bokradz.yoo7.com/t109-topic
178.33.43.178301 Moved Permanently 0 B URL HTTP/1.1 bokradz.yoo7.com/t109-topic
IP 178.33.43.178:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t109-topic HTTP/1.1
Host: bokradz.yoo7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 22 Dec 2022 09:50:33 GMT
Content-Length: 0
Location: https://bokradz.yoo7.com/t109-topic
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash bbea1550fedd5eb9c265712fab75b137
2c2f981747898a380265f766345f2bb9c8c983fd
c728286e38c31a4d3f7a39702e0a5f69c14bf69e01a88bc4479714953fbda278
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C728286E38C31A4D3F7A39702E0A5F69C14BF69E01A88BC4479714953FBDA278"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14345
Expires: Thu, 22 Dec 2022 13:49:39 GMT
Date: Thu, 22 Dec 2022 09:50:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f4b32de26d9af2cba6afcdcf716d3fb8
644ead4436a8f2fc1f0dd25e4484b64f6ed63347
525123034cb53d750d5ebd487015911452d2cd3c34301e6628f2f52f3f0bfc88
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "525123034CB53D750D5EBD487015911452D2CD3C34301E6628F2F52F3F0BFC88"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4707
Expires: Thu, 22 Dec 2022 11:09:01 GMT
Date: Thu, 22 Dec 2022 09:50:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b8fbcd7ca1a893d05677318a8a198e7a
0851654c21f6e3741887e7deab8098c1dc56f33c
edbade5913ace2fcbb932922e9af69acb2e8759474a2eeaec216307247fea361
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EDBADE5913ACE2FCBB932922E9AF69ACB2E8759474A2EEAEC216307247FEA361"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4718
Expires: Thu, 22 Dec 2022 11:09:12 GMT
Date: Thu, 22 Dec 2022 09:50:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 22 Dec 2022 09:46:01 GMT
content-type: application/json
age: 273
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 5nc1d5dzpmb+GeLHpmgT8hdz98e5GV0lrtlWE2NbpXWZs+gcyuG43SRusLpsHfY3LR3uTzfbOHc=
x-amz-request-id: FC15EB1QTGGDVABC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 22 Dec 2022 08:53:35 GMT
age: 3419
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b645dca1fae1a4099b7026f9f29e7a1f
55c56497c40fd30f49471b56d67b00b2ac5bbaa3
71f3a1f35a46d63e4f1b689de9e7ef8be26640f546fc17ba7ec23e6f0dcf79fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "71F3A1F35A46D63E4F1B689DE9E7EF8BE26640F546FC17BA7EC23E6F0DCF79FD"
Last-Modified: Tue, 20 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1978
Expires: Thu, 22 Dec 2022 10:23:32 GMT
Date: Thu, 22 Dec 2022 09:50:34 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 140b0bf32338678a1250c92119c47876
62680e4aa50ed218269fda992291bb12fae540b5
e7609aa87e8885996108fcb79f4a1a1a2839bb2ed81d82850665743b5b876326
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6561
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:34 GMT
Last-Modified: Thu, 22 Dec 2022 08:01:14 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 140b0bf32338678a1250c92119c47876
62680e4aa50ed218269fda992291bb12fae540b5
e7609aa87e8885996108fcb79f4a1a1a2839bb2ed81d82850665743b5b876326
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3689
Cache-Control: max-age=161275
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:34 GMT
Etag: "63a3ecfc-117"
Expires: Sat, 24 Dec 2022 06:38:29 GMT
Last-Modified: Thu, 22 Dec 2022 05:37:00 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a677501b4490b3352220a1d60a3b88bf
9a5339c0bd6f3e1ae8af0116362efb71426807fc
4dea04acde2396c347e04123c6f97d0efc70695facc6a615a731b6dee801be18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 140b0bf32338678a1250c92119c47876
62680e4aa50ed218269fda992291bb12fae540b5
e7609aa87e8885996108fcb79f4a1a1a2839bb2ed81d82850665743b5b876326
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6561
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:34 GMT
Last-Modified: Thu, 22 Dec 2022 08:01:14 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d30907d8b4e8f5c7644a5f3ade244746
b4897a3b75cde46af816f8edf2ad1238739c15cf
054586891a1e335abf433826d90fae3f561874d3ae9bf27587d5706d34d1d3af
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d30907d8b4e8f5c7644a5f3ade244746
b4897a3b75cde46af816f8edf2ad1238739c15cf
054586891a1e335abf433826d90fae3f561874d3ae9bf27587d5706d34d1d3af
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js
142.250.74.138200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js
IP 142.250.74.138:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash d989f35706c62ce4a5c561586c55566e
d32e7958e5765609bf08dcdefd0b2c2a8714ce34
375dfe942a03ee024b5cc827b3efda5550d13df7530281f50862ce3b33fcb716
GET /ajax/libs/jquery/1.7.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33845
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 17:28:19 GMT
expires: Sat, 16 Dec 2023 17:28:19 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 490935
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bokradz.yoo7.com/0-rtl.css
178.33.43.150200 OK 55 kB URL HTTP/2 bokradz.yoo7.com/0-rtl.css
IP 178.33.43.150:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash c4aa7859b32b332f504b39a0e6ced689
3ec0200827acc15e59631a1f3a73a8e14ff1c379
7c86c90efed69ec7ed7af56115e5f4b96a34e31a74baaf6de52767aa1133ea21
GET /0-rtl.css HTTP/1.1
Host: bokradz.yoo7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/t109-topic
Cookie: exadd=167171
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: text/css
content-length: 54807
last-modified: Thu, 22 Dec 2022 00:00:00 GMT
content-security-policy: upgrade-insecure-requests
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache-ma: HIT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 528923a6d3d89ddec844139c6805237b
867da5501ef6b55d4b0a02130fe573712e57af43
048a71f6b897ef436abdb76d73f71af8d82b61bb92f65d8fbd0e02251155ef8c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5502
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:34 GMT
Last-Modified: Thu, 22 Dec 2022 08:18:52 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8a84bd58c4c9069eb3b72c4cc729b39b
c3e0caa894f161cdb7d9abffe3b746c34fac54db
c57c949eb9fbfe0786dbc0167073ca7925b6196f8f7a7ba82beb74ada37836c1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2021
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:34 GMT
Etag: "63a393c3-117"
Last-Modified: Thu, 22 Dec 2022 09:16:53 GMT
Server: ECS (amb/6B91)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8a84bd58c4c9069eb3b72c4cc729b39b
c3e0caa894f161cdb7d9abffe3b746c34fac54db
c57c949eb9fbfe0786dbc0167073ca7925b6196f8f7a7ba82beb74ada37836c1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4144
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:34 GMT
Last-Modified: Thu, 22 Dec 2022 08:41:31 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
www.googletagmanager.com/gtag/js?id=
142.250.74.168200 OK 38 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 18bbabef1650f17d6f05087e7c3d29ef
300880b8ce909757c646f767491c14d768516fe9
5e73a5a4d375f54ffc7c01fbd072a1b7d20d7cfcbe573c147651fb810f062cce
GET /gtag/js?id= HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 22 Dec 2022 09:50:34 GMT
expires: Thu, 22 Dec 2022 09:50:34 GMT
cache-control: private, max-age=900
last-modified: Thu, 22 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 37488
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash e37a7003fd109ef07e59e530f3811f22
e4d7eabea69a3af92109fcf656dcb01b1acaf045
d8313d4248d30395ff291ffda69071f2345f4c90e53b935102709b2ec2be718a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3544
Cache-Control: max-age=116851
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:34 GMT
Etag: "63a34005-2d7"
Expires: Fri, 23 Dec 2022 18:18:05 GMT
Last-Modified: Wed, 21 Dec 2022 17:19:01 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 140b0bf32338678a1250c92119c47876
62680e4aa50ed218269fda992291bb12fae540b5
e7609aa87e8885996108fcb79f4a1a1a2839bb2ed81d82850665743b5b876326
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3689
Cache-Control: max-age=161275
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:34 GMT
Etag: "63a3ecfc-117"
Expires: Sat, 24 Dec 2022 06:38:29 GMT
Last-Modified: Thu, 22 Dec 2022 05:37:00 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 859d899d982bb69df5fb16b8393fa119
580215f1d4f81cda04012c0889cfd9b18ba11863
38159dd549e94d45798b614efa5f968de7b74830c845220d1b6c1435f3940a94
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6456
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:34 GMT
Last-Modified: Thu, 22 Dec 2022 08:02:58 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 22 Dec 2022 09:08:02 GMT
age: 2552
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a677501b4490b3352220a1d60a3b88bf
9a5339c0bd6f3e1ae8af0116362efb71426807fc
4dea04acde2396c347e04123c6f97d0efc70695facc6a615a731b6dee801be18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2img.net/i/fa/subsilver/icon_gender_female.gif
104.21.235.176200 OK 140 B URL HTTP/2 2img.net/i/fa/subsilver/icon_gender_female.gif
IP 104.21.235.176:0
File type GIF image data, version 89a, 11 x 11\012- data
Hash da4f413728cea4cb2af9ddb08313d88a
673a20957c3ccb1b1ec61f25587217ad413df8b6
8cfd21e82ac6c4d69ce84f5fcaf2b08e954d7b6bb7e4a8af1445ca0c6ef91772
GET /i/fa/subsilver/icon_gender_female.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/gif
content-length: 140
last-modified: Mon, 16 May 2016 11:01:55 GMT
etag: "5739a8a3-8c"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 1746091
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gi8LQOdQGsJ2ETpLg29qWQGwJsmEW59IL3R9tct8xmdO6ypx8nA3OVrhOEt7TACkxPF4jKG3jTVXhS5mGnrqHCazA4%2Fu3PSTpoau2xtacZN9dcwG%2FOfVqJJsdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b4f2a72a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/i/fa/subsilver/icon_gender_male.gif
