r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11133
Expires: Mon, 28 Nov 2022 01:31:52 GMT
Date: Sun, 27 Nov 2022 22:26:19 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3216
Cache-Control: max-age=133110
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:19 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 11:24:49 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 22:19:26 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 413
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9943
Expires: Mon, 28 Nov 2022 01:12:02 GMT
Date: Sun, 27 Nov 2022 22:26:19 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: q/rj1f+3YEnIPkB/eqtbIy5/6Idgu9spLcCkA5Qcg32pMoK4DaEVtflAK1eUBSX8GB5CJrQVrIk=
x-amz-request-id: FH7P99Z9RQ4FHKQK
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 21:41:48 GMT
age: 2671
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
amorecriatividade.blogspot.com/2011/06/avaliacao-do-aluno-aee.html
200 OK 23 kB URL HTTP/1.1 amorecriatividade.blogspot.com/2011/06/avaliacao-do-aluno-aee.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7807)
Hash 8ab1bdc2992aa13c4ab655e2cd3bb5d3
fa0f504747ff14695a341cc5074e56163b20778c
304b5f0645ef698801e378de268b5c62cf082bdb43505071edaad2cb6210f339
Analyzer Verdict Alert fortinet Phishing
GET /2011/06/avaliacao-do-aluno-aee.html HTTP/1.1
Host: amorecriatividade.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sun, 27 Nov 2022 22:26:19 GMT
Date: Sun, 27 Nov 2022 22:26:19 GMT
Cache-Control: private, max-age=0
Last-Modified: Tue, 08 Nov 2022 01:46:42 GMT
ETag: W/"ecec2336f60f2c7c9ee176e05cf80ea9e3fc9a7bba503d1ef53b1e8da171103a"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 23396
Server: GSE
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 22:26:19 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
301 Moved Permanently 0 B URL HTTP/1.1 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sun, 27 Nov 2022 22:26:19 GMT
Location: https://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
Cross-Origin-Opener-Policy: same-origin-allow-popups
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
pagead2.googlesyndication.com/pagead/show_ads.js
200 OK 36 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP
File type ASCII text, with very long lines (3577)
Hash e93aa8aca50c136489c62a0599c0ffdb
0f56e6bfc025a4945d158862febed743e05ad0a9
c10724e18408bdfeada6d53e5a77c4cc83badc67fff4cfa225fcc589e15f3134
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Sun, 27 Nov 2022 22:26:19 GMT
Expires: Sun, 27 Nov 2022 22:26:19 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 13930673845493489509
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36278
X-XSS-Protection: 0
amorecriatividade.blogspot.com/js/cookienotice.js
200 OK 2.0 kB URL HTTP/1.1 amorecriatividade.blogspot.com/js/cookienotice.js
IP
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Phishing
GET /js/cookienotice.js HTTP/1.1
Host: amorecriatividade.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/2011/06/avaliacao-do-aluno-aee.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Sun, 27 Nov 2022 22:26:19 GMT
Expires: Sun, 04 Dec 2022 22:26:19 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sun, 27 Nov 2022 20:52:28 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3777052dd051aadd51d7ed0abe02aeb8
ef84205bb29e91e9b0bc1dec2bb1d087937dd74f
5f2c213da2f9b19ecd1a1b8b2eef8c431dad7a587bdb24338741b0848b2228c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ca9a5a187a9301acd15cc891755a13c8
1522515a371821fe1c94ce773898f2e913e03012
469bcc07c9e15d43d093697277d75eaa3199cb3f455b6fd32daaa0153f4e0f98
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3777052dd051aadd51d7ed0abe02aeb8
ef84205bb29e91e9b0bc1dec2bb1d087937dd74f
5f2c213da2f9b19ecd1a1b8b2eef8c431dad7a587bdb24338741b0848b2228c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3777052dd051aadd51d7ed0abe02aeb8
ef84205bb29e91e9b0bc1dec2bb1d087937dd74f
5f2c213da2f9b19ecd1a1b8b2eef8c431dad7a587bdb24338741b0848b2228c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3777052dd051aadd51d7ed0abe02aeb8
ef84205bb29e91e9b0bc1dec2bb1d087937dd74f
5f2c213da2f9b19ecd1a1b8b2eef8c431dad7a587bdb24338741b0848b2228c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 18:12:52 GMT
expires: Wed, 22 Nov 2023 18:12:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 18:53:15 GMT
content-type: text/css
age: 447207
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/icon18_email.gif
200 OK 164 B URL HTTP/2 resources.blogblog.com/img/icon18_email.gif
IP
File type GIF image data, version 89a, 18 x 13\012- data
Hash 36b9f993db1b953f3b9b08040aaf9af4
18248661b307586dc291fd2dff4bb59cf7579475
1258cbe1e2900ec3df11a83a6bb6008d7a833f783a6df80b0d5d45a052ac1466
GET /img/icon18_email.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 164
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 15:02:17 GMT
expires: Tue, 29 Nov 2022 15:02:17 GMT
cache-control: public, max-age=604800
last-modified: Mon, 21 Nov 2022 18:53:15 GMT
content-type: image/gif
age: 458642
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/icon18_edit_allbkg.gif
200 OK 162 B URL HTTP/2 resources.blogblog.com/img/icon18_edit_allbkg.gif
IP
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 14:43:55 GMT
expires: Tue, 29 Nov 2022 14:43:55 GMT
cache-control: public, max-age=604800
last-modified: Mon, 21 Nov 2022 15:52:34 GMT
content-type: image/gif
age: 459744
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img1.blogblog.com/html/buttons/blogger-powerby-blue.gif
200 OK 1.0 kB URL HTTP/2 img1.blogblog.com/html/buttons/blogger-powerby-blue.gif
IP
File type GIF image data, version 89a, 88 x 30\012- data
Hash a9760f09d59ff6575e57cecc878c6ade
32fbb7823860c54ac2fb0639399ec7a42ae6bc32
29ac6786094ff0fb6e51d466cd1745d60e2ce3b3d3cf051edf1fd6ccc2ad69cd
GET /html/buttons/blogger-powerby-blue.gif HTTP/1.1
Host: img1.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 05:23:23 GMT
expires: Wed, 30 Nov 2022 05:23:23 GMT
cache-control: public, max-age=604800
last-modified: Wed, 23 Nov 2022 04:53:50 GMT
content-type: image/gif
age: 406976
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2342155703-widgets.js
200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 16:02:03 GMT
expires: Tue, 21 Nov 2023 16:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 00:52:59 GMT
content-type: text/javascript
age: 541456
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Sun, 27 Nov 2022 22:26:19 GMT
expires: Sun, 27 Nov 2022 22:26:19 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
IP
File type ASCII text, with very long lines (1441)
Hash f60e5037324bf7fd2256c16929886f09
aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde
GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 18:59:43 GMT
expires: Wed, 22 Nov 2023 18:59:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 19:52:12 GMT
content-type: text/javascript
age: 444396
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 1070f987d04f66ed32c3055c234c9912
106e630271a81d058e7cb3c2b659feb17c611388
cdf1aa8aa5ab6b1a46108e12c388d75fa72a4089dd979c2ccb8003d536567d07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
resources.blogblog.com/img/blank.gif
200 OK 43 B URL HTTP/1.1 resources.blogblog.com/img/blank.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /img/blank.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 43
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 16:44:33 GMT
Expires: Tue, 29 Nov 2022 16:44:33 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 21 Nov 2022 19:52:12 GMT
Content-Type: image/gif
Age: 452507
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3777052dd051aadd51d7ed0abe02aeb8
ef84205bb29e91e9b0bc1dec2bb1d087937dd74f
5f2c213da2f9b19ecd1a1b8b2eef8c431dad7a587bdb24338741b0848b2228c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/img/blogger_logo_round_35.png
200 OK 2.5 kB URL HTTP/1.1 www.blogger.com/img/blogger_logo_round_35.png
IP
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 838622483cbfed35380b4705f19d7cca
7de684136affc969a24d61927afc18905cf2fc36
183923f8c8c3960dce8ad9722cf55a30d19b321b721741bd9e2ab6ae1f1ae72a
GET /img/blogger_logo_round_35.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2531
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 03:08:05 GMT
Expires: Wed, 30 Nov 2022 03:08:05 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 16:52:39 GMT
Content-Type: image/png
Age: 415095
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3777052dd051aadd51d7ed0abe02aeb8
ef84205bb29e91e9b0bc1dec2bb1d087937dd74f
5f2c213da2f9b19ecd1a1b8b2eef8c431dad7a587bdb24338741b0848b2228c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP
File type ASCII text, with very long lines (580)
Hash 813b15c3004464f6bd39fd0773b04757
bd2218fe1e647f61132aad70d29cd91fd0416f26
446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 09:56:18 GMT
expires: Thu, 23 Nov 2023 09:56:18 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 390602
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Sun, 27 Nov 2022 10:51:15 GMT
Expires: Sun, 11 Dec 2022 10:51:15 GMT
Cache-Control: public, max-age=1209600
Age: 41705
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 88e42375d2172305f819b892225cf877
674324641f82700172e72fe259ee2241361e2ea1
6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3777052dd051aadd51d7ed0abe02aeb8
ef84205bb29e91e9b0bc1dec2bb1d087937dd74f
5f2c213da2f9b19ecd1a1b8b2eef8c431dad7a587bdb24338741b0848b2228c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/charts/loader.js
200 OK 20 kB URL HTTP/2 www.gstatic.com/charts/loader.js
IP
File type ASCII text, with very long lines (2134)
Hash f3341efa0432876b1697ccec98c33b01
55044e79afbe25d119b7b87dc7b5d1b3ec0c607a
6672904faeb4f203e0109279aa99d88f9e8690d2d696d80309ef50a974f88c77
GET /charts/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 19937
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 21:48:44 GMT
expires: Sun, 27 Nov 2022 22:48:44 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 18:41:30 GMT
content-type: text/javascript
age: 2256
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 88e42375d2172305f819b892225cf877
674324641f82700172e72fe259ee2241361e2ea1
6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/dyn-css/authorization.css?targetBlogID=5109806271484103377&zx=7158a8b3-c0fc-473b-b559-1e8067e423ac
200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=5109806271484103377&zx=7158a8b3-c0fc-473b-b559-1e8067e423ac
IP
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=5109806271484103377&zx=7158a8b3-c0fc-473b-b559-1e8067e423ac HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:20 GMT
last-modified: Sun, 27 Nov 2022 22:26:20 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/_ALsXxsFtGjs/S-kzr3zldoI/AAAAAAAAAOo/iPfpv9Lvimc/w72-h72-p-k-no-nu/lavarmaos.gif
200 OK 2.6 kB URL HTTP/1.1 4.bp.blogspot.com/_ALsXxsFtGjs/S-kzr3zldoI/AAAAAAAAAOo/iPfpv9Lvimc/w72-h72-p-k-no-nu/lavarmaos.gif
IP
File type GIF image data, version 89a, 72 x 72\012- data
Hash c9ad3c6c0e83c6c95f348579a17cf184
568898877f8d26e5e9d6a95059f9a3d97195f9b4
985394eef49ae3bcb27120501531ef4596632d3bca23c7385f91b642d4247bb6
GET /_ALsXxsFtGjs/S-kzr3zldoI/AAAAAAAAAOo/iPfpv9Lvimc/w72-h72-p-k-no-nu/lavarmaos.gif HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v27b"
Expires: Mon, 28 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="lavarmaos.gif"
Content-Type: image/gif
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 27 Nov 2022 22:26:20 GMT
Server: fife
Content-Length: 2597
X-XSS-Protection: 0
2.bp.blogspot.com/_ALsXxsFtGjs/TFB-dJn_AeI/AAAAAAAAAQY/Zdi1XozcNcM/w72-h72-p-k-no-nu/_foto_centro_transito.jpg
200 OK 5.0 kB URL HTTP/1.1 2.bp.blogspot.com/_ALsXxsFtGjs/TFB-dJn_AeI/AAAAAAAAAQY/Zdi1XozcNcM/w72-h72-p-k-no-nu/_foto_centro_transito.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash cae0708fab6b6fe4560a2dbae8ab860d
07399271120cbe9abefb1bb6f712cc53ddb30446
f0dcbe37fe00c0f6f83ee39f560594e86b681790a0e1d6eccf65265cbf0ed86c
GET /_ALsXxsFtGjs/TFB-dJn_AeI/AAAAAAAAAQY/Zdi1XozcNcM/w72-h72-p-k-no-nu/_foto_centro_transito.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v106"
Expires: Mon, 28 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="_foto_centro_transito.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 27 Nov 2022 22:26:20 GMT
Server: fife
Content-Length: 5044
X-XSS-Protection: 0
themes.googleusercontent.com/image?id=1OACCYOE0-eoTRTfsBuX1NMN9nz599ufI1Jh0CggPFA_sK80AGkIr8pLtYRpNUKPmwtEa&options=w1600
301 Moved Permanently 0 B URL HTTP/1.1 themes.googleusercontent.com/image?id=1OACCYOE0-eoTRTfsBuX1NMN9nz599ufI1Jh0CggPFA_sK80AGkIr8pLtYRpNUKPmwtEa&options=w1600
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /image?id=1OACCYOE0-eoTRTfsBuX1NMN9nz599ufI1Jh0CggPFA_sK80AGkIr8pLtYRpNUKPmwtEa&options=w1600 HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sun, 27 Nov 2022 22:26:20 GMT
Location: https://themes.googleusercontent.com/image?id=1OACCYOE0-eoTRTfsBuX1NMN9nz599ufI1Jh0CggPFA_sK80AGkIr8pLtYRpNUKPmwtEa&options=w1600
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
2.bp.blogspot.com/-1hI7Dg5F0Cg/Tw5ild9YOaI/AAAAAAAAAC0/Kpp4QMpyIG8/s35/PC110510.JPG
200 OK 1.5 kB URL HTTP/1.1 2.bp.blogspot.com/-1hI7Dg5F0Cg/Tw5ild9YOaI/AAAAAAAAAC0/Kpp4QMpyIG8/s35/PC110510.JPG
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 35x35, components 3\012- data
Hash ae187417916cd14f00bf91e336721ada
82fc9c88d022b1c64c44ec4b0ae4f5f1e3f0f8c1
ad51d1bd9c47269d0dd7b45239d870a43e5079f0898a40ee589275f2f4791176
GET /-1hI7Dg5F0Cg/Tw5ild9YOaI/AAAAAAAAAC0/Kpp4QMpyIG8/s35/PC110510.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2d"
Expires: Mon, 28 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="PC110510.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 27 Nov 2022 22:26:20 GMT
Server: fife
Content-Length: 1547
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 22:08:54 GMT
cache-control: public,max-age=3600
age: 1046
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
4.bp.blogspot.com/_ALsXxsFtGjs/TAVEkzUl1nI/AAAAAAAAAPc/uPz76GhdLGM/w72-h72-p-k-no-nu/1.jpg
200 OK 4.2 kB URL HTTP/1.1 4.bp.blogspot.com/_ALsXxsFtGjs/TAVEkzUl1nI/AAAAAAAAAPc/uPz76GhdLGM/w72-h72-p-k-no-nu/1.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 7c61d302e5a04728a7cd6f94bf287bf8
8be2736aec67766e5ea8f775e3f5c5210186500e
93ca70f8d0ea163fc5b97700d3a69e459c78b1335d93db45c450b637f8822cc8
GET /_ALsXxsFtGjs/TAVEkzUl1nI/AAAAAAAAAPc/uPz76GhdLGM/w72-h72-p-k-no-nu/1.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vf7"
Expires: Mon, 28 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 27 Nov 2022 22:26:20 GMT
Server: fife
Content-Length: 4179
X-XSS-Protection: 0
www.blogger.com/img/logo-16.png
200 OK 279 B URL HTTP/1.1 www.blogger.com/img/logo-16.png
IP
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 279
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 04:27:52 GMT
Expires: Wed, 30 Nov 2022 04:27:52 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 07:51:00 GMT
Content-Type: image/png
Age: 410308
www.blogblog.com/1kt/transparent/white80.png
200 OK 96 B URL HTTP/1.1 www.blogblog.com/1kt/transparent/white80.png
IP
File type PNG image data, 20 x 20, 1-bit colormap, non-interlaced\012- data
Hash 94a1820903fb1f98de19df188a6ad531
599ad7d04fd5b1fa13f334e95240a5a9f4a66583
6e232a3693a281342acc16b293dddeafcf91579f1b52df2cf22303b17c2a0e57
GET /1kt/transparent/white80.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 96
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 12:39:32 GMT
Expires: Wed, 30 Nov 2022 12:39:32 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 18:51:51 GMT
Content-Type: image/png
Age: 380808
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main
200 OK 75 kB URL HTTP/2 translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main
IP
File type ASCII text, with very long lines (1613)
Hash 110765e1accf41111543c29721c78b52
3eeceb853d592a297162325f20f0420e136c875a
b5fb084ee4491e64fca48643106c0eb338212638caafdad88ff91e0d4198b589
GET /_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 75035
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 00:23:31 GMT
expires: Thu, 23 Nov 2023 00:23:31 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 12 Nov 2022 06:10:12 GMT
content-type: text/javascript; charset=UTF-8
age: 424969
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
translate.googleapis.com/translate_static/css/translateelement.css
200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 21:49:50 GMT
expires: Sun, 27 Nov 2022 22:49:50 GMT
cache-control: public, max-age=3600
age: 2190
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/_ALsXxsFtGjs/TMWNGe4eZsI/AAAAAAAAATY/4Pykp7_Dvrg/w72-h72-p-k-no-nu/taarezameenpe.jpg
200 OK 4.5 kB URL HTTP/1.1 4.bp.blogspot.com/_ALsXxsFtGjs/TMWNGe4eZsI/AAAAAAAAATY/4Pykp7_Dvrg/w72-h72-p-k-no-nu/taarezameenpe.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash fb9382bacf41ad2d60d6f63532ea1544
f84bcdb4f8729f655dedd78b251e552893641e4b
7957207a6c2d7ce5792ff89aeefeaf585204d576699793268a12627ef275d3af
GET /_ALsXxsFtGjs/TMWNGe4eZsI/AAAAAAAAATY/4Pykp7_Dvrg/w72-h72-p-k-no-nu/taarezameenpe.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v136"
Expires: Mon, 28 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="taarezameenpe.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 27 Nov 2022 22:26:20 GMT
Server: fife
Content-Length: 4507
X-XSS-Protection: 0
2.bp.blogspot.com/-NSQw1wNgEc0/TkBkkw5fC_I/AAAAAAAAAVQ/SmZ8kQ30PGQ/w72-h72-p-k-no-nu/arvore_new.jpg
200 OK 4.1 kB URL HTTP/1.1 2.bp.blogspot.com/-NSQw1wNgEc0/TkBkkw5fC_I/AAAAAAAAAVQ/SmZ8kQ30PGQ/w72-h72-p-k-no-nu/arvore_new.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash e043916db7a70b7b3add0b1021dbd60d
aede90cebdd9567dde9240f6e9095e7d0564ab6a
9f8b15b6615c92058ffff80d57e531dfe12651dc89d132d6ecd5f549445b9e48
GET /-NSQw1wNgEc0/TkBkkw5fC_I/AAAAAAAAAVQ/SmZ8kQ30PGQ/w72-h72-p-k-no-nu/arvore_new.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v154"
Expires: Mon, 28 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="arvore_new.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 27 Nov 2022 22:26:20 GMT
Server: fife
Content-Length: 4085
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221110/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Sun, 27 Nov 2022 11:45:52 GMT
expires: Sun, 11 Dec 2022 11:45:52 GMT
cache-control: public, max-age=1209600
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
age: 38428
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8835f987270c3a6655732a8b9f79019d
b526a02966f50407fd20c881616a505ca6693ce3
349663442998cf63d2ff77fdfee46ac572703750f977b4f60e9082307309f7c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adrequisitor-af.uol.com.br/uolafhost.js
200 OK 2.4 kB URL HTTP/1.1 adrequisitor-af.uol.com.br/uolafhost.js
IP
ASN #7162 Universo Online S.A.
