r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6941
Expires: Fri, 27 Jan 2023 03:47:48 GMT
Date: Fri, 27 Jan 2023 01:52:07 GMT
Connection: keep-alive
stopdroplol.com/posts/126607-funny-pictures
192.64.119.75302 Found 77 B URL HTTP/1.1 stopdroplol.com/posts/126607-funny-pictures
IP 192.64.119.75:0
File type HTML document, ASCII text
Hash 92c684726e7ba115fd91ee4426c5bddc
cad2310762ffa4eea85429a806838fa01434615b
b240b126a1fb77b59ccecbee59cde73cb2af43f8699bde8ae1f64876bb391e53
NIDS Severity Alert suricata low ET INFO Namecheap URL Forward
GET /posts/126607-funny-pictures HTTP/1.1
Host: stopdroplol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Fri, 27 Jan 2023 01:52:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 77
Connection: keep-alive
Location: http://www.stopdroplol.com/posts/126607-funny-pictures
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6269
Expires: Fri, 27 Jan 2023 03:36:36 GMT
Date: Fri, 27 Jan 2023 01:52:07 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 27 Jan 2023 01:42:58 GMT
content-type: application/json
age: 549
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 49049f3c92aad686cd7ff28ecd2a5a4f
9cc2bc9c055450dbc4fae93eabe4ef8509b3ff57
02cf421968192286bb174ff0e6c818a843c4eca61a02cd493e6f95bb58a37015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CF421968192286BB174FF0E6C818A843C4ECA61A02CD493E6F95BB58A37015"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8555
Expires: Fri, 27 Jan 2023 04:14:42 GMT
Date: Fri, 27 Jan 2023 01:52:07 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YRKIkkxHLGsymiyrJNJIfRxenbr3rJvz3QTYKjShr7qZbxk+A4AkyOqWdHTlUIHNwge+/BIb4jU=
x-amz-request-id: AH7YB748AXEVAFRZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 27 Jan 2023 01:49:13 GMT
age: 174
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 01:52:07 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.stopdroplol.com/posts/126607-funny-pictures
3.226.182.14200 OK 18 kB URL HTTP/1.1 www.stopdroplol.com/posts/126607-funny-pictures
IP 3.226.182.14:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (327), with CRLF, CR, LF line terminators
Hash a46082fcd9b05334f040306643adbb87
baea3fc47706e0a8ebb32772f20ea53b7d76968e
2ad51d84e498545aa0d1516f17c3c2b354a2d5fee2f61067e36dba8af5ec09d9
GET /posts/126607-funny-pictures HTTP/1.1
Host: www.stopdroplol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: Cowboy
Date: Fri, 27 Jan 2023 01:52:07 GMT
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Content-Type: text/html; charset=utf-8
Etag: W/"2ad51d84e498545aa0d1516f17c3c2b3"
Cache-Control: max-age=0, private, must-revalidate
Set-Cookie: _silos_r4_session=VC9hZElTWXNGNHIwNk8yb0RxRzlFdm5Ib3BxQzZUU2xPVmREbnpYUm5BY3pYZGduTG9RQUpVQ1NTbk81QVUrN2N6bzlXdFB2aU5sUjBvejdlQ1lDc0tLOTlCZjJFOUZ3QTRGWWt0dmtpd1dNRTFzUVdUbFdOMUUyb0d4WDlvRC84U2Y3YUs2KzRDVVhVNWVrMm1qQ1VRPT0tLVNDdDc1NHRybDFnSngxd0FmVGRjSlE9PQ%3D%3D--39d290dc6872ef1f92faac08517740f8d237a128; path=/; HttpOnly
X-Request-Id: 1f6fcc08-6fd8-4543-bb43-76f7f0cc8366
X-Runtime: 0.023987
Transfer-Encoding: chunked
Via: 1.1 vegur
partner.googleadservices.com/gampad/google_service.js
216.58.207.226200 OK 373 B URL HTTP/1.1 partner.googleadservices.com/gampad/google_service.js
IP 216.58.207.226:0
Hash 661854aeecf12ceec3a47608501233da
f7b52c94982b73a5c5559dc166250c18e3af1ba6
12755200a7e22a322f3e6f9231be4a200dbac47873eafc18aecafe32e9dad068
GET /gampad/google_service.js HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/
Connection: keep-alive
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 373
X-XSS-Protection: 0
Date: Fri, 27 Jan 2023 01:07:05 GMT
Expires: Fri, 27 Jan 2023 02:07:05 GMT
Cache-Control: public, max-age=3600
Age: 2703
ETag: 953604975598805376
Content-Type: text/javascript; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 37dce3efd55b962e0d26fdc3a1033e22
6453d72e70e36bd37ca1744d85ec9ca549629cf2
0b8f3eab1044d6159677c241e96e244f10d78fe339d37c94e65f8495b216f3bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 452
Cache-Control: max-age=164042
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:08 GMT
Etag: "63d30a4e-1d7"
Expires: Sat, 28 Jan 2023 23:26:10 GMT
Last-Modified: Thu, 26 Jan 2023 23:18:38 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a473e335d5a75a94188d2aab086e752e
3f7b53b2360bc19046105106744b8967b9c7633c
504beb5f50f59260821af07aea342f78370a3ff79f0e9d5c1876f618886e076b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5455
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:08 GMT
Last-Modified: Fri, 27 Jan 2023 00:21:14 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
cdnjs.cloudflare.com/ajax/libs/tether/1.3.6/js/tether.min.js
104.17.25.14200 OK 6.7 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/tether/1.3.6/js/tether.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (24876), with no line terminators
Hash 71dd720ed379f79b86609c08881df411
256d2ee646b4af86a613c79d215b45882d7b26a5
daeb6a20968bef76bc607575c4675e198406e9b8b70c3b06870a66166dedd4f5
GET /ajax/libs/tether/1.3.6/js/tether.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 01:52:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 6695
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ffc-612c"
last-modified: Mon, 04 May 2020 16:17:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 12394394
expires: Wed, 17 Jan 2024 01:52:08 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OjRpKuR2iSuMIHwPoJw4niMTXOfKLTPJvcXKBJfxGkgPRfWNCGTG3tAsGk3X9qmN5KI9OYvpREzl%2F42U5aklK7LtSliKYG53Nqm%2BIZf0PZEIQLEYtn58L1DYBAD9q9vNQBptyrM%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78fdd8e2c9bfb50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery-ujs/1.2.2/rails.min.js
104.17.25.14200 OK 2.3 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-ujs/1.2.2/rails.min.js
IP 104.17.25.14:0
File type C source, ASCII text, with very long lines (8676)
Hash 85eae9b96c8799cdf1c5da17f7ad80e9
4b0643b3f5b0597acd276fa68e4afd600c4ca441
12f1c36acd7e6f298bf94d5022a4d2d5847d8d0eba9cb3d7486b4aa01dd73167
GET /ajax/libs/jquery-ujs/1.2.2/rails.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 01:52:08 GMT
content-type: application/javascript; charset=utf-8
content-length: 2289
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-220a"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 12598333
expires: Wed, 17 Jan 2024 01:52:08 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x%2BOzvK2GNthuVGQTp8qDeoRWcE2vDcLsT%2Bg6KWgYtj%2BITSF0G5JnI0Y9UmdkOtjymg4WuODJ0qvnNB39tzDqEDI2DCQsx74IVXZnoWihLTcAK4G8VyPGNotwn%2FbQQOBG%2Bv%2BbMz1G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78fdd8e2c9c0b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.stopdroplol.com/assets/application-5c45a8438e62533dfb9bf9e93a6509241c54d62935630a4a09e6fb385e5fb203.css
3.226.182.14200 OK 8.5 kB URL HTTP/1.1 www.stopdroplol.com/assets/application-5c45a8438e62533dfb9bf9e93a6509241c54d62935630a4a09e6fb385e5fb203.css
IP 3.226.182.14:0
File type ASCII text, with very long lines (19816)
Hash e4977080f98d1d6990e289ed7eaf2ba2
6a1c89d8a74700cf68777f581cd1f1318f135929
7407d0c68f6e75f477ee9a46ed6aec69e150c870ab8532a8006e52ada6eab98b
GET /assets/application-5c45a8438e62533dfb9bf9e93a6509241c54d62935630a4a09e6fb385e5fb203.css HTTP/1.1
Host: www.stopdroplol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/posts/126607-funny-pictures
Connection: keep-alive
Cookie: _silos_r4_session=VC9hZElTWXNGNHIwNk8yb0RxRzlFdm5Ib3BxQzZUU2xPVmREbnpYUm5BY3pYZGduTG9RQUpVQ1NTbk81QVUrN2N6bzlXdFB2aU5sUjBvejdlQ1lDc0tLOTlCZjJFOUZ3QTRGWWt0dmtpd1dNRTFzUVdUbFdOMUUyb0d4WDlvRC84U2Y3YUs2KzRDVVhVNWVrMm1qQ1VRPT0tLVNDdDc1NHRybDFnSngxd0FmVGRjSlE9PQ%3D%3D--39d290dc6872ef1f92faac08517740f8d237a128
HTTP/1.1 200 OK
Server: Cowboy
Date: Fri, 27 Jan 2023 01:52:07 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: text/css
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 8458
Via: 1.1 vegur
www.facebook.com/plugins/like.php?href=http://www.stopdroplol.com&width=0&layout=standard&action=like&size=small&show_faces=false&share=true&height=80&appId=561905967165839
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=http://www.stopdroplol.com&width=0&layout=standard&action=like&size=small&show_faces=false&share=true&height=80&appId=561905967165839
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://www.stopdroplol.com&width=0&layout=standard&action=like&size=small&show_faces=false&share=true&height=80&appId=561905967165839 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: Q5l0/3rPaIKy4Ut3sI961baXTIFKOI+tkiBiMo3ZLtKqQ5fPU028dlYlLogJ0QTuKs/zJDN2kJCI14igd/RPOQ==
content-length: 0
date: Fri, 27 Jan 2023 01:52:08 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
142.250.74.170200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (32065)
Hash 6d973c8b7e2439d958e09c0a1ab9fe50
05ae0830200c20b9a2dfd5a825adc400481a60fb
f3c122dc227e829ed96b2a754296809201bd78abbad7ba50ef5079654e1cc894
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 21 Jan 2023 06:58:32 GMT
expires: Sun, 21 Jan 2024 06:58:32 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 500016
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a473e335d5a75a94188d2aab086e752e
3f7b53b2360bc19046105106744b8967b9c7633c
504beb5f50f59260821af07aea342f78370a3ff79f0e9d5c1876f618886e076b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4777
Cache-Control: max-age=94592
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:08 GMT
Etag: "63d1ea1f-117"
Expires: Sat, 28 Jan 2023 04:08:40 GMT
Last-Modified: Thu, 26 Jan 2023 02:49:03 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 279
ajax.googleapis.com/ajax/libs/jqueryui/1.11.4/jquery-ui.min.js
142.250.74.170200 OK 64 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jqueryui/1.11.4/jquery-ui.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (32035)
Hash d42e0db378c3b7ae639f482be65ca7e0
febb6ba0cb20fbf345e42afbb194f557de4fdb3b
9a978650fc7920f6ce184b5febda53dfadb49086ee56326e0f7ca999b7e802ef
GET /ajax/libs/jqueryui/1.11.4/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 64481
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 08:21:25 GMT
expires: Thu, 25 Jan 2024 08:21:25 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 149443
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 232cec4776b6a9285e1187173754e839
c7d38b924d12a85f4c088b9b279868e8dec2402f
abb7aad2d8167e9ae22d425953728e1fbe5dfc0c0c9f71cca359358f7d42d50b
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 27 Jan 2023 01:52:08 GMT
Etag: "63ce7df7-1d7"
Last-Modified: Fri, 27 Jan 2023 01:28:58 GMT
Server: ECS (dcb/7FA3)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QPxGRcg9GKreObHcmCJXGLs7J8515GnK-3JZb8YCyWZ-K-7CW21c2w==
Age: 1391
maxcdn.bootstrapcdn.com/bootstrap/4.0.0-alpha.2/js/bootstrap.min.js
188.114.99.234200 OK 12 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0-alpha.2/js/bootstrap.min.js
IP 188.114.99.234:0
File type ASCII text, with very long lines (32001)
Hash d4d96357d835741058038a15be5e1803
596c5f05ebad324b8d1cf8fc5b15e97c75136ae7
6a627878a1c931927ef6d07edd7f0d4770f9d4eaf609b1c6cb8902ad07d02c53
GET /bootstrap/4.0.0-alpha.2/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 01:52:08 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 12/25/2021 08:22:17
cdn-edgestorageid: 756
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.02
cdn-requestid: a345528ce49c1eb27b860d1c993c5c61
cdn-cache: HIT
cf-cache-status: HIT
age: 20224020
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78fdd8e2c90ffac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.stopdroplol.com/assets/application-36722df3dc142ab21a42badd65301f020fffeecf773a4428ca6a08da4ae5fb5d.js
3.226.182.14200 OK 26 kB URL HTTP/1.1 www.stopdroplol.com/assets/application-36722df3dc142ab21a42badd65301f020fffeecf773a4428ca6a08da4ae5fb5d.js
IP 3.226.182.14:0
Hash 19dc0b4638e0ff97db5cf820e1061dc8
a233dc9c463b44f24bef43e90c6dc52b4abcadb4
c6394a1e7887819ff53b8bfbfc023152034b63aae1c50bf40cbc51dfaa358474
GET /assets/application-36722df3dc142ab21a42badd65301f020fffeecf773a4428ca6a08da4ae5fb5d.js HTTP/1.1
Host: www.stopdroplol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/posts/126607-funny-pictures
Connection: keep-alive
Cookie: _silos_r4_session=VC9hZElTWXNGNHIwNk8yb0RxRzlFdm5Ib3BxQzZUU2xPVmREbnpYUm5BY3pYZGduTG9RQUpVQ1NTbk81QVUrN2N6bzlXdFB2aU5sUjBvejdlQ1lDc0tLOTlCZjJFOUZ3QTRGWWt0dmtpd1dNRTFzUVdUbFdOMUUyb0d4WDlvRC84U2Y3YUs2KzRDVVhVNWVrMm1qQ1VRPT0tLVNDdDc1NHRybDFnSngxd0FmVGRjSlE9PQ%3D%3D--39d290dc6872ef1f92faac08517740f8d237a128
HTTP/1.1 200 OK
Server: Cowboy
Date: Fri, 27 Jan 2023 01:52:07 GMT
Connection: keep-alive
Last-Modified: Sun, 15 Nov 2020 00:41:30 GMT
Content-Type: application/javascript
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 25847
Via: 1.1 vegur
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.stopdroplol.com/assets/horseheadhuffer-seal-3f342e0f1838b64ade69a0973c38f9d587969bec1fd5962927b3a9c7bcfe3ff7.png
3.226.182.14200 OK 7.2 kB URL HTTP/1.1 www.stopdroplol.com/assets/horseheadhuffer-seal-3f342e0f1838b64ade69a0973c38f9d587969bec1fd5962927b3a9c7bcfe3ff7.png
IP 3.226.182.14:0
File type PNG image data, 63 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash f125eb436067ed7978ff02f7b3606dae
9318e3d224cc1e9702ba7db5bf2f40c8f9de6fe8
4d5ca215ca1380a05d05f1115017f642c7f48ddb105447f096797db9c6c0e362
GET /assets/horseheadhuffer-seal-3f342e0f1838b64ade69a0973c38f9d587969bec1fd5962927b3a9c7bcfe3ff7.png HTTP/1.1
Host: www.stopdroplol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/posts/126607-funny-pictures
Connection: keep-alive
Cookie: _silos_r4_session=VC9hZElTWXNGNHIwNk8yb0RxRzlFdm5Ib3BxQzZUU2xPVmREbnpYUm5BY3pYZGduTG9RQUpVQ1NTbk81QVUrN2N6bzlXdFB2aU5sUjBvejdlQ1lDc0tLOTlCZjJFOUZ3QTRGWWt0dmtpd1dNRTFzUVdUbFdOMUUyb0d4WDlvRC84U2Y3YUs2KzRDVVhVNWVrMm1qQ1VRPT0tLVNDdDc1NHRybDFnSngxd0FmVGRjSlE9PQ%3D%3D--39d290dc6872ef1f92faac08517740f8d237a128
HTTP/1.1 200 OK
Server: Cowboy
Date: Fri, 27 Jan 2023 01:52:08 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: image/png
Content-Length: 7160
Via: 1.1 vegur
www.stopdroplol.com/assets/header-logo-ae8d4dd0d3ca290f57c9d309f7ae3f99279a5a47a82f9bba52e18bded9bbb290.png
3.226.182.14200 OK 4.1 kB URL HTTP/1.1 www.stopdroplol.com/assets/header-logo-ae8d4dd0d3ca290f57c9d309f7ae3f99279a5a47a82f9bba52e18bded9bbb290.png
IP 3.226.182.14:0
File type PNG image data, 179 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 2586c24f3fbbed89a1e80ece4dc31047
8695e332e7fea8f2e181d4ec3173e06773760bf3
60365f5192a3462de7a52c6aec53d62dffde2a01e004629ac51db7b58a55d38a
GET /assets/header-logo-ae8d4dd0d3ca290f57c9d309f7ae3f99279a5a47a82f9bba52e18bded9bbb290.png HTTP/1.1
Host: www.stopdroplol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/posts/126607-funny-pictures
Connection: keep-alive
Cookie: _silos_r4_session=VC9hZElTWXNGNHIwNk8yb0RxRzlFdm5Ib3BxQzZUU2xPVmREbnpYUm5BY3pYZGduTG9RQUpVQ1NTbk81QVUrN2N6bzlXdFB2aU5sUjBvejdlQ1lDc0tLOTlCZjJFOUZ3QTRGWWt0dmtpd1dNRTFzUVdUbFdOMUUyb0d4WDlvRC84U2Y3YUs2KzRDVVhVNWVrMm1qQ1VRPT0tLVNDdDc1NHRybDFnSngxd0FmVGRjSlE9PQ%3D%3D--39d290dc6872ef1f92faac08517740f8d237a128
HTTP/1.1 200 OK
Server: Cowboy
Date: Fri, 27 Jan 2023 01:52:08 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: image/png
Content-Length: 4148
Via: 1.1 vegur
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 27 Jan 2023 01:49:02 GMT
age: 186
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.stopdroplol.com/assets/sites/stopdroplol.com/logo-328243e2ec416a1d47c356c0d12ea2d5642120f2aca243976146da0f1fae1b79.png