104.21.235.176200 OK 142 B URL HTTP/2 2img.net/i/fa/subsilver/icon_gender_male.gif
IP 104.21.235.176:0
File type GIF image data, version 89a, 11 x 11\012- data
Hash 5ef7a6af0298d7e13a08a8e5afeb1228
78e2ddc2595b7a2975e9b11ef4852f5ac0616616
4bd253445eec78e6f29ec51cfbd53f3b52941a208a4237389209cba55cc7047d
GET /i/fa/subsilver/icon_gender_male.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/gif
content-length: 142
last-modified: Mon, 16 May 2016 11:01:55 GMT
etag: "5739a8a3-8e"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 2072808
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Flg7ZmAhM4pNspW8avVyhcOXse0wEsbWkjHuX0%2F7ckYH4JGaYcRCsbUk1NP67frKI3oy37%2BYAs88Z6jHYXou5Y602dswxlYCeDWqmP0g6jmU3qyZA0GDvA5JBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b4f2772a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
illiweb.com/rs3/67/frm/embed/FA_Embed.js
172.67.150.97200 OK 654 B URL HTTP/2 illiweb.com/rs3/67/frm/embed/FA_Embed.js
IP 172.67.150.97:0
File type ASCII text, with no line terminators
Hash 35001e03240e5f61db07e41aa7f5c993
349b0b38d56e2559c74390a15dc41382fb3758a7
a4f5a4dec25281baea4e8aaddc8d6cf4a0c5ec744b0d68631feff5663b9feaba
GET /rs3/67/frm/embed/FA_Embed.js HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
expires: Thu, 14 Dec 2023 08:22:49 GMT
last-modified: Tue, 20 Apr 2021 14:17:00 GMT
x-cache-ne: EXPIRED
x-cache-pr: EXPIRED
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 696465
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gbNP%2FGPMu7%2Bb3okpJ%2FwOFvROorVEcy5PRgdYuj1WM7kmxqF4lu4n7IeeNFG6WdIA3iqJO3MpOx99rIcwnyPfYnMzJ75x3YS2qYAZ%2FaMxn9n8E4y1NlwmLM%2BQPfqq1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43a1fe1b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/i/empty.gif
104.21.235.176200 OK 43 B IP 104.21.235.176:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277
GET /i/empty.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 09 May 2016 08:45:50 GMT
etag: "57304e3e-2b"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 2073602
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p5EwCuVjwkCqJRe3TdV5ufAuG86UehJN74A4G2WyO4EnR0KF%2FZINlumj19FeJaw2qzQreMLa2JTuIhN88xYGxzK2pkP1XqVAiYs4AGYrYLCy%2FkPooK2rxhtNsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b5f5a72a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/i/fa/m/www1.gif
104.21.235.176200 OK 733 B IP 104.21.235.176:0
File type GIF image data, version 89a, 59 x 18\012- data
Hash 05d80505deb19651f0b3601d76df1670
a173e6839dfabb9fbb672d8ae9a0cc570b698f26
02be12aef9119686fd59cb18175cb585e21e46a6aa5ec6b10074e6dd37476eef
GET /i/fa/m/www1.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/gif
content-length: 733
last-modified: Sat, 01 Jan 2005 00:00:00 GMT
etag: "41d5e800-2dd"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 2073382
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A5VBNpti4AoYw6gngjCKkSYSCCicVXMwxE1Xv8l29ZZ15OeyYMDQFNnfilVx4LQTLRfADOwzPqcnYLlz25g4%2BFYJLL5dVrJ4Aa%2Fo4AqyfQ2BavcRTg7r9mSv%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b5f6572a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/i/fa/icon_minitime.gif
104.21.235.176200 OK 298 B URL HTTP/2 2img.net/i/fa/icon_minitime.gif
IP 104.21.235.176:0
File type GIF image data, version 89a, 12 x 9\012- data
Hash 71647c2ce78f706f8b4b0d84b3369cf5
18fe4a449c64acf98e9570486627f29d3884dff9
de0294a906e3fa470d188c8d596e3a5fc3efc59bab8080506015498db73c18e6
GET /i/fa/icon_minitime.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/gif
content-length: 298
last-modified: Sat, 01 Jan 2005 00:00:00 GMT
etag: "41d5e800-12a"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 2073240
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zul7GLqGyFVdg2jCuvfmjuw8pMqOfNVsTNpC03oSXD0hkEB34uNNrCi5GNWWYCzfPzMOlvT67cMamjLr1q3uIQK9J801Wz4j4ERlNHgFldIAM5tJSAZdTzdl%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b5f5772a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/s/t/11/91/95/i_icon_mini_login.gif
104.21.235.176200 OK 2.8 kB URL HTTP/2 2img.net/s/t/11/91/95/i_icon_mini_login.gif
IP 104.21.235.176:0
File type GIF image data, version 89a, 57 x 83\012- data
Hash e3b7d4ea48ff3c99e26b8f0c631822a4
20488603c0228fff36cd230a850a898fc80c2f14
40b8b129f334b7be63de59ee81c85bb73b750401a7d2999b90f71cf6d1d2c1c3
GET /s/t/11/91/95/i_icon_mini_login.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/gif
content-length: 2805
last-modified: Wed, 27 Oct 2010 15:38:49 GMT
etag: "4cc84789-af5"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QWK9NRplZibO04FyRiQb1VBHsUVlytPJRpGmH4a0wSHlSbla4uuJC2dgcBFH7eCUGu%2B01EZJ85EnkHeYTWnX2QgM2Veqsr82ZfvIod1Owg%2B7jKOIAEPhHcAy9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b4f2972a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/s/t/11/91/95/i_icon_mini_register.gif
104.21.235.176200 OK 2.3 kB URL HTTP/2 2img.net/s/t/11/91/95/i_icon_mini_register.gif
IP 104.21.235.176:0
File type GIF image data, version 89a, 53 x 83\012- data
Hash 46bb91ac7e1d698413b21c3ebec556ed
e324e6eadbb3296d0c0574aa50a9241893b704b0
ff977ebe23f229790b3013cbd3581ae7e7629bce63c477d6ea3c54152bd2760e
GET /s/t/11/91/95/i_icon_mini_register.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/gif
content-length: 2288
last-modified: Wed, 27 Oct 2010 15:38:49 GMT
etag: "4cc84789-8f0"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cd3Y6Iar0t1BQ8NJ63K7q4YxSa1Ybwo375iRVKd3nlLWxdKyVB4C%2B%2FntH5hUBoBpfzVV512nIYcRieuKiKcjul0z6jjjCPiLa57iDVrwB%2FXsOJ3dueKbZGlLCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b5f4b72a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8a84bd58c4c9069eb3b72c4cc729b39b
c3e0caa894f161cdb7d9abffe3b746c34fac54db
c57c949eb9fbfe0786dbc0167073ca7925b6196f8f7a7ba82beb74ada37836c1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4144
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:34 GMT
Last-Modified: Thu, 22 Dec 2022 08:41:31 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
2img.net/h/www12.0zz0.com/thumbs/2009/06/02/12/878773961.jpg
104.21.235.176200 OK 11 kB URL HTTP/2 2img.net/h/www12.0zz0.com/thumbs/2009/06/02/12/878773961.jpg
IP 104.21.235.176:0
File type PNG image data, 200 x 150, 8-bit colormap, non-interlaced\012- data
Hash 35a7f81babcabe3a1473652dba59b2dd
0c0cca7270c02f1676a5a491f1e19c73d7a06e48
03947ae7e7b591450c2c25b3dbc8bf73dbb347148b605f178a174f1a711280f8
GET /h/www12.0zz0.com/thumbs/2009/06/02/12/878773961.jpg HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/jpeg
content-length: 11133
last-modified: Mon, 31 Aug 2015 00:00:00 GMT
etag: "55e39900-2b7d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J4XrySQZ8KAFbmucktxrt3GorADh0%2B3DWBTfuM92ld0RDb3W5NPdxwpDtERIJNDUzy%2FglJbojGpfZAz5WwRWxQj8MjpoRu8QVmZRYUk4OUItZ986ZRJ2v5d9dQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b5f6172a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/h/www12.0zz0.com/thumbs/2009/06/02/11/706086055.jpg
104.21.235.176200 OK 11 kB URL HTTP/2 2img.net/h/www12.0zz0.com/thumbs/2009/06/02/11/706086055.jpg
IP 104.21.235.176:0
File type PNG image data, 200 x 150, 8-bit colormap, non-interlaced\012- data
Hash 35a7f81babcabe3a1473652dba59b2dd
0c0cca7270c02f1676a5a491f1e19c73d7a06e48
03947ae7e7b591450c2c25b3dbc8bf73dbb347148b605f178a174f1a711280f8
GET /h/www12.0zz0.com/thumbs/2009/06/02/11/706086055.jpg HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/jpeg
content-length: 11133
last-modified: Mon, 31 Aug 2015 00:00:00 GMT
etag: "55e39900-2b7d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G%2F5jI4WqHrfcI6560JiqafEaQDQ62jxoUjGBpysJPu7xdNpJUdIlgEn3pXkXqnSJRLNUFJ5TA2hU1Yj31XQn7cwuRZ08aPOgjRDEZqSd%2FK0yMwgPu1qTmOVjOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b5f6472a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/s/t/11/91/95/i_icon_mini_portal.gif
104.21.235.176200 OK 2.9 kB URL HTTP/2 2img.net/s/t/11/91/95/i_icon_mini_portal.gif
IP 104.21.235.176:0
File type GIF image data, version 89a, 84 x 32\012- data
Hash db5ad7e7b6bb1d6cab1d27699181bd7e
423a0d24bdf6e8a643b77ff22e658b82ef0ef8a6
8f7f0290cd30e0652b3bb6363c58e362bee2e7f76d76380874c9c974eed2d701
GET /s/t/11/91/95/i_icon_mini_portal.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/gif
content-length: 2877
last-modified: Wed, 23 Jul 2008 05:29:52 GMT
etag: "4886c1d0-b3d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XqIy4Oowz0SR11pNnTUjA5IWEq7ZSVqx0RHwp5LI4ojXIcHY7zrvqJDinoIF9FskFdj%2FZEV08uwVEWhJ9azLIoyU%2FdC7%2ByRAvh2086D4R9QkFdVYtIX5JpEVcQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b4f2372a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/h/www11.0zz0.com/thumbs/2009/06/02/11/463591302.jpg
104.21.235.176200 OK 11 kB URL HTTP/2 2img.net/h/www11.0zz0.com/thumbs/2009/06/02/11/463591302.jpg
IP 104.21.235.176:0
File type PNG image data, 200 x 150, 8-bit colormap, non-interlaced\012- data
Hash 35a7f81babcabe3a1473652dba59b2dd
0c0cca7270c02f1676a5a491f1e19c73d7a06e48
03947ae7e7b591450c2c25b3dbc8bf73dbb347148b605f178a174f1a711280f8
GET /h/www11.0zz0.com/thumbs/2009/06/02/11/463591302.jpg HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/jpeg
content-length: 11133
last-modified: Mon, 31 Aug 2015 00:00:00 GMT
etag: "55e39900-2b7d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1zmaGcliQR3iT7CeY0QXcbfx9P2%2BW9g7IFw%2FdoIyWc%2FUA4563Rq6pg1dBAtwJy2Blkw34nwts5naI3EP9I%2FTC9h5l3VeQpzX2aWQ1jXqWlN0BE7JmvML9zFcHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b5f5c72a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/h/www12.0zz0.com/thumbs/2009/06/02/11/264587972.jpg