File type HTML document, ISO-8859 text
Hash 2ef98dc086f07fc7131c1e9962bf41da
7102996157732b9eadce0f65ce5d8153c8d22f40
f0421f1b01065850b84c6386cf5339e2752aa7c45e6565e94335e58c956691ba
GET /uolafhost.js HTTP/1.1
Host: adrequisitor-af.uol.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 22:26:20 GMT
Server: Apache
Last-Modified: Thu, 23 Jul 2015 15:01:19 GMT
ETag: "a0304-1e07-51b8c28e4adc0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=600
Expires: Sun, 27 Nov 2022 22:36:20 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2411
Keep-Alive: timeout=10, max=500
Connection: Keep-Alive
Content-Type: application/javascript
4.bp.blogspot.com/-vod_83Jh94w/T7UIzzF0sLI/AAAAAAAAAY8/gIMmbXF2tPo/w72-h72-p-k-no-nu/0.JPG
200 OK 4.2 kB URL HTTP/2 4.bp.blogspot.com/-vod_83Jh94w/T7UIzzF0sLI/AAAAAAAAAY8/gIMmbXF2tPo/w72-h72-p-k-no-nu/0.JPG
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash b5bf869f66ae712ea755d37e4694643c
3dfdafd66d74ecfc8dc224d6013a1706007c93c9
0e50ad4a3318bb9784c05d9195ac7eeaef7d339249f654281231494d12b9fff4
GET /-vod_83Jh94w/T7UIzzF0sLI/AAAAAAAAAY8/gIMmbXF2tPo/w72-h72-p-k-no-nu/0.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v18f"
expires: Mon, 28 Nov 2022 22:26:20 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="0.JPG"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 22:26:20 GMT
server: fife
content-length: 4165
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh6.ggpht.com/_ALsXxsFtGjs/TIl2nyXlfPI/AAAAAAAAAS0/oS2uo8jzSy8/s512/maisorkut-maisblog_d4e48fa3c0f3838c2bdc6134f6c7264b1284076899.gif
200 OK 42 kB URL HTTP/1.1 lh6.ggpht.com/_ALsXxsFtGjs/TIl2nyXlfPI/AAAAAAAAAS0/oS2uo8jzSy8/s512/maisorkut-maisblog_d4e48fa3c0f3838c2bdc6134f6c7264b1284076899.gif
IP
File type GIF image data, version 89a, 310 x 264\012- data
Hash bde4840c2beccaf6e239b6766fdd9809
bed58dbd2bc97ceee415c1e8a6ffe38baa107492
de14b19839cd4c36bfcd9124388095cc717e0c82932b12dfbf652966533b550d
GET /_ALsXxsFtGjs/TIl2nyXlfPI/AAAAAAAAAS0/oS2uo8jzSy8/s512/maisorkut-maisblog_d4e48fa3c0f3838c2bdc6134f6c7264b1284076899.gif HTTP/1.1
Host: lh6.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v256"
Expires: Mon, 28 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="maisorkut-maisblog_d4e48fa3c0f3838c2bdc6134f6c7264b1284076899.gif"
Content-Type: image/gif
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 27 Nov 2022 22:26:20 GMT
Server: fife
Content-Length: 41986
X-XSS-Protection: 0
4.bp.blogspot.com/-ZXtWJmALPno/T7zklLIy2hI/AAAAAAAAAcY/KolbZotYbDc/w72-h72-p-k-no-nu/Snapshot_20120523_10.JPG
200 OK 5.2 kB URL HTTP/1.1 4.bp.blogspot.com/-ZXtWJmALPno/T7zklLIy2hI/AAAAAAAAAcY/KolbZotYbDc/w72-h72-p-k-no-nu/Snapshot_20120523_10.JPG
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 420db1aa16da9f32d2b174a4c3888e8a
d13aab491811947a13aa8ba6e825b9f4c6292703
48e210ec870b659f838aeae2689b5f2e8ee168ae20b48c7c3ac77df723a310d5
GET /-ZXtWJmALPno/T7zklLIy2hI/AAAAAAAAAcY/KolbZotYbDc/w72-h72-p-k-no-nu/Snapshot_20120523_10.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1c6"
Expires: Mon, 28 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Snapshot_20120523_10.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 27 Nov 2022 22:26:20 GMT
Server: fife
Content-Length: 5229
X-XSS-Protection: 0
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211100101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7851549291289588&plah=amorecriatividade.blogspot.com
200 OK 120 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211100101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7851549291289588&plah=amorecriatividade.blogspot.com
IP
File type ASCII text, with very long lines (6090)
Size 120 kB (119656 bytes)
Hash f825446f0efd9f3f4b213847b64c4ba3
1aa11d1d4405c982bd5c7b867287bb839f6ffee8
9444f80061c595e9cefa78eb7822de30d821d2f64fb09c8c15aefb96d651c332
GET /pagead/managed/js/adsense/m202211100101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7851549291289588&plah=amorecriatividade.blogspot.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 27 Nov 2022 22:26:20 GMT
expires: Sun, 27 Nov 2022 22:26:20 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 10431200926195586029
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119656
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.cursos24h.net.br/banners/gif2/200x200.gif
200 OK 39 kB URL HTTP/1.1 www.cursos24h.net.br/banners/gif2/200x200.gif
IP
File type GIF image data, version 89a, 200 x 200\012- data
Hash 712e6e6481c7c26133bdf3dc073a000d
c04df3dc92e4b02448cbd5b4fdc2db748ada9252
38c414bcb9d0c4b6ff0f640d21213008f81a142ddcf87f8ce13383bcfa598bfb
GET /banners/gif2/200x200.gif HTTP/1.1
Host: www.cursos24h.net.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=5184000
expires: Thu, 26 Jan 2023 22:26:20 GMT
content-type: image/gif
last-modified: Wed, 17 Jan 2018 18:23:21 GMT
accept-ranges: bytes
content-length: 38986
date: Sun, 27 Nov 2022 22:26:20 GMT
server: LiteSpeed
www.cursos24h.net.br/banners/areas/pedagogia/gif/250x250.gif
200 OK 37 kB URL HTTP/1.1 www.cursos24h.net.br/banners/areas/pedagogia/gif/250x250.gif
IP
File type GIF image data, version 89a, 250 x 250\012- data
Hash d8ac32add20ee11254ac15e7eaa951d3
40f2acfa7d13684c6d855e6a4e5b800f0507481f
2111d3bd7d625d08e306eb713c414703e67c98685324a01d681fc34c3caac69b
GET /banners/areas/pedagogia/gif/250x250.gif HTTP/1.1
Host: www.cursos24h.net.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=5184000
expires: Thu, 26 Jan 2023 22:26:20 GMT
content-type: image/gif
last-modified: Wed, 17 Jan 2018 18:21:24 GMT
accept-ranges: bytes
content-length: 37320
date: Sun, 27 Nov 2022 22:26:20 GMT
server: LiteSpeed
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 1070f987d04f66ed32c3055c234c9912
106e630271a81d058e7cb3c2b659feb17c611388
cdf1aa8aa5ab6b1a46108e12c388d75fa72a4089dd979c2ccb8003d536567d07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6039
Cache-Control: max-age=130871
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:47:31 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
www.blogblog.com/1kt/transparent/black50.png
200 OK 96 B URL HTTP/1.1 www.blogblog.com/1kt/transparent/black50.png
IP
File type PNG image data, 20 x 20, 1-bit colormap, non-interlaced\012- data
Hash 857cf81cfd3449fd408ac0604cd3a326
69209e67fdd7533fb3c76a7f3e2430a63909e4e9
380be71e72fb28899a6cf71bad4434677a6df3a2fcce56d23c28bc4794549047
GET /1kt/transparent/black50.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 96
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 10:55:57 GMT
Expires: Tue, 29 Nov 2022 10:55:57 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 21 Nov 2022 13:51:27 GMT
Content-Type: image/png
Age: 473423
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2034c4f478581061d113c3cb87e2f362
e9950a76f355c510f0449153fc23f67a9757bbe6
07e5f139ebbc8e61741506be27710036806f9e369c267e80eb9ec12587feab95
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
themes.googleusercontent.com/image?id=1OACCYOE0-eoTRTfsBuX1NMN9nz599ufI1Jh0CggPFA_sK80AGkIr8pLtYRpNUKPmwtEa&options=w1600
200 OK 58 kB URL HTTP/2 themes.googleusercontent.com/image?id=1OACCYOE0-eoTRTfsBuX1NMN9nz599ufI1Jh0CggPFA_sK80AGkIr8pLtYRpNUKPmwtEa&options=w1600
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1600x809, components 3\012- data
Hash 56e529f03ccf994afc47d432cd2d8083
b444c289c8334c91cd1634ef1d5ce55150b34a66
b05487f9e5748eb8cde3125ab58b39bfb7b6c361a3c65e135d895e7f838e7487
GET /image?id=1OACCYOE0-eoTRTfsBuX1NMN9nz599ufI1Jh0CggPFA_sK80AGkIr8pLtYRpNUKPmwtEa&options=w1600 HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://amorecriatividade.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Mon, 28 Nov 2022 22:26:20 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 27 Nov 2022 22:26:20 GMT
server: fife
content-length: 58425
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D5109806271484103377%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMzMzY2OTkqC3RyYW5zcGFyZW50MgcjODg4ODg4OgcjMzMzMzMzQgcjMzM2Njk5SgcjMDAwMDAwUgcjMzM2Njk5Wgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26postID%3D2884640252528305156%26origin%3Dhttp://amorecriatividade.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D5109806271484103377%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMzMzY2OTkqC3RyYW5zcGFyZW50MgcjODg4ODg4OgcjMzMzMzMzQgcjMzM2Njk5SgcjMDAwMDAwUgcjMzM2Njk5Wgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26postID%3D2884640252528305156%26origin%3Dhttp://amorecriatividade.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
302 Found 493 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D5109806271484103377%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMzMzY2OTkqC3RyYW5zcGFyZW50MgcjODg4ODg4OgcjMzMzMzMzQgcjMzM2Njk5SgcjMDAwMDAwUgcjMzM2Njk5Wgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26postID%3D2884640252528305156%26origin%3Dhttp://amorecriatividade.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D5109806271484103377%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMzMzY2OTkqC3RyYW5zcGFyZW50MgcjODg4ODg4OgcjMzMzMzMzQgcjMzM2Njk5SgcjMDAwMDAwUgcjMzM2Njk5Wgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26postID%3D2884640252528305156%26origin%3Dhttp://amorecriatividade.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (552)
Hash 2a85fa1725abf49a6ed39e305c1da36b
da036a3c104a4ad42299b8b1abf58f196b3a29de
224cfd4c486de2b38473ac24693541cb4a35720f72f02e8f8f224bcb006d3df9
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D5109806271484103377%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMzMzY2OTkqC3RyYW5zcGFyZW50MgcjODg4ODg4OgcjMzMzMzMzQgcjMzM2Njk5SgcjMDAwMDAwUgcjMzM2Njk5Wgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26postID%3D2884640252528305156%26origin%3Dhttp://amorecriatividade.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D5109806271484103377%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMzMzY2OTkqC3RyYW5zcGFyZW50MgcjODg4ODg4OgcjMzMzMzMzQgcjMzM2Njk5SgcjMDAwMDAwUgcjMzM2Njk5Wgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26postID%3D2884640252528305156%26origin%3Dhttp://amorecriatividade.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://amorecriatividade.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:20 GMT
location: https://www.blogger.com/followers.g?blogID=5109806271484103377&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMzMzMzMzMiByMzMzY2OTkqC3RyYW5zcGFyZW50MgcjODg4ODg4OgcjMzMzMzMzQgcjMzM2Njk5SgcjMDAwMDAwUgcjMzM2Njk5Wgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&postID=2884640252528305156&origin=http%3A%2F%2Famorecriatividade.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-rvnGAoxWWOTeEknq3aa6sA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 493
server: GSE
set-cookie: __Host-GAPS=1:nXWBUmj1QFekRCbDZ4Q1WZNa-RfgZg:Sz9I1QpWrCtPpwoD;Path=/;Expires=Tue, 26-Nov-2024 22:26:20 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.cursos24h.net.br/banners/flash1/200x200.swf?clickTAG=http://www.cursos24horas.com.br/parceiro.asp?cod=promocao107403
200 OK 26 kB URL HTTP/1.1 www.cursos24h.net.br/banners/flash1/200x200.swf?clickTAG=http://www.cursos24horas.com.br/parceiro.asp?cod=promocao107403
IP
File type Macromedia Flash data (compressed), version 8\012- data
Hash c3dbb110cbea841b99d207849528aa89
f0deb40f600b65ab3184e678a5c7cd8bfe369b6f
9a2d0d1591794995ca222fd1da310ded2344e9c47b0aa08ccd4ed5497f398be7
GET /banners/flash1/200x200.swf?clickTAG=http://www.cursos24horas.com.br/parceiro.asp?cod=promocao107403 HTTP/1.1
Host: www.cursos24h.net.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=2592000
expires: Tue, 27 Dec 2022 22:26:20 GMT
content-type: application/x-shockwave-flash
last-modified: Wed, 17 Jan 2018 18:22:31 GMT
accept-ranges: bytes
content-length: 25986
date: Sun, 27 Nov 2022 22:26:20 GMT
server: LiteSpeed
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8835f987270c3a6655732a8b9f79019d
b526a02966f50407fd20c881616a505ca6693ce3
349663442998cf63d2ff77fdfee46ac572703750f977b4f60e9082307309f7c2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FiZi/D2L7JCkJODcDeYa/A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2peET09Bhgwg13DAbRiFKkaXRAk=
adservice.google.com/adsid/integrator.js?domain=amorecriatividade.blogspot.com
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=amorecriatividade.blogspot.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=amorecriatividade.blogspot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 27 Nov 2022 22:26:20 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
amorecriatividade.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmBSSR5ORRIkaqM1uMB5ZFnhlWxllxQk9O-5zX7VZY2xl4L-IwmoG8KDFQm6PY0v774JF3hi218Z3o5o2xuPKfSBOwAe2Q
200 OK 252 B URL HTTP/1.1 amorecriatividade.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmBSSR5ORRIkaqM1uMB5ZFnhlWxllxQk9O-5zX7VZY2xl4L-IwmoG8KDFQm6PY0v774JF3hi218Z3o5o2xuPKfSBOwAe2Q
IP
File type JSON data\012- , ASCII text, with very long lines (404), with no line terminators
Hash 5396e79f3f73bd0a1e28d20366d6c8c7
912fc23dc13245e8442ea2c1728536fcf66d4e44
19228f0982835150db6853046e6761de544fd351999f2e6c38a21585c94227c9
GET /b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmBSSR5ORRIkaqM1uMB5ZFnhlWxllxQk9O-5zX7VZY2xl4L-IwmoG8KDFQm6PY0v774JF3hi218Z3o5o2xuPKfSBOwAe2Q HTTP/1.1
Host: amorecriatividade.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/2011/06/avaliacao-do-aluno-aee.html
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 22:26:20 GMT
Expires: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 252
Server: GSE
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 15619e238e943befcd5fa4737f76c851
7198f9cb4672d54e5d6812730b875b6172e64b53
7ecac89dd434501d9e15d8c728d1ec497ac7b4962285396c7fbfcc7987700ca0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d3c9b092aee5820bdab6595daad65d61
89e983faeedf25b3e15696f9bf6dbf76feb07868
58d24c4dde4a578c2c0191a19a5a42bdcb5be03b21a1907f60c8deaee78b7331
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=amorecriatividade.blogspot.com&callback=_gfp_s_&client=ca-pub-7851549291289588&gpid_exp=1
200 OK 254 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=amorecriatividade.blogspot.com&callback=_gfp_s_&client=ca-pub-7851549291289588&gpid_exp=1
IP
File type ASCII text, with very long lines (391), with no line terminators
Hash c8e9d21ece9c9c8b9ccfa10597f236cf
0ace012ba75a3e06e254b488008d495c443aef2a
c1716265432d3046df0bf4153fd91902fc3d0de26c96e338fdcb089a0f4b0494
GET /gampad/cookie.js?domain=amorecriatividade.blogspot.com&callback=_gfp_s_&client=ca-pub-7851549291289588&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 27 Nov 2022 22:26:20 GMT
server: cafe
cache-control: private
content-length: 254
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=amorecriatividade.blogspot.com
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=amorecriatividade.blogspot.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=amorecriatividade.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 27 Nov 2022 22:26:20 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 15619e238e943befcd5fa4737f76c851
7198f9cb4672d54e5d6812730b875b6172e64b53
7ecac89dd434501d9e15d8c728d1ec497ac7b4962285396c7fbfcc7987700ca0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d3c9b092aee5820bdab6595daad65d61
89e983faeedf25b3e15696f9bf6dbf76feb07868
58d24c4dde4a578c2c0191a19a5a42bdcb5be03b21a1907f60c8deaee78b7331
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
200 OK 33 kB URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
File type ASCII text, with very long lines (560)
Hash b80aeb5974da6aea9311bb4be51c74e8
760ec8a6d0e5a9b3ffd69df58c7f501e41651ddb
0d779049387c2221843f81f0369ac209a9e41e583e111c2e518ea11118b55af9
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://amorecriatividade.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:20 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+918; expires=Tue, 26-Nov-2024 22:26:20 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9f6cc8d3fe9092a6d3901e873a87fd87
2e0aac117a4cc57596efb3d6f6624c269f94b031
e73982e62b92abac3d15b161f4525448cc2bc8b9bacefdcbfc6f87b74ec372e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0c7f923b97046608033f90253a891bf0
bf5025e94ed9ea85ee3e7677561ee686480b526c
1062154cd5de28de1d012a4f4d10fb5e548fabf6d67918eaeb745975949a3294
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0c7f923b97046608033f90253a891bf0
bf5025e94ed9ea85ee3e7677561ee686480b526c
1062154cd5de28de1d012a4f4d10fb5e548fabf6d67918eaeb745975949a3294
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
200 OK 665 B URL HTTP/2 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP
File type ASCII text, with very long lines (1034), with no line terminators
Hash 34e37af4d526255a20a2056cd5f4addf
bcac186d6a49539e69a3f67aa08d0188966f5623
51a2c479b272414cb9d7e1ec62edffbad01217068b73d516d33cb8f26a4fc634
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sun, 27 Nov 2022 22:26:21 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 665
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 05373379175c2ae5139ed906ec79ca94
fe35f1c948f8e98ccc2d1eb588d3c9cee9d404bc
fb9de258b8eba3af07da58d4023c10fd6064959f8a9fe232d51c8314adc65bc8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3895
Cache-Control: max-age=93126
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:21 GMT
Etag: "63829d9c-139"
Expires: Tue, 29 Nov 2022 00:18:27 GMT
Last-Modified: Sat, 26 Nov 2022 23:13:32 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
200 OK 48 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP
File type ASCII text, with very long lines (3502)
Hash 297e24828abaf97fb29460fd75369140
e9e02d737f1bcf9874a55562edff5f795a1c170c
cdbe4e689ca060e94f00f0aa4c45a89efacddac90df42929ff42a3bff44a9d3e
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 48265
date: Sun, 27 Nov 2022 22:26:21 GMT
expires: Sun, 27 Nov 2022 22:26:21 GMT
cache-control: private, max-age=3000