3.226.182.14200 OK 2.9 kB URL HTTP/1.1 www.stopdroplol.com/assets/sites/stopdroplol.com/logo-328243e2ec416a1d47c356c0d12ea2d5642120f2aca243976146da0f1fae1b79.png
IP 3.226.182.14:0
File type PNG image data, 205 x 90, 8-bit colormap, non-interlaced\012- data
Hash a3a653ec52682398f546be23b43c5ac5
e44fb295fd487233104ab11412f48c5fb465fe9e
e4d13504a59e73290e83d1f208f56d33f51db62166a380ebe1742391f7e56a36
GET /assets/sites/stopdroplol.com/logo-328243e2ec416a1d47c356c0d12ea2d5642120f2aca243976146da0f1fae1b79.png HTTP/1.1
Host: www.stopdroplol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/posts/126607-funny-pictures
Connection: keep-alive
Cookie: _silos_r4_session=VC9hZElTWXNGNHIwNk8yb0RxRzlFdm5Ib3BxQzZUU2xPVmREbnpYUm5BY3pYZGduTG9RQUpVQ1NTbk81QVUrN2N6bzlXdFB2aU5sUjBvejdlQ1lDc0tLOTlCZjJFOUZ3QTRGWWt0dmtpd1dNRTFzUVdUbFdOMUUyb0d4WDlvRC84U2Y3YUs2KzRDVVhVNWVrMm1qQ1VRPT0tLVNDdDc1NHRybDFnSngxd0FmVGRjSlE9PQ%3D%3D--39d290dc6872ef1f92faac08517740f8d237a128
HTTP/1.1 200 OK
Server: Cowboy
Date: Fri, 27 Jan 2023 01:52:07 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: image/png
Content-Length: 2907
Via: 1.1 vegur
fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
216.58.207.227200 OK 128 kB URL HTTP/2 fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 128352, version 1.0\012- data
Size 128 kB (128352 bytes)
Hash 53436aca8627a49f4deaaa44dc9e3c05
0bc0c675480d94ec7e8609dda6227f88c5d08d2c
8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1
GET /s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.stopdroplol.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 20:33:18 GMT
expires: Fri, 26 Jan 2024 20:33:18 GMT
cache-control: public, max-age=31536000
age: 19130
last-modified: Thu, 25 Aug 2022 00:26:06 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash d9bf2793558044193d7e5d27708a9144
5a8f73462cfda6544cc3efe488854c3cd80bb0a7
e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.stopdroplol.com/assets/sites/stopdroplol.com/rater-efced607a366b18ce2d31767a5ebc2a617687cae97d6228033a3a6807e3dd411.gif
3.226.182.14200 OK 924 B URL HTTP/1.1 www.stopdroplol.com/assets/sites/stopdroplol.com/rater-efced607a366b18ce2d31767a5ebc2a617687cae97d6228033a3a6807e3dd411.gif
IP 3.226.182.14:0
File type GIF image data, version 89a, 30 x 90\012- data
Hash 9b97a6f808fd1ee924ba374930962e24
d3813f9e3a4b8cddb2a8cd44bc9f9b6dbcfbd7a1
48f6e8bdd00c99820263c16c681c05e7ec560dcbf3b7a8c84709ef324060842d
GET /assets/sites/stopdroplol.com/rater-efced607a366b18ce2d31767a5ebc2a617687cae97d6228033a3a6807e3dd411.gif HTTP/1.1
Host: www.stopdroplol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.stopdroplol.com/assets/application-5c45a8438e62533dfb9bf9e93a6509241c54d62935630a4a09e6fb385e5fb203.css
Cookie: _silos_r4_session=VC9hZElTWXNGNHIwNk8yb0RxRzlFdm5Ib3BxQzZUU2xPVmREbnpYUm5BY3pYZGduTG9RQUpVQ1NTbk81QVUrN2N6bzlXdFB2aU5sUjBvejdlQ1lDc0tLOTlCZjJFOUZ3QTRGWWt0dmtpd1dNRTFzUVdUbFdOMUUyb0d4WDlvRC84U2Y3YUs2KzRDVVhVNWVrMm1qQ1VRPT0tLVNDdDc1NHRybDFnSngxd0FmVGRjSlE9PQ%3D%3D--39d290dc6872ef1f92faac08517740f8d237a128
HTTP/1.1 200 OK
Server: Cowboy
Date: Fri, 27 Jan 2023 01:52:08 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: image/gif
Content-Length: 924
Via: 1.1 vegur
www.stopdroplol.com/assets/iab/leaderboard-spacer-dd5dcbea5885a795f1d29f823260e42336b50792d88d84d352a19baea90cf115.gif
3.226.182.14200 OK 1.5 kB URL HTTP/1.1 www.stopdroplol.com/assets/iab/leaderboard-spacer-dd5dcbea5885a795f1d29f823260e42336b50792d88d84d352a19baea90cf115.gif
IP 3.226.182.14:0
File type GIF image data, version 89a, 590 x 60\012- data
Hash d76e2951b1bb66e015c72b846ad5fc4c
1cb805b1df4533c12173e20a43cd8a00efa86711
bb7f82c3b3c19d3d8e25c19637e4e4f4d5757973473eb9af0fbf4ad013a43fe3
GET /assets/iab/leaderboard-spacer-dd5dcbea5885a795f1d29f823260e42336b50792d88d84d352a19baea90cf115.gif HTTP/1.1
Host: www.stopdroplol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.stopdroplol.com/assets/application-5c45a8438e62533dfb9bf9e93a6509241c54d62935630a4a09e6fb385e5fb203.css
Cookie: _silos_r4_session=VC9hZElTWXNGNHIwNk8yb0RxRzlFdm5Ib3BxQzZUU2xPVmREbnpYUm5BY3pYZGduTG9RQUpVQ1NTbk81QVUrN2N6bzlXdFB2aU5sUjBvejdlQ1lDc0tLOTlCZjJFOUZ3QTRGWWt0dmtpd1dNRTFzUVdUbFdOMUUyb0d4WDlvRC84U2Y3YUs2KzRDVVhVNWVrMm1qQ1VRPT0tLVNDdDc1NHRybDFnSngxd0FmVGRjSlE9PQ%3D%3D--39d290dc6872ef1f92faac08517740f8d237a128
HTTP/1.1 200 OK
Server: Cowboy
Date: Fri, 27 Jan 2023 01:52:08 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: image/gif
Content-Length: 1516
Via: 1.1 vegur
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5232
Expires: Fri, 27 Jan 2023 03:19:20 GMT
Date: Fri, 27 Jan 2023 01:52:08 GMT
Connection: keep-alive
assets.horseheadhuffer.com/hashed_silo_content/11d/f63/b38/icon/creepycover-com-d41d8c.jpg
54.230.111.110200 OK 4.5 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/11d/f63/b38/icon/creepycover-com-d41d8c.jpg
IP 54.230.111.110:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 626a44f6b1bc4f21d1ff637c59cf12fb
c505c2885e4c322949a65ca3c67f814f9ab17c74
0878bd904e28f4a8898608a69c6b87919bfd05888fe17864825126e51ac5b732
GET /hashed_silo_content/11d/f63/b38/icon/creepycover-com-d41d8c.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 4458
last-modified: Sun, 25 Dec 2011 00:11:08 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 27 Jan 2023 01:52:09 GMT
expires: Tue, 25 Dec 2012 00:02:42 GMT
etag: "626a44f6b1bc4f21d1ff637c59cf12fb"
x-cache: RefreshHit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HYDrnhhZu0KkaQqGAN4tI9Hn4MZ7wgex2Dc-bar57ZCTtlByw4kGTQ==
X-Firefox-Spdy: h2
assets.horseheadhuffer.com/hashed_silo_content/1b3/ec6/b24/icon/bulk-upload-084887.jpg
54.230.111.110200 OK 2.8 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/1b3/ec6/b24/icon/bulk-upload-084887.jpg
IP 54.230.111.110:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 825762c3e043255ea94e253acf57f073
9331fc22d26bfe977ac8cdcee296b58544256057
2d88896b09ff929f89a96e8aa30f9185fed245ceb6a8a9e945d8be8e14ff4afc
GET /hashed_silo_content/1b3/ec6/b24/icon/bulk-upload-084887.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2822
date: Fri, 27 Jan 2023 01:52:09 GMT
last-modified: Sun, 29 May 2011 03:13:29 GMT
etag: "825762c3e043255ea94e253acf57f073"
x-amz-meta-s3cmd-attrs: uid:500/gname:deploy/uname:deploy/gid:500/mode:33188/mtime:1302760566/atime:1303438047/ctime:1302760566
expires: Wed, 26 May 2021 02:02:52 GMT+00:00
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1zc-qONY9hqU1fY7PobD420WHx7I6DXtdK8-vvF_81_X3WXZYQKFEw==
X-Firefox-Spdy: h2
assets.horseheadhuffer.com/hashed_silo_content/silo_content/6702/icon/pizzafail.jpg
54.230.111.110200 OK 4.0 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/silo_content/6702/icon/pizzafail.jpg
IP 54.230.111.110:0
File type JPEG image data, baseline, precision 8, 100x100, components 3\012- data
Hash 48e87d3a11b5fdcc03be605ec1e8f4aa
08229582a1cec9625e9ac1a750e9ea5911413ebc
c5a426c7c1112b16d1125b44ea24301c9f08629bb857af44a32f32a05c03c429
GET /hashed_silo_content/silo_content/6702/icon/pizzafail.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 4022
last-modified: Sat, 04 Jun 2011 05:23:29 GMT
x-amz-meta-s3cmd-attrs: uid:500/gname:deploy/uname:deploy/gid:500/mode:33188/mtime:1267005450/atime:1303459058/ctime:1267005450
accept-ranges: bytes
server: AmazonS3
date: Fri, 27 Jan 2023 01:52:09 GMT
expires: Mon, 31 May 2021 04:34:31 GMT+00:00
etag: "48e87d3a11b5fdcc03be605ec1e8f4aa"
x-cache: RefreshHit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FWKTkLGuBtZ217Wf2Os14cdDX8Rt8wiFg6sFkVwVkuSVC5-0u2gA0w==
X-Firefox-Spdy: h2
assets.horseheadhuffer.com/hashed_silo_content/1d4/b2f/5aa/icon/adfailure-com-8f3fec.jpg
54.230.111.110200 OK 2.4 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/1d4/b2f/5aa/icon/adfailure-com-8f3fec.jpg
IP 54.230.111.110:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash f0c5585e55d6b8b56e7e9bf8a62ce8d3
ad17e10a279e501824513e4a6525ee73cde2b44a
842c55442203dd4b393d6d86e1b7c912cd9cec33ee8de1379c21bcb018266ce4
GET /hashed_silo_content/1d4/b2f/5aa/icon/adfailure-com-8f3fec.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2419
date: Fri, 27 Jan 2023 01:52:09 GMT
last-modified: Sun, 10 Feb 2013 08:10:37 GMT
etag: "f0c5585e55d6b8b56e7e9bf8a62ce8d3"
expires: Mon, 10 Feb 2014 08:05:39 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oE9KQnLB9TJ3FMT0AEOxRyHwjA1Kr5KZ-88bNyAEVeC6Thspu-HUIA==
X-Firefox-Spdy: h2
assets.horseheadhuffer.com/hashed_silo_content/silo_content/30833/icon/xd.jpg
54.230.111.110200 OK 1.8 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/silo_content/30833/icon/xd.jpg
IP 54.230.111.110:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash a569b1bbdebf482b05ebc3a85df4747b
0db78e1a7007caa9ef6986748df43bf4d4ec2408
64714fdce7b1b56addb258cbc64edbd3427132ae3d0c51085f4ecb56cc05757a
GET /hashed_silo_content/silo_content/30833/icon/xd.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 1820
date: Fri, 27 Jan 2023 01:52:09 GMT
last-modified: Fri, 03 Jun 2011 06:27:55 GMT
etag: "a569b1bbdebf482b05ebc3a85df4747b"
x-amz-meta-s3cmd-attrs: uid:500/gname:deploy/uname:deploy/gid:500/mode:33188/mtime:1280121925/atime:1303441932/ctime:1280121926
expires: Mon, 31 May 2021 04:34:31 GMT+00:00
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: grB43bPdbjgRWOICw540nSSjA_QfeEWXIk1YfgdM7HkZPo0XhPQJLg==
X-Firefox-Spdy: h2
assets.horseheadhuffer.com/hashed_silo_content/silo_content/536/icon/engrish-funny-1221803866-94620.jpg
54.230.111.110200 OK 3.9 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/silo_content/536/icon/engrish-funny-1221803866-94620.jpg
IP 54.230.111.110:0
File type JPEG image data, baseline, precision 8, 100x100, components 3\012- data
Hash e433f3e54dada9b2f790057d09b0f6de
82d2d078214551c0c8ccb03e2329fdc1f12da7d5
4faa7ca03c7e3e903652e58541570bc4b00d43184e613d654ff5a0259a8506aa
GET /hashed_silo_content/silo_content/536/icon/engrish-funny-1221803866-94620.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 3911
last-modified: Sat, 04 Jun 2011 02:33:16 GMT
x-amz-meta-s3cmd-attrs: uid:500/gname:deploy/uname:deploy/gid:500/mode:33279/mtime:1267017091/atime:1303460626/ctime:1267017091
accept-ranges: bytes
server: AmazonS3
date: Fri, 27 Jan 2023 01:52:09 GMT
expires: Mon, 31 May 2021 04:34:31 GMT+00:00
etag: "e433f3e54dada9b2f790057d09b0f6de"
x-cache: RefreshHit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0qGJKo5fwIYWMPL6l1p6MiMBLv9mcxYa5MX8LGTd_83KyZdFLyhCeQ==
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.41.156.90101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.156.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hPHtOkephuvzcgsjwAzB8g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BlHK2KYtaFgTLx4PVTyzSYW6rtU=
assets.horseheadhuffer.com/hashed_silo_content/silo_content/33608/resized/dogs.jpg
54.230.111.110200 OK 59 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/silo_content/33608/resized/dogs.jpg
IP 54.230.111.110:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 650x422, components 3\012- data
Hash 771b21b0ffdfb74c58ed8ac6563893be
5b6c529733f4d70ef464b4c12141aa5f55f8de9d
a4d7c599bd30afb1a39e3ee77d628d392aa65e3e268d9870b4f157b275a1209d
GET /hashed_silo_content/silo_content/33608/resized/dogs.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 59320
date: Fri, 27 Jan 2023 01:52:09 GMT
last-modified: Fri, 03 Jun 2011 13:49:04 GMT
etag: "771b21b0ffdfb74c58ed8ac6563893be"
x-amz-meta-s3cmd-attrs: uid:500/gname:deploy/uname:deploy/gid:500/mode:33188/mtime:1283572107/atime:1303392192/ctime:1283572107
expires: Mon, 31 May 2021 04:34:31 GMT+00:00
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ICODvKo_Z4gxIr0jgnlarPrVwzzYBK0d55EiBecTgtyotLfuI652EA==
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/horsehead-network/loader.js
151.101.1.44200 OK 46 kB URL HTTP/1.1 cdn.taboola.com/libtrc/horsehead-network/loader.js
IP 151.101.1.44:0
File type ASCII text, with very long lines (65509)
Hash 4d958ef9ff577c4b7ba3fe2f3ba58d8f
b86acfb7dbdc2d0791ea4cba64a69e5bd6614825
a631959546f6bfdc6ff9b100a4f7451da1279fa373e2f58c51d6da745284301f
GET /libtrc/horsehead-network/loader.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/
Connection: keep-alive
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 45967
x-amz-id-2: cPYvp82n1VQEd+961C+2nB2UgURZrnCBxAs2MXMeykSGv/sZKtcUXaGNolFtPnOc08p8ENCdbPg=
x-amz-request-id: MT0HSWP2NRBQJYVT
x-amz-replication-status: FAILED
Last-Modified: Thu, 26 Jan 2023 15:00:11 GMT
ETag: "f82268d426daf7ff2a5bd7524c35d2b7"
x-amz-version-id: wAMa4wLv5eclWphpA.Ack2FC60T5vL3P
Content-Type: application/javascript; charset=utf-8
Server: AmazonS3
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 01:52:08 GMT
Via: 1.1 varnish
Age: 72
X-Served-By: cache-bma1660-BMA
X-Cache: HIT
X-Cache-Hits: 1
X-Timer: S1674784329.911338,VS0,VE1
Cache-Control: private,max-age=14401
Vary: Accept-Encoding
abp: 99
www.google-analytics.com/ga.js
142.250.74.110200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/
Connection: keep-alive
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Fri, 27 Jan 2023 01:07:47 GMT
Expires: Fri, 27 Jan 2023 03:07:47 GMT
Cache-Control: public, max-age=7200
Age: 2661
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
edge.quantserve.com/quant.js
91.228.74.251200 OK 10 kB URL HTTP/1.1 edge.quantserve.com/quant.js
IP 91.228.74.251:0
File type ASCII text, with very long lines (26017)
Hash c7151cf69f26d9e74df3ce3fe344dfdf
b904ef62ab4cdc9189fb5613a77eb2fb1db0ade9
504edf62915702dc6a75ce432c9fff990b8cf8814be5083856dc97b1fde2119d
GET /quant.js HTTP/1.1
Host: edge.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:52:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: private, max-age=604800
Content-Encoding: gzip
Etag: "OVi4z6W4qM+KoQEZlRgh5w=="
Expires: Fri, 03 Feb 2023 01:52:08 GMT
Vary: Accept-Encoding
www.recaptcha.net/recaptcha/api.js
142.250.74.3200 OK 558 B URL HTTP/2 www.recaptcha.net/recaptcha/api.js
IP 142.250.74.3:0
File type ASCII text, with very long lines (853), with no line terminators
Hash da24a8fe24a5964843d39f9be3b60210
6cb13c8ed96ac4898e73cd560609564f0e1e0dc5
d4ab3a489cf6f721d98e05057240969c48e8f665b36456e55b05099a1f1de50e
GET /recaptcha/api.js HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 27 Jan 2023 01:52:08 GMT
date: Fri, 27 Jan 2023 01:52:08 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 558
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/__utm.gif?utmwv=5.7.2&utms=2&utmn=2095886639&utmhn=www.stopdroplol.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x927&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Funny%20LOL%20Pictures%20-%20Stop%20Drop%20LOL&utmhid=317785465&utmr=-&utmp=%2Fposts%2F126607-funny-pictures&utmht=1674784328852&utmac=UA-2787617-18&utmcc=__utma%3D110739911.1660688104.1674784329.1674784329.1674784329.1%3B%2B__utmz%3D110739911.1674784329.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=&utmmt=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
142.250.74.110200 OK 35 B URL HTTP/1.1 www.google-analytics.com/__utm.gif?utmwv=5.7.2&utms=2&utmn=2095886639&utmhn=www.stopdroplol.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x927&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Funny%20LOL%20Pictures%20-%20Stop%20Drop%20LOL&utmhid=317785465&utmr=-&utmp=%2Fposts%2F126607-funny-pictures&utmht=1674784328852&utmac=UA-2787617-18&utmcc=__utma%3D110739911.1660688104.1674784329.1674784329.1674784329.1%3B%2B__utmz%3D110739911.1674784329.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=&utmmt=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
