access-control-allow-origin: https://444juliegeorgeberita.blogspot.com
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1662-BMA
x-cache: HIT
x-cache-hits: 0
cache-control: no-store
content-length: 4
X-Firefox-Spdy: h2
snapwidget.com/embed/956730
172.67.75.33200 OK 0 B URL HTTP/2 snapwidget.com/embed/956730
IP 172.67.75.33:0
GET /embed/956730 HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:42:59 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: public, max-age=300
expires: Wed, 26 Oct 2022 12:44:29 GMT
x-robots-tag: all
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Wed, 26 Oct 2022 12:42:29 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KpCKv1CDrTfLniPcHBDxQbx1xRDaRLbBhser0MtyvAKliHkaq%2BTJHQO5irsJE374H59mc2IYlUPirkWOi7dhORZsPPpI%2FRBk7W5eWFpu9W5ZUyFbWURNMWo%2BQTD42E0t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 760346676e6d0b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
imprammp.taboola.com/st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=8081305&crid=4807165&dast=V7Ie4CFgPxt5ETaz2EsgTxt5ETaz2EsgUAAAAGBuIHJLNYTEYe32wtMww2btFmYnJLbJ7ZWrQyrGyz2czkGM6GQHIjx8bkHC7WGtfMtBbNFja3cjJauRWOhcsws62MG5dlCoGhexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxLR33ARCySao99yujvcLot0IBEdXW6XW-QwmZwXsUAie1ieDrvpIh1IZA6z2XS0_F0_o0X9his0nQ6f614vGo2mrrPT5XP5LT-XxWV5mh52idnv8xz-prvG7_ZLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZDgAAAAAPAElZ_RA_gAAAEQAAAAASAAAAABQBFf8WAhcAAAAAGAAGGHMaAJ8cBO85-_0BANCgBQIAECBAAjBAWl0CQOFycgIAAAAAAAAAwPL___8fA7D3lCkDgDF20APw4APwQFQwWsQIAAAAYEtLRfNoUidUFlUAAATpVgBXAAABhBRRRrBhAAAAA2KQIoVTX53SXWML9LD4_WaHXeN3uwwAAAAAAAAAwOz_7B9N6G30Oi2IZfRa7RcQAGDtFxAAgE3dAADeAuBCTgVNp8PnuteLRqOp6-x0-Vx-y89lcVmepoddYvb7PIe_6a7xu_2iI2jFYLA6A9oNV6PJ7AAAAADu_v____EgRQqnvjqlu_RAajIzeUYTy8a5MewWttVkY1iYDDPjymIyLVwj4_YoSAwpMnvIR_sCQ_ci8rsdTrtFOpAITafD57rXi0ajqevsdPlcfsvPZXFZnqaHXWL2-zyHv-mu8bstYoFEZTy8LE-3y266SAcSucv0-1u-_pLL5nCdTRexQCL4e56mp99ukQ4kor_hIhZINEe_5XR3uF0W6UAiOrrcLrfIYTI5L2KBRPawPB1200U6kMgcZrPpaPm7fkaL-n4ULVnulrvVaLIYjZbLzW64GQ32J5CzAVK0ZLFaDle7yWK0WSwmy91wNJkgRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcKIy7nbjWautcozc7hFI-dwrXANF2uJbTQzWQwj22QwWIteH9PDNZkYRq4tCgZY7UVwkU5ETs_j9Xnrniafy_TWPGwu0_Pssr3MlsHYb_eZHk6zYTkRSzQni3Qiu-xbk5nJM5pYNs6NYbewrSYbw8JkmBlXFpNp4RoZ9xWXc7cbzVxrlWfmcItGzuFa4Rou1hLbaGayGEa2yWCwFr0-podrMjGMXPvGbDbbDYeL4WLfmM1mu-FwMVzsO0ymZ-pzNrqmR7_HJ_aOXzKFzWFQuAwW7-9zkTajjZtRpQ1bLKprceeaWHXa2MnYOZgNCt_fXNqKg9vIudyXHMQGgyKWCE4X6UT0Mp4uYonkaZFOdJONZbWZDDaOycq1m20sxoXLMtlYdqPVZDAxziZiidJ0kU70ksFkslcM9pLBZLJW2j1-t8stehjfEsvD43WZPm-Zy-SyPMx2oelttqj_yJCLuXIwF03mitVolQAAAAAAAAAAljBn3gQAAADgNJDNcDhYLRfgQV1CF9gEAAAAAACguPHjEnJ6Hq_PW_c0-Vymt-Zhc5meZ5ftZbYMxn67z_Rwmg3LKQM8OC0yb_ZMEGu1WtYAAAAC2AAAAAHcunkLwGbk-AluuFwM!&cmcv=&pix=undefined&cb=1666788178806&uv=3233&tms=1666788178806&abt=amplean_vF!Noappq22_vB!spa2_vB!ufm&ft=1&unm=WIDGET_ITEM&aure=false&agl=1&cirid=3112dc76-f00c-43bd-bf36-4e0e666fd186&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1
151.101.85.44200 OK 0 B URL HTTP/2 imprammp.taboola.com/st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=8081305&crid=4807165&dast=V7Ie4CFgPxt5ETaz2EsgTxt5ETaz2EsgUAAAAGBuIHJLNYTEYe32wtMww2btFmYnJLbJ7ZWrQyrGyz2czkGM6GQHIjx8bkHC7WGtfMtBbNFja3cjJauRWOhcsws62MG5dlCoGhexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxLR33ARCySao99yujvcLot0IBEdXW6XW-QwmZwXsUAie1ieDrvpIh1IZA6z2XS0_F0_o0X9his0nQ6f614vGo2mrrPT5XP5LT-XxWV5mh52idnv8xz-prvG7_ZLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZDgAAAAAPAElZ_RA_gAAAEQAAAAASAAAAABQBFf8WAhcAAAAAGAAGGHMaAJ8cBO85-_0BANCgBQIAECBAAjBAWl0CQOFycgIAAAAAAAAAwPL___8fA7D3lCkDgDF20APw4APwQFQwWsQIAAAAYEtLRfNoUidUFlUAAATpVgBXAAABhBRRRrBhAAAAA2KQIoVTX53SXWML9LD4_WaHXeN3uwwAAAAAAAAAwOz_7B9N6G30Oi2IZfRa7RcQAGDtFxAAgE3dAADeAuBCTgVNp8PnuteLRqOp6-x0-Vx-y89lcVmepoddYvb7PIe_6a7xu_2iI2jFYLA6A9oNV6PJ7AAAAADu_v____EgRQqnvjqlu_RAajIzeUYTy8a5MewWttVkY1iYDDPjymIyLVwj4_YoSAwpMnvIR_sCQ_ci8rsdTrtFOpAITafD57rXi0ajqevsdPlcfsvPZXFZnqaHXWL2-zyHv-mu8bstYoFEZTy8LE-3y266SAcSucv0-1u-_pLL5nCdTRexQCL4e56mp99ukQ4kor_hIhZINEe_5XR3uF0W6UAiOrrcLrfIYTI5L2KBRPawPB1200U6kMgcZrPpaPm7fkaL-n4ULVnulrvVaLIYjZbLzW64GQ32J5CzAVK