etag: "1668095300071091"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABDCJH66YqxyKXxYSILdmNhcmRfcGhvdG8qKGViNzNkYTI1ZmZmYWNkYjg4MTg2YjJhY2U2MjczNjkzYjExOTY5OWMwAQKNl7DFDV0ceMIWRBw66iUtS__a
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABDCJH66YqxyKXxYSILdmNhcmRfcGhvdG8qKGViNzNkYTI1ZmZmYWNkYjg4MTg2YjJhY2U2MjczNjkzYjExOTY5OWMwAQKNl7DFDV0ceMIWRBw66iUtS__a
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABDCJH66YqxyKXxYSILdmNhcmRfcGhvdG8qKGViNzNkYTI1ZmZmYWNkYjg4MTg2YjJhY2U2MjczNjkzYjExOTY5OWMwAQKNl7DFDV0ceMIWRBw66iUtS__a HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu8WLPlXqBjmj-W2KOPkiaVBYCEOwfTRW73Xgdh4zQ=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: script-src 'nonce-YWqGZ10P_CmswV_wuAm1bg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=dwycxD-sYHlo_nFFkQ3n_Zjou0NVl_8SXGDa44N2vx8dKdlZ2EWTsj87S9D_aExR3xb8iJRIebVRphWBTCHIr61gm-J9Rg673ncnNP-b9SS0Hc36TAs2gp-GFVfJRiVZ5lKHn601lC3JG6KhRDZLq9xZg6g4oiF0sPpAGuvJqeU; expires=Mon, 29-May-2023 22:26:21 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
amorecriatividade.blogspot.com/favicon.ico
200 OK 412 B URL HTTP/1.1 amorecriatividade.blogspot.com/favicon.ico
IP
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: amorecriatividade.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/2011/06/avaliacao-do-aluno-aee.html
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Sun, 27 Nov 2022 22:26:21 GMT
Date: Sun, 27 Nov 2022 22:26:21 GMT
Cache-Control: private, max-age=86400
Last-Modified: Tue, 08 Nov 2022 01:46:42 GMT
ETag: W/"ecec2336f60f2c7c9ee176e05cf80ea9e3fc9a7bba503d1ef53b1e8da171103a"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
ocsp.digicert.com/
200 OK 313 B IP
Hash 05373379175c2ae5139ed906ec79ca94
fe35f1c948f8e98ccc2d1eb588d3c9cee9d404bc
fb9de258b8eba3af07da58d4023c10fd6064959f8a9fe232d51c8314adc65bc8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3895
Cache-Control: max-age=93126
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:21 GMT
Etag: "63829d9c-139"
Expires: Tue, 29 Nov 2022 00:18:27 GMT
Last-Modified: Sat, 26 Nov 2022 23:13:32 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
www.google.com/s2/photos/public/AIbEiAIAAABDCJz369Dq96nDFyILdmNhcmRfcGhvdG8qKDFmZTlhOTc2YjM2MTM1YWEwZTBhMmVkMjc5ODgwNjFkYTNlMGM4NDMwAcENi4UQD7h_zxKxmfGSsGJEaZmA
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABDCJz369Dq96nDFyILdmNhcmRfcGhvdG8qKDFmZTlhOTc2YjM2MTM1YWEwZTBhMmVkMjc5ODgwNjFkYTNlMGM4NDMwAcENi4UQD7h_zxKxmfGSsGJEaZmA
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABDCJz369Dq96nDFyILdmNhcmRfcGhvdG8qKDFmZTlhOTc2YjM2MTM1YWEwZTBhMmVkMjc5ODgwNjFkYTNlMGM4NDMwAcENi4UQD7h_zxKxmfGSsGJEaZmA HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu-pk9mqtl93N1fCwsPJXaWhLfkcDoFac62BaN8Paro=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: same-origin; report-to="SocialGraphPhotosSouffle"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: script-src 'nonce-CQEVI4JDmqnbHb9WEI0-eQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"SocialGraphPhotosSouffle","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SocialGraphPhotosSouffle/external"}]}
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=RgGLcYQqPdebF6CS6aV_2bsukzZ2EoUgs4aPSQUFyruuFT-tsSytJvqy_T1F3e7rnNxlFhjSoupXaY8-cvXkbkZxqsnZb53Sf7YJgz19YTv6rHTYE-LMfCUreRNRgfI9zIGc8GcPVuEAn00Lu2mNH99i2l-48GVMro6Qd7GFXMM; expires=Mon, 29-May-2023 22:26:21 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECPHc_raP0PS8-wEiC3ZjYXJkX3Bob3RvKigzZTFiODE4NDQyYmQwZTM4Zjc1MGE0YTg2NWFjNGNkNDdiOTAwOWMyMAFXWTXQZ7dBmAdnD9BUZ8jNHnhpqA
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECPHc_raP0PS8-wEiC3ZjYXJkX3Bob3RvKigzZTFiODE4NDQyYmQwZTM4Zjc1MGE0YTg2NWFjNGNkNDdiOTAwOWMyMAFXWTXQZ7dBmAdnD9BUZ8jNHnhpqA
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECPHc_raP0PS8-wEiC3ZjYXJkX3Bob3RvKigzZTFiODE4NDQyYmQwZTM4Zjc1MGE0YTg2NWFjNGNkNDdiOTAwOWMyMAFXWTXQZ7dBmAdnD9BUZ8jNHnhpqA HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu_YaiA6CQT--ePHGoqKR4N6qqOAJIbBTkjm3OU5Xw=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-XAW43W1lHBlkKdazOKD0hA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=k4Fm_EmjZRVA6IuWMYWEHE1kRm913LL-bx4c-eIefBNtSEdK9yG96skugJ3WxrmV-T6i7khr00H2LVRXBCs7RD0oGIIexHqlizJBe4dtoFVtWlTavZX4TDU3sZKpyUe0YEd6zSDxgDFac2r6rBrxMclMcwbQwQ7tijy-OqCatMU; expires=Mon, 29-May-2023 22:26:21 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABDCN6Yksn3hJSCaSILdmNhcmRfcGhvdG8qKDUzZDY4MzZlNDhmOWVkNjdmMTVlOTI0ZDk2MDI0OTAzMmI2MWYyZjIwAZW7mDd_9-Pjttvu3lU9_yROEQng
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABDCN6Yksn3hJSCaSILdmNhcmRfcGhvdG8qKDUzZDY4MzZlNDhmOWVkNjdmMTVlOTI0ZDk2MDI0OTAzMmI2MWYyZjIwAZW7mDd_9-Pjttvu3lU9_yROEQng
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABDCN6Yksn3hJSCaSILdmNhcmRfcGhvdG8qKDUzZDY4MzZlNDhmOWVkNjdmMTVlOTI0ZDk2MDI0OTAzMmI2MWYyZjIwAZW7mDd_9-Pjttvu3lU9_yROEQng HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu86v4jUm8eSB8abzC5BBVCyt8fqMfsC3FLvya9h=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: same-origin; report-to="SocialGraphPhotosSouffle"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: script-src 'nonce-5GV_Eq7WtizeDhOGWznx4A' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"SocialGraphPhotosSouffle","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SocialGraphPhotosSouffle/external"}]}
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=EM2B-6fE2DCE1OLdcr-SgMvaN4ca6hIQp7Z2vjQ_9j_GraEUMfLgOc0G8pToSdJPu9Wy0QtY-P9U2LTM8hnEUZ-gR8ltMrLNrwZuM3_nmn6wPd3wIzPjaZvsWWtGtXfUFXzUbaPNcLtt8p1Whx6m-XvlinR45nnQpa6vFPjPjJU; expires=Mon, 29-May-2023 22:26:21 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECIO0_qOLlaWS0wEiC3ZjYXJkX3Bob3RvKihjNmQwZGFiNGIxNmZiZmExYTcxMDQ5OWQ4ZjIyY2E3Y2ZiYjllMTkxMAGWnrl6YYgLHkcG3jYxEzYMSM3q8A
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECIO0_qOLlaWS0wEiC3ZjYXJkX3Bob3RvKihjNmQwZGFiNGIxNmZiZmExYTcxMDQ5OWQ4ZjIyY2E3Y2ZiYjllMTkxMAGWnrl6YYgLHkcG3jYxEzYMSM3q8A
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECIO0_qOLlaWS0wEiC3ZjYXJkX3Bob3RvKihjNmQwZGFiNGIxNmZiZmExYTcxMDQ5OWQ4ZjIyY2E3Y2ZiYjllMTkxMAGWnrl6YYgLHkcG3jYxEzYMSM3q8A HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu_HWkQPiJAapfOItjlNPgS51f6sLricg8bwvBvK6qY=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-upez-MRj-A536UsgDaf5Iw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=EIKXKbm9DcwUOycX8tidrwDwc_vEVWkmRBan5VMoiqzy1a5MokwW9YR3Mf6R4a7DNQNt8Uxj9fjMmrFIh0Mm3qKZcs002uytx8ylQHac_7_mjBDu7sRif-tP7jDw6qBnJWzcWpafRdNDg2TfcU3eKxss_UuaiEHacHkmcJn3064; expires=Mon, 29-May-2023 22:26:21 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECNDT9JD12NXe9AEiC3ZjYXJkX3Bob3RvKihmMDMxMjQzYzY1MmFiN2RiMGZkODZlNzc4OTM3MTFlZWM3NDVkMTJkMAEu95gZwmVm-fHUOfhQp-kKY3FMzw
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECNDT9JD12NXe9AEiC3ZjYXJkX3Bob3RvKihmMDMxMjQzYzY1MmFiN2RiMGZkODZlNzc4OTM3MTFlZWM3NDVkMTJkMAEu95gZwmVm-fHUOfhQp-kKY3FMzw
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECNDT9JD12NXe9AEiC3ZjYXJkX3Bob3RvKihmMDMxMjQzYzY1MmFiN2RiMGZkODZlNzc4OTM3MTFlZWM3NDVkMTJkMAEu95gZwmVm-fHUOfhQp-kKY3FMzw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu9HPjJ75i6Xln9hQOSIYf1xbQ5qn0ixeoPcWBHIsEw=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-e17fYV6-Tz5Bxb6ythYSLA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
cross-origin-opener-policy: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=LB5mwPIgIeXvSlB-XxOZkWyImCWcSFZWP0or-45yn1DCNg6UYJmYN1Sp7kHfrxbV2L4-cYZqJiau8GxF4gCNqDg2KoyhDVqVCNh5sWUZcAEg9Tev5s96Qs3W17Szfr132gfqmb6iV1GInRIRtQQqIfcPsF6F70Gg_zxcck_-ZZw; expires=Mon, 29-May-2023 22:26:21 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECPSS_Mv_lJ7-qQEiC3ZjYXJkX3Bob3RvKig0NmMzNWUzODU5NzM5ZjZlMDNkZWEyNGI3ZmEyZWVjYWEwMzA0ZGI4MAEAf55aNkL8o_z5NidpNHOpMmsgYg
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECPSS_Mv_lJ7-qQEiC3ZjYXJkX3Bob3RvKig0NmMzNWUzODU5NzM5ZjZlMDNkZWEyNGI3ZmEyZWVjYWEwMzA0ZGI4MAEAf55aNkL8o_z5NidpNHOpMmsgYg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECPSS_Mv_lJ7-qQEiC3ZjYXJkX3Bob3RvKig0NmMzNWUzODU5NzM5ZjZlMDNkZWEyNGI3ZmEyZWVjYWEwMzA0ZGI4MAEAf55aNkL8o_z5NidpNHOpMmsgYg HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu8RnSGIuM6WW4e-oTDjr98W0UbsIojSp31HQD1D=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: script-src 'nonce-T8uGfwsGHfeu1Z8dtJ8CZA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=iFzbW29AxsGIjUOvU12BdeRo0K3uJANFfZWuJ_n5Xk9nklOGtv0h8SmjLKrDTCSkfQVrVsaJuDNuv_2BkukoJIhiNM1g_eUpRON2APvnSJ9fWvhdyJkpbNh5YV6-R28XH70CONUUCRUBuhZvNPX8BakN54pxDftdsMb5s9zNG-E; expires=Mon, 29-May-2023 22:26:21 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECLS_5NyJm62NnAEiC3ZjYXJkX3Bob3RvKihiNzA0ZDdmZTJhODEzZmUyNjhhMDVhMzk3MWE4MjAxNWU1MDBjY2MwMAEAptOFkzPB5l-rcyYpgp2dwYpiIw
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECLS_5NyJm62NnAEiC3ZjYXJkX3Bob3RvKihiNzA0ZDdmZTJhODEzZmUyNjhhMDVhMzk3MWE4MjAxNWU1MDBjY2MwMAEAptOFkzPB5l-rcyYpgp2dwYpiIw
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECLS_5NyJm62NnAEiC3ZjYXJkX3Bob3RvKihiNzA0ZDdmZTJhODEzZmUyNjhhMDVhMzk3MWE4MjAxNWU1MDBjY2MwMAEAptOFkzPB5l-rcyYpgp2dwYpiIw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu9RBOg0Uj9YyHN4LOaS77iUgW0Fj0WF-90lrFBy=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-XjMPbaogBkaPLl55qt0XmA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
cross-origin-opener-policy: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=AkYLfSNpbzhLqOnJADPXPO7mLkMKcEfKE6AyHNxYQraRhPySws6_6d-t-rrBzRGRzH_6nmDA8EyqZqMIq59UV7u-927D-EhiyTIxLIvOpulyCAkt907hziVCGofq6DJgW9Dx1QF8MBpXJ-1Gf4ur0IBMSIp3DP6_cHEaEqYk95k; expires=Mon, 29-May-2023 22:26:21 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECIC7ho-B6v_qkwEiC3ZjYXJkX3Bob3RvKig4MzJkNDA5MGI3ZDcyZjExYWQwNTZhYmY4ZGY4NDY2NzhjNmYwYWIyMAFxRfyNq_m27ZDPhJF8L6t2eRaQXg
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECIC7ho-B6v_qkwEiC3ZjYXJkX3Bob3RvKig4MzJkNDA5MGI3ZDcyZjExYWQwNTZhYmY4ZGY4NDY2NzhjNmYwYWIyMAFxRfyNq_m27ZDPhJF8L6t2eRaQXg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECIC7ho-B6v_qkwEiC3ZjYXJkX3Bob3RvKig4MzJkNDA5MGI3ZDcyZjExYWQwNTZhYmY4ZGY4NDY2NzhjNmYwYWIyMAFxRfyNq_m27ZDPhJF8L6t2eRaQXg HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu92vesweniVJYIoiGxQtumN8OZ5kyMMDufscs3UMQ=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: script-src 'nonce-OdtWWef5sldgT9KDer9cZg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=IJNyZhwDdqeVT7a_m13Zq9wAabTGxlESDmRYxJ0xEG4u0ZPM-LpoluSVullXnPTPuhmX9SiNJR1XYifmJcIgg--Yypz_2D64SNwIjURHC_qdubVco1Gnqe2NAWFN38GnBhBgCvAl_efJlOOtfc23j1M0e8q_e1pnlsWN95aD0JY; expires=Mon, 29-May-2023 22:26:21 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABDCOmAvs-pk9acbiILdmNhcmRfcGhvdG8qKDYxNGYzNWE1ZmEzYzdlZWU5Mjk0NDIxNjg1YWU0MzRkOWU1ZmFhNTcwAZ1VFDw0W7Hv41EJJ4MDVI1V9VdB
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABDCOmAvs-pk9acbiILdmNhcmRfcGhvdG8qKDYxNGYzNWE1ZmEzYzdlZWU5Mjk0NDIxNjg1YWU0MzRkOWU1ZmFhNTcwAZ1VFDw0W7Hv41EJJ4MDVI1V9VdB
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABDCOmAvs-pk9acbiILdmNhcmRfcGhvdG8qKDYxNGYzNWE1ZmEzYzdlZWU5Mjk0NDIxNjg1YWU0MzRkOWU1ZmFhNTcwAZ1VFDw0W7Hv41EJJ4MDVI1V9VdB HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu_99DLO9uJkdOIiSPVCZG-S3xf8aSKqgoiqWJKdUas=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-eAjeG35Xb7M0Oi3lPIto5Q' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
cross-origin-opener-policy: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=jtk_4WFm8Pa5Wf4C2ZjmANaPSBJOnDvQ3bhFcJNFpikrVbyqluB4m6h8XORg264m1nd_R2GwXxEsy4BLaBPFFpsSyaOJeKjwS6aiYPaMAEmAbbHpIghqyiZosF6VsnXgaerNXfJ64I27J9N-D6A9ePR846F0wODs4VBPb282sJk; expires=Mon, 29-May-2023 22:26:21 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABDCPqHroXegIyuBSILdmNhcmRfcGhvdG8qKDU0N2U1YjIzYzZjYmUxYmRlY2EyZjhjYWZjOTczN2FjOTc3ZDEyODQwAb5ylIpGh3_duNSEm7lbaJoSzRXQ
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABDCPqHroXegIyuBSILdmNhcmRfcGhvdG8qKDU0N2U1YjIzYzZjYmUxYmRlY2EyZjhjYWZjOTczN2FjOTc3ZDEyODQwAb5ylIpGh3_duNSEm7lbaJoSzRXQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABDCPqHroXegIyuBSILdmNhcmRfcGhvdG8qKDU0N2U1YjIzYzZjYmUxYmRlY2EyZjhjYWZjOTczN2FjOTc3ZDEyODQwAb5ylIpGh3_duNSEm7lbaJoSzRXQ HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu9sjFWoWzoTv3gc1_cWW2BK-0Vwl38VV-wjZCvDlVE=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-NKzsLYDXXUPZCw7_f2rhtw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
cross-origin-opener-policy: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=IL-3l3cggIcvbOY_FZzJ_70FgI7SNAHSMpP4VJ0e3uC_00uctSWQKeBscQzlryy8GOgh2nYyLV7QgCu3qAd9Obw0dzWTYDyEHB5DGKpNKqfbHQcKe-M4ymN3Fi06jtQkC-df4Dqc-Di_F1bH5GgjwR2yKo9c6JDyL4_X4l6dkuQ; expires=Mon, 29-May-2023 22:26:21 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECMTl8cH55vid-gEiC3ZjYXJkX3Bob3RvKig1ZGQyOGRlNDllYzAwZDIwODgyMmUwMDg0NmU3OTdjYzQyYWRlNDU3MAGsDvA43gh6PAJHOUjQbGQfHPwO7g
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECMTl8cH55vid-gEiC3ZjYXJkX3Bob3RvKig1ZGQyOGRlNDllYzAwZDIwODgyMmUwMDg0NmU3OTdjYzQyYWRlNDU3MAGsDvA43gh6PAJHOUjQbGQfHPwO7g
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECMTl8cH55vid-gEiC3ZjYXJkX3Bob3RvKig1ZGQyOGRlNDllYzAwZDIwODgyMmUwMDg0NmU3OTdjYzQyYWRlNDU3MAGsDvA43gh6PAJHOUjQbGQfHPwO7g HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu-cLccPr9MhBIO3ggqt8aWfgdTZwlTxIwyRd0JklQ=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-uOYNExSFvMbpLdWmyYlXng' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
cross-origin-opener-policy: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=L7Z9ntLlPic5t2_oFjinTYb_zzbhG1yADny04sEH10XiFQwwlOs095sqUSpcLOvVNbQNByfBLhjeYK_GPwhtZsS44mfsR_slQMf4VIOfO2igWAlN0pInREtvaNthC_joVngTYkLj3hB4vusiph3UZStj_2K-bwpnMub9r3Dd8gA; expires=Mon, 29-May-2023 22:26:21 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECJbRsoSJqoWiigEiC3ZjYXJkX3Bob3RvKig4NzIwNTk2OWFjZTAxYzViOGRhY2U3ZTNmMzk2Mjc0ZDhiM2U1MGExMAHXpOc0BudHV0BwFzUIPbNd99DMYg
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECJbRsoSJqoWiigEiC3ZjYXJkX3Bob3RvKig4NzIwNTk2OWFjZTAxYzViOGRhY2U3ZTNmMzk2Mjc0ZDhiM2U1MGExMAHXpOc0BudHV0BwFzUIPbNd99DMYg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECJbRsoSJqoWiigEiC3ZjYXJkX3Bob3RvKig4NzIwNTk2OWFjZTAxYzViOGRhY2U3ZTNmMzk2Mjc0ZDhiM2U1MGExMAHXpOc0BudHV0BwFzUIPbNd99DMYg HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu_P_xR1WQ6Za8LTnLkeaFvFo7V06uWB8XY_EcMDJ-g=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-fMm6AOc-mFzFbEvI-q5cxw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=n8cGcDOEEXVN5eCt9QGIrbWXX08WMfCKnQFQgL1T4jUrJ1wRnKuXAq6nqy1OX4N7pizAnhi_6DnjtYj26rkp80HWFxbQDYuuHfk5yoTMMj_T3nDwsfYG6MAKXYo_vO-9fwR8S9Ommacp986Pofp7fJnhSQW6lTn8IzZ-IuD6Kgk; expires=Mon, 29-May-2023 22:26:21 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECNPqz8LUyq3azQEiC3ZjYXJkX3Bob3RvKigwZTIxNGJiNmVhYjgxOTY4NjI5MWU0ZGQ4OGM0OWVmNTYxMjljNmUzMAFOQYmX7Y2h7FDySLwekIOCkikqwg
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECNPqz8LUyq3azQEiC3ZjYXJkX3Bob3RvKigwZTIxNGJiNmVhYjgxOTY4NjI5MWU0ZGQ4OGM0OWVmNTYxMjljNmUzMAFOQYmX7Y2h7FDySLwekIOCkikqwg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECNPqz8LUyq3azQEiC3ZjYXJkX3Bob3RvKigwZTIxNGJiNmVhYjgxOTY4NjI5MWU0ZGQ4OGM0OWVmNTYxMjljNmUzMAFOQYmX7Y2h7FDySLwekIOCkikqwg HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu-q1aQE9RoRd5acGp9TYiHfDrSvHF0UK3B68f6o5A=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-aAu4E0x5gPYk4bM_zV2U-g' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
cross-origin-opener-policy: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=kV6R3q9IbVCkHoUWeUPDeoM4cKUi3ZPh23mIL6eFgF9-fM4TkW7Ayj7KmWMLBSGrz24WTNR4w4GxkeLBZOYNJjXCsmZpWbImzjWrEI85qsnpDKH7yDzXkCUPlxs4MZwN3LLkT0fSLDJRB206IJcdo3z4i2ZjDorPxd3PxDhd4bo; expires=Mon, 29-May-2023 22:26:21 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABECKmAi-nF8cTwmAEiC3ZjYXJkX3Bob3RvKigzN2QxNzEyNTY0Y2UzZDc0ODUxYWVlMzViNzA5NWZhOGFjNjdkYmFjMAEHwgLe7y_RfU2tf4d--oFSJsrEbg
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABECKmAi-nF8cTwmAEiC3ZjYXJkX3Bob3RvKigzN2QxNzEyNTY0Y2UzZDc0ODUxYWVlMzViNzA5NWZhOGFjNjdkYmFjMAEHwgLe7y_RfU2tf4d--oFSJsrEbg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABECKmAi-nF8cTwmAEiC3ZjYXJkX3Bob3RvKigzN2QxNzEyNTY0Y2UzZDc0ODUxYWVlMzViNzA5NWZhOGFjNjdkYmFjMAEHwgLe7y_RfU2tf4d--oFSJsrEbg HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu8nTtVFEWvEV7oMoCF-g1vMkSXxKtPnDkklI5mbQQ=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-5o035-MsVXuCLX91p1t60g' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
cross-origin-opener-policy: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=JtTeIoaayQK-_03eMQy53ietNK_oK8GtKdjMO99UFlyRCEsh4kpiNgYQypgVKp07G0zLHDiq9m08QxX4N7vwGgM7JfWW-941mrwddXVCaZ_HlpTNAodL7sQqLzKbKfwzBxHRAj5lFM9lhTbpRNA6hya9GJnmLpzgEoaHzzxg6zs; expires=Mon, 29-May-2023 22:26:21 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/photos/public/AIbEiAIAAABDCKWPpJXj6sGnYiILdmNhcmRfcGhvdG8qKGU5YWIzMzFmMGQ4YTI4Mzk1ODA3NGU5ZGYyOTYxMTA2MmM2ZDY0NjUwAdpUEtFhJzUPxW-VDsdbk5k5Llfp
302 Found 0 B URL HTTP/2 www.google.com/s2/photos/public/AIbEiAIAAABDCKWPpJXj6sGnYiILdmNhcmRfcGhvdG8qKGU5YWIzMzFmMGQ4YTI4Mzk1ODA3NGU5ZGYyOTYxMTA2MmM2ZDY0NjUwAdpUEtFhJzUPxW-VDsdbk5k5Llfp
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s2/photos/public/AIbEiAIAAABDCKWPpJXj6sGnYiILdmNhcmRfcGhvdG8qKGU5YWIzMzFmMGQ4YTI4Mzk1ODA3NGU5ZGYyOTYxMTA2MmM2ZDY0NjUwAdpUEtFhJzUPxW-VDsdbk5k5Llfp HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu_jLtT-KnYhHdFnWTiV39ZeuqUHtRWyjfStD8q4kVc=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-aRl9eiUjTDZ7YtnCYpjqgQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=pqX-uh2ez_iPwz3e4OQ7a_CdQVOzyPz_GsfyXQz2fZZ98taRN3RxVxF7MBKC6SS3TbWgaooxtRdItNdwebRPfqSbdDYZdL_zfn32D-YeCBxueJnsl_tSdR7jTJIzxDBqDnJxAZBB_geydpH0kcQso4DxWa3c2gBfyyHsvQ5FJKQ; expires=Mon, 29-May-2023 22:26:21 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
afiliados.i.uol.com.br/assinaturas/uolhost/exchange/120x240.gif
200 OK 10 kB URL HTTP/1.1 afiliados.i.uol.com.br/assinaturas/uolhost/exchange/120x240.gif
IP
ASN #7162 Universo Online S.A.