IP 142.250.74.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /__utm.gif?utmwv=5.7.2&utms=2&utmn=2095886639&utmhn=www.stopdroplol.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x927&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Funny%20LOL%20Pictures%20-%20Stop%20Drop%20LOL&utmhid=317785465&utmr=-&utmp=%2Fposts%2F126607-funny-pictures&utmht=1674784328852&utmac=UA-2787617-18&utmcc=__utma%3D110739911.1660688104.1674784329.1674784329.1674784329.1%3B%2B__utmz%3D110739911.1674784329.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=&utmmt=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/
Connection: keep-alive
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Pragma: no-cache
X-Content-Type-Options: nosniff
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
Date: Fri, 27 Jan 2023 01:10:46 GMT
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Age: 2482
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Content-Type: image/gif
fonts.googleapis.com/css?family=Roboto:400,700|Droid+Sans:400,700|Material+Icons
142.250.74.106200 OK 884 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400,700|Droid+Sans:400,700|Material+Icons
IP 142.250.74.106:0
Hash 8b0af8052cb9e2fa27035f8c44fe8848
61cbca484830bf3a5dc50afed9a4da3bd7a53c71
8bf0c08ef82347828d5a85002851fcf2063eedb7cf450c7605d19310e513704c
GET /css?family=Roboto:400,700|Droid+Sans:400,700|Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 27 Jan 2023 01:52:08 GMT
date: Fri, 27 Jan 2023 01:52:08 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=929977476&utmhn=www.stopdroplol.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x927&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Funny%20LOL%20Pictures%20-%20Stop%20Drop%20LOL&utmhid=317785465&utmr=-&utmp=%2Fposts%2F126607-funny-pictures&utmht=1674784328847&utmac=UA-2787617-38&utmcc=__utma%3D110739911.1660688104.1674784329.1674784329.1674784329.1%3B%2B__utmz%3D110739911.1674784329.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1456808009&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
142.250.74.110200 OK 35 B URL HTTP/1.1 www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=929977476&utmhn=www.stopdroplol.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x927&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Funny%20LOL%20Pictures%20-%20Stop%20Drop%20LOL&utmhid=317785465&utmr=-&utmp=%2Fposts%2F126607-funny-pictures&utmht=1674784328847&utmac=UA-2787617-38&utmcc=__utma%3D110739911.1660688104.1674784329.1674784329.1674784329.1%3B%2B__utmz%3D110739911.1674784329.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1456808009&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
IP 142.250.74.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=929977476&utmhn=www.stopdroplol.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x927&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Funny%20LOL%20Pictures%20-%20Stop%20Drop%20LOL&utmhid=317785465&utmr=-&utmp=%2Fposts%2F126607-funny-pictures&utmht=1674784328847&utmac=UA-2787617-38&utmcc=__utma%3D110739911.1660688104.1674784329.1674784329.1674784329.1%3B%2B__utmz%3D110739911.1674784329.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1456808009&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/
Connection: keep-alive
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Date: Fri, 27 Jan 2023 01:52:08 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
rules.quantcount.com/rules-p-1fNsFWH97du16.js
108.157.214.85301 Moved Permanently 167 B URL HTTP/1.1 rules.quantcount.com/rules-p-1fNsFWH97du16.js
IP 108.157.214.85:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /rules-p-1fNsFWH97du16.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 27 Jan 2023 01:52:09 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://rules.quantcount.com/rules-p-1fNsFWH97du16.js
X-Cache: Redirect from cloudfront
Via: 1.1 9fde400234236c10982fe8b8a3ca9eb2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: nN7O1iudFMBXkZtSnzVp0afg64bzYaFPGbO7o0dc7cV3JeiBteQFQA==
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8c1d4289231ddc15a55f594b30e05dd3
1c42cb27dcb9d5d5bcea376a930e17d75914dc2e
295ab1f8e356691402d9ff5cc274c8911f1a7722ae2df9a8222937c81b749a31
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sb.scorecardresearch.com/b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1674784328905&ns_c=UTF-8&c7=http%3A%2F%2Fwww.stopdroplol.com%2Fposts%2F126607-funny-pictures&c8=Funny%20LOL%20Pictures%20-%20Stop%20Drop%20LOL&c9=
54.230.111.88204 No Content 0 B URL HTTP/2 sb.scorecardresearch.com/b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1674784328905&ns_c=UTF-8&c7=http%3A%2F%2Fwww.stopdroplol.com%2Fposts%2F126607-funny-pictures&c8=Funny%20LOL%20Pictures%20-%20Stop%20Drop%20LOL&c9=
IP 54.230.111.88:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1674784328905&ns_c=UTF-8&c7=http%3A%2F%2Fwww.stopdroplol.com%2Fposts%2F126607-funny-pictures&c8=Funny%20LOL%20Pictures%20-%20Stop%20Drop%20LOL&c9= HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 27 Jan 2023 01:52:09 GMT
set-cookie: UID=1103a71679cd53c3207520a1674784329; domain=.scorecardresearch.com; path=/; max-age=62208000
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZaztMj_od5vcJ2WjhusacOE5pclQUXUd8YxPi0DS-Y_78-cgkytPQw==
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-1fNsFWH97du16.js
108.157.214.85200 OK 160 B URL HTTP/2 rules.quantcount.com/rules-p-1fNsFWH97du16.js
IP 108.157.214.85:0
Hash 93d3f379d960770838afbd940546c010
e6980f4eb98f9c62093cabdfa221747e69e04364
9aec79b9c04e0230aca79c162f19a9988ffb5c80c9c98f126bae82870b6a46f4
GET /rules-p-1fNsFWH97du16.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 160
last-modified: Fri, 14 Oct 2022 00:47:15 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Fri, 27 Jan 2023 01:20:29 GMT
cache-control: max-age=3600
etag: "93d3f379d960770838afbd940546c010"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 472198048b2177f6905d44f001875bcc.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: _rU4ROkk7hlYZBt3DqRinvulkbn4pIWRIWTPYPeDwTbqYsfUqBLhzg==
age: 3142
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/impl.20230126-3-RELEASE.js
151.101.1.44200 OK 155 kB URL HTTP/2 cdn.taboola.com/libtrc/impl.20230126-3-RELEASE.js
IP 151.101.1.44:0
File type ASCII text, with very long lines (65509)
Size 155 kB (154870 bytes)
Hash 10823a261b2c0249484d20950801bf40
79430743855a7705f5be36bbe67372549359f07a
40200710fe9b480358a11bf8a259f0f5ad0d3a34abbd4800166838cf09fe19f5
GET /libtrc/impl.20230126-3-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: RUkcrQFVADZ9oW/03MUfG+XxFfDYzh/Odm9AEM16hPoLiDelVmflR7myPuW9CXyB32ESvxSjYAE=
x-amz-request-id: DWA3SKVQ1EZDJBBH
last-modified: Thu, 26 Jan 2023 12:36:52 GMT
etag: "10823a261b2c0249484d20950801bf40"
content-encoding: br
x-amz-version-id: TAd_8bqSo5fWrgPH3gtBYqLL.EXhCFF9
content-type: application/javascript
accept-ranges: bytes
date: Fri, 27 Jan 2023 01:52:09 GMT
via: 1.1 varnish
age: 18918
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 7319
x-timer: S1674784329.043154,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 17
server: AmazonS3-br
content-length: 154870
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8842ce0e8a7ade68a541b843fd4cdde3
af08cd580c467949030f86fc17132a11843bce26
c1ee92c539f729fff35e9c9814569b46ed36d9f3de13c348daefc46816d6fbda
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4680
Cache-Control: max-age=149567
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:09 GMT
Etag: "63d2c140-1d7"
Expires: Sat, 28 Jan 2023 19:24:56 GMT
Last-Modified: Thu, 26 Jan 2023 18:06:56 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
pixel.quantserve.com/pixel;r=1627733837;rf=0;a=p-1fNsFWH97du16;url=http%3A%2F%2Fwww.stopdroplol.com%2Fposts%2F126607-funny-pictures;uht=2;fpan=1;fpa=P0-550365216-1674784328858;pbc=;ns=0;ce=1;qjs=1;qv=8508733c-20230116145555;cm=;gdpr=0;ref=;d=stopdroplol.com;dst=0;et=1674784328944;tzo=0;ogl=image.https%3A%2F%2Fassets%252Ehorseheadhuffer%252Ecom%2Fhashed_silo_content%2Fsilo_content%2F33608%2Fresize;ses=8d280503-eac5-483b-8c15-995f961cd7da
91.228.74.251200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=1627733837;rf=0;a=p-1fNsFWH97du16;url=http%3A%2F%2Fwww.stopdroplol.com%2Fposts%2F126607-funny-pictures;uht=2;fpan=1;fpa=P0-550365216-1674784328858;pbc=;ns=0;ce=1;qjs=1;qv=8508733c-20230116145555;cm=;gdpr=0;ref=;d=stopdroplol.com;dst=0;et=1674784328944;tzo=0;ogl=image.https%3A%2F%2Fassets%252Ehorseheadhuffer%252Ecom%2Fhashed_silo_content%2Fsilo_content%2F33608%2Fresize;ses=8d280503-eac5-483b-8c15-995f961cd7da
IP 91.228.74.251:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=1627733837;rf=0;a=p-1fNsFWH97du16;url=http%3A%2F%2Fwww.stopdroplol.com%2Fposts%2F126607-funny-pictures;uht=2;fpan=1;fpa=P0-550365216-1674784328858;pbc=;ns=0;ce=1;qjs=1;qv=8508733c-20230116145555;cm=;gdpr=0;ref=;d=stopdroplol.com;dst=0;et=1674784328944;tzo=0;ogl=image.https%3A%2F%2Fassets%252Ehorseheadhuffer%252Ecom%2Fhashed_silo_content%2Fsilo_content%2F33608%2Fresize;ses=8d280503-eac5-483b-8c15-995f961cd7da HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 01:52:09 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=63d32e49-2d709-0da0d-2354b; expires=Tue, 27-Feb-2024 01:52:09 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
widgets.amung.us/small/00/6.png
104.22.74.171200 OK 311 B URL HTTP/2 widgets.amung.us/small/00/6.png
IP 104.22.74.171:0
File type PNG image data, 80 x 15, 8-bit colormap, non-interlaced\012- data
Hash 3c20d5101171983cc48a5f4a62f5c62f
dc940ff18ace9b61f37bfb6efb90ac2011c59378
54116df822ebaec9dd12e77dc95158fa3bb50d31e6736b9584d6a742bbb6fc07
GET /small/00/6.png HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 01:52:09 GMT
content-type: image/png
content-length: 311
last-modified: Sun, 13 Jun 2010 09:48:29 GMT
etag: "4c14a96d-137"
expires: Mon, 16 Jan 2023 09:30:12 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 1009317
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78fdd8e9a9eb98ee-ARN
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157302 Found 0 B URL HTTP/1.1 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/
Connection: keep-alive
HTTP/1.1 302 Found
content-length: 0
location: https://gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
cache-control: no-cache
trc-events.taboola.com/horsehead-stopdroplol/log/2/debug?tim=01%3A52%3A09.062&type=usage&msg=rtus&llvl=2&id=7459&cv=20230126-3-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/horsehead-stopdroplol/log/2/debug?tim=01%3A52%3A09.062&type=usage&msg=rtus&llvl=2&id=7459&cv=20230126-3-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /horsehead-stopdroplol/log/2/debug?tim=01%3A52%3A09.062&type=usage&msg=rtus&llvl=2&id=7459&cv=20230126-3-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Fri, 27 Jan 2023 01:52:09 GMT
x-fastly-to-nlb-rtt: 22203
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 0f1ba60402ab9eac433f3a75cf52422e
87265442ece1893f4e1ad20cd2a42773735d03e0
c04830a384fb019b37de4b24ff5f0191ffd527b79475b3b8f54303aeaec2630e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4541
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:09 GMT
Last-Modified: Fri, 27 Jan 2023 00:36:28 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 314
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.recaptcha.net
Connection: keep-alive
Referer: https://www.recaptcha.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:03 GMT
expires: Fri, 26 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 14646
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 188d447a0eee6a7f972e26e76514f7c3
e7eb7fddc22b1aa83e2d546ee7890ebd7de8bfc8
6284a8ac73437e1e92bac3e2257aa60c7001f814613d82c2522accb34b21a0f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2057
Cache-Control: max-age=130715
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:09 GMT
Etag: "63d281db-139"
Expires: Sat, 28 Jan 2023 14:10:44 GMT
Last-Modified: Thu, 26 Jan 2023 13:36:27 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 313
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 01:52:09 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=7eluA180M0RITmhlJTJCZkMwOUJGQlhaMUN2czFPZFVEcnZRTk5MRFJ3a3huVTcyUklsaWlaJTJCJTJCTVBtWm13bldNM3pMUTU1; expires=Wed, 21 Feb 2024 01:52:09 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 278808
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=rtus&topUrl=www.stopdroplol.com
178.250.0.157200 OK 5.4 kB URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=www.stopdroplol.com
IP 178.250.0.157:0
Hash 5c588cce52441d5cf3b284fbb821614f
e0b346524cb212ec8e3bc1c81cd129acb56a57a1
ca37dc9f2af597feae219a8768aa469d262148280c556d8fd0771334d8f9618f
GET /syncframe?origin=rtus&topUrl=www.stopdroplol.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 01:52:09 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
uid=8e227833-4861-4e2b-84c7-316f7c6979a2; expires=Wed, 21 Feb 2024 01:52:09 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 698687
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash c3fa0acd495f7caf6e73cd7d11915aa1
68214131a41d142e3f8cb2fc73fbc9a0d7ab5040
d343cb2efb8921f99f1acef382f5296d9f582fb8ad8d79b80d49e23bd7606a8c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2984
Cache-Control: max-age=98573
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:09 GMT
Etag: "63d200ae-139"
Expires: Sat, 28 Jan 2023 05:15:02 GMT
Last-Modified: Thu, 26 Jan 2023 04:25:18 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 313
cdn.taboola.com/libtrc/userx.20230126-3-RELEASE.es6.js
151.101.1.44200 OK 5.4 kB URL HTTP/2 cdn.taboola.com/libtrc/userx.20230126-3-RELEASE.es6.js
IP 151.101.1.44:0
File type ASCII text, with very long lines (17842)
Hash 231dc7eb81c059a055b8cba9ff053692
8fdbaff3cacf718eec77fdcb747834583a97113e
1fd1e05bc1653bb8ffcdf4e3fc8e2476f9e309f0fb529bc9fe0f019696b0acfe
GET /libtrc/userx.20230126-3-RELEASE.es6.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Hs5UujuCzBNGJVePxptA6YR/Rb2a6Vh3A5WNMcBNOlLRN+H6OEkiZAMq3nkQ5aiHXrXITDia9zM=
x-amz-request-id: A6NM44EC7CDASGHQ
x-amz-replication-status: PENDING
last-modified: Thu, 26 Jan 2023 19:31:38 GMT
etag: "ea3304eafbeb5b2b85c3a63f6454fd11"
x-amz-version-id: _JZEsaNrzTytBmHpUut9zS7Bk49Zh2Ge
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Fri, 27 Jan 2023 01:52:10 GMT
via: 1.1 varnish
age: 22828
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1388
x-timer: S1674784330.051965,VS0,VE0
cache-control: private,max-age=2629743
vary: Accept-Encoding
abp: 17
content-length: 5397
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/84c747d1b854e4f2baf7cffd562cb5b6.png
151.101.1.44200 OK 11 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/84c747d1b854e4f2baf7cffd562cb5b6.png
IP 151.101.1.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash b743e43181f0551c336229e4a9d35832
74d9a4711aed1a2b34c903779c0ab8b2997ca92a
95a1176a942f8501da3dbaf55d1898eb6041190f1cc7a178d2694502a59eb6ba
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/84c747d1b854e4f2baf7cffd562cb5b6.png HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 405207298205445531042495598002417431270,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 405207298205445531042495598002417431270,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
etag: "7a162edd63569795e046b728714c9d06"
last-modified: Fri, 23 Dec 2022 17:14:19 GMT
req-referer: https://crackshash.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 2f3af70ce0f9bdfcded9235888b55d8f
x-envoy-upstream-service-time: 193