0ZLFaDle7yWK0WSwmy91wNJkgRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcKIy7nbjWautcozc7hFI-dwrXANF2uJbTQzWQwj22QwWIteH9PDNZkYRq4tCgZY7UVwkU5ETs_j9Xnrniafy_TWPGwu0_Pssr3MlsHYb_eZHk6zYTkRSzQni3Qiu-xbk5nJM5pYNs6NYbewrSYbw8JkmBlXFpNp4RoZ9xWXc7cbzVxrlWfmcItGzuFa4Rou1hLbaGayGEa2yWCwFr0-podrMjGMXPvGbDbbDYeL4WLfmM1mu-FwMVzsO0ymZ-pzNrqmR7_HJ_aOXzKFzWFQuAwW7-9zkTajjZtRpQ1bLKprceeaWHXa2MnYOZgNCt_fXNqKg9vIudyXHMQGgyKWCE4X6UT0Mp4uYonkaZFOdJONZbWZDDaOycq1m20sxoXLMtlYdqPVZDAxziZiidJ0kU70ksFkslcM9pLBZLJW2j1-t8stehjfEsvD43WZPm-Zy-SyPMx2oelttqj_yJCLuXIwF03mitVolQAAAAAAAAAAljBn3gQAAADgNJDNcDhYLRfgQV1CF9gEAAAAAACguPHjEnJ6Hq_PW_c0-Vymt-Zhc5meZ5ftZbYMxn67z_Rwmg3LKQM8OC0yb_ZMEGu1WtYAAAAC2AAAAAHcunkLwGbk-AluuFwM!&cmcv=&pix=undefined&cb=1666788178806&uv=3233&tms=1666788178806&abt=amplean_vF!Noappq22_vB!spa2_vB!ufm&ft=1&unm=WIDGET_ITEM&aure=false&agl=1&cirid=3112dc76-f00c-43bd-bf36-4e0e666fd186&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1
IP 151.101.85.44:0
GET /st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=8081305&crid=4807165&dast=V7Ie4CFgPxt5ETaz2EsgTxt5ETaz2EsgUAAAAGBuIHJLNYTEYe32wtMww2btFmYnJLbJ7ZWrQyrGyz2czkGM6GQHIjx8bkHC7WGtfMtBbNFja3cjJauRWOhcsws62MG5dlCoGhexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxLR33ARCySao99yujvcLot0IBEdXW6XW-QwmZwXsUAie1ieDrvpIh1IZA6z2XS0_F0_o0X9his0nQ6f614vGo2mrrPT5XP5LT-XxWV5mh52idnv8xz-prvG7_ZLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZDgAAAAAPAElZ_RA_gAAAEQAAAAASAAAAABQBFf8WAhcAAAAAGAAGGHMaAJ8cBO85-_0BANCgBQIAECBAAjBAWl0CQOFycgIAAAAAAAAAwPL___8fA7D3lCkDgDF20APw4APwQFQwWsQIAAAAYEtLRfNoUidUFlUAAATpVgBXAAABhBRRRrBhAAAAA2KQIoVTX53SXWML9LD4_WaHXeN3uwwAAAAAAAAAwOz_7B9N6G30Oi2IZfRa7RcQAGDtFxAAgE3dAADeAuBCTgVNp8PnuteLRqOp6-x0-Vx-y89lcVmepoddYvb7PIe_6a7xu_2iI2jFYLA6A9oNV6PJ7AAAAADu_v____EgRQqnvjqlu_RAajIzeUYTy8a5MewWttVkY1iYDDPjymIyLVwj4_YoSAwpMnvIR_sCQ_ci8rsdTrtFOpAITafD57rXi0ajqevsdPlcfsvPZXFZnqaHXWL2-zyHv-mu8bstYoFEZTy8LE-3y266SAcSucv0-1u-_pLL5nCdTRexQCL4e56mp99ukQ4kor_hIhZINEe_5XR3uF0W6UAiOrrcLrfIYTI5L2KBRPawPB1200U6kMgcZrPpaPm7fkaL-n4ULVnulrvVaLIYjZbLzW64GQ32J5CzAVK0ZLFaDle