File type GIF image data, version 89a, 120 x 240\012- data
Hash 8c541a28d5ca4ae77b2d80b6594c1364
357948ea7d58ee027a4800e2736f55bb54683150
3ddbdcbd19c51aa74e0c6334143dcb59e5673b28063f2c3804637c519a6543da
GET /assinaturas/uolhost/exchange/120x240.gif HTTP/1.1
Host: afiliados.i.uol.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Thu, 12 Mar 2015 18:49:24 GMT
ETag: "27e7-5111bd7b05503"
Cache-Control: max-age=86400
Expires: Mon, 28 Nov 2022 22:26:21 GMT
Content-Type: image/gif
Content-Length: 10215
Date: Sun, 27 Nov 2022 22:26:21 GMT
X-Varnish: 1699789588
Age: 0
Connection: keep-alive
Keep-Alive: timeout=20, max=15
X-Cache: MISS
ocsp.digicert.com/
200 OK 313 B IP
Hash 60f49357e8f1cd754e204f0001598cb0
8635e24e7d632af40d53be0b706dc28eb7babf42
4917433ade062e0044ae78ea3c37367e02ce05a2d033cdb9e3ad43e6237fae3a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6122
Cache-Control: max-age=147159
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:21 GMT
Etag: "638367fa-139"
Expires: Tue, 29 Nov 2022 15:19:00 GMT
Last-Modified: Sun, 27 Nov 2022 13:36:58 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWdcB2ASdg2ICAgAAANdSavDtr5aBEAzkg2Mg9Vo_mtqfI-9SlwASAAA&wp=Y4PkDQAAf9kCHkTUAAkv696IvNnj5yz2yFu8Xw
200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWdcB2ASdg2ICAgAAANdSavDtr5aBEAzkg2Mg9Vo_mtqfI-9SlwASAAA&wp=Y4PkDQAAf9kCHkTUAAkv696IvNnj5yz2yFu8Xw
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kPenErOzWdcB2ASdg2ICAgAAANdSavDtr5aBEAzkg2Mg9Vo_mtqfI-9SlwASAAA&wp=Y4PkDQAAf9kCHkTUAAkv696IvNnj5yz2yFu8Xw HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 185960
date: Sun, 27 Nov 2022 22:26:21 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
translate.google.com/gen204?sl=pt&nca=te_ap&client=te&logld=vTE_20221115
204 No Content 0 B URL HTTP/1.1 translate.google.com/gen204?sl=pt&nca=te_ap&client=te&logld=vTE_20221115
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gen204?sl=pt&nca=te_ap&client=te&logld=vTE_20221115 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amorecriatividade.blogspot.com/
HTTP/1.1 204 No Content
Content-Type: image/gif; charset=us-ascii
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sun, 27 Nov 2022 22:26:21 GMT
Cross-Origin-Resource-Policy: cross-origin
Report-To: {"group":"TranslateApiHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/TranslateApiHttp/external"}]}
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
Cross-Origin-Opener-Policy: same-origin; report-to="TranslateApiHttp"
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport, script-src 'nonce-c985OlLRDTSPa7RpUvG0TQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self'
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ocsp.digicert.com/
200 OK 314 B IP
Hash fcd4b34ca27449e232ac51190177c339
ecbc5f697c2fd0bcea7e8717e5e630de836959d9
ddccbdf4ea8bc74bb0752bbbfd9206caffe46d09d9525c9d6cdbbe18c4543615
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2554
Cache-Control: max-age=120555
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:21 GMT
Etag: "63830dfe-13a"
Expires: Tue, 29 Nov 2022 07:55:36 GMT
Last-Modified: Sun, 27 Nov 2022 07:13:02 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
200 OK 280 B IP
Hash c621d4c62f1b73d7db42f083617dc8db
1a78ba537afba7aea6308288c5c41c90de74b3ba
d7b3c5b2e9ea4ad8e5c33649a912d471545651f643b62238beb7d33188146322
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3455
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:21 GMT
Last-Modified: Sun, 27 Nov 2022 21:28:46 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Sun, 27 Nov 2022 22:26:21 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+744; expires=Tue, 26-Nov-2024 22:26:21 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sun, 27 Nov 2022 22:26:21 GMT
cache-control: private
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
200 OK 4.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
IP
File type ASCII text, with very long lines (2171)
Hash 44c72b9bddfecacc9114e84d685dd085
38f3ff57b9b64a38fc2153eb30564b7fc1c86349
c82afd4f2d89288b4b79244f0c24264810b11326670710ac8e28e7bfc87c7991
GET /ajax/libs/webfont/1.6.28/webfontloader.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 22:26:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 4420
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04030-30d9"
last-modified: Mon, 04 May 2020 16:17:52 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 324623
expires: Fri, 17 Nov 2023 22:26:21 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iCCdAHhlND%2BTr1d2wv4WAK4DoGlc0XrSdK0oB4n87tSgeNKnvc9lUfW8BvsY1vMX2nl6G9l%2B%2Fvw%2B03TzDuJiCsOuUY5Pg9micX16aUutL%2FuPZCkDjviv96SWmrrw%2Bkix6KAgka9u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 770e48f6fa90b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWdgFWp2DYgICAAAAZf-sB9zc4vYQDOSDYzrC_b1VB9dsZEi7ABIAAA&wp=Y4PkDQAAZhkKwkgwAAzPXicqhl5CTYblkpH8rQ
200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWdgFWp2DYgICAAAAZf-sB9zc4vYQDOSDYzrC_b1VB9dsZEi7ABIAAA&wp=Y4PkDQAAZhkKwkgwAAzPXicqhl5CTYblkpH8rQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kPenErOzWdgFWp2DYgICAAAAZf-sB9zc4vYQDOSDYzrC_b1VB9dsZEi7ABIAAA&wp=Y4PkDQAAZhkKwkgwAAzPXicqhl5CTYblkpH8rQ HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 288577
date: Sun, 27 Nov 2022 22:26:21 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 1561
Origin: https://www.blogger.com
Connection: keep-alive
Cookie: NID=511=pqX-uh2ez_iPwz3e4OQ7a_CdQVOzyPz_GsfyXQz2fZZ98taRN3RxVxF7MBKC6SS3TbWgaooxtRdItNdwebRPfqSbdDYZdL_zfn32D-YeCBxueJnsl_tSdR7jTJIzxDBqDnJxAZBB_geydpH0kcQso4DxWa3c2gBfyyHsvQ5FJKQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sun, 27 Nov 2022 22:26:21 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+451; expires=Tue, 26-Nov-2024 22:26:21 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sun, 27 Nov 2022 22:26:21 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash c621d4c62f1b73d7db42f083617dc8db
1a78ba537afba7aea6308288c5c41c90de74b3ba
d7b3c5b2e9ea4ad8e5c33649a912d471545651f643b62238beb7d33188146322
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3455
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:21 GMT
Last-Modified: Sun, 27 Nov 2022 21:28:46 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 471 B IP
Hash 4dc8061e012690f41cc8e3b60e976494
6e3f3e9a22bf7348c5ecb244cceec16cfcd86cf5
b74d15f2e5d547246f74a267925085cd15fac8a259b0a91029b189c8f24b1b6d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5632
Cache-Control: max-age=168959
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:22 GMT
Etag: "6383bf0e-1d7"
Expires: Tue, 29 Nov 2022 21:22:21 GMT
Last-Modified: Sun, 27 Nov 2022 19:48:30 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 313 B IP
Hash 87d3b4bbaf74168d1ee04c5634573540
9f730b4cd1ec071713c44c34ca2e81708fe5512c
e739c2ca19ce2c1836d43031e132d133f616f7db8d800c5419711bb72d9ece15
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2743
Cache-Control: max-age=86568
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:22 GMT
Etag: "6382887f-139"
Expires: Mon, 28 Nov 2022 22:29:10 GMT
Last-Modified: Sat, 26 Nov 2022 21:43:27 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
200 OK 313 B IP
Hash 87d3b4bbaf74168d1ee04c5634573540
9f730b4cd1ec071713c44c34ca2e81708fe5512c
e739c2ca19ce2c1836d43031e132d133f616f7db8d800c5419711bb72d9ece15
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2679
Cache-Control: max-age=86504
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:22 GMT
Etag: "6382887f-139"
Expires: Mon, 28 Nov 2022 22:28:06 GMT
Last-Modified: Sat, 26 Nov 2022 21:43:27 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
200 OK 313 B IP
Hash 6df500e51b867d0611652fcb33cb1569
bb015edbda16a9ad25c046ea4aa5ab01caf0fd9f
1ac6bc514dc73c173b6f6bb739f3e5c27765ddda9fa9e491b7ccf7746fcff5f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4852
Cache-Control: max-age=138696
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:22 GMT
Etag: "63834be2-139"
Expires: Tue, 29 Nov 2022 12:57:58 GMT
Last-Modified: Sun, 27 Nov 2022 11:37:06 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 313
static.criteo.net/flash/icon/back_button2.svg
200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 22:26:22 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Wed, 22 Nov 2023 22:26:22 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 6df500e51b867d0611652fcb33cb1569
bb015edbda16a9ad25c046ea4aa5ab01caf0fd9f
1ac6bc514dc73c173b6f6bb739f3e5c27765ddda9fa9e491b7ccf7746fcff5f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4421
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:22 GMT
Last-Modified: Sun, 27 Nov 2022 21:12:41 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
200 OK 313 B IP
Hash 87d3b4bbaf74168d1ee04c5634573540
9f730b4cd1ec071713c44c34ca2e81708fe5512c
e739c2ca19ce2c1836d43031e132d133f616f7db8d800c5419711bb72d9ece15
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2743
Cache-Control: max-age=86568
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:22 GMT
Etag: "6382887f-139"
Expires: Mon, 28 Nov 2022 22:29:10 GMT
Last-Modified: Sat, 26 Nov 2022 21:43:27 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
200 OK 313 B IP
Hash 87d3b4bbaf74168d1ee04c5634573540
9f730b4cd1ec071713c44c34ca2e81708fe5512c
e739c2ca19ce2c1836d43031e132d133f616f7db8d800c5419711bb72d9ece15
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2679
Cache-Control: max-age=86504
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:22 GMT
Etag: "6382887f-139"
Expires: Mon, 28 Nov 2022 22:28:06 GMT
Last-Modified: Sat, 26 Nov 2022 21:43:27 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14040
Expires: Mon, 28 Nov 2022 02:20:22 GMT
Date: Sun, 27 Nov 2022 22:26:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14040
Expires: Mon, 28 Nov 2022 02:20:22 GMT
Date: Sun, 27 Nov 2022 22:26:22 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14040
Expires: Mon, 28 Nov 2022 02:20:22 GMT
Date: Sun, 27 Nov 2022 22:26:22 GMT
Connection: keep-alive
static.criteo.net/flash/icon/close_button.svg
200 OK 308 B URL HTTP/2 static.criteo.net/flash/icon/close_button.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 1bfe2e290ec4440da74a2e2c249eae2b
0b888a3f9e27d1554f2e21d51e7a1c223d00dbd4
8ec89605fe3d580e9539c7b858e8f69ba4e26fe06377ebe04585397de23a7395
GET /flash/icon/close_button.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 22:26:22 GMT
content-type: image/svg+xml
content-length: 308
last-modified: Fri, 14 Feb 2020 13:51:32 GMT
etag: "5e46a5e4-134"
expires: Wed, 22 Nov 2023 22:26:22 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 6df500e51b867d0611652fcb33cb1569
bb015edbda16a9ad25c046ea4aa5ab01caf0fd9f
1ac6bc514dc73c173b6f6bb739f3e5c27765ddda9fa9e491b7ccf7746fcff5f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4421
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 22:26:22 GMT
Last-Modified: Sun, 27 Nov 2022 21:12:41 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg
200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b24e349e9d22fb30fbc80497b512cead
c033d1ecdb9e7640f3df044e39053bed8292fcbc
2d77e3c39c60a3563613b1ba97ec0b1a256f41ad09936ba49b23d8cf22f8a7a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6263
x-amzn-requestid: 5c3da401-eb9e-4904-a7e9-5e74648b8b77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KFfWoAMF99A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-3110d65625e883502a5078a9;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EpU6HS6f0BpRceJVfwhBhOgKMTMvdMZj4ST9DMATiqfA10pNplyPtQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:04 GMT
age: 2118
etag: "c033d1ecdb9e7640f3df044e39053bed8292fcbc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Afa2c6acf-9635-4512-b793-48a3855208dd%2FMelia-Puerto-Vallarta_1-SQUARE_800X800.jpg&v=3&w=800&s=daUTaBg4CtGKY1qDYF7FZorD
200 OK 138 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Afa2c6acf-9635-4512-b793-48a3855208dd%2FMelia-Puerto-Vallarta_1-SQUARE_800X800.jpg&v=3&w=800&s=daUTaBg4CtGKY1qDYF7FZorD
IP
File type gzip compressed data, max compression\012- data
Size 138 kB (138029 bytes)
Hash 87db69e008eafdb358a7afe7d28cd7f4
df2973f15086e9d0db9a6ab4f12f3e878ee8648b
0923e50fd19287774b0b5cb6061fd53959acf9ab9a4dbe6efb0b0f81301fc2e4
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Afa2c6acf-9635-4512-b793-48a3855208dd%2FMelia-Puerto-Vallarta_1-SQUARE_800X800.jpg&v=3&w=800&s=daUTaBg4CtGKY1qDYF7FZorD HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=34814
expires: Mon, 28 Nov 2022 08:06:37 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 99712
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 005e5ba3c9588cf389a58195001b64e3
238a7439d887fb3aa7f1302eeb43fce62f08441a
d75dd5b6f57d9c9290725c5be76cc7d7a39682ca569bea18eceb9bdc13d444f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10813
x-amzn-requestid: 5a3c9584-1389-45ac-968d-0a2301f82eda
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KG00oAMFpig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-6ffc3ff67f7f7e75399834e8;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pyXmSrIJ5ookfmhWY2xPXv374JfY2fFkcgiz5q8iFpWV4Rm0f0zXtg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:04 GMT
age: 2118
etag: "238a7439d887fb3aa7f1302eeb43fce62f08441a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe1c9b5-b323-496c-a65c-09c1511f882f.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe1c9b5-b323-496c-a65c-09c1511f882f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f20d5c4b208740dd4c737b9d95c0e1d0
c843c5422499736a83a80c2b07475a8dbbb8860f
f8d048a2c911aaedfa53b7d6e134638e8c36db0700a874fe99e0d8f847970a1b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfe1c9b5-b323-496c-a65c-09c1511f882f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12555
x-amzn-requestid: 2d9827ba-fc88-4deb-9844-f5b42764b2e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_MHPWIAMFQMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d861-42986aeb284115943c849306;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KcI_BV4rZkM-2CmcFI5qkJLT-OOwYQnRNEPXrQJvlNA9A3Da0EzgEA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:04 GMT
age: 2118
etag: "c843c5422499736a83a80c2b07475a8dbbb8860f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A2376b742-f268-43b1-9844-b9ba7c8ef2ae%2FInnside_Calvia_Beach_1SQUARE_800X800.jpg&v=3&w=800&s=eC3EzQnG36XxwkCXbyOkeCmg&b=400
200 OK 27 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A2376b742-f268-43b1-9844-b9ba7c8ef2ae%2FInnside_Calvia_Beach_1SQUARE_800X800.jpg&v=3&w=800&s=eC3EzQnG36XxwkCXbyOkeCmg&b=400