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb801
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 27 Jan 2023 01:52:10 GMT
age: 2021836
x-served-by: cache-iad-kiad7000152-IAD, cache-iad-kiad7000168-IAD, cache-lga21977-LGA, cache-iad-kiad7000147-IAD, cache-bma1636-BMA
x-cache: MISS, HIT, MISS, HIT, HIT
x-cache-hits: 0, 2, 0, 50, 1
x-timer: S1674784330.070674,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/84c747d1b854e4f2baf7cffd562cb5b6.png
x-vcl-time-ms: 1
content-length: 11074
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/77b8fe05675d98f75c7ff2190cf47a77.jpg
151.101.1.44200 OK 19 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/77b8fe05675d98f75c7ff2190cf47a77.jpg
IP 151.101.1.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 55b76bc9fd70b51b1e1e02a6c03a303a
bb69d09e6a06899da733eff561d02f2aa9fcdbf3
11c43b5ddae7f7c9d3ec1c074475f55afd6435448212c3cd43162f4113d81981
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/77b8fe05675d98f75c7ff2190cf47a77.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 354744180807179541269091539453031651567,540456707347824435580073882567760974457,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 354744180807179541269091539453031651567,540456707347824435580073882567760974457,29ecf9b93bbf306179626feeda1fab70
etag: "5dbbae0697e4d878b590116c74442b29"
expiration: expiry-date="Fri, 13 Jan 2023 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Tue, 13 Dec 2022 14:37:18 GMT
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 106
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb802
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 27 Jan 2023 01:52:10 GMT
age: 2388400
x-served-by: cache-iad-kcgs7200171-IAD, cache-iad-kiad7000072-IAD, cache-chi-kigq8000165-CHI, cache-iad-kcgs7200094-IAD, cache-bma1636-BMA
x-cache: MISS, HIT, MISS, HIT, HIT
x-cache-hits: 0, 3, 0, 4, 1
x-timer: S1674784330.084184,VS0,VE3
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/77b8fe05675d98f75c7ff2190cf47a77.jpg
x-vcl-time-ms: 3
content-length: 19224
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//medaboutme.ru/upload/medialibrary/28d/shutterstock_457158232.jpg
151.101.1.44200 OK 14 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//medaboutme.ru/upload/medialibrary/28d/shutterstock_457158232.jpg
IP 151.101.1.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1181e8f642cebd085e3b5a076662edc5
86fd380bb1e4376cf3edd5068b2054971d9c504d
113f54a763c069aedde94fdde25916bd22c1b7eeaf8aa0bd58ada1e14bac154c
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//medaboutme.ru/upload/medialibrary/28d/shutterstock_457158232.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 336612666204530997426358893515281041261,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 336612666204530997426358893515281041261,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
etag: "4ad9b7421e0d5bb8314a3713752548c1"
last-modified: Sat, 14 Jan 2023 01:51:31 GMT
req-referer: https://www.bucyrustelegraphforum.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 45a55091b18bc5ac1ca67cab68059c1d
x-envoy-upstream-service-time: 1605
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb802
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 27 Jan 2023 01:52:10 GMT
age: 815749
x-served-by: cache-iad-kcgs7200160-IAD, cache-iad-kcgs7200129-IAD, cache-lga21956-LGA, cache-iad-kcgs7200158-IAD, cache-bma1636-BMA
x-cache: MISS, MISS, MISS, HIT, HIT
x-cache-hits: 0, 0, 0, 579, 1
x-timer: S1674784330.089477,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//medaboutme.ru/upload/medialibrary/28d/shutterstock_457158232.jpg
x-vcl-time-ms: 1
content-length: 13708
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/362dc124cbf7d10fb9e635326b902470.png
151.101.1.44200 OK 9.3 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/362dc124cbf7d10fb9e635326b902470.png
IP 151.101.1.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash e39fdf90d548669fcddcbadbd9d6f319
dfe4bd343875218980ff7ce4dd604dde1bc08981
e8fdaaeb75b906b53ad1a4db111a0d0570aeae2c0b1750f8f5982932f3d5f020
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/362dc124cbf7d10fb9e635326b902470.png HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 350385009646795475651204808419181960739,540456707347824435580073882567760974457,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 350385009646795475651204808419181960739,540456707347824435580073882567760974457,29ecf9b93bbf306179626feeda1fab70
etag: "e298b9ba147628fc1022ec7ed0d1c54b"
expiration: expiry-date="Sat, 07 Jan 2023 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Wed, 07 Dec 2022 08:46:49 GMT
req-referer: https://leconjugueur.lefigaro.fr/
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 149
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb801
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 27 Jan 2023 01:52:10 GMT
age: 2354990
x-served-by: cache-iad-kiad7000172-IAD, cache-iad-kcgs7200110-IAD, cache-chi-klot8100178-CHI, cache-iad-kcgs7200139-IAD, cache-bma1636-BMA
x-cache: MISS, HIT, MISS, HIT, HIT
x-cache-hits: 0, 2, 0, 3, 1
x-timer: S1674784330.089211,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/362dc124cbf7d10fb9e635326b902470.png
x-vcl-time-ms: 1
content-length: 9256
X-Firefox-Spdy: h2
whos.amung.us/swidget/m9bk7sxoa8jz.png
104.22.74.171307 Temporary Redirect 43 kB URL HTTP/2 whos.amung.us/swidget/m9bk7sxoa8jz.png
IP 104.22.74.171:0
File type gzip compressed data, max speed, from Unix\012- data
Hash ad7336e7dc209ae24dd731e5a2652b2d
d2cf36f1842ac4c89f7e6eda9dd22cf5efc77a5a
42da95afea6ffb24e3703e0e01ce89b8ef67e635f892a06a70ad14dd2e935f23
GET /swidget/m9bk7sxoa8jz.png HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
date: Fri, 27 Jan 2023 01:52:09 GMT
content-type: text/html; charset=UTF-8
location: https://widgets.amung.us/small/00/6.png
cache-control: no-cache, no-store, must-revalidate
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 78fdd8e7d97998ee-ARN
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.238200 OK 10 kB URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.238:0
Hash 18c13944c2d3c82b24e7b62179b78eb1
cfdc695f3cfb3df48e69c7ab8859532d847635fb
1bf22867b65b736fc93aa7c71fb2257cf920b24439dfe36b87c3327e5574a3fa
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 01:52:09 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 299432
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/b4d8ba4dbcaa815b01766f21a5875047.png
151.101.1.44200 OK 22 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/b4d8ba4dbcaa815b01766f21a5875047.png
IP 151.101.1.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 337eca42a539d43694a88bdacb33ae62
34da58f97c416bf36c49a47ea8ad48ffe842c21b
6d5ec3ede73e17072a8bfdd3285fd20300300c24476c7e9af45968496cf8b812
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/b4d8ba4dbcaa815b01766f21a5875047.png HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 345494714876915712575166404319107831624,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 345494714876915712575166404319107831624,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
etag: "badf975a91a53dac172ea3477798f65f"
expiration: expiry-date="Fri, 13 Jan 2023 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Tue, 13 Dec 2022 13:47:19 GMT
req-referer: https://www.easynepalityping.com/
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 263
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb802
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 27 Jan 2023 01:52:10 GMT
age: 2316171
x-served-by: cache-iad-kcgs7200090-IAD, cache-iad-kjyo7100176-IAD, cache-lga21970-LGA, cache-iad-kjyo7100157-IAD, cache-bma1636-BMA
x-cache: MISS, MISS, MISS, HIT, HIT
x-cache-hits: 0, 0, 0, 83, 1
x-timer: S1674784330.090881,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/b4d8ba4dbcaa815b01766f21a5875047.png
x-vcl-time-ms: 1
content-length: 21552
X-Firefox-Spdy: h2
vidstat.taboola.com/lite-unit/3.9.8/UnitWidgetItemDesktop.min.js
151.101.129.44200 OK 30 kB URL HTTP/1.1 vidstat.taboola.com/lite-unit/3.9.8/UnitWidgetItemDesktop.min.js
IP 151.101.129.44:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash aac1042207afd54e1cf1befcaf3420cd
00f0597866330a850a1d6222861591f24dd18380
ea77ece8880eb28ffe83e94ef787b4204f8b1b3d09f443011b898b13ed4bb706
GET /lite-unit/3.9.8/UnitWidgetItemDesktop.min.js HTTP/1.1
Host: vidstat.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/
Connection: keep-alive
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 29909
Content-Type: application/javascript
Last-Modified: Tue, 22 Nov 2022 07:02:09 GMT
ETag: "1842444d4bb92087143326a4d508875d"
Server: AmazonS3
Via: 1.1 b34d5d8e5954d0b7b46d5f0eb534c166.cloudfront.net (CloudFront), 1.1 varnish
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: iVxUQ_yUDgKIDSZaR21P2jFvv94ZUaTAMQdnd9xsEMFJTpsmb2NMlg==
Cache-Control: public, max-age=2592000
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 01:52:10 GMT
Age: 855638
X-Served-By: cache-bma1667-BMA
X-Cache: Hit from cloudfront, HIT
X-Cache-Hits: 18549
X-Timer: S1674784330.103690,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, OPTIONS, HEAD
Access-Control-Allow-Headers: *
gum.criteo.com/sid/json?origin=rtus&domain=stopdroplol.com&sn=FirefoxSyncframe&so=0&topUrl=www.stopdroplol.com&info=Tit7uF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czFPZFVEcnZRTk5MRFJ3a3huVTcyUkxRQjNBVDBNVjBQeW1ZUTJkUk9PNjA&idsd=-1657752291,-1781568849&cw=1&rtusCallerId=72&lsw=1
178.250.0.157200 OK 817 B URL HTTP/2 gum.criteo.com/sid/json?origin=rtus&domain=stopdroplol.com&sn=FirefoxSyncframe&so=0&topUrl=www.stopdroplol.com&info=Tit7uF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czFPZFVEcnZRTk5MRFJ3a3huVTcyUkxRQjNBVDBNVjBQeW1ZUTJkUk9PNjA&idsd=-1657752291,-1781568849&cw=1&rtusCallerId=72&lsw=1
IP 178.250.0.157:0
Hash 280b896abbbdde4687c87249d8bf5e93
71adb61f2ab997922a4a0ab181d1348b248c27ac
0c88e13d8719558e651ffcfa6e1063f701b60d033097f0dbeb6efd757a615d0d
GET /sid/json?origin=rtus&domain=stopdroplol.com&sn=FirefoxSyncframe&so=0&topUrl=www.stopdroplol.com&info=Tit7uF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czFPZFVEcnZRTk5MRFJ3a3huVTcyUkxRQjNBVDBNVjBQeW1ZUTJkUk9PNjA&idsd=-1657752291,-1781568849&cw=1&rtusCallerId=72&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=www.stopdroplol.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 01:52:09 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 843319
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16155
Expires: Fri, 27 Jan 2023 06:21:25 GMT
Date: Fri, 27 Jan 2023 01:52:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16155
Expires: Fri, 27 Jan 2023 06:21:25 GMT
Date: Fri, 27 Jan 2023 01:52:10 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e7158416f60576804ccff03307319fe
a342f94625e913fa6b8d862a59979f1e3ad80dd1
5c525df7d169cc7e033d920c11f4a0163a781c025a22b70530882b56964a9a52
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5737
x-amzn-requestid: 23239d1f-0228-4722-b826-40dc8c9a4af2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVzDbEacIAMFZtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d23215-1604c24e272fbb657b9925cc;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:56:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -_8PZoms7W6Lvw__KsoTwL_CzjfyWChzoSWDc9yCk9zCR8cTs87oNA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 16:31:35 GMT
age: 33635
etag: "a342f94625e913fa6b8d862a59979f1e3ad80dd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52a1f3b3-38ab-4f58-ad1a-ca4c9f82503e.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52a1f3b3-38ab-4f58-ad1a-ca4c9f82503e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1695371c247eedad65b4cac82f01215d
50510052f0e22e23f747c761d57cdf72910ac533
aadde426229f04f6a489b87d6949a485b19d4fd035cb244b6094549efc08013f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52a1f3b3-38ab-4f58-ad1a-ca4c9f82503e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6394
x-amzn-requestid: 215e6698-30e7-45b0-8f8f-96a05c5f6992
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fOirZG1doAMFW_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf4b15-3e1bec6759816cf84467339b;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 03:05:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tG3T0HguJWldw-LJ9SJSuuUT4ubLCWViwQFB-dZhNfEswMEexb7Tcw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 04:23:28 GMT
age: 77322
etag: "50510052f0e22e23f747c761d57cdf72910ac533"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/GETTY_IMAGES/SKP/913244776__P1Rbj6vL.jpg
151.101.1.44200 OK 14 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/GETTY_IMAGES/SKP/913244776__P1Rbj6vL.jpg
IP 151.101.1.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 61e390fa07ba5392ef5cf612d32b8c0c
8f1d64c3b03c30e0c08bc4685b147b2ca80efe4f
2fb1e2a5e42c6c29d7b363bbdd6ea5fb1a49afcaab8df27475bfbc481600e2cf
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/GETTY_IMAGES/SKP/913244776__P1Rbj6vL.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 570576010733889736449068691793194710846,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 570576010733889736449068691793194710846,349997547001875894412264445330352373113,29ecf9b93bbf306179626feeda1fab70
etag: "a2aa03370c09b3862d3cb31e6713a4f2"
last-modified: Fri, 16 Dec 2022 10:15:16 GMT
req-referer: https://www.berdikarionline.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 328c4f58238beab2e1b5c740d5150bf0
x-envoy-upstream-service-time: 857
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb804
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 27 Jan 2023 01:52:10 GMT
age: 886890
x-served-by: cache-iad-kiad7000044-IAD, cache-iad-kiad7000033-IAD, cache-lga21969-LGA, cache-iad-kiad7000030-IAD, cache-bma1636-BMA
x-cache: MISS, MISS, MISS, HIT, MISS
x-cache-hits: 0, 0, 0, 14, 0
x-timer: S1674784330.065941,VS0,VE95
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_367%2Cw_440%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/GETTY_IMAGES/SKP/913244776__P1Rbj6vL.jpg
x-vcl-time-ms: 95
content-length: 13532
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:15:25 GMT
age: 67005
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 869cdfba2637cc932ce387317a3c485e
51d87a5223d87c959bf27b2a825dce0a28f52ada
6dc4247dd3110836195f9962463bd8265be89633e9e589bf19955991751c26fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cc9d867-fc35-4a62-9934-4cb307d6146d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5669
x-amzn-requestid: 17f6235c-d495-4813-9453-407331e0dcad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fR1ZSH4fIAMFxeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d09c3b-67ff5c7f416727670e7c3b21;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 03:04:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KGNpzuI2ny_1LH90atWa09SPYG7Ovolbv_KvL8nC6fUk59z-6TFsMQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 03:05:04 GMT
age: 82026
etag: "51d87a5223d87c959bf27b2a825dce0a28f52ada"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5623b111-3a93-4843-8a40-550089a3d3eb.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5623b111-3a93-4843-8a40-550089a3d3eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a5de6b54196befa95e9291a051c645d0
e3100707a4e9b1d5c30223d31f58cd6ee8ad010b
5bcc3dd7011df4e17d7ef86d892fedeca14b0d0eabbe782fecf35c9a82b25e40
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5623b111-3a93-4843-8a40-550089a3d3eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7804