7yWK0WSwmy91wNJkgRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcKIy7nbjWautcozc7hFI-dwrXANF2uJbTQzWQwj22QwWIteH9PDNZkYRq4tCgZY7UVwkU5ETs_j9Xnrniafy_TWPGwu0_Pssr3MlsHYb_eZHk6zYTkRSzQni3Qiu-xbk5nJM5pYNs6NYbewrSYbw8JkmBlXFpNp4RoZ9xWXc7cbzVxrlWfmcItGzuFa4Rou1hLbaGayGEa2yWCwFr0-podrMjGMXPvGbDbbDYeL4WLfmM1mu-FwMVzsO0ymZ-pzNrqmR7_HJ_aOXzKFzWFQuAwW7-9zkTajjZtRpQ1bLKprceeaWHXa2MnYOZgNCt_fXNqKg9vIudyXHMQGgyKWCE4X6UT0Mp4uYonkaZFOdJONZbWZDDaOycq1m20sxoXLMtlYdqPVZDAxziZiidJ0kU70ksFkslcM9pLBZLJW2j1-t8stehjfEsvD43WZPm-Zy-SyPMx2oelttqj_yJCLuXIwF03mitVolQAAAAAAAAAAljBn3gQAAADgNJDNcDhYLRfgQV1CF9gEAAAAAACguPHjEnJ6Hq_PW_c0-Vymt-Zhc5meZ5ftZbYMxn67z_Rwmg3LKQM8OC0yb_ZMEGu1WtYAAAAC2AAAAAHcunkLwGbk-AluuFwM!&cmcv=&pix=undefined&cb=1666788178806&uv=3233&tms=1666788178806&abt=amplean_vF!Noappq22_vB!spa2_vB!ufm&ft=1&unm=WIDGET_ITEM&aure=false&agl=1&cirid=3112dc76-f00c-43bd-bf36-4e0e666fd186&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1 HTTP/1.1
Host: imprammp.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/html;charset=ISO-8859-1
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 12:43:02 GMT
via: 1.1 varnish
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1666788182.191065,VS0,VE23
vary: Accept-Encoding
X-Firefox-Spdy: h2
am-match.taboola.com/sync?dast=V7X6wCFgOMz8nUYscLxgSMz8nUYscLxgUAAAAGBuIHJLXZ2Ey7jW-tMGxsa9FsuFgrPJPlWrlYzmzDhWO5WK6GQBI2y8o0G87WuplhsRbNPBO3cuIbrmWrxWI1GE0Wk8HMCoGkexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxKJ33T6uy1igURz9FtOd4fbZZEOJKKjy-1yixwmk_MiFkhkD8vTYTddpAOJzGE2m46Wv-tntKjfcIWm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43X7JYDLZKwZ7yWAyWSvtHr_b5RY9jG-J5eHxukyft8xlclkeZrvQ9DbbAQAAAOABICmrH-IHEAAgAgAAAEACAAAAgCKg4t9C4AIAAAAAA8AAY04D4JOD4D1nvz8AABq0QAAAAgRIAAZIq0sAKFxOTgAAAAAAAAAAWP7___9jAPaeMmUAMMYOegAefAAeiApEixgBAAAAbGmpaB5N6oTKogoAgCDdCuAKACCAkCLKyDEMAABgQAxSpHDqq1O6a2yBHha_3-ywa_xulwEAAAAAAAAAmP2f_aMJvY1epwWxjF6r_QICAKz9AgIAsKkbAMBbAFzIqaDpdPhc93rRaDR1nZ0un8tv-bksLsvT9LBLzH6f5_A33TV-t190BK0YDFZnQLvhajSZHQAAAMDd____Px6kSOHUV6d0lx6ImIbD2WCxGTlHrt3GsfJ4BsORzeUbDBYT32Jk2R6VgVarw6V6al8g6V5EfrfDabdIBxKh6XT4XPd60Wg0dZ2dLp_Lb_m5LC7L0_SwS8x-n-fwN901frdFLJCojIeX5el22U0X6UAid5l-f8vXX3LZHK6z6SIWSAR_z9P09Nst0oFE4jed_m6LWCDRHP2W093hdlmkA4no6HK73CKHyeS8iAUS2cPydNhNF-lAInOYzaaj5e_6GS3q-1G0ZLlb7lajyWI0Wi43u-FmNNifQM4GSNGSxWo5XO0mi9FmsZgsd8PRZIIULVktl8vVZrNa7UaL2WCzHG42SNGq1Wy0GQxXs8lst1sNB8PlaIQULVnulrvVaLIYjZbLzW64GQ2GCAOT1WY0Gq7WipnJ4hZNPJ61cGZyuGWewcLk2cwmJpdzLXp9TA_XZGIYubYoGGC1F8FFOhE5PY_X5617mnwu01vzsLlMz7PL9jJbBmO_3Wd6OM2G5UQs0Zws0onssq-YhsPZYLEZOUeu3cax8ngGw5HN5RsMFhPfYmTZFyarzWg0XK0VM5PFLZp4PGvhzORwyzyDhcmzmU1MLuda9PqYHq7JxDBy7Ruz2Ww3HC6Gi31jNpvthsPFcLHvMJmeqc_Z6Joe_R6f2Dt-yRQ2h0HhMli8v89F2ow2bkaVNmyxqK7FnWti1WljJ2PnYDYofH9zaSsObiPncl9yEBsMilgiOF2kE9HLeLqIJZKnRTrRTUy-wWgxMlmcg41huJgNFo7RyOZZTCyD0Wi3sIglStNFOtFLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIDTQDbD4WC1XIAHdQldYBMAAAAAAIDixo9LyOl5vD5v3dPkc5nemofNZXqeXbaX2TIY--0-08NpNiynDPDgtMi82TNBrNVqWQMAAAhgAwAABHDr5i0Am5HjH2jVYA!&excid=22&docw=0&cijs=1&nlb=true
141.226.228.48200 OK 0 B URL HTTP/2 am-match.taboola.com/sync?dast=V7X6wCFgOMz8nUYscLxgSMz8nUYscLxgUAAAAGBuIHJLXZ2Ey7jW-tMGxsa9FsuFgrPJPlWrlYzmzDhWO5WK6GQBI2y8o0G87WuplhsRbNPBO3cuIbrmWrxWI1GE0Wk8HMCoGkexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxKJ33T6uy1igURz9FtOd4fbZZEOJKKjy-1yixwmk_MiFkhkD8vTYTddpAOJzGE2m46Wv-tntKjfcIWm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43X7JYDLZKwZ7yWAyWSvtHr_b5RY9jG-J5eHxukyft8xlclkeZrvQ9DbbAQAAAOABICmrH-IHEAAgAgAAAEACAAAAgCKg4t9C4AIAAAAAA8AAY04D4JOD4D1nvz8AABq0QAAAAgRIAAZIq0sAKFxOTgAAAAAAAAAAWP7___9jAPaeMmUAMMYOegAefAAeiApEixgBAAAAbGmpaB5N6oTKogoAgCDdCuAKACCAkCLKyDEMAABgQAxSpHDqq1O6a2yBHha_3-ywa_xulwEAAAAAAAAAmP2f_aMJvY1epwWxjF6r_QICAKz9AgIAsKkbAMBbAFzIqaDpdPhc93rRaDR1nZ0un8tv-bksLsvT9LBLzH6f5_A33TV-t190BK0YDFZnQLvhajSZHQAAAMDd____Px6kSOHUV6d0lx6ImIbD2WCxGTlHrt3GsfJ4BsORzeUbDBYT32Jk2R6VgVarw6V6al8g6V5EfrfDabdIBxKh6XT4XPd60Wg0dZ2dLp_Lb_m5LC7L0_SwS8x-n-fwN901frdFLJCojIeX5el22U0X6UAid5l-f8vXX3LZHK6z6SIWSAR_z9P09Nst0oFE4jed_m6LWCDRHP2W093hdlmkA4no6HK73CKHyeS8iAUS2cPydNhNF-lAInOYzaaj5e_6GS3q-1G0ZLlb7lajyWI0Wi43u-FmNNifQM4GSNGSxWo5XO0mi9FmsZgsd8PRZIIULVktl8vVZrNa7UaL2WCzHG42SNGq1Wy0GQxXs8lst1sNB8PlaIQULVnulrvVaLIYjZbLzW64GQ2GCAOT1WY0Gq7WipnJ4hZNPJ61cGZyuGWewcLk2cwmJpdzLXp9TA_XZGIYubYoGGC1F8FFOhE5PY_X5617mnwu01vzsLlMz7PL9jJbBmO_3Wd6OM2G5UQs0Zws0onssq-YhsPZYLEZOUeu3cax8ngGw5HN5RsMFhPfYmTZFyarzWg0XK0VM5PFLZp4PGvhzORwyzyDhcmzmU1MLuda9PqYHq7JxDBy7Ruz2Ww3HC6Gi31jNpvthsPFcLHvMJmeqc_Z6Joe_R6f2Dt-yRQ2h0HhMli8v89F2ow2bkaVNmyxqK7FnWti1WljJ2PnYDYofH9zaSsObiPncl9yEBsMilgiOF2kE9HLeLqIJZKnRTrRTUy-wWgxMlmcg41huJgNFo7RyOZZTCyD0Wi3sIglStNFOtFLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIDTQDbD4WC1XIAHdQldYBMAAAAAAIDixo9LyOl5vD5v3dPkc5nemofNZXqeXbaX2TIY--0-08NpNiynDPDgtMi82TNBrNVqWQMAAAhgAwAABHDr5i0Am5HjH2jVYA!&excid=22&docw=0&cijs=1&nlb=true
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sync?dast=V7X6wCFgOMz8nUYscLxgSMz8nUYscLxgUAAAAGBuIHJLXZ2Ey7jW-tMGxsa9FsuFgrPJPlWrlYzmzDhWO5WK6GQBI2y8o0G87WuplhsRbNPBO3cuIbrmWrxWI1GE0Wk8HMCoGkexH53Q6n3SIdSISm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43RaxQKIyHl6Wp9tlN12kA4ncZfr9LV9_yWVzuM6mi1ggEfw9T9PTb7dIBxKJ33T6uy1igURz9FtOd4fbZZEOJKKjy-1yixwmk_MiFkhkD8vTYTddpAOJzGE2m46Wv-tntKjfcIWm0-Fz3etFo9HUdXa6fC6_5eeyuCxP08MuMft9nsPfdNf43X7JYDLZKwZ7yWAyWSvtHr_b5RY9jG-J5eHxukyft8xlclkeZrvQ9DbbAQAAAOABICmrH-IHEAAgAgAAAEACAAAAgCKg4t9C4AIAAAAAA8AAY04D4JOD4D1nvz8AABq0QAAAAgRIAAZIq0sAKFxOTgAAAAAAAAAAWP7___9jAPaeMmUAMMYOegAefAAeiApEixgBAAAAbGmpaB5N6oTKogoAgCDdCuAKACCAkCLKyDEMAABgQAxSpHDqq1O6a2yBHha_3-ywa_xulwEAAAAAAAAAmP2f_aMJvY1epwWxjF6r_QICAKz9AgIAsKkbAMBbAFzIqaDpdPhc93rRaDR1nZ0un8tv-bksLsvT9LBLzH6f5_A33TV-t190BK0YDFZnQLvhajSZHQAAAMDd____Px6kSOHUV6d0lx6ImIbD2WCxGTlHrt3GsfJ4BsORzeUbDBYT32Jk2R6VgVarw6V6al8g6V5EfrfDabdIBxKh6XT4XPd60Wg0dZ2dLp_Lb_m5LC7L0_SwS8x-n-fwN901frdFLJCojIeX5el22U0X6UAid5l-f8vXX3LZHK6z6SIWSAR_z9P09Nst0oFE4jed_m6LWCDRHP2W093hdlmkA4no6HK73CKHyeS8iAUS2cPydNhNF-lAInOYzaaj5e_6GS3q-1G0ZLlb7lajyWI0Wi43u-FmNNifQM4GSNGSxWo5XO0mi9FmsZgsd8PRZIIULVktl8vVZrNa7UaL2WCzHG42SNGq1Wy0GQxXs8lst1sNB8PlaIQULVnulrvVaLIYjZbLzW64GQ2GCAOT1WY0Gq7WipnJ4hZNPJ61cGZyuGWewcLk2cwmJpdzLXp9TA_XZGIYubYoGGC1F8FFOhE5PY_X5617mnwu01vzsLlMz7PL9jJbBmO_3Wd6OM2G5UQs0Zws0onssq-YhsPZYLEZOUeu3cax8ngGw5HN5RsMFhPfYmTZFyarzWg0XK0VM5PFLZp4PGvhzORwyzyDhcmzmU1MLuda9PqYHq7JxDBy7Ruz2Ww3HC6Gi31jNpvthsPFcLHvMJmeqc_Z6Joe_R6f2Dt-yRQ2h0HhMli8v89F2ow2bkaVNmyxqK7FnWti1WljJ2PnYDYofH9zaSsObiPncl9yEBsMilgiOF2kE9HLeLqIJZKnRTrRTUy-wWgxMlmcg41huJgNFo7RyOZZTCyD0Wi3sIglStNFOtFLBpPJXjHYSwaTyVpp9_jdLrfoYXxLLA-P12X6vGUuk8vyMNuFprfZov4jQy7mysFcNJkrVqNVAgAAAAAAAABYwpx5EwAAAIDTQDbD4WC1XIAHdQldYBMAAAAAAIDixo9LyOl5vD5v3dPkc5nemofNZXqeXbaX2TIY--0-08NpNiynDPDgtMi82TNBrNVqWQMAAAhgAwAABHDr5i0Am5HjH2jVYA!&excid=22&docw=0&cijs=1&nlb=true HTTP/1.1
Host: am-match.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 12:43:02 GMT
content-type: text/html;charset=ISO-8859-1
machineid: 3406
X-Firefox-Spdy: h2
snapwidget.com/js/embed.vendor.min.2f17f0b14ee46c5a.js
172.67.75.33200 OK 0 B URL HTTP/2 snapwidget.com/js/embed.vendor.min.2f17f0b14ee46c5a.js
IP 172.67.75.33:0
GET /js/embed.vendor.min.2f17f0b14ee46c5a.js HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:42:59 GMT
content-type: application/javascript; charset=utf-8
cf-bgj: minify
etag: W/"6332bad4-9e1"
last-modified: Tue, 27 Sep 2022 08:56:52 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 138798
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GB%2BKmAr7XWg%2FK%2FtxuH0UIPGGhW3tOK%2F8819sfP%2BnQidbiabxC%2FMEugPAWQzAcHzWUcfJdzJpuA%2BDn8yWSa51biSpLeapzT0vkJwQeDMKt%2FxSf%2BmLF6OxRMavjKammunz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 76034668efb60b49-OSL
content-encoding: br
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=4TR5-V80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3lFdjBES2VCeXhTWkNwOXNoTDVwUUZhZyUyRjdmT0dPQ0kxeThOJTJCV1A4RFZr
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:01 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=5ILQbV80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3lFdjBES2VCeXhTWkNwOXNoTDVwUUdNWVhQeiUyRm9hcXZ0Z1loTGpxY0VWOQ; expires=Mon, 20 Nov 2023 12:43:01 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 483431
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
snapwidget.com/cdn-cgi/rum?