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 53f5099e2a92dbc1ae2997c1d31b3977
7f55a5a511f5e9a72870c4b72a554340281f6e15
c87cf607dd7cbaafbc89e0e4c6d3c02675bd8784ae8a89a99bfa1b5e2027fc4e
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A2376b742-f268-43b1-9844-b9ba7c8ef2ae%2FInnside_Calvia_Beach_1SQUARE_800X800.jpg&v=3&w=800&s=eC3EzQnG36XxwkCXbyOkeCmg&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=28742
expires: Mon, 28 Nov 2022 06:25:25 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 26722
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e5051d8c06f69e1842a9295ce256a36
1a542a53ba0b1cd0fb23257ebed8166555f16dfb
a7c0dbbb4d0d9138f5ca318cc2aa44e12dadf7ed6263ec204ba756da64b29c41
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4908162-9f1d-4654-8d78-fe85386ce233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7556
x-amzn-requestid: 1cda5313-2256-4830-bf84-2e6e15949d3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78KFTmoAMF4yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e7-452e36d718a298d12a2374a9;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OWVkuAw6-nRNU_CVOgvsSSenSXnfSYSmJiKa60JvSaiJgPuXjJByZw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:46:41 GMT
age: 2381
etag: "1a542a53ba0b1cd0fb23257ebed8166555f16dfb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34f28d73-a62a-480c-b6c9-3d4d6994ab96.jpeg
200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34f28d73-a62a-480c-b6c9-3d4d6994ab96.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a725a8ef50cb7990de9c35a5aaf0fbb
8cbfe78870524228ac5c229dbb1279cac25a49f9
91dfcb752eeccf33b53330f9f7ea0c338ebad06bf04da56758f3b4228a8dbfaa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34f28d73-a62a-480c-b6c9-3d4d6994ab96.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7318
x-amzn-requestid: 6aff0d1e-214f-4fde-8a4e-99255c96670f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KELBoAMF_kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-7f5fa86973ac323f71fb57a5;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: a10UBd-HyvYOJdqcI6E0R8h9iplvAhsZBtHrMAPZoaAJ4bm3e49W_g==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:04 GMT
age: 2118
etag: "8cbfe78870524228ac5c229dbb1279cac25a49f9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A08c842b7-8847-41fc-b525-15b7e7d828c3%2FHotel_Suites_Del_Mar_Alicante_1SQUARE_800X800.jpg&v=3&w=800&s=WHdlHl2z0ppEx4I8qIWthAhr&b=400
200 OK 59 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A08c842b7-8847-41fc-b525-15b7e7d828c3%2FHotel_Suites_Del_Mar_Alicante_1SQUARE_800X800.jpg&v=3&w=800&s=WHdlHl2z0ppEx4I8qIWthAhr&b=400
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 69fc27d22d9b8978e2447efa80121623
96ba7a47f128f6d5d1ca990f19073f34fdf07ba6
8f995b60fcc854c4d2e14eed64d4702b441e75ba7d4a52372cf4b1f0c151ff7f
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A08c842b7-8847-41fc-b525-15b7e7d828c3%2FHotel_Suites_Del_Mar_Alicante_1SQUARE_800X800.jpg&v=3&w=800&s=WHdlHl2z0ppEx4I8qIWthAhr&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31449
expires: Mon, 28 Nov 2022 07:10:31 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 58944
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg
200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fa848cb85e85df184b078fe7aa95ae52
21aa6418f3a0d2b64925b66d5fb9079b7e84a11c
37d299c166e3350dee6dee647e98a86f8bd916d186bae12c42764ed0a3177085
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd94c980-e701-4603-9381-0bd47116d31d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5989
x-amzn-requestid: db10fcc5-80ab-4650-af49-d5afe36706f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR78LHQqIAMF9_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9e7-4cbd19e3227894844807742c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: P0Nx-FcvcV-f5cRPwZr5sEMb8pH3AoYFr185q_D0X2bE7z40nDn91w==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:04 GMT
age: 2118
etag: "21aa6418f3a0d2b64925b66d5fb9079b7e84a11c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Afa2c6acf-9635-4512-b793-48a3855208dd%2FMelia-Puerto-Vallarta_1-SQUARE_800X800.jpg&v=3&w=800&s=daUTaBg4CtGKY1qDYF7FZorD&b=400
200 OK 36 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Afa2c6acf-9635-4512-b793-48a3855208dd%2FMelia-Puerto-Vallarta_1-SQUARE_800X800.jpg&v=3&w=800&s=daUTaBg4CtGKY1qDYF7FZorD&b=400
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0bf18cd98dbd602e442357088b3f4299
b6e2b5999c0510e8215415d1ce305fae089dd37c
a1fb4fda9e1911d5a065cc0e9320c136cd455301ebcb481fb906a89dbf29c08b
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3Afa2c6acf-9635-4512-b793-48a3855208dd%2FMelia-Puerto-Vallarta_1-SQUARE_800X800.jpg&v=3&w=800&s=daUTaBg4CtGKY1qDYF7FZorD&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Sun, 27 Nov 2022 22:26:22 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 35588
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A2376b742-f268-43b1-9844-b9ba7c8ef2ae%2FInnside_Calvia_Beach_1SQUARE_800X800.jpg&v=3&w=800&s=eC3EzQnG36XxwkCXbyOkeCmg
200 OK 76 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A2376b742-f268-43b1-9844-b9ba7c8ef2ae%2FInnside_Calvia_Beach_1SQUARE_800X800.jpg&v=3&w=800&s=eC3EzQnG36XxwkCXbyOkeCmg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6d9a749600b6bd4a992f800e713a2036
09ab60f630961b9aaaf2a13d4a9779007f1ee500
d1d493e13390b72b72440e20351d2de4104e3cba959c9cdfb3ad079f3db28559
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A2376b742-f268-43b1-9844-b9ba7c8ef2ae%2FInnside_Calvia_Beach_1SQUARE_800X800.jpg&v=3&w=800&s=eC3EzQnG36XxwkCXbyOkeCmg HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=28742
expires: Mon, 28 Nov 2022 06:25:25 GMT
date: Sun, 27 Nov 2022 22:26:22 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 75588
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:46:16 GMT
expires: Fri, 24 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 261606
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y4PkDQAAZhkKwkgwAAzPXicqhl5CTYblkpH8rQ&u=%7CWQkkuqEZvRspmuaBTIzPuerSQ8sxlgRRRmz%2FAeamko4%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpNfsuV4bKOZdDeQeNIaEB3PTa-GAcA-NUTg9wLtPGhfkDxU_dklKR2zHiIP7C7DvOM8I-cUkAXmrI9mgJcIqYq3KP43Z9Fj_U5gvfAJ91BAqcmbWVbVZWUrx0m80TuukrkqN-JCsbadEQkmE2jdBdt9QpahgC96KL3x4L0eyI_WdXTf4BeLegM4j-1LWvI_ExyphCfl_j0ad7lb86SIlbQNl-BLqjIkxZiehtCYuS6W3jY1DBbhkU-n1Uwx50p3nQoPcbcVCElAhc1bMowkk5RqZF2_KxpTw7_qyr9oBuK6IWK7YtTnJU7nR2vOcoFBwsyXleEiMeWxJFB27etyrK7gvpOS6XL_hSVPTkxLqsXD3baWE36noFBI1Ev8D_2hi4TyzeVuRS5g8G40CkAe5tXfZrbo0JrqFjic9pkqwpnank0hBKSiZdJdo1tcZ4z6TkjdsbDLWOdz_A76TgUqJ44dDXGy-46WbuaY8WugysKRY4RQteA4Euaf-Gv8x9E6fUgrkIxBhzw0Fg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC-hp2DeSDY5nMAbCQiQbenrOwCsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzg1MTU0OTI5MTI4OTU4OMgBCakC_V3iep9wsT6oAwGqBPQBT9A8hBtlJ7eFCyyr9kqx9Wk8FJ2Mt1MmYiCiBujJVZtg99wXuW4S_5ckInjE1YeOCjQiu9LjtY9dyR1nNLSQcf_IQdGHSvC7TMC6qVBmc3uw9c5-cxVgS7ImPSUHffhZYsshNJXvBNZzJiBNv8jCbD8dOfyYXOxdllyG9r-0tyNtola_FIahJe635EcxB5EFXdxEsd_TOVuUTtxVKJK8JyKIX8S3n51pS4bbW7xTSZ97dgcwqsEd1mi8BRTkxPms9XyiqYflHMsE5sAafT_6LKIXKNyBcKZXK1qDCXfgJh6iC3wHzff58neyYB22ddM_MuB9kYAGhs3hiuHPyo7QAaAGIagHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_1ZObXU8owiPqeboPaOtY0tVKBQ-Q%26client%3Dca-pub-7851549291289588%26adurl%3D
200 OK 64 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y4PkDQAAZhkKwkgwAAzPXicqhl5CTYblkpH8rQ&u=%7CWQkkuqEZvRspmuaBTIzPuerSQ8sxlgRRRmz%2FAeamko4%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpNfsuV4bKOZdDeQeNIaEB3PTa-GAcA-NUTg9wLtPGhfkDxU_dklKR2zHiIP7C7DvOM8I-cUkAXmrI9mgJcIqYq3KP43Z9Fj_U5gvfAJ91BAqcmbWVbVZWUrx0m80TuukrkqN-JCsbadEQkmE2jdBdt9QpahgC96KL3x4L0eyI_WdXTf4BeLegM4j-1LWvI_ExyphCfl_j0ad7lb86SIlbQNl-BLqjIkxZiehtCYuS6W3jY1DBbhkU-n1Uwx50p3nQoPcbcVCElAhc1bMowkk5RqZF2_KxpTw7_qyr9oBuK6IWK7YtTnJU7nR2vOcoFBwsyXleEiMeWxJFB27etyrK7gvpOS6XL_hSVPTkxLqsXD3baWE36noFBI1Ev8D_2hi4TyzeVuRS5g8G40CkAe5tXfZrbo0JrqFjic9pkqwpnank0hBKSiZdJdo1tcZ4z6TkjdsbDLWOdz_A76TgUqJ44dDXGy-46WbuaY8WugysKRY4RQteA4Euaf-Gv8x9E6fUgrkIxBhzw0Fg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC-hp2DeSDY5nMAbCQiQbenrOwCsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzg1MTU0OTI5MTI4OTU4OMgBCakC_V3iep9wsT6oAwGqBPQBT9A8hBtlJ7eFCyyr9kqx9Wk8FJ2Mt1MmYiCiBujJVZtg99wXuW4S_5ckInjE1YeOCjQiu9LjtY9dyR1nNLSQcf_IQdGHSvC7TMC6qVBmc3uw9c5-cxVgS7ImPSUHffhZYsshNJXvBNZzJiBNv8jCbD8dOfyYXOxdllyG9r-0tyNtola_FIahJe635EcxB5EFXdxEsd_TOVuUTtxVKJK8JyKIX8S3n51pS4bbW7xTSZ97dgcwqsEd1mi8BRTkxPms9XyiqYflHMsE5sAafT_6LKIXKNyBcKZXK1qDCXfgJh6iC3wHzff58neyYB22ddM_MuB9kYAGhs3hiuHPyo7QAaAGIagHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_1ZObXU8owiPqeboPaOtY0tVKBQ-Q%26client%3Dca-pub-7851549291289588%26adurl%3D
IP
Hash e778d0deadf21e3a9f1e951962a93eb7
6f82b214a9228c562a8bc9955c82914cef1911aa
746cdae9dd0eda3253f5762286bc00e4f139d9106250b0f457a4ae0e48ee5e18
GET /delivery/r/afr.php?z=Y4PkDQAAZhkKwkgwAAzPXicqhl5CTYblkpH8rQ&u=%7CWQkkuqEZvRspmuaBTIzPuerSQ8sxlgRRRmz%2FAeamko4%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpNfsuV4bKOZdDeQeNIaEB3PTa-GAcA-NUTg9wLtPGhfkDxU_dklKR2zHiIP7C7DvOM8I-cUkAXmrI9mgJcIqYq3KP43Z9Fj_U5gvfAJ91BAqcmbWVbVZWUrx0m80TuukrkqN-JCsbadEQkmE2jdBdt9QpahgC96KL3x4L0eyI_WdXTf4BeLegM4j-1LWvI_ExyphCfl_j0ad7lb86SIlbQNl-BLqjIkxZiehtCYuS6W3jY1DBbhkU-n1Uwx50p3nQoPcbcVCElAhc1bMowkk5RqZF2_KxpTw7_qyr9oBuK6IWK7YtTnJU7nR2vOcoFBwsyXleEiMeWxJFB27etyrK7gvpOS6XL_hSVPTkxLqsXD3baWE36noFBI1Ev8D_2hi4TyzeVuRS5g8G40CkAe5tXfZrbo0JrqFjic9pkqwpnank0hBKSiZdJdo1tcZ4z6TkjdsbDLWOdz_A76TgUqJ44dDXGy-46WbuaY8WugysKRY4RQteA4Euaf-Gv8x9E6fUgrkIxBhzw0Fg&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC-hp2DeSDY5nMAbCQiQbenrOwCsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzg1MTU0OTI5MTI4OTU4OMgBCakC_V3iep9wsT6oAwGqBPQBT9A8hBtlJ7eFCyyr9kqx9Wk8FJ2Mt1MmYiCiBujJVZtg99wXuW4S_5ckInjE1YeOCjQiu9LjtY9dyR1nNLSQcf_IQdGHSvC7TMC6qVBmc3uw9c5-cxVgS7ImPSUHffhZYsshNJXvBNZzJiBNv8jCbD8dOfyYXOxdllyG9r-0tyNtola_FIahJe635EcxB5EFXdxEsd_TOVuUTtxVKJK8JyKIX8S3n51pS4bbW7xTSZ97dgcwqsEd1mi8BRTkxPms9XyiqYflHMsE5sAafT_6LKIXKNyBcKZXK1qDCXfgJh6iC3wHzff58neyYB22ddM_MuB9kYAGhs3hiuHPyo7QAaAGIagHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_1ZObXU8owiPqeboPaOtY0tVKBQ-Q%26client%3Dca-pub-7851549291289588%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 22:26:20 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=J5ExU0RLpbQ2po7doNV9lg6rHMUR3EAiYhHw9WiePU3bk8gi4tvyUsmfZXcXjCQ0YOlTIciDgv3pmO6FsqX65WMXj4ssHhUl8vQVebFt2FDB-XySds0m6oFlPAV1Ji15H7ZBA9MtWo4GqRPi1yRW0giSqsELhPskbFhDVarG4DFTTUKNFM9iKjP2HHVRAHmMxCHbk7r_EKoezVvGokyg-xtqL_JobP6Mg6hMICEHE5JEn2kQaJxJKpPEmqQuhQXb85Myaw"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 42221529
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A9d801450-4475-4d83-8ef0-e823517381d5%2FMelia_Punta_Cana_Beach_Resort_4SQUARE_800X800.jpg&v=3&w=800&s=9BFoNP5Vabrh68y6-9Zm-uWT
200 OK 84 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A9d801450-4475-4d83-8ef0-e823517381d5%2FMelia_Punta_Cana_Beach_Resort_4SQUARE_800X800.jpg&v=3&w=800&s=9BFoNP5Vabrh68y6-9Zm-uWT
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 23405937e2df437ba5cd744ad9d8c9f1
4fe68b83be65740db3776b682046bd64b776ac76
d7826df0f09714069e56aba6fabbcbc937b3ab938eb6a1124845ecb57c6a9958
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A9d801450-4475-4d83-8ef0-e823517381d5%2FMelia_Punta_Cana_Beach_Resort_4SQUARE_800X800.jpg&v=3&w=800&s=9BFoNP5Vabrh68y6-9Zm-uWT HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=36071
expires: Mon, 28 Nov 2022 08:27:33 GMT
date: Sun, 27 Nov 2022 22:26:22 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 84086
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A9d801450-4475-4d83-8ef0-e823517381d5%2FMelia_Punta_Cana_Beach_Resort_4SQUARE_800X800.jpg&v=3&w=800&s=9BFoNP5Vabrh68y6-9Zm-uWT&b=400
200 OK 30 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A9d801450-4475-4d83-8ef0-e823517381d5%2FMelia_Punta_Cana_Beach_Resort_4SQUARE_800X800.jpg&v=3&w=800&s=9BFoNP5Vabrh68y6-9Zm-uWT&b=400
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 88069f745bb259a9b869a2beb760f5a2
50ce7939a110381bd7a1c6636054fac83c443a70
4b4e84c560cd4daa01d119c98ae58f573e4ffc3d8a6c0676ae396d210df74cee
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A9d801450-4475-4d83-8ef0-e823517381d5%2FMelia_Punta_Cana_Beach_Resort_4SQUARE_800X800.jpg&v=3&w=800&s=9BFoNP5Vabrh68y6-9Zm-uWT&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Sun, 27 Nov 2022 22:26:22 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 29808
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:10:21 GMT
expires: Wed, 22 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 450961
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=116&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=426&s=kGei08nqbRO5rnBII3SA_Yqz
200 OK 15 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=116&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=426&s=kGei08nqbRO5rnBII3SA_Yqz
IP
File type PNG image data, 426 x 107, 8-bit/color RGBA, non-interlaced\012- data
Hash d9bd8186aab3eb937bbd4caf92ce53c1
997ec2abeb8245ebb811a26196e7420031a1c8de
ff4406e1018b087ba4de0715bcc45da2be9b3510f09643d0bfed0bcbfc36eac3
GET /img/img?h=116&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2Fa21d783007334b99b7401f1425c637a2_horizontal_gray.png&v=3&w=426&s=kGei08nqbRO5rnBII3SA_Yqz HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30850613
expires: Mon, 20 Nov 2023 00:03:16 GMT
date: Sun, 27 Nov 2022 22:26:21 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 15042
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:40:18 GMT
expires: Fri, 24 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 279964
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 12:31:58 GMT
expires: Sun, 26 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 122064
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=53680&adfrmid=0
302 Found 0 B URL HTTP/1.1 mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=53680&adfrmid=0
IP
ASN #50234 Eulerian Technologies S.a.s.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=53680&adfrmid=0 HTTP/1.1
Host: mm.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sun, 27 Nov 2022 22:26:22 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 0
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Location: https://mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=53680&adfrmid=0
mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=53519&adfrmid=0
302 Found 0 B URL HTTP/1.1 mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=53519&adfrmid=0
IP
ASN #50234 Eulerian Technologies S.a.s.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=53519&adfrmid=0 HTTP/1.1
Host: mm.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sun, 27 Nov 2022 22:26:22 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 0
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Location: https://mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=53519&adfrmid=0
mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=53680&adfrmid=0
200 OK 43 B URL HTTP/1.1 mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=53680&adfrmid=0
IP
ASN #50234 Eulerian Technologies S.a.s.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 718e8bd317b47c1018a861f423615c1c
874d28c9586324d5d16558065197cea533f10b67
11e3a37194c2691ff2eb5c2237cb14a9269c30e844dc48047f9324391477f11f
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=53680&adfrmid=0 HTTP/1.1
Host: mml1.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 22:26:22 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 43
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Content-Type: image/gif
Set-Cookie: etuix=S_0lFQQOjn96CrdJEHi0HiXGQsf6EEYaIhZXPmypnBQfIGu6wdbf7g--; expires=Mon, 25 Dec 2023 22:26:22 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
et0=v.NL0OgTTauiHVlXz406ddLpyV3eyEhYCOSEXbCPlKWz8w7fQMx6PVYSKVoY3c90T5YL7vF42RhLRUDNNVtdyr0a94ZIOIqY2AF8ICFyNpXwkFLWPC9i9ieq.TK1ptKeX64-; expires=Mon, 25 Dec 2023 22:26:22 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
et=1; expires=Mon, 25 Dec 2023 22:26:22 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6383e40c4e9941463e89fe7bdac828d9
302 Found 540 B URL HTTP/2 a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6383e40c4e9941463e89fe7bdac828d9
IP
Hash 9356d76c439c00ff8b19657e820766d2
c41578534968c8915aae485290609591263621a5
56c45b5974459bb9a5fbac93d1ebeb6c43073091267b16e8cd1feb1e68d891d9
GET /adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6383e40c4e9941463e89fe7bdac828d9 HTTP/1.1
Host: a1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sun, 27 Nov 2022 22:26:22 GMT
content-type: text/html; charset=utf-8
location: https://mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=53680&adfrmid=0
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=J5ExU0RLpbQ2po7doNV9lg6rHMUR3EAiYhHw9WiePU3bk8gi4tvyUsmfZXcXjCQ0YOlTIciDgv3pmO6FsqX65WMXj4ssHhUl8vQVebFt2FDB-XySds0m6oFlPAV1Ji15H7ZBA9MtWo4GqRPi1yRW0giSqsELhPskbFhDVarG4DFTTUKNFM9iKjP2HHVRAHmMxCHbk7r_EKoezVvGokyg-xtqL_JobP6Mg6hMICEHE5JEn2kQaJxJKpPEmqQuhQXb85Myaw&sds=2&rev=83599&sendBeacon=true
200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=J5ExU0RLpbQ2po7doNV9lg6rHMUR3EAiYhHw9WiePU3bk8gi4tvyUsmfZXcXjCQ0YOlTIciDgv3pmO6FsqX65WMXj4ssHhUl8vQVebFt2FDB-XySds0m6oFlPAV1Ji15H7ZBA9MtWo4GqRPi1yRW0giSqsELhPskbFhDVarG4DFTTUKNFM9iKjP2HHVRAHmMxCHbk7r_EKoezVvGokyg-xtqL_JobP6Mg6hMICEHE5JEn2kQaJxJKpPEmqQuhQXb85Myaw&sds=2&rev=83599&sendBeacon=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=J5ExU0RLpbQ2po7doNV9lg6rHMUR3EAiYhHw9WiePU3bk8gi4tvyUsmfZXcXjCQ0YOlTIciDgv3pmO6FsqX65WMXj4ssHhUl8vQVebFt2FDB-XySds0m6oFlPAV1Ji15H7ZBA9MtWo4GqRPi1yRW0giSqsELhPskbFhDVarG4DFTTUKNFM9iKjP2HHVRAHmMxCHbk7r_EKoezVvGokyg-xtqL_JobP6Mg6hMICEHE5JEn2kQaJxJKpPEmqQuhQXb85Myaw&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 22:26:22 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=Bv1wYERLpbQ2po7dTo0tgc9lRmmDZ_bB1TSbaPeUtV5kD4F_zcPWmB5pLPt6K6IpR5NyeZ3gXndW2wuIHYBgdU68LRpkCtTGm6cLglAfHFBikhNL_1dBvtM196qWnP5FpbjpeXeXrBNGYEJvtNcm1W5LMNwEDzqnU7OutHT8iZ8NXZnrG5oF1j1nc-lxo2qjYHcEWfMevIa_F63hhXBWE71ZdRu05ZmdTdUz3z_uxyeKRBh_tnmcHj-GjUv6hsooevTY_Q&sds=2&rev=83599&sendBeacon=true
200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=Bv1wYERLpbQ2po7dTo0tgc9lRmmDZ_bB1TSbaPeUtV5kD4F_zcPWmB5pLPt6K6IpR5NyeZ3gXndW2wuIHYBgdU68LRpkCtTGm6cLglAfHFBikhNL_1dBvtM196qWnP5FpbjpeXeXrBNGYEJvtNcm1W5LMNwEDzqnU7OutHT8iZ8NXZnrG5oF1j1nc-lxo2qjYHcEWfMevIa_F63hhXBWE71ZdRu05ZmdTdUz3z_uxyeKRBh_tnmcHj-GjUv6hsooevTY_Q&sds=2&rev=83599&sendBeacon=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=Bv1wYERLpbQ2po7dTo0tgc9lRmmDZ_bB1TSbaPeUtV5kD4F_zcPWmB5pLPt6K6IpR5NyeZ3gXndW2wuIHYBgdU68LRpkCtTGm6cLglAfHFBikhNL_1dBvtM196qWnP5FpbjpeXeXrBNGYEJvtNcm1W5LMNwEDzqnU7OutHT8iZ8NXZnrG5oF1j1nc-lxo2qjYHcEWfMevIa_F63hhXBWE71ZdRu05ZmdTdUz3z_uxyeKRBh_tnmcHj-GjUv6hsooevTY_Q&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 22:26:21 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWaYFmAKdg2ICAgAAAM4r5Z_8RU3TEA7kg2Nl_aXG7Xs-DO-H_wASAAA&wp=Y4PkDwAAgukKGawNAAeBPOhbBn_mGpd-y4-j-g
200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWaYFmAKdg2ICAgAAAM4r5Z_8RU3TEA7kg2Nl_aXG7Xs-DO-H_wASAAA&wp=Y4PkDwAAgukKGawNAAeBPOhbBn_mGpd-y4-j-g
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kPenErOzWaYFmAKdg2ICAgAAAM4r5Z_8RU3TEA7kg2Nl_aXG7Xs-DO-H_wASAAA&wp=Y4PkDwAAgukKGawNAAeBPOhbBn_mGpd-y4-j-g HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server-processing-duration-in-ticks: 218009
date: Sun, 27 Nov 2022 22:26:23 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWe0HfJ2DYgICAAAAzivln_xFTdMQDuSDY_1xemmVrYJu5iZAABIAAA&wp=Y4PkDgAK7uICHkhjAAM7L5GmP1J_CrzAAO9bjQ
200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kPenErOzWe0HfJ2DYgICAAAAzivln_xFTdMQDuSDY_1xemmVrYJu5iZAABIAAA&wp=Y4PkDgAK7uICHkhjAAM7L5GmP1J_CrzAAO9bjQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kPenErOzWe0HfJ2DYgICAAAAzivln_xFTdMQDuSDY_1xemmVrYJu5iZAABIAAA&wp=Y4PkDgAK7uICHkhjAAM7L5GmP1J_CrzAAO9bjQ HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server-processing-duration-in-ticks: 223864
date: Sun, 27 Nov 2022 22:26:23 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=244&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2F140cfb81012347f3b8e333cbb4c840de_the_main_hotel_brand_gray.png&v=3&w=196&s=k8lNCIDinW_q6Jjo57FiPArA
200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=244&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2F140cfb81012347f3b8e333cbb4c840de_the_main_hotel_brand_gray.png&v=3&w=196&s=k8lNCIDinW_q6Jjo57FiPArA
IP
File type PNG image data, 196 x 111, 8-bit/color RGBA, non-interlaced\012- data
Hash bc381116221b106493d972a9262c65e3
980f03704c3d56409200806ffc1b8269240383a4
391ed2f12f92968f164c061b48e5421254b9aae4dfce080b727d60dd6c1cb72e
GET /img/img?h=244&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2F140cfb81012347f3b8e333cbb4c840de_the_main_hotel_brand_gray.png&v=3&w=196&s=k8lNCIDinW_q6Jjo57FiPArA HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30858653
expires: Mon, 20 Nov 2023 02:17:17 GMT
date: Sun, 27 Nov 2022 22:26:22 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10921
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=tb6qpiPcXEEotVk8xXoJnxpbKa9Cc9Gs8D-jNVCYdLysRwxvOrjQlXf1EffS0Z-NXLr174QvuR2n_9msbdOp9HA7uYjCQz2ImEup07Yx57QjtyhibZaBaZs4ddI5808CSkG3nA7MdNcvRKjG2IMQoI98uW9oT1KWZbdIVE9iTe_D5EX5VF-GZiXmpzFbj71q5rEAJfw85PfT4DnHa_eFvo1nOqjGgGjzfeiVV_7D7ZtqouvAWirOIftpO__jdJ_ShLf9GORFHEz6nMLL2cfcRJp4tyilEbbxIw_flr33cGaz8B0fENvbcZtHv5hFRsIaogrYK_BGzavZkKGCL78w7i9M9R3vPu0Hl2LprtFlIFDlJdqMhHwSYM9GqG4-LbJbLMhTHmAfQ-rwKMxuaaVOhEJJOJyA_5447oUm6YPApfSJL2lq
200 OK 43 B URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=tb6qpiPcXEEotVk8xXoJnxpbKa9Cc9Gs8D-jNVCYdLysRwxvOrjQlXf1EffS0Z-NXLr174QvuR2n_9msbdOp9HA7uYjCQz2ImEup07Yx57QjtyhibZaBaZs4ddI5808CSkG3nA7MdNcvRKjG2IMQoI98uW9oT1KWZbdIVE9iTe_D5EX5VF-GZiXmpzFbj71q5rEAJfw85PfT4DnHa_eFvo1nOqjGgGjzfeiVV_7D7ZtqouvAWirOIftpO__jdJ_ShLf9GORFHEz6nMLL2cfcRJp4tyilEbbxIw_flr33cGaz8B0fENvbcZtHv5hFRsIaogrYK_BGzavZkKGCL78w7i9M9R3vPu0Hl2LprtFlIFDlJdqMhHwSYM9GqG4-LbJbLMhTHmAfQ-rwKMxuaaVOhEJJOJyA_5447oUm6YPApfSJL2lq
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /delivery/lg.php?cppv=3&cpp=tb6qpiPcXEEotVk8xXoJnxpbKa9Cc9Gs8D-jNVCYdLysRwxvOrjQlXf1EffS0Z-NXLr174QvuR2n_9msbdOp9HA7uYjCQz2ImEup07Yx57QjtyhibZaBaZs4ddI5808CSkG3nA7MdNcvRKjG2IMQoI98uW9oT1KWZbdIVE9iTe_D5EX5VF-GZiXmpzFbj71q5rEAJfw85PfT4DnHa_eFvo1nOqjGgGjzfeiVV_7D7ZtqouvAWirOIftpO__jdJ_ShLf9GORFHEz6nMLL2cfcRJp4tyilEbbxIw_flr33cGaz8B0fENvbcZtHv5hFRsIaogrYK_BGzavZkKGCL78w7i9M9R3vPu0Hl2LprtFlIFDlJdqMhHwSYM9GqG4-LbJbLMhTHmAfQ-rwKMxuaaVOhEJJOJyA_5447oUm6YPApfSJL2lq HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 22:26:23 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2966538
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A56592be8-3f02-48af-b6dd-fc0d4384d0d5%2FMelia_Caribe_Beach_1_800x800.jpg&v=3&w=800&s=vdImqrxCZvlG-Vs1MI53LwZo&b=400
200 OK 25 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A56592be8-3f02-48af-b6dd-fc0d4384d0d5%2FMelia_Caribe_Beach_1_800x800.jpg&v=3&w=800&s=vdImqrxCZvlG-Vs1MI53LwZo&b=400
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5f20cbb64d092ce7df97f73991a3bebc
5e003d22dc22c75ce79a71e8dab023a93cfdee6d
976e0ca2020a24c4b489082560c7bd3b25a17a55cc1d9914415af2790afd269b
GET /img/img?c=3&cq=256&h=800&m=0&partner=93075&q=80&r=2&u=https%3A%2F%2Fads1.melia.com%2Fdam%2Fjcr%3A56592be8-3f02-48af-b6dd-fc0d4384d0d5%2FMelia_Caribe_Beach_1_800x800.jpg&v=3&w=800&s=vdImqrxCZvlG-Vs1MI53LwZo&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Sun, 27 Nov 2022 22:26:23 GMT
date: Sun, 27 Nov 2022 22:26:23 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 24746
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=556&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2F140cfb81012347f3b8e333cbb4c840de_the_main_hotel_brand_gray.png&v=3&w=196&s=sl36d4NYH1BH1xNU3EXYUG5g
200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=556&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2F140cfb81012347f3b8e333cbb4c840de_the_main_hotel_brand_gray.png&v=3&w=196&s=sl36d4NYH1BH1xNU3EXYUG5g
IP
File type PNG image data, 196 x 111, 8-bit/color RGBA, non-interlaced\012- data
Hash bc381116221b106493d972a9262c65e3
980f03704c3d56409200806ffc1b8269240383a4
391ed2f12f92968f164c061b48e5421254b9aae4dfce080b727d60dd6c1cb72e
GET /img/img?h=556&m=0&partner=93075&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F5031%2F190729%2F140cfb81012347f3b8e333cbb4c840de_the_main_hotel_brand_gray.png&v=3&w=196&s=sl36d4NYH1BH1xNU3EXYUG5g HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30858653
expires: Mon, 20 Nov 2023 02:17:17 GMT
date: Sun, 27 Nov 2022 22:26:23 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10921
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=J5ExU0RLpbQ2po7doNV9lg6rHMUR3EAiYhHw9WiePU3bk8gi4tvyUsmfZXcXjCQ0YOlTIciDgv3pmO6FsqX65WMXj4ssHhUl8vQVebFt2FDB-XySds0m6oFlPAV1Ji15H7ZBA9MtWo4GqRPi1yRW0giSqsELhPskbFhDVarG4DFTTUKNFM9iKjP2HHVRAHmMxCHbk7r_EKoezVvGokyg-xtqL_JobP6Mg6hMICEHE5JEn2kQaJxJKpPEmqQuhQXb85Myaw&sds=2&rev=83599&sendBeacon=true
200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=J5ExU0RLpbQ2po7doNV9lg6rHMUR3EAiYhHw9WiePU3bk8gi4tvyUsmfZXcXjCQ0YOlTIciDgv3pmO6FsqX65WMXj4ssHhUl8vQVebFt2FDB-XySds0m6oFlPAV1Ji15H7ZBA9MtWo4GqRPi1yRW0giSqsELhPskbFhDVarG4DFTTUKNFM9iKjP2HHVRAHmMxCHbk7r_EKoezVvGokyg-xtqL_JobP6Mg6hMICEHE5JEn2kQaJxJKpPEmqQuhQXb85Myaw&sds=2&rev=83599&sendBeacon=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=J5ExU0RLpbQ2po7doNV9lg6rHMUR3EAiYhHw9WiePU3bk8gi4tvyUsmfZXcXjCQ0YOlTIciDgv3pmO6FsqX65WMXj4ssHhUl8vQVebFt2FDB-XySds0m6oFlPAV1Ji15H7ZBA9MtWo4GqRPi1yRW0giSqsELhPskbFhDVarG4DFTTUKNFM9iKjP2HHVRAHmMxCHbk7r_EKoezVvGokyg-xtqL_JobP6Mg6hMICEHE5JEn2kQaJxJKpPEmqQuhQXb85Myaw&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 22:26:23 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=Bv1wYERLpbQ2po7dTo0tgc9lRmmDZ_bB1TSbaPeUtV5kD4F_zcPWmB5pLPt6K6IpR5NyeZ3gXndW2wuIHYBgdU68LRpkCtTGm6cLglAfHFBikhNL_1dBvtM196qWnP5FpbjpeXeXrBNGYEJvtNcm1W5LMNwEDzqnU7OutHT8iZ8NXZnrG5oF1j1nc-lxo2qjYHcEWfMevIa_F63hhXBWE71ZdRu05ZmdTdUz3z_uxyeKRBh_tnmcHj-GjUv6hsooevTY_Q&sds=2&rev=83599&sendBeacon=true
200 OK 80 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=Bv1wYERLpbQ2po7dTo0tgc9lRmmDZ_bB1TSbaPeUtV5kD4F_zcPWmB5pLPt6K6IpR5NyeZ3gXndW2wuIHYBgdU68LRpkCtTGm6cLglAfHFBikhNL_1dBvtM196qWnP5FpbjpeXeXrBNGYEJvtNcm1W5LMNwEDzqnU7OutHT8iZ8NXZnrG5oF1j1nc-lxo2qjYHcEWfMevIa_F63hhXBWE71ZdRu05ZmdTdUz3z_uxyeKRBh_tnmcHj-GjUv6hsooevTY_Q&sds=2&rev=83599&sendBeacon=true
IP
File type gzip compressed data, max compression\012- data
Hash 0d38cb6318042418e124ad96f357dc47
1dfd5382ddcbc5302489fd3c1df3ed2f5f7810b9
a78b74fd63f67a3e8ccfd225a4ac120a4706051ab190c66aa844b7478022b6b4
POST /all?cppv=3&cpp=Bv1wYERLpbQ2po7dTo0tgc9lRmmDZ_bB1TSbaPeUtV5kD4F_zcPWmB5pLPt6K6IpR5NyeZ3gXndW2wuIHYBgdU68LRpkCtTGm6cLglAfHFBikhNL_1dBvtM196qWnP5FpbjpeXeXrBNGYEJvtNcm1W5LMNwEDzqnU7OutHT8iZ8NXZnrG5oF1j1nc-lxo2qjYHcEWfMevIa_F63hhXBWE71ZdRu05ZmdTdUz3z_uxyeKRBh_tnmcHj-GjUv6hsooevTY_Q&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 22:26:23 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=FNA9yvnTBSVdD-mFds6_mLz8BV9aHK2NhdaWJjvS16v2EaHWKJib1z5sUprTAIGjX9tGvEMwkg8Y3xYx5rDONRqHKVrIkprrGmbO4NWJV0wRK0XiKAyRGH76M1Z8j6QJdLVr0oSme08_exioRkJz8AqFnJOaTzn9u8FLrbbjELCZPGOuTYFHpZnjtahNO3FQbXcplvrMTdZ6DnnK1QcWn4tDjfvuB-gCp1ubrwrstpGvrdrT0CxhFo68IrB79MNeTxcUGIi8AsHmbr2qYbSDglT55sZEoG9u_58WvobAoSvVhsIg9DXJHRwauDfVVvnworaANjt-IHTzTle7yfuxvSY51SNfJXXW2vSEX3iv4LyJNlIcQDryDF12vsmwIGXm8fhuJOcdH05Q0fABUhoaxeosVjr2pnjt2pKkx1CMcjuSue-Z
200 OK 43 B URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=FNA9yvnTBSVdD-mFds6_mLz8BV9aHK2NhdaWJjvS16v2EaHWKJib1z5sUprTAIGjX9tGvEMwkg8Y3xYx5rDONRqHKVrIkprrGmbO4NWJV0wRK0XiKAyRGH76M1Z8j6QJdLVr0oSme08_exioRkJz8AqFnJOaTzn9u8FLrbbjELCZPGOuTYFHpZnjtahNO3FQbXcplvrMTdZ6DnnK1QcWn4tDjfvuB-gCp1ubrwrstpGvrdrT0CxhFo68IrB79MNeTxcUGIi8AsHmbr2qYbSDglT55sZEoG9u_58WvobAoSvVhsIg9DXJHRwauDfVVvnworaANjt-IHTzTle7yfuxvSY51SNfJXXW2vSEX3iv4LyJNlIcQDryDF12vsmwIGXm8fhuJOcdH05Q0fABUhoaxeosVjr2pnjt2pKkx1CMcjuSue-Z
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /delivery/lg.php?cppv=3&cpp=FNA9yvnTBSVdD-mFds6_mLz8BV9aHK2NhdaWJjvS16v2EaHWKJib1z5sUprTAIGjX9tGvEMwkg8Y3xYx5rDONRqHKVrIkprrGmbO4NWJV0wRK0XiKAyRGH76M1Z8j6QJdLVr0oSme08_exioRkJz8AqFnJOaTzn9u8FLrbbjELCZPGOuTYFHpZnjtahNO3FQbXcplvrMTdZ6DnnK1QcWn4tDjfvuB-gCp1ubrwrstpGvrdrT0CxhFo68IrB79MNeTxcUGIi8AsHmbr2qYbSDglT55sZEoG9u_58WvobAoSvVhsIg9DXJHRwauDfVVvnworaANjt-IHTzTle7yfuxvSY51SNfJXXW2vSEX3iv4LyJNlIcQDryDF12vsmwIGXm8fhuJOcdH05Q0fABUhoaxeosVjr2pnjt2pKkx1CMcjuSue-Z HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 22:26:23 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3327456
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6383e40ea3d76d80f113b7826ea686af