x-amzn-requestid: f2bfdd54-e6bf-449f-9731-087e4e848e2e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUmhfF4MoAMFquw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1b7a2-3a06fc0b3cd076b23c947d99;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 23:13:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CVD5IG2xp8meHr_xgY1KgY8PPejuUnKuXPqDpbd6NQv6U1kKVvK0Vg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 08:45:17 GMT
age: 61613
etag: "e3100707a4e9b1d5c30223d31f58cd6ee8ad010b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b8fa26c-af88-46ea-a5c6-1122db65d6d4.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b8fa26c-af88-46ea-a5c6-1122db65d6d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f3605538118d3aaef721a03d482b0f9a
2e2e770d552a05a0f24f4bbb1110266440b2bf76
1011d275125968599a8dd082810deca07e82770efad760b3f1ebf7f74ebab78e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b8fa26c-af88-46ea-a5c6-1122db65d6d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9063
x-amzn-requestid: 8eb82d16-63f8-4e6e-b9fe-1795c7703c03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIgq2EbSoAMFUwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce178-67a0958d7cd1f132605d93be;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:10:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: aTjiRrFeeC6zT_NzPDvKNs-aV__tUniMFfbwxsn1eIf3NQzXxgYETA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:47:53 GMT
age: 65057
etag: "2e2e770d552a05a0f24f4bbb1110266440b2bf76"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157307 Temporary Redirect 0 B URL HTTP/1.1 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-crto-bundle
Referer: http://www.stopdroplol.com/
Origin: http://www.stopdroplol.com
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
content-length: 0
location: https://gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
cache-control: no-cache
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash a19259ce098cbe83323a051ebef54cca
67a2e1c5495937563b39f161a40e5ed00d26e2cd
0ed8a8dfa84d5cbec654f0db4bd21e163a134dee0efbf390bd114a7283106925
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5312
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:10 GMT
Last-Modified: Fri, 27 Jan 2023 00:23:38 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 314
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1&entry=c~Idfs.Rtus.72.Events.FetchError~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1&entry=c~Idfs.Rtus.72.Events.FetchError~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1&entry=c~Idfs.Rtus.72.Events.FetchError~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 01:52:10 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imprammp.taboola.com/st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=66361655&crid=-1&dast=V7KfsCFgNuW0ldOIIfPARuW0ldOIIfPAUAAAAGBuIHJLGbLScu42gtcexma9FgZHMrHC6TWzIbGVYzj3MymE2MQBK72XLiMo7WEsduthYNRja3wuEyuSWzkWE18zgng9nEChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNN2g6HT7XvV73-901p7_hZPkbzn6zXeN3-wV_z-nzV0xms8FuLXPd7c634OkxvS4vzx0AAAAAHv7___8hAAAAACIAAAAAJAAAAAAoAir-LQQuAAAAADD-____NQA-OQjec_b7AwAAAAAEAAAAgAQAAACgBAAAAODk_________z9mgD7zRub_____xqAH4MEH4EEIAADgYogud9DuIdXxnKggtogRAAAAwJaWiubRpE6oLKr-___7rQCuAAACCuHZodeydAcl3sIAAAAExhboYfH7zQ67xu922f________-_2f_ZP5rQ2-h1WhDL6LXaLyAAwNovIAAAm7oBALwFwAUdQSsGg9UFxOwAAAAA7v7____1QMiwnLh2E9_KOFjNBsPNcDBbbFyO1WDlGqycI5f32pASOODnDyz7MIRl9vsOCsrp6TG7DKKi622xO5xmz_0oWrLcLXer0WQxGi2Xm91wMxrsbyAGqwFOxGC5nEwWk91qtBpthrvRbLBAgRhMkKIlq-VyudpsVqvdaDEbbJbDzQYpWrWajTaD4Wo2me12q-FguByNkKIly91ytxpNFqPRcrnZDTejwRBhcrCYeBYj41q3WbncoonHt5Y4B7u1ambyrHwbw8I43LhFr4_p4fFYPBvnFgUDfPYieVqkE5VtONkNJpOJZzdxrJyb4WY5mngsrtHCMRqNFr6JWKI5WaQT2WVfMiwnrt3EtzIOVrPBcDMczBYbl2M1WLkGK-fI5W8OFhPPYmRc6zYrl1s08fjWEudgt1bNTJ6Vb2NYGIcbt-j1MT08Hotn49w3ZrvRbjjaTJb7xmw32g1Hm8ly36EzfFefs1F6PKY8Pm3lOc1sbg6DwmWweH-fi7QZbdyMKm3YYlFdizvXxCr0-_1-v9_v9_v93o3Z4DEYDC_LV1uYOL89y7fa2XgPBkUsEVykE6Hf8nkZXQ6TW3P6G06Wv-HsN1vEEqXpIp3oBX_P6fNXTGazwW4tc93tzrfg6TG9Li_PRSwRnC7SiehlPF3Uf2TIxVw5mIsmc8VqtEoAAAAAAAAAAEuYM28CAAAAcAbAcgEkrGx1gUEAAAAAAAB2zUofavuKNJiKGz-uQL_l8zK6HCa35vQ3nCx_w9lvtjIARFga8-bPBLFWq2UNAAAggA0AABDArZu3AGwm_v___z8OAABARo4eAABAnJ8gd5PlAA!&cmcv=&pix=undefined&cb=1674784330320&uv=3251&tms=1674784330320&abt=ufm&ft=0&unm=WIDGET_ITEM&aure=false&agl=1&cirid=1769be84-b176-40df-aaed-26d05fc9206b&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1
151.101.1.44200 OK 436 B URL HTTP/1.1 imprammp.taboola.com/st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=66361655&crid=-1&dast=V7KfsCFgNuW0ldOIIfPARuW0ldOIIfPAUAAAAGBuIHJLGbLScu42gtcexma9FgZHMrHC6TWzIbGVYzj3MymE2MQBK72XLiMo7WEsduthYNRja3wuEyuSWzkWE18zgng9nEChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNN2g6HT7XvV73-901p7_hZPkbzn6zXeN3-wV_z-nzV0xms8FuLXPd7c634OkxvS4vzx0AAAAAHv7___8hAAAAACIAAAAAJAAAAAAoAir-LQQuAAAAADD-____NQA-OQjec_b7AwAAAAAEAAAAgAQAAACgBAAAAODk_________z9mgD7zRub_____xqAH4MEH4EEIAADgYogud9DuIdXxnKggtogRAAAAwJaWiubRpE6oLKr-___7rQCuAAACCuHZodeydAcl3sIAAAAExhboYfH7zQ67xu922f________-_2f_ZP5rQ2-h1WhDL6LXaLyAAwNovIAAAm7oBALwFwAUdQSsGg9UFxOwAAAAA7v7____1QMiwnLh2E9_KOFjNBsPNcDBbbFyO1WDlGqycI5f32pASOODnDyz7MIRl9vsOCsrp6TG7DKKi622xO5xmz_0oWrLcLXer0WQxGi2Xm91wMxrsbyAGqwFOxGC5nEwWk91qtBpthrvRbLBAgRhMkKIlq-VyudpsVqvdaDEbbJbDzQYpWrWajTaD4Wo2me12q-FguByNkKIly91ytxpNFqPRcrnZDTejwRBhcrCYeBYj41q3WbncoonHt5Y4B7u1ambyrHwbw8I43LhFr4_p4fFYPBvnFgUDfPYieVqkE5VtONkNJpOJZzdxrJyb4WY5mngsrtHCMRqNFr6JWKI5WaQT2WVfMiwnrt3EtzIOVrPBcDMczBYbl2M1WLkGK-fI5W8OFhPPYmRc6zYrl1s08fjWEudgt1bNTJ6Vb2NYGIcbt-j1MT08Hotn49w3ZrvRbjjaTJb7xmw32g1Hm8ly36EzfFefs1F6PKY8Pm3lOc1sbg6DwmWweH-fi7QZbdyMKm3YYlFdizvXxCr0-_1-v9_v9_v93o3Z4DEYDC_LV1uYOL89y7fa2XgPBkUsEVykE6Hf8nkZXQ6TW3P6G06Wv-HsN1vEEqXpIp3oBX_P6fNXTGazwW4tc93tzrfg6TG9Li_PRSwRnC7SiehlPF3Uf2TIxVw5mIsmc8VqtEoAAAAAAAAAAEuYM28CAAAAcAbAcgEkrGx1gUEAAAAAAAB2zUofavuKNJiKGz-uQL_l8zK6HCa35vQ3nCx_w9lvtjIARFga8-bPBLFWq2UNAAAggA0AABDArZu3AGwm_v___z8OAABARo4eAABAnJ8gd5PlAA!&cmcv=&pix=undefined&cb=1674784330320&uv=3251&tms=1674784330320&abt=ufm&ft=0&unm=WIDGET_ITEM&aure=false&agl=1&cirid=1769be84-b176-40df-aaed-26d05fc9206b&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1
IP 151.101.1.44:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (738), with no line terminators
Hash 447acff9582d8837c61ed924cb811290
d30c591bbf174bb729d4bafb78967c90435c9104
1976132b896e9df95c58b38a89c5d8465ee83e3ad6b6925bb5a7ccbad0aa04ed
GET /st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=66361655&crid=-1&dast=V7KfsCFgNuW0ldOIIfPARuW0ldOIIfPAUAAAAGBuIHJLGbLScu42gtcexma9FgZHMrHC6TWzIbGVYzj3MymE2MQBK72XLiMo7WEsduthYNRja3wuEyuSWzkWE18zgng9nEChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNN2g6HT7XvV73-901p7_hZPkbzn6zXeN3-wV_z-nzV0xms8FuLXPd7c634OkxvS4vzx0AAAAAHv7___8hAAAAACIAAAAAJAAAAAAoAir-LQQuAAAAADD-____NQA-OQjec_b7AwAAAAAEAAAAgAQAAACgBAAAAODk_________z9mgD7zRub_____xqAH4MEH4EEIAADgYogud9DuIdXxnKggtogRAAAAwJaWiubRpE6oLKr-___7rQCuAAACCuHZodeydAcl3sIAAAAExhboYfH7zQ67xu922f________-_2f_ZP5rQ2-h1WhDL6LXaLyAAwNovIAAAm7oBALwFwAUdQSsGg9UFxOwAAAAA7v7____1QMiwnLh2E9_KOFjNBsPNcDBbbFyO1WDlGqycI5f32pASOODnDyz7MIRl9vsOCsrp6TG7DKKi622xO5xmz_0oWrLcLXer0WQxGi2Xm91wMxrsbyAGqwFOxGC5nEwWk91qtBpthrvRbLBAgRhMkKIlq-VyudpsVqvdaDEbbJbDzQYpWrWajTaD4Wo2me12q-FguByNkKIly91ytxpNFqPRcrnZDTejwRBhcrCYeBYj41q3WbncoonHt5Y4B7u1ambyrHwbw8I43LhFr4_p4fFYPBvnFgUDfPYieVqkE5VtONkNJpOJZzdxrJyb4WY5mngsrtHCMRqNFr6JWKI5WaQT2WVfMiwnrt3EtzIOVrPBcDMczBYbl2M1WLkGK-fI5W8OFhPPYmRc6zYrl1s08fjWEudgt1bNTJ6Vb2NYGIcbt-j1MT08Hotn49w3ZrvRbjjaTJb7xmw32g1Hm8ly36EzfFefs1F6PKY8Pm3lOc1sbg6DwmWweH-fi7QZbdyMKm3YYlFdizvXxCr0-_1-v9_v9_v93o3Z4DEYDC_LV1uYOL89y7fa2XgPBkUsEVykE6Hf8nkZXQ6TW3P6G06Wv-HsN1vEEqXpIp3oBX_P6fNXTGazwW4tc93tzrfg6TG9Li_PRSwRnC7SiehlPF3Uf2TIxVw5mIsmc8VqtEoAAAAAAAAAAEuYM28CAAAAcAbAcgEkrGx1gUEAAAAAAAB2zUofavuKNJiKGz-uQL_l8zK6HCa35vQ3nCx_w9lvtjIARFga8-bPBLFWq2UNAAAggA0AABDArZu3AGwm_v___z8OAABARo4eAABAnJ8gd5PlAA!&cmcv=&pix=undefined&cb=1674784330320&uv=3251&tms=1674784330320&abt=ufm&ft=0&unm=WIDGET_ITEM&aure=false&agl=1&cirid=1769be84-b176-40df-aaed-26d05fc9206b&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1 HTTP/1.1
Host: imprammp.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Content-Type: text/html;charset=ISO-8859-1
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 01:52:10 GMT
Via: 1.1 varnish
X-Served-By: cache-bma1625-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1674784330.479638,VS0,VE30
Vary: Accept-Encoding
transfer-encoding: chunked
secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?gdpr=1&p=15414&us_privacy=1---&endpoint=
104.110.14.155301 Moved Permanently 0 B URL HTTP/2 secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?gdpr=1&p=15414&us_privacy=1---&endpoint=
IP 104.110.14.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utils/xapi/multi-sync.html?gdpr=1&p=15414&us_privacy=1---&endpoint= HTTP/1.1
Host: secure-assets.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-match.taboola.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?gdpr=1&p=15414&us_privacy=1---&endpoint=
date: Fri, 27 Jan 2023 01:52:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=733&height=412&pubid=169497&tagid=953497&crid=-1&noaop=3&sortOrderType=0&cb=1674784330336&mimes=5,10,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=1&pv=1497&pt=-1377852819&tz=0&viewable=true&ddast=V7KfsCFgNuW0ldOIIfPARuW0ldOIIfPAUAAAAGBuIHJLGbLScu42gtcexma9FgZHMrHC6TWzIbGVYzj3MymE2MQBK72XLiMo7WEsduthYNRja3wuEyuSWzkWE18zgng9nEChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNN2g6HT7XvV73-901p7_hZPkbzn6zXeN3-wV_z-nzV0xms8FuLXPd7c634OkxvS4vzx0AAAAAHv7___8hAAAAACIAAAAAJAAAAAAoAir-LQQuAAAAADD-____NQA-OQjec_b7AwAAAAAEAAAAgAQAAACgBAAAAODk_________z9mgD7zRub_____xqAH4MEH4EEIAADgYogud9DuIdXxnKggtogRAAAAwJaWiubRpE6oLKr-___7rQCuAAACCuHZodeydAcl3sIAAAAExhboYfH7zQ67xu922f________-_2f_ZP5rQ2-h1WhDL6LXaLyAAwNovIAAAm7oBALwFwAUdQSsGg9UFxOwAAAAA7v7____1QMiwnLh2E9_KOFjNBsPNcDBbbFyO1WDlGqycI5f32pASOODnDyz7MIRl9vsOCsrp6TG7DKKi622xO5xmz_0oWrLcLXer0WQxGi2Xm91wMxrsbyAGqwFOxGC5nEwWk91qtBpthrvRbLBAgRhMkKIlq-VyudpsVqvdaDEbbJbDzQYpWrWajTaD4Wo2me12q-FguByNkKIly91ytxpNFqPRcrnZDTejwRBhcrCYeBYj41q3WbncoonHt5Y4B7u1ambyrHwbw8I43LhFr4_p4fFYPBvnFgUDfPYieVqkE5VtONkNJpOJZzdxrJyb4WY5mngsrtHCMRqNFr6JWKI5WaQT2WVfMiwnrt3EtzIOVrPBcDMczBYbl2M1WLkGK-fI5W8OFhPPYmRc6zYrl1s08fjWEudgt1bNTJ6Vb2NYGIcbt-j1MT08Hotn49w3ZrvRbjjaTJb7xmw32g1Hm8ly36EzfFefs1F6PKY8Pm3lOc1sbg6DwmWweH-fi7QZbdyMKm3YYlFdizvXxCr0-_1-v9_v9_v93o3Z4DEYDC_LV1uYOL89y7fa2XgPBkUsEVykE6Hf8nkZXQ6TW3P6G06Wv-HsN1vEEqXpIp3oBX_P6fNXTGazwW4tc93tzrfg6TG9Li_PRSwRnC7SiehlPF3Uf2TIxVw5mIsmc8VqtEoAAAAAAAAAAEuYM28CAAAAcAbAcgEkrGx1gUEAAAAAAAB2zUofavuKNJiKGz-uQL_l8zK6HCa35vQ3nCx_w9lvtjIARFga8-bPBLFWq2UNAAAggA0AABDArZu3AGwm_v___z8OAABARo4eAABAnJ8gd5PlAA!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=6&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&abtst=ufm&mPre=0.033&cirf=https%3A%2F%2Fwww.stopdroplol.com&en=1
151.101.1.44200 OK 516 B URL HTTP/1.1 wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=733&height=412&pubid=169497&tagid=953497&crid=-1&noaop=3&sortOrderType=0&cb=1674784330336&mimes=5,10,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=1&pv=1497&pt=-1377852819&tz=0&viewable=true&ddast=V7KfsCFgNuW0ldOIIfPARuW0ldOIIfPAUAAAAGBuIHJLGbLScu42gtcexma9FgZHMrHC6TWzIbGVYzj3MymE2MQBK72XLiMo7WEsduthYNRja3wuEyuSWzkWE18zgng9nEChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNN2g6HT7XvV73-901p7_hZPkbzn6zXeN3-wV_z-nzV0xms8FuLXPd7c634OkxvS4vzx0AAAAAHv7___8hAAAAACIAAAAAJAAAAAAoAir-LQQuAAAAADD-____NQA-OQjec_b7AwAAAAAEAAAAgAQAAACgBAAAAODk_________z9mgD7zRub_____xqAH4MEH4EEIAADgYogud9DuIdXxnKggtogRAAAAwJaWiubRpE6oLKr-___7rQCuAAACCuHZodeydAcl3sIAAAAExhboYfH7zQ67xu922f________-_2f_ZP5rQ2-h1WhDL6LXaLyAAwNovIAAAm7oBALwFwAUdQSsGg9UFxOwAAAAA7v7____1QMiwnLh2E9_KOFjNBsPNcDBbbFyO1WDlGqycI5f32pASOODnDyz7MIRl9vsOCsrp6TG7DKKi622xO5xmz_0oWrLcLXer0WQxGi2Xm91wMxrsbyAGqwFOxGC5nEwWk91qtBpthrvRbLBAgRhMkKIlq-VyudpsVqvdaDEbbJbDzQYpWrWajTaD4Wo2me12q-FguByNkKIly91ytxpNFqPRcrnZDTejwRBhcrCYeBYj41q3WbncoonHt5Y4B7u1ambyrHwbw8I43LhFr4_p4fFYPBvnFgUDfPYieVqkE5VtONkNJpOJZzdxrJyb4WY5mngsrtHCMRqNFr6JWKI5WaQT2WVfMiwnrt3EtzIOVrPBcDMczBYbl2M1WLkGK-fI5W8OFhPPYmRc6zYrl1s08fjWEudgt1bNTJ6Vb2NYGIcbt-j1MT08Hotn49w3ZrvRbjjaTJb7xmw32g1Hm8ly36EzfFefs1F6PKY8Pm3lOc1sbg6DwmWweH-fi7QZbdyMKm3YYlFdizvXxCr0-_1-v9_v9_v93o3Z4DEYDC_LV1uYOL89y7fa2XgPBkUsEVykE6Hf8nkZXQ6TW3P6G06Wv-HsN1vEEqXpIp3oBX_P6fNXTGazwW4tc93tzrfg6TG9Li_PRSwRnC7SiehlPF3Uf2TIxVw5mIsmc8VqtEoAAAAAAAAAAEuYM28CAAAAcAbAcgEkrGx1gUEAAAAAAAB2zUofavuKNJiKGz-uQL_l8zK6HCa35vQ3nCx_w9lvtjIARFga8-bPBLFWq2UNAAAggA0AABDArZu3AGwm_v___z8OAABARo4eAABAnJ8gd5PlAA!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=6&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&abtst=ufm&mPre=0.033&cirf=https%3A%2F%2Fwww.stopdroplol.com&en=1
IP 151.101.1.44:0
File type ASCII text, with very long lines (1416), with no line terminators
Hash 3055409a469823aa1708e6d726b29b6f
091d8167318e8ede4db3bd693014d29e60fbc19b
5d9e16522c34bc0e26dd84457b7264195dbd186b92606d5a7dfb663242b34dc1
POST /VideoBidRequestHandlerServlet?oid=15&width=733&height=412&pubid=169497&tagid=953497&crid=-1&noaop=3&sortOrderType=0&cb=1674784330336&mimes=5,10,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=1&pv=1497&pt=-1377852819&tz=0&viewable=true&ddast=V7KfsCFgNuW0ldOIIfPARuW0ldOIIfPAUAAAAGBuIHJLGbLScu42gtcexma9FgZHMrHC6TWzIbGVYzj3MymE2MQBK72XLiMo7WEsduthYNRja3wuEyuSWzkWE18zgng9nEChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNN2g6HT7XvV73-901p7_hZPkbzn6zXeN3-wV_z-nzV0xms8FuLXPd7c634OkxvS4vzx0AAAAAHv7___8hAAAAACIAAAAAJAAAAAAoAir-LQQuAAAAADD-____NQA-OQjec_b7AwAAAAAEAAAAgAQAAACgBAAAAODk_________z9mgD7zRub_____xqAH4MEH4EEIAADgYogud9DuIdXxnKggtogRAAAAwJaWiubRpE6oLKr-___7rQCuAAACCuHZodeydAcl3sIAAAAExhboYfH7zQ67xu922f________-_2f_ZP5rQ2-h1WhDL6LXaLyAAwNovIAAAm7oBALwFwAUdQSsGg9UFxOwAAAAA7v7____1QMiwnLh2E9_KOFjNBsPNcDBbbFyO1WDlGqycI5f32pASOODnDyz7MIRl9vsOCsrp6TG7DKKi622xO5xmz_0oWrLcLXer0WQxGi2Xm91wMxrsbyAGqwFOxGC5nEwWk91qtBpthrvRbLBAgRhMkKIlq-VyudpsVqvdaDEbbJbDzQYpWrWajTaD4Wo2me12q-FguByNkKIly91ytxpNFqPRcrnZDTejwRBhcrCYeBYj41q3WbncoonHt5Y4B7u1ambyrHwbw8I43LhFr4_p4fFYPBvnFgUDfPYieVqkE5VtONkNJpOJZzdxrJyb4WY5mngsrtHCMRqNFr6JWKI5WaQT2WVfMiwnrt3EtzIOVrPBcDMczBYbl2M1WLkGK-fI5W8OFhPPYmRc6zYrl1s08fjWEudgt1bNTJ6Vb2NYGIcbt-j1MT08Hotn49w3ZrvRbjjaTJb7xmw32g1Hm8ly36EzfFefs1F6PKY8Pm3lOc1sbg6DwmWweH-fi7QZbdyMKm3YYlFdizvXxCr0-_1-v9_v9_v93o3Z4DEYDC_LV1uYOL89y7fa2XgPBkUsEVykE6Hf8nkZXQ6TW3P6G06Wv-HsN1vEEqXpIp3oBX_P6fNXTGazwW4tc93tzrfg6TG9Li_PRSwRnC7SiehlPF3Uf2TIxVw5mIsmc8VqtEoAAAAAAAAAAEuYM28CAAAAcAbAcgEkrGx1gUEAAAAAAAB2zUofavuKNJiKGz-uQL_l8zK6HCa35vQ3nCx_w9lvtjIARFga8-bPBLFWq2UNAAAggA0AABDArZu3AGwm_v___z8OAABARo4eAABAnJ8gd5PlAA!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=6&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&abtst=ufm&mPre=0.033&cirf=https%3A%2F%2Fwww.stopdroplol.com&en=1 HTTP/1.1
Host: wf.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/
Content-type: text/plain
Content-Length: 117
Origin: http://www.stopdroplol.com
Connection: keep-alive
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Content-Type: application/json;charset=utf-8
MachineId: 1489
Pragma: no-cache
Cache-Control: no-cache,must-revalidate,no-store,max-age=0,s-maxage=0
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Access-Control-Allow-Origin: http://www.stopdroplol.com
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 01:52:10 GMT
Via: 1.1 varnish
X-Served-By: cache-bma1640-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1674784330.494604,VS0,VE89
Vary: Accept-Encoding
transfer-encoding: chunked