104.21.235.176200 OK 11 kB URL HTTP/2 2img.net/h/www12.0zz0.com/thumbs/2009/06/02/11/264587972.jpg
IP 104.21.235.176:0
File type PNG image data, 200 x 150, 8-bit colormap, non-interlaced\012- data
Hash 35a7f81babcabe3a1473652dba59b2dd
0c0cca7270c02f1676a5a491f1e19c73d7a06e48
03947ae7e7b591450c2c25b3dbc8bf73dbb347148b605f178a174f1a711280f8
GET /h/www12.0zz0.com/thumbs/2009/06/02/11/264587972.jpg HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/jpeg
content-length: 11133
last-modified: Mon, 31 Aug 2015 00:00:00 GMT
etag: "55e39900-2b7d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uooZVY%2Bu%2BVIHDSqDWm4BE2kJ0p02EY2awECya%2FnjwLtOb09FDsKbETZ2IdYeUm3Jwct%2FbtsYj1c%2BLM%2BDVtWfX4aerRKdXgi41%2FAIeeT4gcLOPJqxBvgYzzB2ig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b5f5b72a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/h/www11.0zz0.com/thumbs/2009/06/02/12/358657912.jpg
104.21.235.176200 OK 11 kB URL HTTP/2 2img.net/h/www11.0zz0.com/thumbs/2009/06/02/12/358657912.jpg
IP 104.21.235.176:0
File type PNG image data, 200 x 150, 8-bit colormap, non-interlaced\012- data
Hash 35a7f81babcabe3a1473652dba59b2dd
0c0cca7270c02f1676a5a491f1e19c73d7a06e48
03947ae7e7b591450c2c25b3dbc8bf73dbb347148b605f178a174f1a711280f8
GET /h/www11.0zz0.com/thumbs/2009/06/02/12/358657912.jpg HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/jpeg
content-length: 11133
last-modified: Mon, 31 Aug 2015 00:00:00 GMT
etag: "55e39900-2b7d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TsYNfTpxMDEu8aUm9Q9dNTpcF0oPp6mofZsqCA30sAaKMCIPtOxzoNEx%2BnZQ57Yzp8hil6sNeGrrHw2JtLpA%2F1hzVPeew8aKPhjwi%2FQTE14PLnfkBRU%2BmdCU%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b4f2572a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/h/www11.0zz0.com/thumbs/2009/06/02/12/941562428.jpg
104.21.235.176200 OK 11 kB URL HTTP/2 2img.net/h/www11.0zz0.com/thumbs/2009/06/02/12/941562428.jpg
IP 104.21.235.176:0
File type PNG image data, 200 x 150, 8-bit colormap, non-interlaced\012- data
Hash 35a7f81babcabe3a1473652dba59b2dd
0c0cca7270c02f1676a5a491f1e19c73d7a06e48
03947ae7e7b591450c2c25b3dbc8bf73dbb347148b605f178a174f1a711280f8
GET /h/www11.0zz0.com/thumbs/2009/06/02/12/941562428.jpg HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/jpeg
content-length: 11133
last-modified: Mon, 31 Aug 2015 00:00:00 GMT
etag: "55e39900-2b7d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X1WmUy28g077%2FgUtDkYTQNXfHrmH0tLP5NMgJ%2B2XO2O0XdepzazwUQmaHqd5L7ao1f%2B5jTx6Wu1SePqbW9wD9KeCoJz4O1ZrcZCgfRFBIsPC2HHoOWA3ZGJahg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b5f6272a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/h/www11.0zz0.com/thumbs/2009/06/02/11/198585185.jpg
104.21.235.176200 OK 11 kB URL HTTP/2 2img.net/h/www11.0zz0.com/thumbs/2009/06/02/11/198585185.jpg
IP 104.21.235.176:0
File type PNG image data, 200 x 150, 8-bit colormap, non-interlaced\012- data
Hash 35a7f81babcabe3a1473652dba59b2dd
0c0cca7270c02f1676a5a491f1e19c73d7a06e48
03947ae7e7b591450c2c25b3dbc8bf73dbb347148b605f178a174f1a711280f8
GET /h/www11.0zz0.com/thumbs/2009/06/02/11/198585185.jpg HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/jpeg
content-length: 11133
last-modified: Mon, 31 Aug 2015 00:00:00 GMT
etag: "55e39900-2b7d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HQgLgu98Yqh8sSAgxgDRjnbOyvzy8oJN39ZQs0liT9o55Kxrj5AGMJRDirImKuLc%2FkGA8TKqNjx46LYB2MFHVqEwpcHWD7ZdWxHQPt5r%2BvbXSoeTDx2scYP6KQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b5f5e72a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/s/t/11/91/95/i_icon_mini_gallery.gif
104.21.235.176200 OK 2.9 kB URL HTTP/2 2img.net/s/t/11/91/95/i_icon_mini_gallery.gif
IP 104.21.235.176:0
File type GIF image data, version 89a, 84 x 32\012- data
Hash 6794056902df40be5e10fc79c281a193
da1ff0fc59eaf86c93b86963e3bca5eea558484c
c50e56ca673b82280f52cbc5992d486eab2cbc4158d2eb0b285066f326f77379
GET /s/t/11/91/95/i_icon_mini_gallery.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/gif
content-length: 2901
last-modified: Wed, 23 Jul 2008 05:29:51 GMT
etag: "4886c1cf-b55"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=meFrslZ0f2NEAF588eyXFCuiJDMi6BtSTfz%2FBPhJAOqc7bcaoiIO6RI6QIjGvjo244a0C8Mx5pvVIBxk9e15xnNW5Cv1SohP%2BmmbRkFvs2Sp6GKlMlaAscBjNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b4f2472a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/h/www11.0zz0.com/thumbs/2009/06/02/11/574064418.jpg
104.21.235.176200 OK 11 kB URL HTTP/2 2img.net/h/www11.0zz0.com/thumbs/2009/06/02/11/574064418.jpg
IP 104.21.235.176:0
File type PNG image data, 200 x 150, 8-bit colormap, non-interlaced\012- data
Hash 35a7f81babcabe3a1473652dba59b2dd
0c0cca7270c02f1676a5a491f1e19c73d7a06e48
03947ae7e7b591450c2c25b3dbc8bf73dbb347148b605f178a174f1a711280f8
GET /h/www11.0zz0.com/thumbs/2009/06/02/11/574064418.jpg HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/jpeg
content-length: 11133
last-modified: Mon, 31 Aug 2015 00:00:00 GMT
etag: "55e39900-2b7d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UDBpJIw0lXHpQLwQMnb8AqyUm26fcXfvE4%2BpzKNfQUnft5flAg1%2Be3WtrFx5U61Bm07ZxZeI%2FpdBBMgAEcvh3zxkxdkctfQtbOITC2%2FV5fY66SNh4CjK%2BUKaYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b5f4f72a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/h/www11.0zz0.com/thumbs/2009/06/02/11/315214249.jpg
104.21.235.176200 OK 11 kB URL HTTP/2 2img.net/h/www11.0zz0.com/thumbs/2009/06/02/11/315214249.jpg
IP 104.21.235.176:0
File type PNG image data, 200 x 150, 8-bit colormap, non-interlaced\012- data
Hash 35a7f81babcabe3a1473652dba59b2dd
0c0cca7270c02f1676a5a491f1e19c73d7a06e48
03947ae7e7b591450c2c25b3dbc8bf73dbb347148b605f178a174f1a711280f8
GET /h/www11.0zz0.com/thumbs/2009/06/02/11/315214249.jpg HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/jpeg
content-length: 11133
last-modified: Mon, 31 Aug 2015 00:00:00 GMT
etag: "55e39900-2b7d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aWWokAxiOZ1z8iAzO0xAO7tF1lfHX3rQp%2FkO5ewK%2FfX%2FmgBXeTM529dqnxd0Ul4oC3CtjAgUYeLcKZAjB5cL2FtDsupa5vyeUH%2B3w4FURIq%2Fj2Qg0SRIEhbklg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b4f2e72a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/h/www12.0zz0.com/thumbs/2009/06/02/11/444921236.jpg
104.21.235.176200 OK 11 kB URL HTTP/2 2img.net/h/www12.0zz0.com/thumbs/2009/06/02/11/444921236.jpg
IP 104.21.235.176:0
File type PNG image data, 200 x 150, 8-bit colormap, non-interlaced\012- data
Hash 35a7f81babcabe3a1473652dba59b2dd
0c0cca7270c02f1676a5a491f1e19c73d7a06e48
03947ae7e7b591450c2c25b3dbc8bf73dbb347148b605f178a174f1a711280f8
GET /h/www12.0zz0.com/thumbs/2009/06/02/11/444921236.jpg HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/jpeg
content-length: 11133
last-modified: Mon, 31 Aug 2015 00:00:00 GMT
etag: "55e39900-2b7d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BokJtYdQND7YYJNZ4dUkMv30XCb%2F%2FRgHi6gxorNTWWGnrGPuc8mwgLOBdZNlZNyyjS6rfST23CBV0H9DF6fUfcEhpsvkcsOq0U4KfVaLc33qZsjhcidX3Qrt0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b5f4d72a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/h/www11.0zz0.com/thumbs/2009/06/02/11/342848682.jpg
104.21.235.176200 OK 11 kB URL HTTP/2 2img.net/h/www11.0zz0.com/thumbs/2009/06/02/11/342848682.jpg
IP 104.21.235.176:0
File type PNG image data, 200 x 150, 8-bit colormap, non-interlaced\012- data
Hash 35a7f81babcabe3a1473652dba59b2dd
0c0cca7270c02f1676a5a491f1e19c73d7a06e48
03947ae7e7b591450c2c25b3dbc8bf73dbb347148b605f178a174f1a711280f8
GET /h/www11.0zz0.com/thumbs/2009/06/02/11/342848682.jpg HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/jpeg
content-length: 11133
last-modified: Mon, 31 Aug 2015 00:00:00 GMT
etag: "55e39900-2b7d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dLc0GOxOARIhf48Z%2BWY1QYvRlp1fZbtwUgTDcEM75jlfk5%2FOeR%2FLXjV1UGWv4okex6FdyjnugDytOFtWsuz2XXRIcyrGKWHL%2FwXs8UzHSAhr%2BESGistn54c5OA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b4f2d72a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/h/www11.0zz0.com/thumbs/2009/06/02/11/324950755.jpg
104.21.235.176200 OK 11 kB URL HTTP/2 2img.net/h/www11.0zz0.com/thumbs/2009/06/02/11/324950755.jpg
IP 104.21.235.176:0
File type PNG image data, 200 x 150, 8-bit colormap, non-interlaced\012- data
Hash 35a7f81babcabe3a1473652dba59b2dd
0c0cca7270c02f1676a5a491f1e19c73d7a06e48
03947ae7e7b591450c2c25b3dbc8bf73dbb347148b605f178a174f1a711280f8
GET /h/www11.0zz0.com/thumbs/2009/06/02/11/324950755.jpg HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/jpeg
content-length: 11133
last-modified: Mon, 31 Aug 2015 00:00:00 GMT
etag: "55e39900-2b7d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jr3GH%2FsPw05mdnjVgFTfS4GBPcwW0VZ1Zh2ldHKaY6DF2X1rR2wdsAm%2FKRTW%2Fo9OS%2F7R1HBMBF5IEzLGpK4EI%2FfdDPICv6MLYU%2Fzged27X7pWb2nnsdhaAbBug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b5f5f72a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/s/t/11/91/95/i_icon_mini_index.gif
104.21.235.176200 OK 2.9 kB URL HTTP/2 2img.net/s/t/11/91/95/i_icon_mini_index.gif
IP 104.21.235.176:0
File type GIF image data, version 89a, 83 x 83\012- data
Hash 03b320ff397abca1f7ddb26a50f40015
0fb636a0b020f982e2b7ceef6fd4e2018322e0e6
7d14054b04a3b83a0cef64aefdab495741dd8117f58955d3e83dce6723579760
GET /s/t/11/91/95/i_icon_mini_index.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: image/gif
content-length: 2861
last-modified: Wed, 27 Oct 2010 15:38:50 GMT
etag: "4cc8478a-b2d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7UErq0hUDUJGszFtpkk9GZurRPqYEXF31Wx1j4i5d%2FMft14UcZg46Qa2tCyWbm5X9TApFO0wQmpnqQC4XbIuMUXRe3Sqs8vA0hWPc6b%2BNpAJi5CnpM%2B5HiVtYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b5f5172a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/h/www12.0zz0.com/thumbs/2009/06/02/11/705509748.jpg