302 Found 539 B URL HTTP/2 a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6383e40ea3d76d80f113b7826ea686af
IP
Hash c88247b410462c8ce718c67325479093
f5d274940673620f8aa4aee4a74c6b3503b3bcc2
f870588cc01ee1317c00954ab099e65e2611c7263fda47ed976fb725d14845e4
GET /adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6383e40ea3d76d80f113b7826ea686af HTTP/1.1
Host: a1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sun, 27 Nov 2022 22:26:23 GMT
content-type: text/html; charset=utf-8
location: https://mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=86187&adfrmid=0
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6383e40e6dfde5906f05da9547c3f71d
302 Found 497 B URL HTTP/2 a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6383e40e6dfde5906f05da9547c3f71d
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (425), with CRLF line terminators
Hash eaeae7afdfccd9fea4b3c2d349620060
ee9fe4d6e9ad067986408d74014e469b87a043e9
441212c434763f8efc7968d97b64f8ea34f4819f4dd068ff7537d82b80d63a57
GET /adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6383e40e6dfde5906f05da9547c3f71d HTTP/1.1
Host: a1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sun, 27 Nov 2022 22:26:23 GMT
content-type: text/html; charset=utf-8
location: https://mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=65634&adfrmid=0
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=86187&adfrmid=0
302 Found 0 B URL HTTP/1.1 mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=86187&adfrmid=0
IP
ASN #50234 Eulerian Technologies S.a.s.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=86187&adfrmid=0 HTTP/1.1
Host: mm.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Cookie: etuix=5aAMiLvWwOxoRdQwv8JWbvS5M7GX6GWv1yvmnT_CtdPW8oHwaBpqaQ--; et0=w1kpiGODknkicOY3eApauicHvYkzFXTYQB8HeLeUbCs3hLruItvodNFNgxwm.yWF4Ue8tvg73CaxxRhS6crBavQUOnATfGHIICN4rlAjpPCqSrTH6bcdX47im9kBatfvCVE-; et=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sun, 27 Nov 2022 22:26:23 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 0
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Location: https://mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=86187&adfrmid=0
mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=65634&adfrmid=0
302 Found 0 B URL HTTP/1.1 mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=65634&adfrmid=0
IP
ASN #50234 Eulerian Technologies S.a.s.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=65634&adfrmid=0 HTTP/1.1
Host: mm.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Cookie: etuix=5aAMiLvWwOxoRdQwv8JWbvS5M7GX6GWv1yvmnT_CtdPW8oHwaBpqaQ--; et0=w1kpiGODknkicOY3eApauicHvYkzFXTYQB8HeLeUbCs3hLruItvodNFNgxwm.yWF4Ue8tvg73CaxxRhS6crBavQUOnATfGHIICN4rlAjpPCqSrTH6bcdX47im9kBatfvCVE-; et=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sun, 27 Nov 2022 22:26:23 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 0
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Location: https://mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=65634&adfrmid=0
mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=86187&adfrmid=0
200 OK 43 B URL HTTP/1.1 mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=86187&adfrmid=0
IP
ASN #50234 Eulerian Technologies S.a.s.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 718e8bd317b47c1018a861f423615c1c
874d28c9586324d5d16558065197cea533f10b67
11e3a37194c2691ff2eb5c2237cb14a9269c30e844dc48047f9324391477f11f
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=86187&adfrmid=0 HTTP/1.1
Host: mml1.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Cookie: etuix=5aAMiLvWwOxoRdQwv8JWbvS5M7GX6GWv1yvmnT_CtdPW8oHwaBpqaQ--; et0=w1kpiGODknkicOY3eApauicHvYkzFXTYQB8HeLeUbCs3hLruItvodNFNgxwm.yWF4Ue8tvg73CaxxRhS6crBavQUOnATfGHIICN4rlAjpPCqSrTH6bcdX47im9kBatfvCVE-; et=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 22:26:24 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 43
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Content-Type: image/gif
Set-Cookie: et0=xildF8tVl4u9w2Wj_iMHY_z1T0n8edQxvBiChmYhSA5JnSIQZUcmejnRDKHpjbXOQb1BSQMo8QVkhZefqotAY3kCIuPLRQLJQ46a5jdSeNCFSFka8yGicxjDhwzxSsyz8_0-; expires=Mon, 25 Dec 2023 22:26:24 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
et=1; expires=Mon, 25 Dec 2023 22:26:24 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=65634&adfrmid=0
200 OK 43 B URL HTTP/1.1 mml1.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=65634&adfrmid=0
IP
ASN #50234 Eulerian Technologies S.a.s.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 718e8bd317b47c1018a861f423615c1c
874d28c9586324d5d16558065197cea533f10b67
11e3a37194c2691ff2eb5c2237cb14a9269c30e844dc48047f9324391477f11f
GET /dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=65634&adfrmid=0 HTTP/1.1
Host: mml1.melia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ads.eu.criteo.com/
Connection: keep-alive
Cookie: etuix=5aAMiLvWwOxoRdQwv8JWbvS5M7GX6GWv1yvmnT_CtdPW8oHwaBpqaQ--; et0=w1kpiGODknkicOY3eApauicHvYkzFXTYQB8HeLeUbCs3hLruItvodNFNgxwm.yWF4Ue8tvg73CaxxRhS6crBavQUOnATfGHIICN4rlAjpPCqSrTH6bcdX47im9kBatfvCVE-; et=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 22:26:24 GMT
Server: EWS
Accept-Ranges: none
Content-Length: 43
Connection: Close
Pragma: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Cache-Control: max-age=0, private
Strict-Transport-Security: max-age=604800
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
X-XSS-Protection: 0
Content-Type: image/gif
Set-Cookie: et0=.2TJuVllIdzAX6fvHd9KVi0dLO1pjz5AJB9UEDMxuTsXS7QqxjfpG.jsm5VPJzBdqXICIIx29wcI21t9KHD_7WaNPhOYXF2DdzKnFIiLbNX.Fzm2voqomuabOt4PPdDaSKg-; expires=Mon, 25 Dec 2023 22:26:24 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
et=1; expires=Mon, 25 Dec 2023 22:26:24 GMT; domain=.melia.com; path=/; SameSite=None; secure; HttpOnly
csm.eu.criteo.net/all?cppv=3&cpp=h-mwy0RLpbQ2po7d_IyjxJTi2bH_7R9sAYfUYWmhf0uYjdPKCUxiVIVPZ3UGc_QlRffPL3cVlru7NteJ8yGqyggkAMS86oeacLQx4ju6aTuNEPpMbpsN_iQlRac58Tppyrn1vBWQh7BSSQdeVups7iVrqgfp7-rvIEuGMewlTO9B9yR__-VTViiVVUuTVujcd9oMQHBYeoyMplFyHxancxaKuQ5B9371PHkp88sjDPeUxoHK3WqvQtQaMWz9LhdgfDyR2g&sds=2&rev=83599&sendBeacon=true
200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=h-mwy0RLpbQ2po7d_IyjxJTi2bH_7R9sAYfUYWmhf0uYjdPKCUxiVIVPZ3UGc_QlRffPL3cVlru7NteJ8yGqyggkAMS86oeacLQx4ju6aTuNEPpMbpsN_iQlRac58Tppyrn1vBWQh7BSSQdeVups7iVrqgfp7-rvIEuGMewlTO9B9yR__-VTViiVVUuTVujcd9oMQHBYeoyMplFyHxancxaKuQ5B9371PHkp88sjDPeUxoHK3WqvQtQaMWz9LhdgfDyR2g&sds=2&rev=83599&sendBeacon=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=h-mwy0RLpbQ2po7d_IyjxJTi2bH_7R9sAYfUYWmhf0uYjdPKCUxiVIVPZ3UGc_QlRffPL3cVlru7NteJ8yGqyggkAMS86oeacLQx4ju6aTuNEPpMbpsN_iQlRac58Tppyrn1vBWQh7BSSQdeVups7iVrqgfp7-rvIEuGMewlTO9B9yR__-VTViiVVUuTVujcd9oMQHBYeoyMplFyHxancxaKuQ5B9371PHkp88sjDPeUxoHK3WqvQtQaMWz9LhdgfDyR2g&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 22:26:23 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=lIRdR0RLpbQ2po7d1RHG_gU25DENJM9uXQvxIh2EE06yQGc3_iCXEckl1nTREO-ovri7QWdaCYY1u6sAp9cpUizVdrBcd2Y8wSUzMMrWpx9QxofLYCtgRoqKYg6KvCbWWwMCbprxkbk2PdOgliVJIp47NviK3-94NY3P6Sk-OnP7icAVqSF0N7lYBgOvrZyJzKgDcdzt0p2uNj2Yg7RvNVW7mlbfaUumlNYC9moY4G-Z0lH5-XdhtQvmoArVjk-4ZJJOCw443mh5_iHs&sds=2&rev=83599&sendBeacon=true
200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=lIRdR0RLpbQ2po7d1RHG_gU25DENJM9uXQvxIh2EE06yQGc3_iCXEckl1nTREO-ovri7QWdaCYY1u6sAp9cpUizVdrBcd2Y8wSUzMMrWpx9QxofLYCtgRoqKYg6KvCbWWwMCbprxkbk2PdOgliVJIp47NviK3-94NY3P6Sk-OnP7icAVqSF0N7lYBgOvrZyJzKgDcdzt0p2uNj2Yg7RvNVW7mlbfaUumlNYC9moY4G-Z0lH5-XdhtQvmoArVjk-4ZJJOCw443mh5_iHs&sds=2&rev=83599&sendBeacon=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=lIRdR0RLpbQ2po7d1RHG_gU25DENJM9uXQvxIh2EE06yQGc3_iCXEckl1nTREO-ovri7QWdaCYY1u6sAp9cpUizVdrBcd2Y8wSUzMMrWpx9QxofLYCtgRoqKYg6KvCbWWwMCbprxkbk2PdOgliVJIp47NviK3-94NY3P6Sk-OnP7icAVqSF0N7lYBgOvrZyJzKgDcdzt0p2uNj2Yg7RvNVW7mlbfaUumlNYC9moY4G-Z0lH5-XdhtQvmoArVjk-4ZJJOCw443mh5_iHs&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 22:26:23 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=h-mwy0RLpbQ2po7d_IyjxJTi2bH_7R9sAYfUYWmhf0uYjdPKCUxiVIVPZ3UGc_QlRffPL3cVlru7NteJ8yGqyggkAMS86oeacLQx4ju6aTuNEPpMbpsN_iQlRac58Tppyrn1vBWQh7BSSQdeVups7iVrqgfp7-rvIEuGMewlTO9B9yR__-VTViiVVUuTVujcd9oMQHBYeoyMplFyHxancxaKuQ5B9371PHkp88sjDPeUxoHK3WqvQtQaMWz9LhdgfDyR2g&sds=2&rev=83599&sendBeacon=true
200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=h-mwy0RLpbQ2po7d_IyjxJTi2bH_7R9sAYfUYWmhf0uYjdPKCUxiVIVPZ3UGc_QlRffPL3cVlru7NteJ8yGqyggkAMS86oeacLQx4ju6aTuNEPpMbpsN_iQlRac58Tppyrn1vBWQh7BSSQdeVups7iVrqgfp7-rvIEuGMewlTO9B9yR__-VTViiVVUuTVujcd9oMQHBYeoyMplFyHxancxaKuQ5B9371PHkp88sjDPeUxoHK3WqvQtQaMWz9LhdgfDyR2g&sds=2&rev=83599&sendBeacon=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=h-mwy0RLpbQ2po7d_IyjxJTi2bH_7R9sAYfUYWmhf0uYjdPKCUxiVIVPZ3UGc_QlRffPL3cVlru7NteJ8yGqyggkAMS86oeacLQx4ju6aTuNEPpMbpsN_iQlRac58Tppyrn1vBWQh7BSSQdeVups7iVrqgfp7-rvIEuGMewlTO9B9yR__-VTViiVVUuTVujcd9oMQHBYeoyMplFyHxancxaKuQ5B9371PHkp88sjDPeUxoHK3WqvQtQaMWz9LhdgfDyR2g&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 22:26:25 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y4PkDQAAf9kCHkTUAAkv696IvNnj5yz2yFu8Xw&u=%7CWQkkuqEZvRv7vu%2F3LOCR0DA9DRaJxZ%2FeQkd8OHHaBaI%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm1aUAeLqHS1XekroET1NqUlV67O3IclkIWPKij0dHUn5Fo7xjK8UfwhS1f6w3kMpy4M6fMJind-2T6cMI8JvnJv8FQorGSaORqP7YPfD6Fb4mZ9_SAticGMmMy6NXVhMTGBAhxo_QaqwSusoNCYFLF96XG99yn75XiZP_v-GrDostcbLxnS-dBdFHqGSX8IVWCA6yVmkeobCI333qu0mUur5iXH0g6f4NIhtO4IfpzrkYbe4GuMDCZyHGyyimILefEnwxislkZJ1kF8z5wMCKtOT2V54ofVNkLPRxfdIXZKNPZu4jYaKzWlfqihVD7wl3MWOLlwGCl-PAP8fmJ8H0MsSo-FSfR12Odz0dtQ08eYzd9pOxuoUNka7SBaWMgZM1p2DvOk-jY8DNmvdjbp4zX-o2-J6S7WM6NEl8U7ftHmOCUw9kxK2m9GbChdFLCW5JkE9KI_AnsBsGs6qx1ECw4uJdId96zlT9NOgl_HjnMLmdW4ejURlSSWGCDOCqoEQT8bK5GweQNgUQ03ddwiITNU&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCf5OXDeSDY9n_AdSJ-cAP69-k8AvJntKxXKX8k_dwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTc4NTE1NDkyOTEyODk1ODjIAQmpAv1d4nqfcLE-qAMBqgT1AU_QstziMchxyYQ-f46ckVsz5oM7EbdqrbGgeHdbBVbBNk-bjUq8kdNJPHv53aGPXFOo-4jEfgofYyNeAzbmgnr_LzCJ0HdvBuPAiXRZVo0RlKPbqFfRodiaVmMHddB1gnn9bdsMyDf7WolDpHeaANeJkxF3X2KEXz6kHA9dWVYhBGfZjNN2-ajjfIZbY3TY14rwZnLxhGCq2MUkrgCAn8RHWiHO6d4xqwdMdOw5WSEm_kWEUOw0mcJ_SXxr3cyCEkg-UhU8MT8OizYJc4Q3J05Lx49dSy8FyGVD_wqhLSGwSLbOttcz7YaxLZg8STf4WozU7TAhgAaGzeGK4c_KjtABoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_0FCR71WiF1WmEnCVNIADg8vmc2QA%26client%3Dca-pub-7851549291289588%26adurl%3D
200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y4PkDQAAf9kCHkTUAAkv696IvNnj5yz2yFu8Xw&u=%7CWQkkuqEZvRv7vu%2F3LOCR0DA9DRaJxZ%2FeQkd8OHHaBaI%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm1aUAeLqHS1XekroET1NqUlV67O3IclkIWPKij0dHUn5Fo7xjK8UfwhS1f6w3kMpy4M6fMJind-2T6cMI8JvnJv8FQorGSaORqP7YPfD6Fb4mZ9_SAticGMmMy6NXVhMTGBAhxo_QaqwSusoNCYFLF96XG99yn75XiZP_v-GrDostcbLxnS-dBdFHqGSX8IVWCA6yVmkeobCI333qu0mUur5iXH0g6f4NIhtO4IfpzrkYbe4GuMDCZyHGyyimILefEnwxislkZJ1kF8z5wMCKtOT2V54ofVNkLPRxfdIXZKNPZu4jYaKzWlfqihVD7wl3MWOLlwGCl-PAP8fmJ8H0MsSo-FSfR12Odz0dtQ08eYzd9pOxuoUNka7SBaWMgZM1p2DvOk-jY8DNmvdjbp4zX-o2-J6S7WM6NEl8U7ftHmOCUw9kxK2m9GbChdFLCW5JkE9KI_AnsBsGs6qx1ECw4uJdId96zlT9NOgl_HjnMLmdW4ejURlSSWGCDOCqoEQT8bK5GweQNgUQ03ddwiITNU&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCf5OXDeSDY9n_AdSJ-cAP69-k8AvJntKxXKX8k_dwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTc4NTE1NDkyOTEyODk1ODjIAQmpAv1d4nqfcLE-qAMBqgT1AU_QstziMchxyYQ-f46ckVsz5oM7EbdqrbGgeHdbBVbBNk-bjUq8kdNJPHv53aGPXFOo-4jEfgofYyNeAzbmgnr_LzCJ0HdvBuPAiXRZVo0RlKPbqFfRodiaVmMHddB1gnn9bdsMyDf7WolDpHeaANeJkxF3X2KEXz6kHA9dWVYhBGfZjNN2-ajjfIZbY3TY14rwZnLxhGCq2MUkrgCAn8RHWiHO6d4xqwdMdOw5WSEm_kWEUOw0mcJ_SXxr3cyCEkg-UhU8MT8OizYJc4Q3J05Lx49dSy8FyGVD_wqhLSGwSLbOttcz7YaxLZg8STf4WozU7TAhgAaGzeGK4c_KjtABoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_0FCR71WiF1WmEnCVNIADg8vmc2QA%26client%3Dca-pub-7851549291289588%26adurl%3D
IP
GET /delivery/r/afr.php?z=Y4PkDQAAf9kCHkTUAAkv696IvNnj5yz2yFu8Xw&u=%7CWQkkuqEZvRv7vu%2F3LOCR0DA9DRaJxZ%2FeQkd8OHHaBaI%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm1aUAeLqHS1XekroET1NqUlV67O3IclkIWPKij0dHUn5Fo7xjK8UfwhS1f6w3kMpy4M6fMJind-2T6cMI8JvnJv8FQorGSaORqP7YPfD6Fb4mZ9_SAticGMmMy6NXVhMTGBAhxo_QaqwSusoNCYFLF96XG99yn75XiZP_v-GrDostcbLxnS-dBdFHqGSX8IVWCA6yVmkeobCI333qu0mUur5iXH0g6f4NIhtO4IfpzrkYbe4GuMDCZyHGyyimILefEnwxislkZJ1kF8z5wMCKtOT2V54ofVNkLPRxfdIXZKNPZu4jYaKzWlfqihVD7wl3MWOLlwGCl-PAP8fmJ8H0MsSo-FSfR12Odz0dtQ08eYzd9pOxuoUNka7SBaWMgZM1p2DvOk-jY8DNmvdjbp4zX-o2-J6S7WM6NEl8U7ftHmOCUw9kxK2m9GbChdFLCW5JkE9KI_AnsBsGs6qx1ECw4uJdId96zlT9NOgl_HjnMLmdW4ejURlSSWGCDOCqoEQT8bK5GweQNgUQ03ddwiITNU&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCf5OXDeSDY9n_AdSJ-cAP69-k8AvJntKxXKX8k_dwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTc4NTE1NDkyOTEyODk1ODjIAQmpAv1d4nqfcLE-qAMBqgT1AU_QstziMchxyYQ-f46ckVsz5oM7EbdqrbGgeHdbBVbBNk-bjUq8kdNJPHv53aGPXFOo-4jEfgofYyNeAzbmgnr_LzCJ0HdvBuPAiXRZVo0RlKPbqFfRodiaVmMHddB1gnn9bdsMyDf7WolDpHeaANeJkxF3X2KEXz6kHA9dWVYhBGfZjNN2-ajjfIZbY3TY14rwZnLxhGCq2MUkrgCAn8RHWiHO6d4xqwdMdOw5WSEm_kWEUOw0mcJ_SXxr3cyCEkg-UhU8MT8OizYJc4Q3J05Lx49dSy8FyGVD_wqhLSGwSLbOttcz7YaxLZg8STf4WozU7TAhgAaGzeGK4c_KjtABoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_0FCR71WiF1WmEnCVNIADg8vmc2QA%26client%3Dca-pub-7851549291289588%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 22:26:21 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=Bv1wYERLpbQ2po7dTo0tgc9lRmmDZ_bB1TSbaPeUtV5kD4F_zcPWmB5pLPt6K6IpR5NyeZ3gXndW2wuIHYBgdU68LRpkCtTGm6cLglAfHFBikhNL_1dBvtM196qWnP5FpbjpeXeXrBNGYEJvtNcm1W5LMNwEDzqnU7OutHT8iZ8NXZnrG5oF1j1nc-lxo2qjYHcEWfMevIa_F63hhXBWE71ZdRu05ZmdTdUz3z_uxyeKRBh_tnmcHj-GjUv6hsooevTY_Q"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 51677232
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=fA_mJfnTBSVdD-mFds6_mLz8BV-9yiDVkHzCtouiStm6KpoS8d1KzEz7F6xocRk7fjFxUwx8kjcPx3DJRcR0t_vZjPb_u-GVpPcrSHdqWaxmoZsEnuNYT7cYu-ToraA2U3ivrR5Dgw7UTo1Anl60R68AljcSjopNyL6B8MiCLH7FewPl7No5RqP4eh_m0kCeCX5JdntF0IqlARaUmfGhxd3da4JnwKE5pIn1YJhsiW05r9eorTaaWQlC7RLJXLziirvSHeOFYqZV5Bh69h5Ol5L-uIgWCiHLkZFYq_GmQ4w9iU_mI75Gr4ab_cmKKWesTdXHw-u4BG0-of3OB1sZOLHR1LvvR7divN_9Qvtqu5oRJOXEwOPXYRMushxU5aIhQKJckU481vg3dccAh2XY3vBpHKGmyeZ-rufCSeQNh29BPpzc
200 OK 0 B URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=fA_mJfnTBSVdD-mFds6_mLz8BV-9yiDVkHzCtouiStm6KpoS8d1KzEz7F6xocRk7fjFxUwx8kjcPx3DJRcR0t_vZjPb_u-GVpPcrSHdqWaxmoZsEnuNYT7cYu-ToraA2U3ivrR5Dgw7UTo1Anl60R68AljcSjopNyL6B8MiCLH7FewPl7No5RqP4eh_m0kCeCX5JdntF0IqlARaUmfGhxd3da4JnwKE5pIn1YJhsiW05r9eorTaaWQlC7RLJXLziirvSHeOFYqZV5Bh69h5Ol5L-uIgWCiHLkZFYq_GmQ4w9iU_mI75Gr4ab_cmKKWesTdXHw-u4BG0-of3OB1sZOLHR1LvvR7divN_9Qvtqu5oRJOXEwOPXYRMushxU5aIhQKJckU481vg3dccAh2XY3vBpHKGmyeZ-rufCSeQNh29BPpzc