vidstat.taboola.com/vpaid/units/32_5_1/assets/css/cmOsUnit.css
151.101.129.44200 OK 9.0 kB URL HTTP/1.1 vidstat.taboola.com/vpaid/units/32_5_1/assets/css/cmOsUnit.css
IP 151.101.129.44:0
Hash 11c8e95b6d717b4f81b0e8aeef43a2af
74f3cd68a4b0a12f690aa373cca8b96afe5ae545
fcf686accd7798965ad167d08eb888199f8b87b73426ff440aa17ca10bc4b401
GET /vpaid/units/32_5_1/assets/css/cmOsUnit.css HTTP/1.1
Host: vidstat.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/
Connection: keep-alive
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 8956
Content-Type: text/css
Last-Modified: Mon, 23 Jan 2023 10:08:47 GMT
ETag: "0d6a67e2248705242168906b25f06d14"
x-amz-meta-ctime: 1674468526
x-amz-meta-mode: 33188
x-amz-meta-gid: 0
x-amz-meta-uid: 0
x-amz-meta-mtime: 1674468525
Server: AmazonS3
Via: 1.1 d7969a7dfe0a063d186d3c72531d67be.cloudfront.net (CloudFront), 1.1 varnish
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: qFYAp3AtUc3SUUA8jxhBS56YRAyqyex8LtaTen4ANtC6cfQeikUrjA==
Cache-Control: public, max-age=2592000
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 01:52:10 GMT
Age: 315733
X-Served-By: cache-bma1667-BMA
X-Cache: Hit from cloudfront, HIT
X-Cache-Hits: 15664
X-Timer: S1674784331.606314,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, OPTIONS, HEAD
Access-Control-Allow-Headers: *
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash cbe9d3d1b4795e18354dd1fd4c135711
3b5cc42a567734613b747828403bfa1f6b30659e
0ac2fbfc41db7a7e682dee897db5f2c898dbdeb4b32d80ee19b4877c3bcb111a
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:52:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 31 Jan 2023 00:09:40 GMT
ETag: "3b5cc42a567734613b747828403bfa1f6b30659e"
Last-Modified: Fri, 27 Jan 2023 00:09:41 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2239
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78fdd8f27f8eb512-OSL
eus.rubiconproject.com/usync.html?gdpr=1&p=15414&us_privacy=1---&endpoint=
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?gdpr=1&p=15414&us_privacy=1---&endpoint=
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?gdpr=1&p=15414&us_privacy=1---&endpoint= HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://am-match.taboola.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Fri, 27 Jan 2023 01:52:10 GMT
Connection: keep-alive
Vary: Accept-Encoding
eus.rubiconproject.com/usync.html?gdpr=1&p=15414&us_privacy=1---&endpoint=
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?gdpr=1&p=15414&us_privacy=1---&endpoint=
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?gdpr=1&p=15414&us_privacy=1---&endpoint= HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://imprammp.taboola.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Fri, 27 Jan 2023 01:52:10 GMT
Connection: keep-alive
Vary: Accept-Encoding
vidstat.taboola.com/vpaid/units/32_5_1/infra/cmTagWIDGET_ITEM.js
151.101.129.44200 OK 166 kB URL HTTP/1.1 vidstat.taboola.com/vpaid/units/32_5_1/infra/cmTagWIDGET_ITEM.js
IP 151.101.129.44:0
File type Unicode text, UTF-8 text, with very long lines (65489), with no line terminators
Size 166 kB (166548 bytes)
Hash 2fd8b55e561e4cd36ff2b960b3d86eec
6dc606a6f8632758b9fb6d9e14d934b53e56c3be
4573c181ee5765ef842d47aa4440b2a2af45f401749cb73bc7ec94ca186f912b
GET /vpaid/units/32_5_1/infra/cmTagWIDGET_ITEM.js HTTP/1.1
Host: vidstat.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/
Origin: http://www.stopdroplol.com
Connection: keep-alive
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 166548
Content-Type: application/javascript
Last-Modified: Mon, 23 Jan 2023 10:07:04 GMT
ETag: "faab225bb94d7af03e7f4390657ace29"
x-amz-meta-ctime: 1674468423
x-amz-meta-mode: 33188
x-amz-meta-gid: 0
x-amz-meta-uid: 0
x-amz-meta-mtime: 1674468422
Server: AmazonS3
Via: 1.1 e15d64214925ae012e1d711871cc6452.cloudfront.net (CloudFront), 1.1 varnish
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: 7zguMScgjf3R_e3FK_eHiDNY3lX9LS2rLwEIzIjAPw0_mHkQ381__g==
Cache-Control: public, max-age=2592000
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 01:52:10 GMT
Age: 304338
X-Served-By: cache-bma1663-BMA
X-Cache: Hit from cloudfront, HIT
X-Cache-Hits: 70
X-Timer: S1674784331.630004,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, OPTIONS, HEAD
Access-Control-Allow-Headers: *
eus.rubiconproject.com/usync.js
104.88.9.101200 OK 10 kB URL HTTP/1.1 eus.rubiconproject.com/usync.js
IP 104.88.9.101:0
File type ASCII text, with very long lines (18573)
Hash c1af05efaf469b405840b25655c6a6b9
97cfe74adeb79d23701f541b57fe2805062c8985
2027e8fa10c090ed9e9086f48ba3511d9bbd1dcd4202600baef0c3952a9a3322
GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/usync.html?gdpr=1&p=15414&us_privacy=1---&endpoint=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Thu, 26 Jan 2023 07:41:46 GMT
Content-Encoding: gzip
Content-Length: 10037
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=21007
Expires: Fri, 27 Jan 2023 07:42:17 GMT
Date: Fri, 27 Jan 2023 01:52:10 GMT
Connection: keep-alive
Vary: Accept-Encoding
match.adsrvr.org/track/cmf/generic?gdpr=1&ttd_pid=054f32o&us_privacy=1---&ttd_tpi=1
52.223.40.198200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?gdpr=1&ttd_pid=054f32o&us_privacy=1---&ttd_tpi=1
IP 52.223.40.198:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?gdpr=1&ttd_pid=054f32o&us_privacy=1---&ttd_tpi=1 HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-match.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 01:52:10 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
cti.w55c.net/ct/cms-2c-rubicon.html?gdpr=1&us_privacy=1---
192.229.233.53200 OK 13 kB URL HTTP/2 cti.w55c.net/ct/cms-2c-rubicon.html?gdpr=1&us_privacy=1---
IP 192.229.233.53:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (53556)
Hash 8974e4d91b50a8be2c3f32001ba7d48d
24538387df9c9f0811c7d275c419d909fb850954
ebdff3f1eb36e3953db7b49208c2b46079113e731db92b9f8b73d719c1e0b49f
GET /ct/cms-2c-rubicon.html?gdpr=1&us_privacy=1--- HTTP/1.1
Host: cti.w55c.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 74708
cache-control: no-cache, must-revalidate
content-type: text/html
date: Fri, 27 Jan 2023 01:52:10 GMT
etag: "3055990060+gzip"
expires: Fri, 01 Jan 1990 00:00:00 GMT
last-modified: Thu, 14 Oct 2021 17:36:30 GMT
p3p: policyref="https://cts.w55c.net/ct/p3p_policy_ref.xml", CP="UNI PUR COM INT STA OTC STP OUR CUR TAIo COR DSP NOI"
pragma: no-cache
server: ECS (ska/F708)
strict-transport-security: max-age=2592000; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
content-length: 12841
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ea2565480c02d9e75d9f35791f38c610
17b82d3c1dc70536188da112defa5208736387a6
26c8b0ebc4ac6b62ba6bc40807261a64aed265aad5e2cb23833f1aa52ff2bb98
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3170
Cache-Control: max-age=86859
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:10 GMT
Etag: "63d1d234-1d7"
Expires: Sat, 28 Jan 2023 01:59:49 GMT
Last-Modified: Thu, 26 Jan 2023 01:07:00 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash b9d0b64af053c0c91106fc44523a389b
a62b750647acae635392275329688e03ab3ff7b0
580746fa66a3bfa4092f647f62c01b23b15be148ab83f3b68d089d1d2a60672c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=147188
Date: Fri, 27 Jan 2023 01:52:10 GMT
Etag: "63d2b4ad-1d7"
Expires: Sat, 28 Jan 2023 18:45:18 GMT
Last-Modified: Thu, 26 Jan 2023 17:13:17 GMT
Server: ECS (bsa/EB18)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Xmod696IFchPeitPgsEHiO05oOruMKVKA-AiMcT38TYxhqSl-3P38Q==
Age: 5521
pixel.rubiconproject.com/exchange/sync.php?p=15414&gdpr=1&us_privacy=1---&gdpr=1&us_privacy=1---
213.19.162.90204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/exchange/sync.php?p=15414&gdpr=1&us_privacy=1---&gdpr=1&us_privacy=1---
IP 213.19.162.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/sync.php?p=15414&gdpr=1&us_privacy=1---&gdpr=1&us_privacy=1--- HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 17c962550296893d145ef1b8078fc6d6
Content-Type: image/gif
vidstat.taboola.com/vpaid/vPlayer/player/v14.9.7/OvaMediaPlayer.js
151.101.129.44200 OK 105 kB URL HTTP/1.1 vidstat.taboola.com/vpaid/vPlayer/player/v14.9.7/OvaMediaPlayer.js
IP 151.101.129.44:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size 105 kB (105243 bytes)
Hash c563f094427338936c99eeb86dd67231
b05c208723d36f39f504b3f361151cafd85f01e7
e985963e07be7b6b517482e43a80b209ff5ab4f9b8489f5813a80332d2c63f2b
GET /vpaid/vPlayer/player/v14.9.7/OvaMediaPlayer.js HTTP/1.1
Host: vidstat.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/
Connection: keep-alive
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 105243
Content-Type: application/javascript
Last-Modified: Sun, 22 Jan 2023 06:32:22 GMT
ETag: "dce756c5128740f31866e7af5be211d2"
x-amz-meta-ctime: 1674369141
x-amz-meta-mode: 33188
x-amz-meta-gid: 0
x-amz-meta-uid: 0
x-amz-meta-mtime: 1674369141
Server: AmazonS3
Via: 1.1 abe7c423e3f506d9a86c5f57fbc5a762.cloudfront.net (CloudFront), 1.1 varnish
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: 3BWFE-r_yKRA--i31CYqgYauStKFdMFTErzBViAoz-GCiJaUb7CGRA==
Cache-Control: public, max-age=2592000
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 01:52:10 GMT
Age: 415129
X-Served-By: cache-bma1667-BMA
X-Cache: Hit from cloudfront, HIT
X-Cache-Hits: 28656
X-Timer: S1674784331.948410,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, OPTIONS, HEAD
Access-Control-Allow-Headers: *
vidstatb.taboola.com/vid/blackScreen5.mp4
151.101.193.44206 Partial Content 91 kB URL HTTP/1.1 vidstatb.taboola.com/vid/blackScreen5.mp4
IP 151.101.193.44:0
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Hash b2b087fe4ae638c533731c347fcd4df8
62851c888c21bb51cc04f13b6fc0451279fe0425
0407dafc112212a135d1aa4dd9b40ba0208c6bb6b1959f5535af093254189d66
GET /vid/blackScreen5.mp4 HTTP/1.1
Host: vidstatb.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: http://www.stopdroplol.com/
Range: bytes=0-
Connection: keep-alive
HTTP/1.1 206 Partial Content
Connection: keep-alive
Content-Length: 90784
Content-Type: video/mp4
Last-Modified: Sun, 02 Jul 2017 20:40:57 GMT
ETag: "b2b087fe4ae638c533731c347fcd4df8"
x-amz-meta-mode: 33188
x-amz-meta-gid: 0
x-amz-meta-uid: 0
x-amz-meta-mtime: 1497790207
Server: AmazonS3
Via: 1.1 9803a30a87f1ec1047cb2b8ad5ecc43e.cloudfront.net (CloudFront), 1.1 varnish
X-Amz-Cf-Pop: ARN56-P1
X-Amz-Cf-Id: gopM2XYfUoVUFmJXQ0440-QEF6IoAyvdLK0EUOquu3M35zK6ZGLwLg==
Cache-Control: public, max-age=2592000
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 01:52:11 GMT
Age: 3327950
X-Served-By: cache-bma1658-BMA
X-Cache: Hit from cloudfront, HIT
X-Cache-Hits: 425765
X-Timer: S1674784331.013482,VS0,VE0
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, OPTIONS, HEAD
Access-Control-Allow-Headers: *
Content-Range: bytes 0-90783/90784
am-match.taboola.com/sync?dast=V7KfsCFgNuW0ldOIIfPARuW0ldOIIfPAUAAAAGBuIHJLGbLScu42gtcexma9FgZHMrHC6TWzIbGVYzj3MymE2MQBK72XLiMo7WEsduthYNRja3wuEyuSWzkWE18zgng9nEChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNN2g6HT7XvV73-901p7_hZPkbzn6zXeN3-wV_z-nzV0xms8FuLXPd7c634OkxvS4vzx0AAAAAHv7___8hAAAAACIAAAAAJAAAAAAoAir-LQQuAAAAADD-____NQA-OQjec_b7AwAAAAAEAAAAgAQAAACgBAAAAODk_________z9mgD7zRub_____xqAH4MEH4EEIAADgYogud9DuIdXxnKggtogRAAAAwJaWiubRpE6oLKr-___7rQCuAAACCuHZodeydAcl3sIAAAAExhboYfH7zQ67xu922f________-_2f_ZP5rQ2-h1WhDL6LXaLyAAwNovIAAAm7oBALwFwAUdQSsGg9UFxOwAAAAA7v7____1QMiwnLh2E9_KOFjNBsPNcDBbbFyO1WDlGqycI5f32pASOODnDyz7MIRl9vsOCsrp6TG7DKKi622xO5xmz_0oWrLcLXer0WQxGi2Xm91wMxrsbyAGqwFOxGC5nEwWk91qtBpthrvRbLBAgRhMkKIlq-VyudpsVqvdaDEbbJbDzQYpWrWajTaD4Wo2me12q-FguByNkKIly91ytxpNFqPRcrnZDTejwRBhcrCYeBYj41q3WbncoonHt5Y4B7u1ambyrHwbw8I43LhFr4_p4fFYPBvnFgUDfPYieVqkE5VtONkNJpOJZzdxrJyb4WY5mngsrtHCMRqNFr6JWKI5WaQT2WVfMiwnrt3EtzIOVrPBcDMczBYbl2M1WLkGK-fI5W8OFhPPYmRc6zYrl1s08fjWEudgt1bNTJ6Vb2NYGIcbt-j1MT08Hotn49w3ZrvRbjjaTJb7xmw32g1Hm8ly36EzfFefs1F6PKY8Pm3lOc1sbg6DwmWweH-fi7QZbdyMKm3YYlFdizvXxCr0-_1-v9_v9_v93o3Z4DEYDC_LV1uYOL89y7fa2XgPBkUsEVykE6Hf8nkZXQ6TW3P6G06Wv-HsN1vEEqXpIp3oBX_P6fNXTGazwW4tc93tzrfg6TG9Li_PRSwRnC7SiehlPF3Uf2TIxVw5mIsmc8VqtEoAAAAAAAAAAEuYM28CAAAAcAbAcgEkrGx1gUEAAAAAAAB2zUofavuKNJiKGz-uQL_l8zK6HCa35vQ3nCx_w9lvtjIARFga8-bPBLFWq2UNAAAggA0AABDArZu3AGwm_v___z8OAABARo4eAABAnJ8gd5PlAA!&excid=22&docw=0&cijs=1&nlb=false
141.226.228.48200 OK 634 B URL HTTP/2 am-match.taboola.com/sync?dast=V7KfsCFgNuW0ldOIIfPARuW0ldOIIfPAUAAAAGBuIHJLGbLScu42gtcexma9FgZHMrHC6TWzIbGVYzj3MymE2MQBK72XLiMo7WEsduthYNRja3wuEyuSWzkWE18zgng9nEChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNN2g6HT7XvV73-901p7_hZPkbzn6zXeN3-wV_z-nzV0xms8FuLXPd7c634OkxvS4vzx0AAAAAHv7___8hAAAAACIAAAAAJAAAAAAoAir-LQQuAAAAADD-____NQA-OQjec_b7AwAAAAAEAAAAgAQAAACgBAAAAODk_________z9mgD7zRub_____xqAH4MEH4EEIAADgYogud9DuIdXxnKggtogRAAAAwJaWiubRpE6oLKr-___7rQCuAAACCuHZodeydAcl3sIAAAAExhboYfH7zQ67xu922f________-_2f_ZP5rQ2-h1WhDL6LXaLyAAwNovIAAAm7oBALwFwAUdQSsGg9UFxOwAAAAA7v7____1QMiwnLh2E9_KOFjNBsPNcDBbbFyO1WDlGqycI5f32pASOODnDyz7MIRl9vsOCsrp6TG7DKKi622xO5xmz_0oWrLcLXer0WQxGi2Xm91wMxrsbyAGqwFOxGC5nEwWk91qtBpthrvRbLBAgRhMkKIlq-VyudpsVqvdaDEbbJbDzQYpWrWajTaD4Wo2me12q-FguByNkKIly91ytxpNFqPRcrnZDTejwRBhcrCYeBYj41q3WbncoonHt5Y4B7u1ambyrHwbw8I43LhFr4_p4fFYPBvnFgUDfPYieVqkE5VtONkNJpOJZzdxrJyb4WY5mngsrtHCMRqNFr6JWKI5WaQT2WVfMiwnrt3EtzIOVrPBcDMczBYbl2M1WLkGK-fI5W8OFhPPYmRc6zYrl1s08fjWEudgt1bNTJ6Vb2NYGIcbt-j1MT08Hotn49w3ZrvRbjjaTJb7xmw32g1Hm8ly36EzfFefs1F6PKY8Pm3lOc1sbg6DwmWweH-fi7QZbdyMKm3YYlFdizvXxCr0-_1-v9_v9_v93o3Z4DEYDC_LV1uYOL89y7fa2XgPBkUsEVykE6Hf8nkZXQ6TW3P6G06Wv-HsN1vEEqXpIp3oBX_P6fNXTGazwW4tc93tzrfg6TG9Li_PRSwRnC7SiehlPF3Uf2TIxVw5mIsmc8VqtEoAAAAAAAAAAEuYM28CAAAAcAbAcgEkrGx1gUEAAAAAAAB2zUofavuKNJiKGz-uQL_l8zK6HCa35vQ3nCx_w9lvtjIARFga8-bPBLFWq2UNAAAggA0AABDArZu3AGwm_v___z8OAABARo4eAABAnJ8gd5PlAA!&excid=22&docw=0&cijs=1&nlb=false
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash 7192725265b997c89d9bf883fc43d649
5547b19492fb7c69308d2c9c94e7da7a326e0186
7f594c766ad3dd7550c90a42a91110ecdb3e94cae0de474e2ca033c1d03202a6
GET /sync?dast=V7KfsCFgNuW0ldOIIfPARuW0ldOIIfPAUAAAAGBuIHJLGbLScu42gtcexma9FgZHMrHC6TWzIbGVYzj3MymE2MQBK72XLiMo7WEsduthYNRja3wuEyuSWzkWE18zgng9nEChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNN2g6HT7XvV73-901p7_hZPkbzn6zXeN3-wV_z-nzV0xms8FuLXPd7c634OkxvS4vzx0AAAAAHv7___8hAAAAACIAAAAAJAAAAAAoAir-LQQuAAAAADD-____NQA-OQjec_b7AwAAAAAEAAAAgAQAAACgBAAAAODk_________z9mgD7zRub_____xqAH4MEH4EEIAADgYogud9DuIdXxnKggtogRAAAAwJaWiubRpE6oLKr-___7rQCuAAACCuHZodeydAcl3sIAAAAExhboYfH7zQ67xu922f________-_2f_ZP5rQ2-h1WhDL6LXaLyAAwNovIAAAm7oBALwFwAUdQSsGg9UFxOwAAAAA7v7____1QMiwnLh2E9_KOFjNBsPNcDBbbFyO1WDlGqycI5f32pASOODnDyz7MIRl9vsOCsrp6TG7DKKi622xO5xmz_0oWrLcLXer0WQxGi2Xm91wMxrsbyAGqwFOxGC5nEwWk91qtBpthrvRbLBAgRhMkKIlq-VyudpsVqvdaDEbbJbDzQYpWrWajTaD4Wo2me12q-FguByNkKIly91ytxpNFqPRcrnZDTejwRBhcrCYeBYj41q3WbncoonHt5Y4B7u1ambyrHwbw8I43LhFr4_p4fFYPBvnFgUDfPYieVqkE5VtONkNJpOJZzdxrJyb4WY5mngsrtHCMRqNFr6JWKI5WaQT2WVfMiwnrt3EtzIOVrPBcDMczBYbl2M1WLkGK-fI5W8OFhPPYmRc6zYrl1s08fjWEudgt1bNTJ6Vb2NYGIcbt-j1MT08Hotn49w3ZrvRbjjaTJb7xmw32g1Hm8ly36EzfFefs1F6PKY8Pm3lOc1sbg6DwmWweH-fi7QZbdyMKm3YYlFdizvXxCr0-_1-v9_v9_v93o3Z4DEYDC_LV1uYOL89y7fa2XgPBkUsEVykE6Hf8nkZXQ6TW3P6G06Wv-HsN1vEEqXpIp3oBX_P6fNXTGazwW4tc93tzrfg6TG9Li_PRSwRnC7SiehlPF3Uf2TIxVw5mIsmc8VqtEoAAAAAAAAAAEuYM28CAAAAcAbAcgEkrGx1gUEAAAAAAAB2zUofavuKNJiKGz-uQL_l8zK6HCa35vQ3nCx_w9lvtjIARFga8-bPBLFWq2UNAAAggA0AABDArZu3AGwm_v___z8OAABARo4eAABAnJ8gd5PlAA!&excid=22&docw=0&cijs=1&nlb=false HTTP/1.1
Host: am-match.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 01:52:10 GMT
content-type: text/html;charset=ISO-8859-1
machineid: 3407