104.21.235.176200 OK 11 kB URL HTTP/2 2img.net/h/www12.0zz0.com/thumbs/2009/06/02/11/705509748.jpg
IP 104.21.235.176:0
File type PNG image data, 200 x 150, 8-bit colormap, non-interlaced\012- data
Hash 35a7f81babcabe3a1473652dba59b2dd
0c0cca7270c02f1676a5a491f1e19c73d7a06e48
03947ae7e7b591450c2c25b3dbc8bf73dbb347148b605f178a174f1a711280f8
GET /h/www12.0zz0.com/thumbs/2009/06/02/11/705509748.jpg HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:35 GMT
content-type: image/jpeg
content-length: 11133
last-modified: Mon, 31 Aug 2015 00:00:00 GMT
etag: "55e39900-2b7d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q3YijFVckZxhLMj7BKf7J58D6N6g8iLoFNPL8IngLegwmovezl68M0eHu0fntqFjeRh6pT9fDup4jbOxszKD4x1ivVpIJFobn5EPM1899CEmJrXkgvU2oLDKbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b5f5272a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/h/www11.0zz0.com/thumbs/2009/06/02/12/426428061.jpg
104.21.235.176200 OK 11 kB URL HTTP/2 2img.net/h/www11.0zz0.com/thumbs/2009/06/02/12/426428061.jpg
IP 104.21.235.176:0
File type PNG image data, 200 x 150, 8-bit colormap, non-interlaced\012- data
Hash 35a7f81babcabe3a1473652dba59b2dd
0c0cca7270c02f1676a5a491f1e19c73d7a06e48
03947ae7e7b591450c2c25b3dbc8bf73dbb347148b605f178a174f1a711280f8
GET /h/www11.0zz0.com/thumbs/2009/06/02/12/426428061.jpg HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:35 GMT
content-type: image/jpeg
content-length: 11133
last-modified: Mon, 31 Aug 2015 00:00:00 GMT
etag: "55e39900-2b7d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hnUlvnPFZKeua%2FjqerZrE6DKC%2Fas9WxS%2FDz1kcas4IdobHUyJVjFozbhq8D4WopxmZlEgyexjRToBr0Oq3eySnjzr%2BqG42u%2BSpoCju8XzDlT1PVaN3mH8%2BupOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43b5f6872a2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.149.203.40101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.203.40:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XTbj0RnQdpuQ0r/HGv+V5Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kPAJE5g36clFlL57cFRaDh5du+o=
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 7aa35125d8ddca7869bc83fb56b0af5f
b401e7cf9591d82e38afa2d856eea4dca0a2d33d
037561915de345955429aa9a9baacfbee7ca6f324180b67800e05dc64d4725cf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5864
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:35 GMT
Last-Modified: Thu, 22 Dec 2022 08:12:51 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash cbef5a6ddc88d4d611b4cbd2d0e17561
36528849272d97dedb47831c89f8345ba61efd68
541f67e2ad3b7bfa72f98a1469e05d70aa1ab8a2d9543e23cd054d0eae2c7c38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "541F67E2AD3B7BFA72F98A1469E05D70AA1AB8A2D9543E23CD054D0EAE2C7C38"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15566
Expires: Thu, 22 Dec 2022 14:10:01 GMT
Date: Thu, 22 Dec 2022 09:50:35 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 9042faa8c2fa536992221f3d91aad55a
29c95e714d15054caf180da2dca7c439addb123f
68ece0a19b204a116851d178b128242f0ef65ab3cd80372a84f65c0319a8cfc9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5877
Cache-Control: max-age=96848
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:35 GMT
Etag: "63a2e8c6-13a"
Expires: Fri, 23 Dec 2022 12:44:43 GMT
Last-Modified: Wed, 21 Dec 2022 11:06:46 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 7aa35125d8ddca7869bc83fb56b0af5f
b401e7cf9591d82e38afa2d856eea4dca0a2d33d
037561915de345955429aa9a9baacfbee7ca6f324180b67800e05dc64d4725cf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5864
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:35 GMT
Last-Modified: Thu, 22 Dec 2022 08:12:51 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
stootsou.net/pfe/current/tag.min.js?z=2308013
139.45.197.250200 OK 6.7 kB URL HTTP/2 stootsou.net/pfe/current/tag.min.js?z=2308013
IP 139.45.197.250:0
Hash c98dcf080599e30b576d5c6db35f5437
925e8eef7722dfae519c1e7e5a02d35d72c96143
bdc9b0a6952fb414f2848a58a86041ea0d9871d4a37fe06fa9e5994f6fd6f166
GET /pfe/current/tag.min.js?z=2308013 HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:35 GMT
content-type: application/javascript
last-modified: Wed, 21 Dec 2022 12:58:18 GMT
etag: W/"63a302ea-390a"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 02868b6c273b52570f5ece2627e7e0ee
fca668d29d5d77de4cbcf10e4c1e884e2e08b5a5
3b4d351082602ad705357c2165f11d418f09e0ac48fb709a2f37b54b791b1e8d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5501
Cache-Control: max-age=120262
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:35 GMT
Etag: "63a345b4-13a"
Expires: Fri, 23 Dec 2022 19:14:57 GMT
Last-Modified: Wed, 21 Dec 2022 17:43:16 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 314
cdn.viglink.com/api/vglnk.js
54.230.111.60200 OK 29 kB URL HTTP/2 cdn.viglink.com/api/vglnk.js
IP 54.230.111.60:0
File type ASCII text, with very long lines (693)
Hash 072eaf64a771815874455704fca9301b
6c6226d00f14bb800cd4390b3cd42df941be43b1
bb35c8c300bd1acfe7ed86eb988f74ff2e8d86a4fb0409c5d78a890f9fd14b8e
GET /api/vglnk.js HTTP/1.1
Host: cdn.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 28567
last-modified: Wed, 02 Dec 2020 18:57:12 GMT
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
date: Thu, 22 Dec 2022 02:37:47 GMT
cache-control: public, max-age=604800
etag: "072eaf64a771815874455704fca9301b"
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tz5JRc5jNT2Hn-_gTBf9vhAPzJNgmRH-NKYfR2E1r9Ov0XpPMEvRvA==
age: 25975
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=UGkayl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVMZEZ5Y2E2MGtUZXJ2UTlsWnFLOWtWalY5T1RISGVzM1l6d3NWWVlVJTJCRg; expires=Tue, 16 Jan 2024 09:50:35 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 325448
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/forumotion-ar/loader.js
151.101.193.44200 OK 26 kB URL HTTP/2 cdn.taboola.com/libtrc/forumotion-ar/loader.js
IP 151.101.193.44:0
File type Unicode text, UTF-8 text, with very long lines (65497)
Hash 1326c00776858b6a79f1acd6204dd9a2
babdbcdf5002bf0380ba76603e206f7b9df37074
a20e46eccb2e76cb1df17cd43f8ea894891679c25dd08bcbe3ff4ee4274b4770
GET /libtrc/forumotion-ar/loader.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: s/uKBMQS/hO8uHUlXK0KrDb5F6iOoQ1xtCbno24JD7cmS9ashmXz5pWX+Mj+r7QaAGLuJkDpP7Y=
x-amz-request-id: XV043J9WZPS5E0G7
last-modified: Wed, 21 Dec 2022 16:03:27 GMT
etag: "156936a2992b180167596428a2438132"
x-amz-version-id: ZWZE5Wa2sWoodtbMyNU.ZExu0AI6W2sY
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:35 GMT
via: 1.1 varnish
age: 57
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1671702636.500364,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 99
content-length: 25562
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
216.239.34.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.34.178:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 22 Dec 2022 08:41:11 GMT
expires: Thu, 22 Dec 2022 10:41:11 GMT
cache-control: public, max-age=7200
age: 4164
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bidder.criteo.com/cdb?ptv=132&profileId=206&cb=57252358235
178.250.0.165200 OK 161 B URL HTTP/2 bidder.criteo.com/cdb?ptv=132&profileId=206&cb=57252358235
IP 178.250.0.165:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 076396719a2190d285b3d4168c903ed7
a1b91a8eafbe22d777336c0896cab4a83c27975f
76611bb1eb22d29e218258c0fc5ea195a5c348ca5218502c31d19a8c589434d5
POST /cdb?ptv=132&profileId=206&cb=57252358235 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 565
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
vary: Origin
server: Finatra
content-type: application/json; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: https://bokradz.yoo7.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
content-encoding: gzip
content-length: 161
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 4d29c1a482dfa4c8713293710d8798ab
fd5125e9e46d6781b8ef141ed70859a9d24d5312
136dcabbb35992863cf9670b5f31cbddf9661fa2c38f93b99f7c5fe39cec05d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4544
Cache-Control: max-age=157822
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:35 GMT
Etag: "63a3dc29-139"
Expires: Sat, 24 Dec 2022 05:40:57 GMT
Last-Modified: Thu, 22 Dec 2022 04:25:13 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 4d29c1a482dfa4c8713293710d8798ab
fd5125e9e46d6781b8ef141ed70859a9d24d5312
136dcabbb35992863cf9670b5f31cbddf9661fa2c38f93b99f7c5fe39cec05d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4554
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:35 GMT
Last-Modified: Thu, 22 Dec 2022 08:34:41 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 313
cdn.taboola.com/libtrc/impl.20221221-28-RELEASE.js
151.101.193.44200 OK 148 kB URL HTTP/2 cdn.taboola.com/libtrc/impl.20221221-28-RELEASE.js
IP 151.101.193.44:0
File type ASCII text, with very long lines (65508)
Size 148 kB (148508 bytes)
Hash f94b600c778b34b73c647641bd78c599
bc68c3ff7e4686c9d84917fac196dd3073ef5b68
86a6ca52aba2f7dddadbf1066eee79b2e381667fd84d7440e5bc96dd054d8b1e
GET /libtrc/impl.20221221-28-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: DZ5NSlxSXt7u3x2uFqVLFONHewZtabLGw9LgYNazRYbxKGrWG1akBmRAWcPxSuhVSpiZER6pL5s=
x-amz-request-id: 5ZJVJ9GP2YSRV7FN
last-modified: Wed, 21 Dec 2022 15:49:29 GMT
etag: "f94b600c778b34b73c647641bd78c599"
content-encoding: br
x-amz-version-id: fxs7UCsfTqJP3sThpLoL0VovwQDDhn2i
content-type: application/javascript
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:35 GMT
via: 1.1 varnish
age: 7108
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 4165