172.67.75.33200 OK 0 B URL HTTP/2 snapwidget.com/cdn-cgi/rum?
IP 172.67.75.33:0
POST /cdn-cgi/rum? HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 395
Origin: https://snapwidget.com
Connection: keep-alive
Referer: https://snapwidget.com/embed/956730
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:05 GMT
server: cloudflare
cf-ray: 7603469229e40b49-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,400i,700,700i
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,400i,700,700i
IP 142.250.74.10:0
GET /css?family=Open+Sans:400,400i,700,700i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 26 Oct 2022 12:42:57 GMT
date: Wed, 26 Oct 2022 12:42:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
combinatronics.io/apriasmoro/ngiklan/main/banner728.js
172.67.71.154200 OK 0 B URL HTTP/2 combinatronics.io/apriasmoro/ngiklan/main/banner728.js
IP 172.67.71.154:0
GET /apriasmoro/ngiklan/main/banner728.js HTTP/1.1
Host: combinatronics.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:42:58 GMT
content-type: text/javascript; charset=utf-8
cache-control: no-store
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gLwhxCF593TOuLZMv9S4rDvRUiIBRMy2n9WC3yQiuLfG2xgo0jIUFoxIqUMMJIDMmgWxu0RezS9QDOP0gVY%2Bo03msZOh9J2B4eqPjo1k%2F3sy98NuUu61NLe9aXUtSpZutlZM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7603465fb86b0b02-OSL
content-encoding: br
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=5ILQbV80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3lFdjBES2VCeXhTWkNwOXNoTDVwUUdNWVhQeiUyRm9hcXZ0Z1loTGpxY0VWOQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:01 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=rMk4z180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3lFdjBES2VCeXhTWkNwOXNoTDVwUUZGWmJZdkZSZDhVbjRJVXF6Y01EYWc; expires=Mon, 20 Nov 2023 12:43:01 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 296854
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
104.16.57.101200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
IP 104.16.57.101:0
GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://snapwidget.com
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:42:59 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 76034669087fb4f7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://444juliegeorgeberita.blogspot.com/
x-crto-bundle: k9hmFV9vTSUyQjIzSjVzJTJCMjJicjFreTNzSEIlMkI2SlVTaTB4SFdBWXVuMUExc3BtTHklMkZ6MmZ3S3IxdEtkZ25PJTJCWHRCNjB2RGllNGlhSVdaWlJZWGcxRjA4UG95Z0hHM2NOYzJmdkJNMnRiaXdvJTJCWTZlR1JsVDZoQVZKajJOaHQ3dGFDeDdNYjB1NXl2N1hmTWJjcWF1VGpGcFZ6MzlGRzlkSTF4eGhic2tka2x3UVJySm8lM0Q
Origin: https://444juliegeorgeberita.blogspot.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:43:02 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://444juliegeorgeberita.blogspot.com
server-processing-duration-in-ticks: 5915937
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
104.18.10.207200 OK 0 B URL HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.18.10.207:0
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:42:57 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/15/2021 21:49:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 2729ae8f2fc6c761bdc17d91cc795f58
cdn-cache: HIT
cf-cache-status: HIT
age: 12234931
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7603465f2a68b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
snapwidget.com/embed/956730
172.67.75.33200 OK 0 B URL HTTP/2 snapwidget.com/embed/956730
IP 172.67.75.33:0
GET /embed/956730 HTTP/1.1
Host: snapwidget.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://444juliegeorgeberita.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 12:42:59 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: public, max-age=300
expires: Wed, 26 Oct 2022 12:44:29 GMT
x-robots-tag: all
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Wed, 26 Oct 2022 12:42:29 GMT
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4Cr1EfCuY9UTtG0IjIvLjaLO74NToBpGR6ugVV2J4LKjJc7SmFLr2x2fabSe0E8419aSKELz41aKPSMhF7NON0%2FzqYcngcPt7EWheRBnf%2FML%2FFlWj8qLNVy5V64QQ63U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 760346686f320b49-OSL
content-encoding: br
X-Firefox-Spdy: h2