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png
151.101.1.44200 OK 254 B URL HTTP/1.1 cdn.taboola.com/libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png
IP 151.101.1.44:0
File type PNG image data, 12 x 12, 8-bit gray+alpha, non-interlaced\012- data
Hash dfa7b52c86e56bd67fa4002f6ed19854
7df722645482433c2b5c8d8ab4272a9874592f27
f68019eb4b4e5933301d4ee75969e0cb94ed8333bf514630fa749eb9c3e483c9
GET /libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/
Connection: keep-alive
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 254
x-amz-id-2: c3AK0F63Rmz1U+ZkwDZRH6hJiJRTGpZB8kTBPWz0vwbg9siBxtMOH8aEqr1NtVeNHtLhLAVUR9E=
x-amz-request-id: 4JKSR0YA3KVH073N
x-amz-replication-status: COMPLETED
Last-Modified: Wed, 24 Jun 2015 07:14:11 GMT
ETag: "dfa7b52c86e56bd67fa4002f6ed19854"
x-amz-meta-s3cmd-attrs: uid:0/gname:root/uname:root/gid:0/mode:33188/mtime:1377415166/atime:1435052450/md5:dfa7b52c86e56bd67fa4002f6ed19854/ctime:1422381567
x-amz-version-id: hL.cyLD7Q4TL5ceY.7JQwF9m5IYI8mkC
Content-Type: image/png
Server: AmazonS3
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 01:52:11 GMT
Via: 1.1 varnish
Age: 8261
X-Served-By: cache-bma1660-BMA
X-Cache: HIT
X-Cache-Hits: 239
X-Timer: S1674784331.125070,VS0,VE0
Cache-Control: private,max-age=31536000
abp: 17
token.rubiconproject.com/token?pid=36584&gdpr=1&us_privacy=1---
69.173.144.138204 No Content 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=36584&gdpr=1&us_privacy=1---
IP 69.173.144.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=36584&gdpr=1&us_privacy=1--- HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: a66cbf3142c6ef39e3614b84a34262cf
token.rubiconproject.com/token?pid=2249&pt=n&gdpr=1&us_privacy=1---
69.173.144.138302 Found 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=2249&pt=n&gdpr=1&us_privacy=1---
IP 69.173.144.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=2249&pt=n&gdpr=1&us_privacy=1--- HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 302 Found
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 4b510f0cc5fcbc9800016ef543086418
Location: https://cm.g.doubleclick.net/pixel?google_nid=rubicon&google_hm=&gdpr=1&us_privacy=1---
content-length: 0
token.rubiconproject.com/token?pid=25470&gdpr=1&us_privacy=1---
69.173.144.138204 No Content 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=25470&gdpr=1&us_privacy=1---
IP 69.173.144.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=25470&gdpr=1&us_privacy=1--- HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: a66cbf3142c6ef39e3614b84a34262cf
trc.taboola.com/horsehead-stopdroplol/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=1
151.101.1.44204 No Content 0 B URL HTTP/2 trc.taboola.com/horsehead-stopdroplol/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=1
IP 151.101.1.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /horsehead-stopdroplol/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=1 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 5547
Origin: http://www.stopdroplol.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: http://www.stopdroplol.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Fri, 27 Jan 2023 01:52:11 GMT
via: 1.1 varnish
x-served-by: cache-bma1636-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674784331.124716,VS0,VE90
x-vcl-time-ms: 90
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7b8dcc42710b2f68c0ec782d2b2a3ae3
b865da423aa26e774270b8e3942b6fbe76793133
2da0fcf67d020f7c563946fca7ade89803cbe7cfe484f123640f8a9950b3f2b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash d37e5c451b4dde4ffc3c30e7f13d3326
fdac556fee2a8c2df99d89680ec66f7d042a0fb9
b46749dbba7ff39cd85f2ba407f35b42e10e43e51274c81a3cd54a5a109d302c
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 27 Jan 2023 01:52:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 26 Jan 2023 21:58:19 GMT
Expires: Fri, 27 Jan 2023 21:58:19 GMT
ETag: "fdac556fee2a8c2df99d89680ec66f7d042a0fb9"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
cm.g.doubleclick.net/pixel?google_nid=rubicon&google_hm=&gdpr=1&us_privacy=1---
142.250.74.34302 Found 311 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=rubicon&google_hm=&gdpr=1&us_privacy=1---
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 69956e1dab0ec7b7cc2ce241988bc563
4a219bf0c65cecd2ec38827c744c6742d95fee72
f7fd2d5100b84e077766cc91221b4da3feef9501429330ca35e921ad5c6253e6
GET /pixel?google_nid=rubicon&google_hm=&gdpr=1&us_privacy=1--- HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=rubicon&google_hm=&gdpr=1&us_privacy=1---&google_tc=
date: Fri, 27 Jan 2023 01:52:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 311
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 27-Jan-2023 02:07:11 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ums.acuityplatform.com/tum?umid=2&gdpr=1&us_privacy=1---
154.59.122.79302 Found 0 B URL HTTP/1.1 ums.acuityplatform.com/tum?umid=2&gdpr=1&us_privacy=1---
IP 154.59.122.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tum?umid=2&gdpr=1&us_privacy=1--- HTTP/1.1
Host: ums.acuityplatform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
content-length: 0
access-control-allow-origin: *
set-cookie: auid=736258138619; Domain=.acuityplatform.com; Expires=Sat, 27-Jan-2024 01:52:11 GMT; Path=/; SameSite=None; Secure
aum="OikKAfqbdXNlck1hdGNoQnlVc2VyTWF0Y2hpbmdJZE1hcPqAMvqNdXNlck1hdGNoaW5nSWTEkWxhc3REcm9wVGltZU1pbGxpcyUBQnwdTS+smGxhc3RTdWNjZXNzZnVsTWF0Y2hNaWxsaXMlAUJ8HU0vrI90aGlyZFBhcnR5VXNlcklkIfv7hnZlcnNpb27C+w=="; Version=1; Domain=.acuityplatform.com; Max-Age=31536000; Expires=Sat, 27-Jan-2024 01:52:11 GMT; Path=/; SameSite=None; Secure
location: https://pixel.rubiconproject.com/tap.php?v=5672&nid=2082&put=736258138619&expires=30
pixel.rubiconproject.com/tap.php?v=5672&nid=2082&put=736258138619&expires=30
213.19.162.90204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=5672&nid=2082&put=736258138619&expires=30
IP 213.19.162.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=5672&nid=2082&put=736258138619&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 17c962550296893d145ef1b8078fc6d6
Content-Type: image/gif
cm.g.doubleclick.net/pixel?google_nid=rubicon&google_hm=&gdpr=1&us_privacy=1---&google_tc=
142.250.74.34200 OK 170 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=rubicon&google_hm=&gdpr=1&us_privacy=1---&google_tc=
IP 142.250.74.34:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash e7673c60af825466f83d46da72ca1635
fc0fcbee0835709ba2d28798a612bfd687903fb5
0b8a20373c6dd04e091902226d922b3688143a8938afb9d283d889de7b55ceb5
GET /pixel?google_nid=rubicon&google_hm=&gdpr=1&us_privacy=1---&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
date: Fri, 27 Jan 2023 01:52:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
server: HTTP server (unknown)
content-length: 170
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7b8dcc42710b2f68c0ec782d2b2a3ae3
b865da423aa26e774270b8e3942b6fbe76793133
2da0fcf67d020f7c563946fca7ade89803cbe7cfe484f123640f8a9950b3f2b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 01:52:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 0fac328da1f996105915b748eb891f8a
ab1a16a852751b35d9b47fd5f525d9f21e47369b
6e1d7fa8bed7873094d94d20a35537e0e2f4c15b08c51c0633ca867075724380
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:52:11 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 01:55:53 GMT
Expires: Wed, 01 Feb 2023 01:55:52 GMT
Etag: "ab1a16a852751b35d9b47fd5f525d9f21e47369b"
Cache-Control: max-age=431620,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78fdd8f58b6dfab8-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 44369a627241523e4c1072642d968ce1
bbc608ce23c6fca27865967858b9a28438ab8b69
69e91b1c46a29147ba3c3dde85e011b5f9834599a98488e47c9b86db8abc8877
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 01:52:11 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 24 Jan 2023 13:56:49 GMT
Expires: Tue, 31 Jan 2023 13:56:48 GMT
Etag: "bbc608ce23c6fca27865967858b9a28438ab8b69"
Cache-Control: max-age=388476,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78fdd8f5bba3b51d-OSL
x.bidswitch.net/sync?gdpr=1&us_privacy=1---&ssp=taboola
18.195.202.31200 OK 43 B URL HTTP/2 x.bidswitch.net/sync?gdpr=1&us_privacy=1---&ssp=taboola
IP 18.195.202.31:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?gdpr=1&us_privacy=1---&ssp=taboola HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-match.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 01:52:11 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=186028&nid=4112&put=OPTOUT&expires=30
213.19.162.90204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=186028&nid=4112&put=OPTOUT&expires=30
IP 213.19.162.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=186028&nid=4112&put=OPTOUT&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 17c962550296893d145ef1b8078fc6d6
Content-Type: image/gif
s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr=1&us_privacy=1---
52.46.128.147302 Found 0 B URL HTTP/1.1 s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr=1&us_privacy=1---
IP 52.46.128.147:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr=1&us_privacy=1--- HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Fri, 27 Jan 2023 01:52:11 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: YPJQXNZFS5M7HR9MRX7Y
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr=1&us_privacy=1---&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 957e5b41791173a293d88757018d9f96
a72419cf2c5a88b19c7e5f5c34439250c3605458
41c476a3b5ca02fb72e0145bf17d21d7c748b1921b04bfef8c281da45ef9cf09
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 27 Jan 2023 01:52:11 GMT
Last-Modified: Fri, 27 Jan 2023 00:46:41 GMT
Server: ECS (bsa/EB18)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7n-7q0_u7s8dLVchHv7Ay0rzPndRr0lY6UNF0wlldlZ9GFm023irkw==
Age: 3931
s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr=1&us_privacy=1---&dcc=t
52.46.128.147200 OK 43 B URL HTTP/1.1 s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr=1&us_privacy=1---&dcc=t
IP 52.46.128.147:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6851dbf491ae442da3314f19e8aff085
ecfec27263608c4ae7cd4f8e0cebb1b061df2ac3
c21e2c1246fe45a6750ae6208db2b5965ff6ed63eb80d2ecec3be9c83813428e
GET /dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&gdpr=1&us_privacy=1---&dcc=t HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Fri, 27 Jan 2023 01:52:11 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: 51WHT4F5STWTWM29VKP4
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
www.storygize.net/ccm/729e4e94-63c3-438d-8ce4-184eb34e703f?gdpr=1&us_privacy=1---
34.214.58.41204 No Content 0 B URL HTTP/1.1 www.storygize.net/ccm/729e4e94-63c3-438d-8ce4-184eb34e703f?gdpr=1&us_privacy=1---
IP 34.214.58.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ccm/729e4e94-63c3-438d-8ce4-184eb34e703f?gdpr=1&us_privacy=1--- HTTP/1.1
Host: www.storygize.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
cache-control: no-cache, no-store, must-revalidate
Content-Type: image/gif
expires: 0
P3P: CP ALL ADM DEV PSAi COM OUR OTRo STP IND ONL
Pragma: no-cache
Connection: keep-alive
cdn.taboola.com/scripts/cds-pips.js
151.101.1.44200 OK 1.3 kB URL HTTP/2 cdn.taboola.com/scripts/cds-pips.js
IP 151.101.1.44:0
File type ASCII text, with very long lines (3545), with no line terminators
Hash 780c5c514014519ce276709f515905a0
04fe86d00b9c9077effe05171d066d243ecab221
015db06150b62ad2ad533883652174ebb6f07e24a7147fdac01a0ccd266e3f30
GET /scripts/cds-pips.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 2KBeU0d7OyPXtZDYUoIqlTBmhGhsve90tjYoemCxISjKQrNgcxT28sPXVt5KfJt+6r7dFoJgA8g=
x-amz-request-id: NFWGDQGY1WQ95XHE
x-amz-replication-status: COMPLETED
last-modified: Wed, 12 Oct 2022 13:57:57 GMT
etag: "383fa66d2a0a09f4a6e64a9593ad43bb"
x-amz-version-id: z5FoayaLm_Bvew3pbkytkoHczFCvkPwT
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Fri, 27 Jan 2023 01:52:12 GMT
via: 1.1 varnish
age: 2567
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 662
x-timer: S1674784332.004726,VS0,VE0
vary: Accept-Encoding
abp: 17
cache-control: private, max-age=3600
content-length: 1340
X-Firefox-Spdy: h2
pips.taboola.com/
151.101.65.44200 OK 4 B IP 151.101.65.44:0
File type ASCII text, with no line terminators
Hash 6c3e226b4d4795d518ab341b0824ec29
eef19c54306daa69eda49c0272623bdb5e2b341f
fb329000228cc5a24c264c57139de8bf854fc86fc18bf1c04ab61a2b5cb4b921
GET / HTTP/1.1
Host: pips.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Origin: http://www.stopdroplol.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
access-control-allow-methods: GET
access-control-allow-origin: http://www.stopdroplol.com
accept-ranges: bytes
date: Fri, 27 Jan 2023 01:52:12 GMT
via: 1.1 varnish
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 0
cache-control: no-store
content-length: 4
X-Firefox-Spdy: h2
wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=733&height=412&pubid=169497&tagid=953497&crid=-1&noaop=3&sortOrderType=0&cb=1674784335940&mimes=5,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=2&pv=1497&pt=709711385&tz=0&viewable=true&ddast=V7KfsCFgNuW0ldOIIfPARuW0ldOIIfPAUAAAAGBuIHJLGbLScu42gtcexma9FgZHMrHC6TWzIbGVYzj3MymE2MQBK72XLiMo7WEsduthYNRja3wuEyuSWzkWE18zgng9nEChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNN2g6HT7XvV73-901p7_hZPkbzn6zXeN3-wV_z-nzV0xms8FuLXPd7c634OkxvS4vzx0AAAAAHv7___8hAAAAACIAAAAAJAAAAAAoAir-LQQuAAAAADD-____NQA-OQjec_b7AwAAAAAEAAAAgAQAAACgBAAAAODk_________z9mgD7zRub_____xqAH4MEH4EEIAADgYogud9DuIdXxnKggtogRAAAAwJaWiubRpE6oLKr-___7rQCuAAACCuHZodeydAcl3sIAAAAExhboYfH7zQ67xu922f________-_2f_ZP5rQ2-h1WhDL6LXaLyAAwNovIAAAm7oBALwFwAUdQSsGg9UFxOwAAAAA7v7____1QMiwnLh2E9_KOFjNBsPNcDBbbFyO1WDlGqycI5f32pASOODnDyz7MIRl9vsOCsrp6TG7DKKi622xO5xmz_0oWrLcLXer0WQxGi2Xm91wMxrsbyAGqwFOxGC5nEwWk91qtBpthrvRbLBAgRhMkKIlq-VyudpsVqvdaDEbbJbDzQYpWrWajTaD4Wo2me12q-FguByNkKIly91ytxpNFqPRcrnZDTejwRBhcrCYeBYj41q3WbncoonHt5Y4B7u1ambyrHwbw8I43LhFr4_p4fFYPBvnFgUDfPYieVqkE5VtONkNJpOJZzdxrJyb4WY5mngsrtHCMRqNFr6JWKI5WaQT2WVfMiwnrt3EtzIOVrPBcDMczBYbl2M1WLkGK-fI5W8OFhPPYmRc6zYrl1s08fjWEudgt1bNTJ6Vb2NYGIcbt-j1MT08Hotn49w3ZrvRbjjaTJb7xmw32g1Hm8ly36EzfFefs1F6PKY8Pm3lOc1sbg6DwmWweH-fi7QZbdyMKm3YYlFdizvXxCr0-_1-v9_v9_v93o3Z4DEYDC_LV1uYOL89y7fa2XgPBkUsEVykE6Hf8nkZXQ6TW3P6G06Wv-HsN1vEEqXpIp3oBX_P6fNXTGazwW4tc93tzrfg6TG9Li_PRSwRnC7SiehlPF3Uf2TIxVw5mIsmc8VqtEoAAAAAAAAAAEuYM28CAAAAcAbAcgEkrGx1gUEAAAAAAAB2zUofavuKNJiKGz-uQL_l8zK6HCa35vQ3nCx_w9lvtjIARFga8-bPBLFWq2UNAAAggA0AABDArZu3AGwm_v___z8OAABARo4eAABAnJ8gd5PlAA!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=6&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&abtst=ufm_vA&mPre=0.033&cirf=https%3A%2F%2Fwww.stopdroplol.com&en=1