x-timer: S1671702636.757852,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 17
server: AmazonS3-br
content-length: 148508
X-Firefox-Spdy: h2
stootsou.net/pfe/current/universal.min.js?v=3.1.411
139.45.197.250200 OK 34 kB URL HTTP/2 stootsou.net/pfe/current/universal.min.js?v=3.1.411
IP 139.45.197.250:0
Hash 96d560425a1765a4367697e3987b92c1
93e128b49418f0beafda91f6637db0f8eeae9c62
94f802f3cf86aebf9152540fb91b4130f985a86786629dfbc7313b39daae59cc
GET /pfe/current/universal.min.js?v=3.1.411 HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bokradz.yoo7.com/
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:35 GMT
content-type: application/javascript
last-modified: Wed, 21 Dec 2022 12:58:18 GMT
etag: W/"63a302ea-18c6c"
access-control-allow-origin: https://bokradz.yoo7.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
bokradz.yoo7.com/images/icons-180.png
178.33.43.150200 OK 20 kB URL HTTP/2 bokradz.yoo7.com/images/icons-180.png
IP 178.33.43.150:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 80d0d6c9af40b5b70378ddcbd8702df0
7fcf8987efe95de5b227c8d08b727e1b02e6943d
9ee70d12c61b21a5aa7206a5ae5894495cab9464e05509ffeff4d0133fa794f6
GET /images/icons-180.png HTTP/1.1
Host: bokradz.yoo7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/t109-topic
Cookie: exadd=167171; _fa-screen=%7B%22w%22%3A1152%2C%22h%22%3A836%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:35 GMT
content-type: image/png
content-length: 20071
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
x-cache-ic: MISS
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.76200 OK 509 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.76:0
Hash eb624d4f28d0663f8c54f493117f1e9d
97a410cf6d79902c13d05388fd984b05b5cc43dd
0140b39171539c34746d780b091b84dd24ba9d06ec5543a30bc867b83565e2b0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:35 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 113296
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
api.viglink.com/api/ping
34.251.244.72200 OK 260 B IP 34.251.244.72:0
File type ASCII text, with no line terminators
Hash b589d04888b6d4c51f561d5ad5500dc7
7ed2dc29c79bfdc32ef202d82d8290e4cbd4b8dd
bc6f3295042dae57af21bc6dd3dbb5b76036bad7e887643fb0a578f47052e086
POST /api/ping HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 135
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://bokradz.yoo7.com
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Date: Thu, 22 Dec 2022 09:50:35 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 260
Connection: keep-alive
trc-events.taboola.com/forumotion-ar/log/2/debug?tim=09%3A50%3A35.501&type=usage&msg=rtus&llvl=2&id=1081&cv=20221221-28-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/forumotion-ar/log/2/debug?tim=09%3A50%3A35.501&type=usage&msg=rtus&llvl=2&id=1081&cv=20221221-28-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /forumotion-ar/log/2/debug?tim=09%3A50%3A35.501&type=usage&msg=rtus&llvl=2&id=1081&cv=20221221-28-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Thu, 22 Dec 2022 09:50:36 GMT
x-fastly-to-nlb-rtt: 22299
access-control-allow-credentials: true
X-Firefox-Spdy: h2
api.viglink.com/api/sync.js?key=74bad24252620514d1244cfba01f2ee2
34.251.244.72200 OK 43 B URL HTTP/1.1 api.viglink.com/api/sync.js?key=74bad24252620514d1244cfba01f2ee2
IP 34.251.244.72:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /api/sync.js?key=74bad24252620514d1244cfba01f2ee2 HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: image/gif;charset=UTF-8
Date: Thu, 22 Dec 2022 09:50:35 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 43
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 52cca9f517da7041f625e7d292a2778e
e196da9a10d5386b958dabbfadfa4d723d7a2250
9c8ef3c85266a8a11267e4f55bc569987e1b9480970fc535ce9eb3b911506514
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144347007-1&cid=808838836.1671702635&jid=841414405&gjid=907764206&_gid=384427534.1671702635&_u=YEBAAUAAAAAAACAAI~&z=2104944199
209.85.233.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144347007-1&cid=808838836.1671702635&jid=841414405&gjid=907764206&_gid=384427534.1671702635&_u=YEBAAUAAAAAAACAAI~&z=2104944199
IP 209.85.233.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144347007-1&cid=808838836.1671702635&jid=841414405&gjid=907764206&_gid=384427534.1671702635&_u=YEBAAUAAAAAAACAAI~&z=2104944199 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://bokradz.yoo7.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 22 Dec 2022 09:50:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
api.viglink.com/api/sync.gif?key=74bad24252620514d1244cfba01f2ee2
34.251.244.72200 OK 43 B URL HTTP/1.1 api.viglink.com/api/sync.gif?key=74bad24252620514d1244cfba01f2ee2
IP 34.251.244.72:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /api/sync.gif?key=74bad24252620514d1244cfba01f2ee2 HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: image/gif;charset=UTF-8
Date: Thu, 22 Dec 2022 09:50:35 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 43
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 52cca9f517da7041f625e7d292a2778e
e196da9a10d5386b958dabbfadfa4d723d7a2250
9c8ef3c85266a8a11267e4f55bc569987e1b9480970fc535ce9eb3b911506514
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.viglink.com/api/domains
34.251.244.72200 OK 41 B URL HTTP/1.1 api.viglink.com/api/domains
IP 34.251.244.72:0
File type ASCII text, with no line terminators
Hash 5b4e033e187097689d2a79e68dbbf585
ec240db0ada2043b5456e515b3b1f8b3b1602107
705ae4c0f30961917eaf953f1a9ccd314c70ddf88e1e7d166d196f01c108eac0
POST /api/domains HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 245
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://bokradz.yoo7.com
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Date: Thu, 22 Dec 2022 09:50:35 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 41
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 04d258a8b538ce37d18d438ac6b72efa
361bf892ab84c35ec0563369b0a353899a2532d3
a1c22dce793443b628e08da1ccacc798bbb1155bae7ab304fd4eab359c91db67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash acb10d5bca4033a7330a1bf2b6fd58f2
af6198b8f6462003b0721b587b18d45199400eb9
bbffe3f0b20d832c3f5562a615cb92c3b43ef689612bb593b19361936438877d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BBFFE3F0B20D832C3F5562A615CB92C3B43EF689612BB593B19361936438877D"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15216
Expires: Thu, 22 Dec 2022 14:04:12 GMT
Date: Thu, 22 Dec 2022 09:50:36 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba010b63991e7bb8ff4bd074b49a1b1b
a450da66d5f3f140fc356ce2a89608997d776c75
83b12258f09aa098217520d0e174150282a081372ed6019e79f93baa391b5ef0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144347007-1&cid=808838836.1671702635&jid=841414405&_u=YEBAAUAAAAAAACAAI~&z=1339222729
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144347007-1&cid=808838836.1671702635&jid=841414405&_u=YEBAAUAAAAAAACAAI~&z=1339222729
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144347007-1&cid=808838836.1671702635&jid=841414405&_u=YEBAAUAAAAAAACAAI~&z=1339222729 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Dec 2022 09:50:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144347007-1&cid=808838836.1671702635&jid=841414405&_u=YEBAAUAAAAAAACAAI~&z=1339222729
216.58.211.4200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144347007-1&cid=808838836.1671702635&jid=841414405&_u=YEBAAUAAAAAAACAAI~&z=1339222729
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144347007-1&cid=808838836.1671702635&jid=841414405&_u=YEBAAUAAAAAAACAAI~&z=1339222729 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Dec 2022 09:50:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.betgorebysson.club/apu.php?zoneid=3765907
139.45.195.8200 OK 30 kB URL HTTP/2 cdn.betgorebysson.club/apu.php?zoneid=3765907
IP 139.45.195.8:0
Hash 3aaefd7d137deb3caf6e24328b992cbe
2bddfd62be29fafd3fa5d5be476dde1b3630ad5e
4d724db7fd30ecc2c8c16138071f7ef2e86f8dd1253c3c3dece94ce6e8d1bb61
GET /apu.php?zoneid=3765907 HTTP/1.1
Host: cdn.betgorebysson.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:36 GMT
content-type: application/javascript
x-trace-id: 7a0ef92b4fa106ccabe50310d466e3d0
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=1ca7bddc68794849800bd9c767e24fe9; expires=Fri, 22 Dec 2023 09:50:36 GMT; path=/; secure; SameSite=None
oaidts=1671702636; expires=Fri, 22 Dec 2023 09:50:36 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
stootsou.net/custom
139.45.197.250200 OK 0 B IP 139.45.197.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://bokradz.yoo7.com/
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:36 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://bokradz.yoo7.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4a04e9f03228bbe6d343e3e66a44d462
5af77c662e1783844d899f7ecadb23611df6e1af
aeca834b24dd5a208afc85fa5ee8e70b6035a5a6647163edab2d239665eb74b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stootsou.net/custom
139.45.197.250200 OK 0 B IP 139.45.197.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://bokradz.yoo7.com/
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:36 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://bokradz.yoo7.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
stootsou.net/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bokradz.yoo7.com/
Content-Type: application/json
Origin: https://bokradz.yoo7.com
Content-Length: 379
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:36 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 27bc236e80b1fa690efdae6fe153dab5