IP
GET /delivery/lg.php?cppv=3&cpp=fA_mJfnTBSVdD-mFds6_mLz8BV-9yiDVkHzCtouiStm6KpoS8d1KzEz7F6xocRk7fjFxUwx8kjcPx3DJRcR0t_vZjPb_u-GVpPcrSHdqWaxmoZsEnuNYT7cYu-ToraA2U3ivrR5Dgw7UTo1Anl60R68AljcSjopNyL6B8MiCLH7FewPl7No5RqP4eh_m0kCeCX5JdntF0IqlARaUmfGhxd3da4JnwKE5pIn1YJhsiW05r9eorTaaWQlC7RLJXLziirvSHeOFYqZV5Bh69h5Ol5L-uIgWCiHLkZFYq_GmQ4w9iU_mI75Gr4ab_cmKKWesTdXHw-u4BG0-of3OB1sZOLHR1LvvR7divN_9Qvtqu5oRJOXEwOPXYRMushxU5aIhQKJckU481vg3dccAh2XY3vBpHKGmyeZ-rufCSeQNh29BPpzc HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 22:26:21 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3515030
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/adchoices_en.svg
200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/adchoices_en.svg
IP
GET /flash/icon/adchoices_en.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 22:26:22 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:27:58 GMT
etag: W/"5e42b9ee-759"
expires: Wed, 22 Nov 2023 22:26:22 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/animejs/animejs.js
200 OK 0 B URL HTTP/2 static.criteo.net/animejs/animejs.js
IP
GET /animejs/animejs.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 22:26:22 GMT
content-type: text/javascript
last-modified: Tue, 26 Mar 2019 17:44:11 GMT
etag: W/"5c9a64eb-3181"
expires: Wed, 22 Nov 2023 22:26:22 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6383e40d4010550804ff58b2c5ddca90
302 Found 0 B URL HTTP/2 a1.adform.net/adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6383e40d4010550804ff58b2c5ddca90
IP
GET /adfserve/?bn=54989417;1x1inv=1;srctype=3;gdpr=1;;ord=6383e40d4010550804ff58b2c5ddca90 HTTP/1.1
Host: a1.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sun, 27 Nov 2022 22:26:22 GMT
content-type: text/html; charset=utf-8
location: https://mm.melia.com/dynview/melia-com/1x1.b?ead-publisher=criteo&ead-name=3_EMEA_PT_C_OthersEMEA_p-criteo&ead-location=display_Prospecting_OthersEMEA-0x0_en&ead-creative=OthersEMEA-criteo-OE_AO_PRS_VACACIONAL_AFT-0x0_en&ead-creativetype=0x0_en&eseg-name=campaign&eseg-item=vacacional&ead-mediaplan=OthersEMEA-Prospecting&ea-rnd=53519&adfrmid=0
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:400%7CMontserrat:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek,latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato:400%7CMontserrat:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek,latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
IP
GET /css?family=Lato:400%7CMontserrat:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek,latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 22:26:22 GMT
date: Sun, 27 Nov 2022 22:26:22 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y4PkDwAAgukKGawNAAeBPOhbBn_mGpd-y4-j-g&u=%7Cv2V5lXqQPQRAb7eYakqtJU8fuOGF6dxl4bvMX0WZCuQ%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy4k-bnRiHLHefgD42oc7Xr1KoqOFMsGJwVtO1H1wzHQsdOUmLW35mW5dzw48bimB3T5PMv5Jz1bIn97gqXm48kY-o9kkRYYh1r1IWsroEOEAknb5mGJ7U-dv6A87nHcmzmTTJn9bAkOvq2nvEyyKWsvvMruW8JE9UIDliw2ZIdH0ZNZWPjDe4HM1KcR2a1qLdXE5q9N-TZe1PVAXZbndf7e0NPneN7_BRpTgwq8C607rDj6uZ4DCYsmBC47jKD8bgt567gacHJxbfsmBO404vJZwr1079_EDjE3-LFVTU3Ix2qH3rDx8iid_J6cqmPLN2_LGDojYHCaXSeFqThg560ivcQrUi-TjvHE4HVSEd-DuPxjVxpo5g5KE9w0ilghgOBb37tIWhjSqwHcbDa3wjtdQhnoI0v-Fb2S82485-_flYliqR7GuretUUpWYV6IpOFgJIQK1GdcznuW1nyf3rvpEBV3dVnWlLDT6AL9SaGV0P914YHDaB1yxbzrgkzhsTw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCPX-HD-SDY-mFAo3YZryCnrAKyZ7SsVzNhuPWkwHAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzg1MTU0OTI5MTI4OTU4OMgBCakC_V3iep9wsT6oAwGqBPsBT9BrlPKbCop5UQYH-SrUyvEFBks9yOvReIU6kbM8m0mC7z7xd3u0KGxppRjIMkbBMcoy837JS8Aly72_Q21keDw0L-owoaLSJiUUua53VIRt-Ms4y50LBJmnwTC1ihuk2hs9fKTs4NMO915CdileOugK96_nkxSMi1TUcW1Nf2suOm9x5vebzOd-Wjfk6nMjv3KX_P3O53F57WT8Z3QP1OWy-jzgtyprMWDoIY3CivwHrSLr1MEiAMyNm4arQv7Doqf3uKUtc1gdWYBYpuPvLYw5Lbwk4g6FVMENJSndU5UPfBYEeXOYBmQ6MJ19kxJqTUKol16tzuSoD1eABobN4Yrhz8qO0AGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_06VrzoG9UJq24CBj5Zyd7d1E45jw%26client%3Dca-pub-7851549291289588%26adurl%3D
200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y4PkDwAAgukKGawNAAeBPOhbBn_mGpd-y4-j-g&u=%7Cv2V5lXqQPQRAb7eYakqtJU8fuOGF6dxl4bvMX0WZCuQ%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy4k-bnRiHLHefgD42oc7Xr1KoqOFMsGJwVtO1H1wzHQsdOUmLW35mW5dzw48bimB3T5PMv5Jz1bIn97gqXm48kY-o9kkRYYh1r1IWsroEOEAknb5mGJ7U-dv6A87nHcmzmTTJn9bAkOvq2nvEyyKWsvvMruW8JE9UIDliw2ZIdH0ZNZWPjDe4HM1KcR2a1qLdXE5q9N-TZe1PVAXZbndf7e0NPneN7_BRpTgwq8C607rDj6uZ4DCYsmBC47jKD8bgt567gacHJxbfsmBO404vJZwr1079_EDjE3-LFVTU3Ix2qH3rDx8iid_J6cqmPLN2_LGDojYHCaXSeFqThg560ivcQrUi-TjvHE4HVSEd-DuPxjVxpo5g5KE9w0ilghgOBb37tIWhjSqwHcbDa3wjtdQhnoI0v-Fb2S82485-_flYliqR7GuretUUpWYV6IpOFgJIQK1GdcznuW1nyf3rvpEBV3dVnWlLDT6AL9SaGV0P914YHDaB1yxbzrgkzhsTw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCPX-HD-SDY-mFAo3YZryCnrAKyZ7SsVzNhuPWkwHAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzg1MTU0OTI5MTI4OTU4OMgBCakC_V3iep9wsT6oAwGqBPsBT9BrlPKbCop5UQYH-SrUyvEFBks9yOvReIU6kbM8m0mC7z7xd3u0KGxppRjIMkbBMcoy837JS8Aly72_Q21keDw0L-owoaLSJiUUua53VIRt-Ms4y50LBJmnwTC1ihuk2hs9fKTs4NMO915CdileOugK96_nkxSMi1TUcW1Nf2suOm9x5vebzOd-Wjfk6nMjv3KX_P3O53F57WT8Z3QP1OWy-jzgtyprMWDoIY3CivwHrSLr1MEiAMyNm4arQv7Doqf3uKUtc1gdWYBYpuPvLYw5Lbwk4g6FVMENJSndU5UPfBYEeXOYBmQ6MJ19kxJqTUKol16tzuSoD1eABobN4Yrhz8qO0AGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_06VrzoG9UJq24CBj5Zyd7d1E45jw%26client%3Dca-pub-7851549291289588%26adurl%3D
IP
GET /delivery/r/afr.php?z=Y4PkDwAAgukKGawNAAeBPOhbBn_mGpd-y4-j-g&u=%7Cv2V5lXqQPQRAb7eYakqtJU8fuOGF6dxl4bvMX0WZCuQ%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy4k-bnRiHLHefgD42oc7Xr1KoqOFMsGJwVtO1H1wzHQsdOUmLW35mW5dzw48bimB3T5PMv5Jz1bIn97gqXm48kY-o9kkRYYh1r1IWsroEOEAknb5mGJ7U-dv6A87nHcmzmTTJn9bAkOvq2nvEyyKWsvvMruW8JE9UIDliw2ZIdH0ZNZWPjDe4HM1KcR2a1qLdXE5q9N-TZe1PVAXZbndf7e0NPneN7_BRpTgwq8C607rDj6uZ4DCYsmBC47jKD8bgt567gacHJxbfsmBO404vJZwr1079_EDjE3-LFVTU3Ix2qH3rDx8iid_J6cqmPLN2_LGDojYHCaXSeFqThg560ivcQrUi-TjvHE4HVSEd-DuPxjVxpo5g5KE9w0ilghgOBb37tIWhjSqwHcbDa3wjtdQhnoI0v-Fb2S82485-_flYliqR7GuretUUpWYV6IpOFgJIQK1GdcznuW1nyf3rvpEBV3dVnWlLDT6AL9SaGV0P914YHDaB1yxbzrgkzhsTw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCPX-HD-SDY-mFAo3YZryCnrAKyZ7SsVzNhuPWkwHAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNzg1MTU0OTI5MTI4OTU4OMgBCakC_V3iep9wsT6oAwGqBPsBT9BrlPKbCop5UQYH-SrUyvEFBks9yOvReIU6kbM8m0mC7z7xd3u0KGxppRjIMkbBMcoy837JS8Aly72_Q21keDw0L-owoaLSJiUUua53VIRt-Ms4y50LBJmnwTC1ihuk2hs9fKTs4NMO915CdileOugK96_nkxSMi1TUcW1Nf2suOm9x5vebzOd-Wjfk6nMjv3KX_P3O53F57WT8Z3QP1OWy-jzgtyprMWDoIY3CivwHrSLr1MEiAMyNm4arQv7Doqf3uKUtc1gdWYBYpuPvLYw5Lbwk4g6FVMENJSndU5UPfBYEeXOYBmQ6MJ19kxJqTUKol16tzuSoD1eABobN4Yrhz8qO0AGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_06VrzoG9UJq24CBj5Zyd7d1E45jw%26client%3Dca-pub-7851549291289588%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 22:26:22 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=lIRdR0RLpbQ2po7d1RHG_gU25DENJM9uXQvxIh2EE06yQGc3_iCXEckl1nTREO-ovri7QWdaCYY1u6sAp9cpUizVdrBcd2Y8wSUzMMrWpx9QxofLYCtgRoqKYg6KvCbWWwMCbprxkbk2PdOgliVJIp47NviK3-94NY3P6Sk-OnP7icAVqSF0N7lYBgOvrZyJzKgDcdzt0p2uNj2Yg7RvNVW7mlbfaUumlNYC9moY4G-Z0lH5-XdhtQvmoArVjk-4ZJJOCw443mh5_iHs"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 47443132
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/criteo_logo_2021.svg
200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/criteo_logo_2021.svg
IP
GET /flash/icon/criteo_logo_2021.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 22:26:22 GMT
content-type: image/svg+xml
last-modified: Thu, 27 May 2021 13:21:59 GMT
etag: W/"60af9cf7-891"
expires: Wed, 22 Nov 2023 22:26:22 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y4PkDgAK7uICHkhjAAM7L5GmP1J_CrzAAO9bjQ&u=%7CW%2FTNMa5lrHXW3BgvRgC0QFI97XpTYfSf3UCIXYNISPY%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpOtYk8A6_xGUIT0MjWuWij45gjylM5GjSfG96tAygdfT4CTQ-BNwVncAdu9Ms6rVoTfdJA_31pTpFs7MFb5utGHHuDyaq_Jv-st64roM364lmdB9uch4uKypFJ6Iz3jr0pl2issyELS3Slcn43n1q9Tjg6g-UjYQ52bRwyvWbTDNrEeQT2xPveg18ca35o007KehELns0WfQXwdnm2n9KZ7zk8Qu59E6djOz1P99u3WIol1ogvjDOSesGgv7K-t53hAsXkZ4JrayaSVVHKQ6Ns5MtptCc1UbpE2Nx5x2LZww74je2qNlstT04GfoT5-qJvTbAJx93uj3E7pGo1tEqgA7B6s5gxoQ30GCR3JfC0X9nyporyy2uqSVy7nrFJidL2V_PlFaexk0BvxQB4X2K_57bowmvODFbQGTh1oRAf46gNx7T8S9pqyR46urZqkhW9Qzl1JKAJTF8xTF-OGDrNfakqHWmBEGtlSk9ng3tv-SXnw2XQcN_5TdPpFNb0K68N1NQoX2-sriw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCSgrzDuSDY-LdK-OQ-cAPr_aM4AXJntKxXMWymPdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTc4NTE1NDkyOTEyODk1ODjIAQmpAv1d4nqfcLE-qAMBqgT3AU_Qv8Bj4lDN_31oBnXMmy2YYBZchTSXwm6-NuLYk6QgqmBIbAA8HPI_PeR_6nBtHolXBigkY3VaIw6AX3ZbUC-y-duSAN3Csg1Mt8dol24TDy6Oud66xctNC3xqp69TYuNuCAhZSZFE1J5fPrWvJAsbJW02w4QcqfWW7yawEibxRjKxAS_HwCy9MS67JVlKipUoSwB8yfif1eQRYN9g10P03kyeVVxRaAMUyBFErQB3XiIuQhGo0fmD4buKVPT1MagvOrafSTG0DDWy0OkeKWKdU4qjFUMCLY9bTrH4r2aPhaJUDdBapj42VGL4W_VZJpTe07bA6omABobN4Yrhz8qO0AGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_2XNbWOGGvR_AGVJaCpZt9cTg5lNQ%26client%3Dca-pub-7851549291289588%26adurl%3D
200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y4PkDgAK7uICHkhjAAM7L5GmP1J_CrzAAO9bjQ&u=%7CW%2FTNMa5lrHXW3BgvRgC0QFI97XpTYfSf3UCIXYNISPY%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpOtYk8A6_xGUIT0MjWuWij45gjylM5GjSfG96tAygdfT4CTQ-BNwVncAdu9Ms6rVoTfdJA_31pTpFs7MFb5utGHHuDyaq_Jv-st64roM364lmdB9uch4uKypFJ6Iz3jr0pl2issyELS3Slcn43n1q9Tjg6g-UjYQ52bRwyvWbTDNrEeQT2xPveg18ca35o007KehELns0WfQXwdnm2n9KZ7zk8Qu59E6djOz1P99u3WIol1ogvjDOSesGgv7K-t53hAsXkZ4JrayaSVVHKQ6Ns5MtptCc1UbpE2Nx5x2LZww74je2qNlstT04GfoT5-qJvTbAJx93uj3E7pGo1tEqgA7B6s5gxoQ30GCR3JfC0X9nyporyy2uqSVy7nrFJidL2V_PlFaexk0BvxQB4X2K_57bowmvODFbQGTh1oRAf46gNx7T8S9pqyR46urZqkhW9Qzl1JKAJTF8xTF-OGDrNfakqHWmBEGtlSk9ng3tv-SXnw2XQcN_5TdPpFNb0K68N1NQoX2-sriw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCSgrzDuSDY-LdK-OQ-cAPr_aM4AXJntKxXMWymPdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTc4NTE1NDkyOTEyODk1ODjIAQmpAv1d4nqfcLE-qAMBqgT3AU_Qv8Bj4lDN_31oBnXMmy2YYBZchTSXwm6-NuLYk6QgqmBIbAA8HPI_PeR_6nBtHolXBigkY3VaIw6AX3ZbUC-y-duSAN3Csg1Mt8dol24TDy6Oud66xctNC3xqp69TYuNuCAhZSZFE1J5fPrWvJAsbJW02w4QcqfWW7yawEibxRjKxAS_HwCy9MS67JVlKipUoSwB8yfif1eQRYN9g10P03kyeVVxRaAMUyBFErQB3XiIuQhGo0fmD4buKVPT1MagvOrafSTG0DDWy0OkeKWKdU4qjFUMCLY9bTrH4r2aPhaJUDdBapj42VGL4W_VZJpTe07bA6omABobN4Yrhz8qO0AGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_2XNbWOGGvR_AGVJaCpZt9cTg5lNQ%26client%3Dca-pub-7851549291289588%26adurl%3D
IP
GET /delivery/r/afr.php?z=Y4PkDgAK7uICHkhjAAM7L5GmP1J_CrzAAO9bjQ&u=%7CW%2FTNMa5lrHXW3BgvRgC0QFI97XpTYfSf3UCIXYNISPY%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpOtYk8A6_xGUIT0MjWuWij45gjylM5GjSfG96tAygdfT4CTQ-BNwVncAdu9Ms6rVoTfdJA_31pTpFs7MFb5utGHHuDyaq_Jv-st64roM364lmdB9uch4uKypFJ6Iz3jr0pl2issyELS3Slcn43n1q9Tjg6g-UjYQ52bRwyvWbTDNrEeQT2xPveg18ca35o007KehELns0WfQXwdnm2n9KZ7zk8Qu59E6djOz1P99u3WIol1ogvjDOSesGgv7K-t53hAsXkZ4JrayaSVVHKQ6Ns5MtptCc1UbpE2Nx5x2LZww74je2qNlstT04GfoT5-qJvTbAJx93uj3E7pGo1tEqgA7B6s5gxoQ30GCR3JfC0X9nyporyy2uqSVy7nrFJidL2V_PlFaexk0BvxQB4X2K_57bowmvODFbQGTh1oRAf46gNx7T8S9pqyR46urZqkhW9Qzl1JKAJTF8xTF-OGDrNfakqHWmBEGtlSk9ng3tv-SXnw2XQcN_5TdPpFNb0K68N1NQoX2-sriw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCSgrzDuSDY-LdK-OQ-cAPr_aM4AXJntKxXMWymPdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTc4NTE1NDkyOTEyODk1ODjIAQmpAv1d4nqfcLE-qAMBqgT3AU_Qv8Bj4lDN_31oBnXMmy2YYBZchTSXwm6-NuLYk6QgqmBIbAA8HPI_PeR_6nBtHolXBigkY3VaIw6AX3ZbUC-y-duSAN3Csg1Mt8dol24TDy6Oud66xctNC3xqp69TYuNuCAhZSZFE1J5fPrWvJAsbJW02w4QcqfWW7yawEibxRjKxAS_HwCy9MS67JVlKipUoSwB8yfif1eQRYN9g10P03kyeVVxRaAMUyBFErQB3XiIuQhGo0fmD4buKVPT1MagvOrafSTG0DDWy0OkeKWKdU4qjFUMCLY9bTrH4r2aPhaJUDdBapj42VGL4W_VZJpTe07bA6omABobN4Yrhz8qO0AGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_2XNbWOGGvR_AGVJaCpZt9cTg5lNQ%26client%3Dca-pub-7851549291289588%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 22:26:22 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=h-mwy0RLpbQ2po7d_IyjxJTi2bH_7R9sAYfUYWmhf0uYjdPKCUxiVIVPZ3UGc_QlRffPL3cVlru7NteJ8yGqyggkAMS86oeacLQx4ju6aTuNEPpMbpsN_iQlRac58Tppyrn1vBWQh7BSSQdeVups7iVrqgfp7-rvIEuGMewlTO9B9yR__-VTViiVVUuTVujcd9oMQHBYeoyMplFyHxancxaKuQ5B9371PHkp88sjDPeUxoHK3WqvQtQaMWz9LhdgfDyR2g"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 49899766
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=ESkkJSPcXEEotVk8xXoJnxpbKa8CWLUGlfuTkMikJptG4GOMDCSl8_g4QDW8aRPbKeFQGTbrnOwkNxCNzsnxYxw386Bm2m5CmzaGuBPQpRfk5VHyxkmr-mvTZHblgmoBVoM6e6HCE0S3Lhkkc3QsrqmzLbvUc3TElmBKUIb0Ym-2ONrTxEADz_ZzK-ly03PaU9f516poxUlq322lSQ9ICD6wlKrGFmnEPF6uB7GHI6X5HJm7wpymIjPLO0zGQORswNk0wZRl8bEopZaDF5ok-BR5REs8dEJOOCt-fbipsi8u1sD7dlXqJYDpSZOMv3laoYpDTQhlMWD9wFgbI8AM8X09b4trJbYWm7Ime4jeg6GSHuz6KgVbYiM72prlxmc3T2fYSElPMSJGuNbsXJVZni7ig1BZdMeg2wH9YLh3rseaZXMK
200 OK 0 B URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=ESkkJSPcXEEotVk8xXoJnxpbKa8CWLUGlfuTkMikJptG4GOMDCSl8_g4QDW8aRPbKeFQGTbrnOwkNxCNzsnxYxw386Bm2m5CmzaGuBPQpRfk5VHyxkmr-mvTZHblgmoBVoM6e6HCE0S3Lhkkc3QsrqmzLbvUc3TElmBKUIb0Ym-2ONrTxEADz_ZzK-ly03PaU9f516poxUlq322lSQ9ICD6wlKrGFmnEPF6uB7GHI6X5HJm7wpymIjPLO0zGQORswNk0wZRl8bEopZaDF5ok-BR5REs8dEJOOCt-fbipsi8u1sD7dlXqJYDpSZOMv3laoYpDTQhlMWD9wFgbI8AM8X09b4trJbYWm7Ime4jeg6GSHuz6KgVbYiM72prlxmc3T2fYSElPMSJGuNbsXJVZni7ig1BZdMeg2wH9YLh3rseaZXMK
IP
GET /delivery/lg.php?cppv=3&cpp=ESkkJSPcXEEotVk8xXoJnxpbKa8CWLUGlfuTkMikJptG4GOMDCSl8_g4QDW8aRPbKeFQGTbrnOwkNxCNzsnxYxw386Bm2m5CmzaGuBPQpRfk5VHyxkmr-mvTZHblgmoBVoM6e6HCE0S3Lhkkc3QsrqmzLbvUc3TElmBKUIb0Ym-2ONrTxEADz_ZzK-ly03PaU9f516poxUlq322lSQ9ICD6wlKrGFmnEPF6uB7GHI6X5HJm7wpymIjPLO0zGQORswNk0wZRl8bEopZaDF5ok-BR5REs8dEJOOCt-fbipsi8u1sD7dlXqJYDpSZOMv3laoYpDTQhlMWD9wFgbI8AM8X09b4trJbYWm7Ime4jeg6GSHuz6KgVbYiM72prlxmc3T2fYSElPMSJGuNbsXJVZni7ig1BZdMeg2wH9YLh3rseaZXMK HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 22:26:21 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2762645
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy_small.svg
200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/privacy_small.svg
IP
GET /flash/icon/privacy_small.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 22:26:22 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:30:28 GMT
etag: W/"5e42ba84-6aa"
expires: Wed, 22 Nov 2023 22:26:22 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
142.250.74.161
109.232.197.33
200.147.36.68
23.36.76.226
93.184.220.29
104.17.24.14
37.157.5.142