151.101.1.44200 OK 516 B URL HTTP/1.1 wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=733&height=412&pubid=169497&tagid=953497&crid=-1&noaop=3&sortOrderType=0&cb=1674784335940&mimes=5,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=2&pv=1497&pt=709711385&tz=0&viewable=true&ddast=V7KfsCFgNuW0ldOIIfPARuW0ldOIIfPAUAAAAGBuIHJLGbLScu42gtcexma9FgZHMrHC6TWzIbGVYzj3MymE2MQBK72XLiMo7WEsduthYNRja3wuEyuSWzkWE18zgng9nEChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNN2g6HT7XvV73-901p7_hZPkbzn6zXeN3-wV_z-nzV0xms8FuLXPd7c634OkxvS4vzx0AAAAAHv7___8hAAAAACIAAAAAJAAAAAAoAir-LQQuAAAAADD-____NQA-OQjec_b7AwAAAAAEAAAAgAQAAACgBAAAAODk_________z9mgD7zRub_____xqAH4MEH4EEIAADgYogud9DuIdXxnKggtogRAAAAwJaWiubRpE6oLKr-___7rQCuAAACCuHZodeydAcl3sIAAAAExhboYfH7zQ67xu922f________-_2f_ZP5rQ2-h1WhDL6LXaLyAAwNovIAAAm7oBALwFwAUdQSsGg9UFxOwAAAAA7v7____1QMiwnLh2E9_KOFjNBsPNcDBbbFyO1WDlGqycI5f32pASOODnDyz7MIRl9vsOCsrp6TG7DKKi622xO5xmz_0oWrLcLXer0WQxGi2Xm91wMxrsbyAGqwFOxGC5nEwWk91qtBpthrvRbLBAgRhMkKIlq-VyudpsVqvdaDEbbJbDzQYpWrWajTaD4Wo2me12q-FguByNkKIly91ytxpNFqPRcrnZDTejwRBhcrCYeBYj41q3WbncoonHt5Y4B7u1ambyrHwbw8I43LhFr4_p4fFYPBvnFgUDfPYieVqkE5VtONkNJpOJZzdxrJyb4WY5mngsrtHCMRqNFr6JWKI5WaQT2WVfMiwnrt3EtzIOVrPBcDMczBYbl2M1WLkGK-fI5W8OFhPPYmRc6zYrl1s08fjWEudgt1bNTJ6Vb2NYGIcbt-j1MT08Hotn49w3ZrvRbjjaTJb7xmw32g1Hm8ly36EzfFefs1F6PKY8Pm3lOc1sbg6DwmWweH-fi7QZbdyMKm3YYlFdizvXxCr0-_1-v9_v9_v93o3Z4DEYDC_LV1uYOL89y7fa2XgPBkUsEVykE6Hf8nkZXQ6TW3P6G06Wv-HsN1vEEqXpIp3oBX_P6fNXTGazwW4tc93tzrfg6TG9Li_PRSwRnC7SiehlPF3Uf2TIxVw5mIsmc8VqtEoAAAAAAAAAAEuYM28CAAAAcAbAcgEkrGx1gUEAAAAAAAB2zUofavuKNJiKGz-uQL_l8zK6HCa35vQ3nCx_w9lvtjIARFga8-bPBLFWq2UNAAAggA0AABDArZu3AGwm_v___z8OAABARo4eAABAnJ8gd5PlAA!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=6&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&abtst=ufm_vA&mPre=0.033&cirf=https%3A%2F%2Fwww.stopdroplol.com&en=1
IP 151.101.1.44:0
File type ASCII text, with very long lines (1416), with no line terminators
Hash 3055409a469823aa1708e6d726b29b6f
091d8167318e8ede4db3bd693014d29e60fbc19b
5d9e16522c34bc0e26dd84457b7264195dbd186b92606d5a7dfb663242b34dc1
POST /VideoBidRequestHandlerServlet?oid=15&width=733&height=412&pubid=169497&tagid=953497&crid=-1&noaop=3&sortOrderType=0&cb=1674784335940&mimes=5,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=2&pv=1497&pt=709711385&tz=0&viewable=true&ddast=V7KfsCFgNuW0ldOIIfPARuW0ldOIIfPAUAAAAGBuIHJLGbLScu42gtcexma9FgZHMrHC6TWzIbGVYzj3MymE2MQBK72XLiMo7WEsduthYNRja3wuEyuSWzkWE18zgng9nEChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNN2g6HT7XvV73-901p7_hZPkbzn6zXeN3-wV_z-nzV0xms8FuLXPd7c634OkxvS4vzx0AAAAAHv7___8hAAAAACIAAAAAJAAAAAAoAir-LQQuAAAAADD-____NQA-OQjec_b7AwAAAAAEAAAAgAQAAACgBAAAAODk_________z9mgD7zRub_____xqAH4MEH4EEIAADgYogud9DuIdXxnKggtogRAAAAwJaWiubRpE6oLKr-___7rQCuAAACCuHZodeydAcl3sIAAAAExhboYfH7zQ67xu922f________-_2f_ZP5rQ2-h1WhDL6LXaLyAAwNovIAAAm7oBALwFwAUdQSsGg9UFxOwAAAAA7v7____1QMiwnLh2E9_KOFjNBsPNcDBbbFyO1WDlGqycI5f32pASOODnDyz7MIRl9vsOCsrp6TG7DKKi622xO5xmz_0oWrLcLXer0WQxGi2Xm91wMxrsbyAGqwFOxGC5nEwWk91qtBpthrvRbLBAgRhMkKIlq-VyudpsVqvdaDEbbJbDzQYpWrWajTaD4Wo2me12q-FguByNkKIly91ytxpNFqPRcrnZDTejwRBhcrCYeBYj41q3WbncoonHt5Y4B7u1ambyrHwbw8I43LhFr4_p4fFYPBvnFgUDfPYieVqkE5VtONkNJpOJZzdxrJyb4WY5mngsrtHCMRqNFr6JWKI5WaQT2WVfMiwnrt3EtzIOVrPBcDMczBYbl2M1WLkGK-fI5W8OFhPPYmRc6zYrl1s08fjWEudgt1bNTJ6Vb2NYGIcbt-j1MT08Hotn49w3ZrvRbjjaTJb7xmw32g1Hm8ly36EzfFefs1F6PKY8Pm3lOc1sbg6DwmWweH-fi7QZbdyMKm3YYlFdizvXxCr0-_1-v9_v9_v93o3Z4DEYDC_LV1uYOL89y7fa2XgPBkUsEVykE6Hf8nkZXQ6TW3P6G06Wv-HsN1vEEqXpIp3oBX_P6fNXTGazwW4tc93tzrfg6TG9Li_PRSwRnC7SiehlPF3Uf2TIxVw5mIsmc8VqtEoAAAAAAAAAAEuYM28CAAAAcAbAcgEkrGx1gUEAAAAAAAB2zUofavuKNJiKGz-uQL_l8zK6HCa35vQ3nCx_w9lvtjIARFga8-bPBLFWq2UNAAAggA0AABDArZu3AGwm_v___z8OAABARo4eAABAnJ8gd5PlAA!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=6&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&abtst=ufm_vA&mPre=0.033&cirf=https%3A%2F%2Fwww.stopdroplol.com&en=1 HTTP/1.1
Host: wf.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.stopdroplol.com/
Content-type: text/plain
Content-Length: 117
Origin: http://www.stopdroplol.com
Connection: keep-alive
HTTP/1.1 200 OK
Connection: keep-alive
Server: nginx
Content-Type: application/json;charset=utf-8
MachineId: 1435
Pragma: no-cache
Cache-Control: no-cache,must-revalidate,no-store,max-age=0,s-maxage=0
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Access-Control-Allow-Origin: http://www.stopdroplol.com
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Fri, 27 Jan 2023 01:52:16 GMT
Via: 1.1 varnish
X-Served-By: cache-bma1640-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1674784336.074167,VS0,VE106
Vary: Accept-Encoding
transfer-encoding: chunked
maxcdn.bootstrapcdn.com/bootstrap/4.0.0-alpha.2/css/bootstrap.min.css
188.114.99.234200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0-alpha.2/css/bootstrap.min.css
IP 188.114.99.234:0
GET /bootstrap/4.0.0-alpha.2/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Origin: http://www.stopdroplol.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 01:52:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"b00faad199b5b881d17b2cd7fac04a56"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 11/15/2022 10:31:50
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1053
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: ab2f126d0d7b1a1dde1a1ce94365f114
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78fdd8e2ce820afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 01:52:08 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 709006
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=7eluA180M0RITmhlJTJCZkMwOUJGQlhaMUN2czFPZFVEcnZRTk5MRFJ3a3huVTcyUklsaWlaJTJCJTJCTVBtWm13bldNM3pMUTU1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 01:52:09 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=Tit7uF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czFPZFVEcnZRTk5MRFJ3a3huVTcyUkxRQjNBVDBNVjBQeW1ZUTJkUk9PNjA; expires=Wed, 21 Feb 2024 01:52:09 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 316121
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sb.scorecardresearch.com/beacon.js
54.230.111.88200 OK 0 B URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 54.230.111.88:0
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Fri, 27 Jan 2023 01:20:02 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kK0saV25cQ3au48No8EE56szZ9cyYE3_XzE1ny5b3o182F0K__PHgg==
age: 1927
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__en.js
142.250.74.35200 OK 0 B URL HTTP/2 www.gstatic.com/recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__en.js
IP 142.250.74.35:0
GET /recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Origin: http://www.stopdroplol.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 15:41:18 GMT
expires: Wed, 24 Jan 2024 15:41:18 GMT
cache-control: public, max-age=31536000
age: 209451
last-modified: Mon, 16 Jan 2023 01:02:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
trc.taboola.com/horsehead-stopdroplol/trc/3/json?tim=01%3A52%3A09.584<i=deflated&data=%7B%22id%22%3A692%2C%22ii%22%3A%22%2Fposts%2F126607-funny-pictures%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1674745203773%2C%22vi%22%3A1674784329582%2C%22cv%22%3A%2220230126-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.stopdroplol.com%2Fposts%2F126607-funny-pictures%22%2C%22bv%22%3A%220%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22http%3A%2F%2Fwww.stopdroplol.com%2Fposts%2F126607-funny-pictures%22%2C%22vpi%22%3A%22%2Fposts%2F126607-funny-pictures%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A1280%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A939%2C%22dw%22%3A1376%2C%22dh%22%3A2103%2C%22nsid%22%3A%22horsehead-network%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A8%2C%22uim%22%3A%22thumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22cd%22%3A1488.300048828125%2C%22mw%22%3A1110%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Fposts%2F126607-funny-pictures%2CBelow%20Article%20Thumbnails%3Dthumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2
151.101.1.44200 OK 0 B URL HTTP/2 trc.taboola.com/horsehead-stopdroplol/trc/3/json?tim=01%3A52%3A09.584<i=deflated&data=%7B%22id%22%3A692%2C%22ii%22%3A%22%2Fposts%2F126607-funny-pictures%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1674745203773%2C%22vi%22%3A1674784329582%2C%22cv%22%3A%2220230126-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.stopdroplol.com%2Fposts%2F126607-funny-pictures%22%2C%22bv%22%3A%220%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22http%3A%2F%2Fwww.stopdroplol.com%2Fposts%2F126607-funny-pictures%22%2C%22vpi%22%3A%22%2Fposts%2F126607-funny-pictures%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A1280%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A939%2C%22dw%22%3A1376%2C%22dh%22%3A2103%2C%22nsid%22%3A%22horsehead-network%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A8%2C%22uim%22%3A%22thumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22cd%22%3A1488.300048828125%2C%22mw%22%3A1110%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Fposts%2F126607-funny-pictures%2CBelow%20Article%20Thumbnails%3Dthumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2
IP 151.101.1.44:0
GET /horsehead-stopdroplol/trc/3/json?tim=01%3A52%3A09.584<i=deflated&data=%7B%22id%22%3A692%2C%22ii%22%3A%22%2Fposts%2F126607-funny-pictures%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1674745203773%2C%22vi%22%3A1674784329582%2C%22cv%22%3A%2220230126-3-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.stopdroplol.com%2Fposts%2F126607-funny-pictures%22%2C%22bv%22%3A%220%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22http%3A%2F%2Fwww.stopdroplol.com%2Fposts%2F126607-funny-pictures%22%2C%22vpi%22%3A%22%2Fposts%2F126607-funny-pictures%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A1280%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A939%2C%22dw%22%3A1376%2C%22dh%22%3A2103%2C%22nsid%22%3A%22horsehead-network%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A8%2C%22uim%22%3A%22thumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22cd%22%3A1488.300048828125%2C%22mw%22%3A1110%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Fposts%2F126607-funny-pictures%2CBelow%20Article%20Thumbnails%3Dthumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Content-Type: text/plain
Origin: http://www.stopdroplol.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: http://www.stopdroplol.com
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Fri, 27 Jan 2023 01:52:09 GMT
via: 1.1 varnish
x-served-by: cache-bma1636-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674784330.737691,VS0,VE238
vary: Accept-Encoding
x-vcl-time-ms: 238
X-Firefox-Spdy: h2
taboola-supply-partners.tremorhub.com/sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo
52.73.141.213200 OK 0 B URL HTTP/2 taboola-supply-partners.tremorhub.com/sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo
IP 52.73.141.213:0
GET /sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo HTTP/1.1
Host: taboola-supply-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-match.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 01:52:10 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/rubicon?gdpr=1&us_privacy=1---
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/rubicon?gdpr=1&us_privacy=1---
IP 213.19.147.44:0
GET /usersync2/rubicon?gdpr=1&us_privacy=1--- HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 27 Jan 2023 01:52:11 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
location: https://pixel.rubiconproject.com/tap.php?v=186028&nid=4112&put=OPTOUT&expires=30
etag: OPTOUT
X-Firefox-Spdy: h2
am-match.taboola.com/sync?dast=V7KfsCFgNuW0ldOIIfPARuW0ldOIIfPAUAAAAGBuIHJLGbLScu42gtcexma9FgZHMrHC6TWzIbGVYzj3MymE2MQBK72XLiMo7WEsduthYNRja3wuEyuSWzkWE18zgng9nEChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNN2g6HT7XvV73-901p7_hZPkbzn6zXeN3-wV_z-nzV0xms8FuLXPd7c634OkxvS4vzx0AAAAAHv7___8hAAAAACIAAAAAJAAAAAAoAir-LQQuAAAAADD-____NQA-OQjec_b7AwAAAAAEAAAAgAQAAACgBAAAAODk_________z9mgD7zRub_____xqAH4MEH4EEIAADgYogud9DuIdXxnKggtogRAAAAwJaWiubRpE6oLKr-___7rQCuAAACCuHZodeydAcl3sIAAAAExhboYfH7zQ67xu922f________-_2f_ZP5rQ2-h1WhDL6LXaLyAAwNovIAAAm7oBALwFwAUdQSsGg9UFxOwAAAAA7v7____1QMiwnLh2E9_KOFjNBsPNcDBbbFyO1WDlGqycI5f32pASOODnDyz7MIRl9vsOCsrp6TG7DKKi622xO5xmz_0oWrLcLXer0WQxGi2Xm91wMxrsbyAGqwFOxGC5nEwWk91qtBpthrvRbLBAgRhMkKIlq-VyudpsVqvdaDEbbJbDzQYpWrWajTaD4Wo2me12q-FguByNkKIly91ytxpNFqPRcrnZDTejwRBhcrCYeBYj41q3WbncoonHt5Y4B7u1ambyrHwbw8I43LhFr4_p4fFYPBvnFgUDfPYieVqkE5VtONkNJpOJZzdxrJyb4WY5mngsrtHCMRqNFr6JWKI5WaQT2WVfMiwnrt3EtzIOVrPBcDMczBYbl2M1WLkGK-fI5W8OFhPPYmRc6zYrl1s08fjWEudgt1bNTJ6Vb2NYGIcbt-j1MT08Hotn49w3ZrvRbjjaTJb7xmw32g1Hm8ly36EzfFefs1F6PKY8Pm3lOc1sbg6DwmWweH-fi7QZbdyMKm3YYlFdizvXxCr0-_1-v9_v9_v93o3Z4DEYDC_LV1uYOL89y7fa2XgPBkUsEVykE6Hf8nkZXQ6TW3P6G06Wv-HsN1vEEqXpIp3oBX_P6fNXTGazwW4tc93tzrfg6TG9Li_PRSwRnC7SiehlPF3Uf2TIxVw5mIsmc8VqtEoAAAAAAAAAAEuYM28CAAAAcAbAcgEkrGx1gUEAAAAAAAB2zUofavuKNJiKGz-uQL_l8zK6HCa35vQ3nCx_w9lvtjIARFga8-bPBLFWq2UNAAAggA0AABDArZu3AGwm_v___z8OAABARo4eAABAnJ8gd5PlAA!&excid=22&docw=0&cijs=1&nlb=false
141.226.228.48200 OK 0 B URL HTTP/2 am-match.taboola.com/sync?dast=V7KfsCFgNuW0ldOIIfPARuW0ldOIIfPAUAAAAGBuIHJLGbLScu42gtcexma9FgZHMrHC6TWzIbGVYzj3MymE2MQBK72XLiMo7WEsduthYNRja3wuEyuSWzkWE18zgng9nEChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNN2g6HT7XvV73-901p7_hZPkbzn6zXeN3-wV_z-nzV0xms8FuLXPd7c634OkxvS4vzx0AAAAAHv7___8hAAAAACIAAAAAJAAAAAAoAir-LQQuAAAAADD-____NQA-OQjec_b7AwAAAAAEAAAAgAQAAACgBAAAAODk_________z9mgD7zRub_____xqAH4MEH4EEIAADgYogud9DuIdXxnKggtogRAAAAwJaWiubRpE6oLKr-___7rQCuAAACCuHZodeydAcl3sIAAAAExhboYfH7zQ67xu922f________-_2f_ZP5rQ2-h1WhDL6LXaLyAAwNovIAAAm7oBALwFwAUdQSsGg9UFxOwAAAAA7v7____1QMiwnLh2E9_KOFjNBsPNcDBbbFyO1WDlGqycI5f32pASOODnDyz7MIRl9vsOCsrp6TG7DKKi622xO5xmz_0oWrLcLXer0WQxGi2Xm91wMxrsbyAGqwFOxGC5nEwWk91qtBpthrvRbLBAgRhMkKIlq-VyudpsVqvdaDEbbJbDzQYpWrWajTaD4Wo2me12q-FguByNkKIly91ytxpNFqPRcrnZDTejwRBhcrCYeBYj41q3WbncoonHt5Y4B7u1ambyrHwbw8I43LhFr4_p4fFYPBvnFgUDfPYieVqkE5VtONkNJpOJZzdxrJyb4WY5mngsrtHCMRqNFr6JWKI5WaQT2WVfMiwnrt3EtzIOVrPBcDMczBYbl2M1WLkGK-fI5W8OFhPPYmRc6zYrl1s08fjWEudgt1bNTJ6Vb2NYGIcbt-j1MT08Hotn49w3ZrvRbjjaTJb7xmw32g1Hm8ly36EzfFefs1F6PKY8Pm3lOc1sbg6DwmWweH-fi7QZbdyMKm3YYlFdizvXxCr0-_1-v9_v9_v93o3Z4DEYDC_LV1uYOL89y7fa2XgPBkUsEVykE6Hf8nkZXQ6TW3P6G06Wv-HsN1vEEqXpIp3oBX_P6fNXTGazwW4tc93tzrfg6TG9Li_PRSwRnC7SiehlPF3Uf2TIxVw5mIsmc8VqtEoAAAAAAAAAAEuYM28CAAAAcAbAcgEkrGx1gUEAAAAAAAB2zUofavuKNJiKGz-uQL_l8zK6HCa35vQ3nCx_w9lvtjIARFga8-bPBLFWq2UNAAAggA0AABDArZu3AGwm_v___z8OAABARo4eAABAnJ8gd5PlAA!&excid=22&docw=0&cijs=1&nlb=false
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sync?dast=V7KfsCFgNuW0ldOIIfPARuW0ldOIIfPAUAAAAGBuIHJLGbLScu42gtcexma9FgZHMrHC6TWzIbGVYzj3MymE2MQBK72XLiMo7WEsduthYNRja3wuEyuSWzkWE18zgng9nEChjCMvt9BwXl9PSYXQZR0fW22B1Os-cNN2g6HT7XvV73-901p7_hZPkbzn6zXeN3-wV_z-nzV0xms8FuLXPd7c634OkxvS4vzx0AAAAAHv7___8hAAAAACIAAAAAJAAAAAAoAir-LQQuAAAAADD-____NQA-OQjec_b7AwAAAAAEAAAAgAQAAACgBAAAAODk_________z9mgD7zRub_____xqAH4MEH4EEIAADgYogud9DuIdXxnKggtogRAAAAwJaWiubRpE6oLKr-___7rQCuAAACCuHZodeydAcl3sIAAAAExhboYfH7zQ67xu922f________-_2f_ZP5rQ2-h1WhDL6LXaLyAAwNovIAAAm7oBALwFwAUdQSsGg9UFxOwAAAAA7v7____1QMiwnLh2E9_KOFjNBsPNcDBbbFyO1WDlGqycI5f32pASOODnDyz7MIRl9vsOCsrp6TG7DKKi622xO5xmz_0oWrLcLXer0WQxGi2Xm91wMxrsbyAGqwFOxGC5nEwWk91qtBpthrvRbLBAgRhMkKIlq-VyudpsVqvdaDEbbJbDzQYpWrWajTaD4Wo2me12q-FguByNkKIly91ytxpNFqPRcrnZDTejwRBhcrCYeBYj41q3WbncoonHt5Y4B7u1ambyrHwbw8I43LhFr4_p4fFYPBvnFgUDfPYieVqkE5VtONkNJpOJZzdxrJyb4WY5mngsrtHCMRqNFr6JWKI5WaQT2WVfMiwnrt3EtzIOVrPBcDMczBYbl2M1WLkGK-fI5W8OFhPPYmRc6zYrl1s08fjWEudgt1bNTJ6Vb2NYGIcbt-j1MT08Hotn49w3ZrvRbjjaTJb7xmw32g1Hm8ly36EzfFefs1F6PKY8Pm3lOc1sbg6DwmWweH-fi7QZbdyMKm3YYlFdizvXxCr0-_1-v9_v9_v93o3Z4DEYDC_LV1uYOL89y7fa2XgPBkUsEVykE6Hf8nkZXQ6TW3P6G06Wv-HsN1vEEqXpIp3oBX_P6fNXTGazwW4tc93tzrfg6TG9Li_PRSwRnC7SiehlPF3Uf2TIxVw5mIsmc8VqtEoAAAAAAAAAAEuYM28CAAAAcAbAcgEkrGx1gUEAAAAAAAB2zUofavuKNJiKGz-uQL_l8zK6HCa35vQ3nCx_w9lvtjIARFga8-bPBLFWq2UNAAAggA0AABDArZu3AGwm_v___z8OAABARo4eAABAnJ8gd5PlAA!&excid=22&docw=0&cijs=1&nlb=false HTTP/1.1
Host: am-match.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.stopdroplol.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 01:52:10 GMT
content-type: text/html;charset=ISO-8859-1
machineid: 3401
X-Firefox-Spdy: h2