access-control-allow-origin: https://bokradz.yoo7.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
stootsou.net/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bokradz.yoo7.com/
Content-Type: application/json
Origin: https://bokradz.yoo7.com
Content-Length: 763
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:36 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 2f78fd8223f5408269ec418fc7043029
access-control-allow-origin: https://bokradz.yoo7.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
stootsou.net/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bokradz.yoo7.com/
Content-Type: application/json
Origin: https://bokradz.yoo7.com
Content-Length: 454
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:36 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 0fac95ac852a52cac67512b1d4d41a7b
access-control-allow-origin: https://bokradz.yoo7.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
bidder.criteo.com/csm/events
178.250.0.165204 No Content 0 B URL HTTP/2 bidder.criteo.com/csm/events
IP 178.250.0.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csm/events HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 373
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 22 Dec 2022 09:50:36 GMT
vary: Origin
server: Finatra
timing-allow-origin: *
access-control-allow-origin: https://bokradz.yoo7.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=rtus&domain=yoo7.com&sn=FirefoxSyncframe&so=3&topUrl=bokradz.yoo7.com&bundle=bQWruF9sYWJzc21xbENhYzl3OTZyVjIzNDl3c042QTlqN2UlMkZyWnVjckViSkZxVUJLTDNpaUtJSVJheEElMkZYZzRTVmlxY3lybGh4UXFKTkZFbUNPaDhxWkxJN3lUcUVEU0ladEg0a0FjajFjclU3a2w0VGlpNG9qNVNtVUUzbXZvNGZCWTI&info=mI6N7F80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVMZEZ5Y2E2MGtUZXJ2UTlsWnFLOWt1eE1ZN2xONWwxdUllamFlZWRKOXc&idsd=103897704,-80656105&cw=1&rtusCallerId=72&lsw=1
178.250.0.157200 OK 5.7 kB URL HTTP/2 gum.criteo.com/sid/json?origin=rtus&domain=yoo7.com&sn=FirefoxSyncframe&so=3&topUrl=bokradz.yoo7.com&bundle=bQWruF9sYWJzc21xbENhYzl3OTZyVjIzNDl3c042QTlqN2UlMkZyWnVjckViSkZxVUJLTDNpaUtJSVJheEElMkZYZzRTVmlxY3lybGh4UXFKTkZFbUNPaDhxWkxJN3lUcUVEU0ladEg0a0FjajFjclU3a2w0VGlpNG9qNVNtVUUzbXZvNGZCWTI&info=mI6N7F80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVMZEZ5Y2E2MGtUZXJ2UTlsWnFLOWt1eE1ZN2xONWwxdUllamFlZWRKOXc&idsd=103897704,-80656105&cw=1&rtusCallerId=72&lsw=1
IP 178.250.0.157:0
File type JSON data\012- , ASCII text, with very long lines (17842)
Hash 44ce74bf537ff086d691e6fcb474c2e0
9ffb7c68d13e9c41fd7841f061ec8ccdeeb645dc
11ba6c72a43afa9a77040f311073afc6a3e53da4fa021d9ffa22f9c028a486f1
GET /sid/json?origin=rtus&domain=yoo7.com&sn=FirefoxSyncframe&so=3&topUrl=bokradz.yoo7.com&bundle=bQWruF9sYWJzc21xbENhYzl3OTZyVjIzNDl3c042QTlqN2UlMkZyWnVjckViSkZxVUJLTDNpaUtJSVJheEElMkZYZzRTVmlxY3lybGh4UXFKTkZFbUNPaDhxWkxJN3lUcUVEU0ladEg0a0FjajFjclU3a2w0VGlpNG9qNVNtVUUzbXZvNGZCWTI&info=mI6N7F80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVMZEZ5Y2E2MGtUZXJ2UTlsWnFLOWt1eE1ZN2xONWwxdUllamFlZWRKOXc&idsd=103897704,-80656105&cw=1&rtusCallerId=72&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=bokradz.yoo7.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:36 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1449488
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
vidstat.taboola.com/lite-unit/3.9.8/UnitWidgetItemDesktop.min.js
151.101.193.44200 OK 30 kB URL HTTP/2 vidstat.taboola.com/lite-unit/3.9.8/UnitWidgetItemDesktop.min.js
IP 151.101.193.44:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash aac1042207afd54e1cf1befcaf3420cd
00f0597866330a850a1d6222861591f24dd18380
ea77ece8880eb28ffe83e94ef787b4204f8b1b3d09f443011b898b13ed4bb706
GET /lite-unit/3.9.8/UnitWidgetItemDesktop.min.js HTTP/1.1
Host: vidstat.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 07:02:09 GMT
etag: "1842444d4bb92087143326a4d508875d"
server: AmazonS3
via: 1.1 b34d5d8e5954d0b7b46d5f0eb534c166.cloudfront.net (CloudFront), 1.1 varnish
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: iVxUQ_yUDgKIDSZaR21P2jFvv94ZUaTAMQdnd9xsEMFJTpsmb2NMlg==
cache-control: public, max-age=2592000
content-encoding: gzip
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:36 GMT
age: 91722
x-served-by: cache-bma1626-BMA
x-cache: Hit from cloudfront, HIT
x-cache-hits: 667
x-timer: S1671702637.810105,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-headers: *
content-length: 29909
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash db12c305e68ba8457ce5eea61ae2e713
b2d7468c394a7fa6f2dbec852357e8fa939a603c
9ec629f8feea19c4999d0fafd3bbc52e7a375b78f1285ab22df8bfdfee5c7e7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9EC629F8FEEA19C4999D0FAFD3BBC52E7A375B78F1285AB22DF8BFDFEE5C7E7A"
Last-Modified: Tue, 20 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5238
Expires: Thu, 22 Dec 2022 11:17:54 GMT
Date: Thu, 22 Dec 2022 09:50:36 GMT
Connection: keep-alive
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-crto-bundle
Referer: https://bokradz.yoo7.com/
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:36 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-headers: X-CRTO-SID, X-CRTO-IDCPY, X-CRTO-OPTOUT, X-CRTO-BUNDLE
access-control-allow-origin: https://bokradz.yoo7.com
server-processing-duration-in-ticks: 527867
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_180%2Cw_360%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/bdf59b743c3bf2b9e2b6af3558a35a05.jpg
151.101.193.44200 OK 4.5 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_180%2Cw_360%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/bdf59b743c3bf2b9e2b6af3558a35a05.jpg
IP 151.101.193.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 93ad0770dcb0a6c3207bdfccc992bb3a
c3e5d8d86a4085ef54efe1746491391a6e9a0e15
cb2891ed3c2856755d24c45e5f7b820dc599460edd55023e5e44aaeb1eaf54b7
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_180%2Cw_360%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/bdf59b743c3bf2b9e2b6af3558a35a05.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 562316311081023393918826475048748112700,341818766630488423269086991181948173068,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 562316311081023393918826475048748112700,341818766630488423269086991181948173068,29ecf9b93bbf306179626feeda1fab70
etag: "3ec622853fcde08260ad4dcd813cb497"
last-modified: Fri, 28 Oct 2022 03:16:46 GMT
req-referer: https://zone.msn.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: a7cd326f16af07fb986f3f82c1d1fbfa
x-envoy-upstream-service-time: 470
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb802
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:36 GMT
age: 3345104
x-served-by: cache-iad-kjyo7100113-IAD, cache-iad-kjyo7100154-IAD, cache-lga21943-LGA, cache-iad-kiad7000036-IAD, cache-bma1626-BMA
x-cache: MISS, MISS, MISS, HIT, HIT
x-cache-hits: 0, 0, 0, 93, 1
x-timer: S1671702637.851409,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_180%2Cw_360%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/bdf59b743c3bf2b9e2b6af3558a35a05.jpg
x-vcl-time-ms: 1
content-length: 4510
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_184%2Cw_220%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/03ad1da5bae26a86b2a1d1f8a8001c00.jpg
151.101.193.44200 OK 4.1 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_184%2Cw_220%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/03ad1da5bae26a86b2a1d1f8a8001c00.jpg
IP 151.101.193.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f5fdc61630ffd387918507a0a9999408
9917fe805ebc8214655cbd5ce193b33daacddc27
f0ee29575f936bd901031c6c93fba71c26a197dd47cb82a340c09e64d5ea22b2
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_184%2Cw_220%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/03ad1da5bae26a86b2a1d1f8a8001c00.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 316960165489855620182995572190399854478,553231981581714319628150088830979202071,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 316960165489855620182995572190399854478,553231981581714319628150088830979202071,29ecf9b93bbf306179626feeda1fab70
etag: "19ac8eb550e6b1baf4dd0610a01ec3f8"
expiration: expiry-date="Sun, 16 Oct 2022 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Thu, 15 Sep 2022 14:40:37 GMT
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 86
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb203
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:36 GMT
age: 7413765
x-served-by: cache-iad-kiad7000105-IAD, cache-iad-kjyo7100116-IAD, cache-bur-kbur8200163-BUR, cache-iad-kiad7000178-IAD, cache-bma1626-BMA
x-cache: HIT, MISS, HIT, HIT, HIT
x-cache-hits: 1, 0, 1, 94, 1
x-timer: S1671702637.851656,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_184%2Cw_220%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/03ad1da5bae26a86b2a1d1f8a8001c00.jpg
x-vcl-time-ms: 1
content-length: 4072
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_184%2Cw_220%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//static.trendscatchers.io/uploads/2022/04/de-9-Aquadam-House-saved-from-the-flood.jpg
151.101.193.44200 OK 11 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_184%2Cw_220%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//static.trendscatchers.io/uploads/2022/04/de-9-Aquadam-House-saved-from-the-flood.jpg
IP 151.101.193.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1dbe139896b63f43fa60a562b5fe9e51
678836460c4d18354a3e820ab234dfe5dce10430
cd45332b418c75a72f8411e77cb70e4563c2cc4932e13b06a3297edd374907d6
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_184%2Cw_220%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//static.trendscatchers.io/uploads/2022/04/de-9-Aquadam-House-saved-from-the-flood.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 316655602718335343350619277656414684633,553231981581714319628150088830979202071,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 316655602718335343350619277656414684633,553231981581714319628150088830979202071,29ecf9b93bbf306179626feeda1fab70
etag: "c87f603b384e7616b0cd009031497a57"
last-modified: Wed, 05 Oct 2022 11:45:35 GMT
req-referer: https://fr.yna.co.kr/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 5e2858a21737795279fcfc014b8dab4c
x-envoy-upstream-service-time: 145
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb204
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:36 GMT
age: 5018417
x-served-by: cache-iad-kcgs7200056-IAD, cache-iad-kiad7000162-IAD, cache-bur-kbur8200144-BUR, cache-iad-kiad7000091-IAD, cache-bma1626-BMA
x-cache: HIT, HIT, MISS, MISS, HIT
x-cache-hits: 1, 3, 0, 0, 1
x-timer: S1671702637.851886,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_184%2Cw_220%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//static.trendscatchers.io/uploads/2022/04/de-9-Aquadam-House-saved-from-the-flood.jpg
x-vcl-time-ms: 1
content-length: 10604
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/h_184,w_220,c_fill,g_xy_center,x_656,y_460/http%3A//www.people-today.com/afbeeldingen/1200x630/1661873635_176a654e819169cd987b636551908fa3ddf14fac.jpeg
151.101.193.44200 OK 9.3 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/h_184,w_220,c_fill,g_xy_center,x_656,y_460/http%3A//www.people-today.com/afbeeldingen/1200x630/1661873635_176a654e819169cd987b636551908fa3ddf14fac.jpeg
IP 151.101.193.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash ef1892f8cd604fc09bb6e4a49eb3fcb2
0e5dd3d174531c349e311dc66410147646f5cdfd
64a93d29cd4c5304e74ff261eb890f6ca7fde6c5fe687d28d095ab431577ae0d
GET /taboola/image/fetch/h_184,w_220,c_fill,g_xy_center,x_656,y_460/http%3A//www.people-today.com/afbeeldingen/1200x630/1661873635_176a654e819169cd987b636551908fa3ddf14fac.jpeg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 455720291627883194302054944617348128973,319344717677401686727395557641411890080,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 455720291627883194302054944617348128973,319344717677401686727395557641411890080,29ecf9b93bbf306179626feeda1fab70
etag: "03aa20c36f0f9b9593a34826b857f167"
last-modified: Wed, 05 Oct 2022 14:03:53 GMT
req-referer: https://www.programme-television.org/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 9b888b428b5fca00aa724216f4618eb4
x-envoy-upstream-service-time: 557
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb204
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:36 GMT
age: 5518361
x-served-by: cache-iad-kjyo7100122-IAD, cache-iad-kiad7000055-IAD, cache-sna10730-LGB, cache-iad-kcgs7200109-IAD, cache-bma1626-BMA
x-cache: MISS, HIT, MISS, HIT, HIT
x-cache-hits: 0, 1, 0, 24, 1
x-timer: S1671702637.855838,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/h_184,w_220,c_fill,g_xy_center,x_656,y_460/http%3A//www.people-today.com/afbeeldingen/1200x630/1661873635_176a654e819169cd987b636551908fa3ddf14fac.jpeg
x-vcl-time-ms: 1
content-length: 9268
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=rtus&topUrl=bokradz.yoo7.com
178.250.0.157200 OK 14 kB URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=bokradz.yoo7.com
IP 178.250.0.157:0
Hash 3cd95b6b8aecc00dd1f70c61dedff4a9
91e627a85d7adc9ff0a23073436f1b12c14a54c4
c5c7f4be09e0a4bafb2e739d777f30ab26edfbd976dc5c29211c74a08b697ca0
GET /syncframe?origin=rtus&topUrl=bokradz.yoo7.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:35 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=2f0c1452-9a07-4782-9bcd-a994f715c44c; expires=Tue, 16 Jan 2024 09:50:35 GMT; domain=.criteo.com; path=/; secure; samesite=none
optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 443459
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
api.viglink.com/api/domains
34.251.244.72200 OK 42 B URL HTTP/1.1 api.viglink.com/api/domains
IP 34.251.244.72:0
File type ASCII text, with no line terminators
Hash f80aa7a415bbf466a274a5319ae6dcf0
388363e4bc9d892dbca42615646f04f5315b7b39
91712b9bfe1b87ac7fdcae290e4bd93c73b23d19313f7357560c2de6ce1be92d
POST /api/domains HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 268
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://bokradz.yoo7.com
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Date: Thu, 22 Dec 2022 09:50:36 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 42
Connection: keep-alive
bokradz.yoo7.com/sw.js
178.33.43.150200 OK 2.2 kB IP 178.33.43.150:0
Hash ae52d04960d943e327a543c8d532aa65
36d96f4790fd0e0c1d0524b4c4d4ae35f881045c
67c4fa3a0fa182f733d37ef402fc6b5f205eae2810bf11e8118f0cd33b6cad18
GET /sw.js HTTP/1.1
Host: bokradz.yoo7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bokradz.yoo7.com/t109-topic
Connection: keep-alive
Cookie: exadd=167171; _fa-screen=%7B%22w%22%3A1152%2C%22h%22%3A836%7D; _ga=GA1.2.808838836.1671702635; _gid=GA1.2.384427534.1671702635; _gat_gtag_UA_144347007_1=1; cto_bundle=bQWruF9sYWJzc21xbENhYzl3OTZyVjIzNDl3c042QTlqN2UlMkZyWnVjckViSkZxVUJLTDNpaUtJSVJheEElMkZYZzRTVmlxY3lybGh4UXFKTkZFbUNPaDhxWkxJN3lUcUVEU0ladEg0a0FjajFjclU3a2w0VGlpNG9qNVNtVUUzbXZvNGZCWTI; trc_cookie_storage=taboola%2520global%253Auser-id%3D5c89ae01-643f-4e7a-9e58-9fe06716c8cd-tucta9dadec
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:36 GMT
content-type: application/javascript
last-modified: Tue, 27 Aug 2019 13:54:01 GMT
etag: W/"5d6535f9-1554"
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_184%2Cw_220%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/36a41a97adc4c3b13c8b7f36d67bca9c.jpg
151.101.193.44200 OK 10 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_184%2Cw_220%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/36a41a97adc4c3b13c8b7f36d67bca9c.jpg
IP 151.101.193.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a4a84d649d05ce219efd754de8df066c
e3b9847b8932e3f2754eeec5307879e6ebb83e35
6aeca60cf7f26c1f5c33e41ebdafd24ca03375a20ac655e23d146b3b129c167f
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_184%2Cw_220%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/36a41a97adc4c3b13c8b7f36d67bca9c.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 345648038849990466379824316879779999760,553231981581714319628150088830979202071,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 345648038849990466379824316879779999760,553231981581714319628150088830979202071,29ecf9b93bbf306179626feeda1fab70
etag: "d87cb0d7ab3c45fa1cd14c3e93427602"
expiration: expiry-date="Wed, 09 Nov 2022 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Sun, 09 Oct 2022 21:56:28 GMT
req-referer: https://www.thepauperedchef.com/
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 100
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb203
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:36 GMT
age: 5508982
x-served-by: cache-iad-kjyo7100082-IAD, cache-iad-kiad7000061-IAD, cache-bur-kbur8200044-BUR, cache-iad-kiad7000130-IAD, cache-bma1626-BMA
x-cache: MISS, MISS, HIT, HIT, HIT
x-cache-hits: 0, 0, 1, 68, 1
x-timer: S1671702637.855611,VS0,VE18
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_184%2Cw_220%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/36a41a97adc4c3b13c8b7f36d67bca9c.jpg
x-vcl-time-ms: 18
content-length: 10174
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7337
Expires: Thu, 22 Dec 2022 11:52:54 GMT
Date: Thu, 22 Dec 2022 09:50:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7337
Expires: Thu, 22 Dec 2022 11:52:54 GMT
Date: Thu, 22 Dec 2022 09:50:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7337
Expires: Thu, 22 Dec 2022 11:52:54 GMT
Date: Thu, 22 Dec 2022 09:50:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7337
Expires: Thu, 22 Dec 2022 11:52:54 GMT
Date: Thu, 22 Dec 2022 09:50:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7337
Expires: Thu, 22 Dec 2022 11:52:54 GMT
Date: Thu, 22 Dec 2022 09:50:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d81b288-3215-4c0a-9f38-5509325a16d0.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d81b288-3215-4c0a-9f38-5509325a16d0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78d5e2b5232350fed7e8ef1add5ee7c9
22dd32b26881e083c66b511c48cdec4a33f22b34
366034eac74e6066f9b1ef73516ab68928b75ba7fedba1676f7b2fc6f6ce6ab7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d81b288-3215-4c0a-9f38-5509325a16d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4307
x-amzn-requestid: 31763ca5-b9f6-443e-b9ff-182920e22a9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dhCLGE5CoAMFxsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a37d7a-2b2e9aeb17148a4317c96c62;Sampled=0
x-amzn-remapped-date: Wed, 21 Dec 2022 21:41:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: LjI28BIECiPSKdciM6NXXml5CBFLvc16KNgj9IBrWkEwaEH8mqJFbA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 21:53:57 GMT
etag: "22dd32b26881e083c66b511c48cdec4a33f22b34"
content-type: image/jpeg
age: 43000
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fe4d96f-b35a-4cc6-9fe3-c52ed693df34.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fe4d96f-b35a-4cc6-9fe3-c52ed693df34.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5dd6622433d537fbb91a04bd3b57d873
552f216608b819b4f65f0574e421f4a761f0d721
5e9b03133d928378a775ab52ec6e58cd7753aa2975a4966534353c0d6bc46af5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fe4d96f-b35a-4cc6-9fe3-c52ed693df34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11471
x-amzn-requestid: 20d9459a-710b-4fcf-bfce-9f0c5f513740
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dbNEqGPnoAMFcDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a12884-4a93ab9047181db109d328e2;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 03:14:12 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: qFwWS-f0U1hSbrFFgBiGNzXRvZyvR90n_MI7jfYfWsyv2W6jH8D-9w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a06140ffee86972bad90c57fc682df36.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 03:23:59 GMT
age: 23198
etag: "552f216608b819b4f65f0574e421f4a761f0d721"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F743a20e0-8fa8-4f0d-a2d1-8daba4b14e8c.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F743a20e0-8fa8-4f0d-a2d1-8daba4b14e8c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d38ef34d93be3d43e11e9d64a419a1be
1e5712d83360b5c2073d422ba21160b86b3f55d7
a8017c2122c268d971420a7b79baec22ed16eb5f429829e3b126c581ae4916f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F743a20e0-8fa8-4f0d-a2d1-8daba4b14e8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3778
x-amzn-requestid: 40c9f289-af55-4826-a8de-8a725fa7a8ed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_BF0koAMFwpg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-6b08a4826a0c265076fe1a1d;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U0NpRoCUvPz216gsM6JzAtJkcJ_uCtnJxk3I27V-1txdRG3VcSp0tQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 22:01:32 GMT
age: 42545
etag: "1e5712d83360b5c2073d422ba21160b86b3f55d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7aebfd5a-806b-4e2e-974a-11e1bcbc87f0.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7aebfd5a-806b-4e2e-974a-11e1bcbc87f0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f9e9d416fa9388713c2bb7f997c50eed
2e19748df20da1a2b4019daa4fc7ce36963fd7ec
2d676d0c23e9f91941e647de1c10f7da417c197db85b92d1f443e4d171648008
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7aebfd5a-806b-4e2e-974a-11e1bcbc87f0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6715
x-amzn-requestid: 0b164971-4278-4b5b-9fe6-e8eb2728817d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dhCMdHFWIAMF_2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a37d82-24149886262fd01b6484ebad;Sampled=0
x-amzn-remapped-date: Wed, 21 Dec 2022 21:41:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k_xUwbjKELrAone9goEZcE2A1-6OhNivC4ww1EUWuBVgJW-2y7_VIw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 21:53:44 GMT
age: 43013
etag: "2e19748df20da1a2b4019daa4fc7ce36963fd7ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F65e2add8-ea05-4111-9858-24c4f0d437a5.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F65e2add8-ea05-4111-9858-24c4f0d437a5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1aa2fe21cd79bf1faaac0272119678d0
d23357441546e2f09f28f23407c81a52c01b9a22
ea050bbd73c13bcbac664baa5ae51a92277e1b1d1b8e7b0a4e18b46b4d20f3e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F65e2add8-ea05-4111-9858-24c4f0d437a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8433
x-amzn-requestid: 4fed41bb-f868-49cd-820a-2dadcd2baace
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabuOHIBIAMF04w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d98e-46ab81065bf0f6d157b16b13;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:37:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: guDXekCSbwPS-EwHHTdEyLjAI0KW3nrOMs3X80AE2TBrL1TsICefPg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 22:09:35 GMT
age: 42062
etag: "d23357441546e2f09f28f23407c81a52c01b9a22"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1aefd95-d51b-4642-ab89-11a7030455cf.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1aefd95-d51b-4642-ab89-11a7030455cf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd72f58a8fdce6925df77081a95c951b
625acc5e8257f47f745fd5a1b5d43d10f2df0d81
20f5fcc7bd72d44b0fff58e12b4ab025082e55e2d86e2bd48d740f091b84a86a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1aefd95-d51b-4642-ab89-11a7030455cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8860
x-amzn-requestid: 07acc052-7112-4844-8b9b-07ae6d36bde9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dfBrAGUTIAMFzrg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a2afdf-5152438d378586f94911a722;Sampled=0
x-amzn-remapped-date: Wed, 21 Dec 2022 07:03:59 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 42te3BPiP1bi8_OjGDaCyB2CmgiKE3K1eRiHM5v0q-LDImFrapUAfA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 31dfa94142c6eaf975b0e5454c00340a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 07:14:17 GMT
age: 9380
etag: "625acc5e8257f47f745fd5a1b5d43d10f2df0d81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 790cea28c41570dd115d2cc055b88a3f
0844add521bc3ffd014bebd9d35a2098ff145694
a38af277652b1f1b96184f7dd771460b27f7c7a4bf0b822c745db3977c66bb0f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4334
Cache-Control: max-age=114417
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:37 GMT
Etag: "63a33370-13a"
Expires: Fri, 23 Dec 2022 17:37:34 GMT
Last-Modified: Wed, 21 Dec 2022 16:25:20 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 314
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:36 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=09%3A50%3A36.411&type=warn&msg=TRC.TranslationsManager%20-%20missing%20feature%20in%20translationMap%3A%20userx.&llvl=2&id=203&cv=20221221-28-RELEASE<=deflated&pct=1
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=09%3A50%3A36.411&type=warn&msg=TRC.TranslationsManager%20-%20missing%20feature%20in%20translationMap%3A%20userx.&llvl=2&id=203&cv=20221221-28-RELEASE<=deflated&pct=1
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /forumotion-ar/log/2/debug?tim=09%3A50%3A36.411&type=warn&msg=TRC.TranslationsManager%20-%20missing%20feature%20in%20translationMap%3A%20userx.&llvl=2&id=203&cv=20221221-28-RELEASE<=deflated&pct=1 HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Thu, 22 Dec 2022 09:50:37 GMT
x-fastly-to-nlb-rtt: 77212
access-control-allow-credentials: true
X-Firefox-Spdy: h2
am-vid-events.taboola.com/st?cijs=convusmp&ttype=45&cisd=convusmp&cipid=66361655&crid=-1&dast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&cmcv=&pix=31589837&cb=1671702636741&uv=3246&tms=1671702636741&abt=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&ft=0&unm=WIDGET_ITEM&debug=pn:!sqg:!torgn:1671702633292!ts:1671702636741&mntl=1
141.226.228.48200 OK 0 B URL HTTP/2 am-vid-events.taboola.com/st?cijs=convusmp&ttype=45&cisd=convusmp&cipid=66361655&crid=-1&dast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&cmcv=&pix=31589837&cb=1671702636741&uv=3246&tms=1671702636741&abt=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&ft=0&unm=WIDGET_ITEM&debug=pn:!sqg:!torgn:1671702633292!ts:1671702636741&mntl=1
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /st?cijs=convusmp&ttype=45&cisd=convusmp&cipid=66361655&crid=-1&dast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&cmcv=&pix=31589837&cb=1671702636741&uv=3246&tms=1671702636741&abt=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&ft=0&unm=WIDGET_ITEM&debug=pn:!sqg:!torgn:1671702633292!ts:1671702636741&mntl=1 HTTP/1.1
Host: am-vid-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:37 GMT
content-length: 0
X-Firefox-Spdy: h2
am-vid-events.taboola.com/st?cijs=convusmp&ttype=45&cisd=convusmp&cipid=8083555&crid=5664665&dast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&cmcv=&pix=31589837&cb=1671702636847&uv=3246&tms=1671702636847&abt=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&ft=0&unm=WIDGET_ITEM&debug=pn:!sqg:!torgn:1671702633292!ts:1671702636847&mntl=1
141.226.228.48200 OK 0 B URL HTTP/2 am-vid-events.taboola.com/st?cijs=convusmp&ttype=45&cisd=convusmp&cipid=8083555&crid=5664665&dast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&cmcv=&pix=31589837&cb=1671702636847&uv=3246&tms=1671702636847&abt=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&ft=0&unm=WIDGET_ITEM&debug=pn:!sqg:!torgn:1671702633292!ts:1671702636847&mntl=1
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /st?cijs=convusmp&ttype=45&cisd=convusmp&cipid=8083555&crid=5664665&dast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&cmcv=&pix=31589837&cb=1671702636847&uv=3246&tms=1671702636847&abt=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&ft=0&unm=WIDGET_ITEM&debug=pn:!sqg:!torgn:1671702633292!ts:1671702636847&mntl=1 HTTP/1.1
Host: am-vid-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:37 GMT
content-length: 0
X-Firefox-Spdy: h2
wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=728&height=409&pubid=169497&tagid=953497&crid=-1&noaop=5&sortOrderType=0&cb=1671702636779&mimes=5,10,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=1&pv=1490&pt=-1539969359&tz=0&viewable=true&ddast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=7&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&dtagid=2090795&dpubid=240385&abtst=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&mPre=0.025&cirf=https%3A%2F%2Fbokradz.yoo7.com&en=1
151.101.193.44200 OK 8.8 kB URL HTTP/2 wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=728&height=409&pubid=169497&tagid=953497&crid=-1&noaop=5&sortOrderType=0&cb=1671702636779&mimes=5,10,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=1&pv=1490&pt=-1539969359&tz=0&viewable=true&ddast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=7&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&dtagid=2090795&dpubid=240385&abtst=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&mPre=0.025&cirf=https%3A%2F%2Fbokradz.yoo7.com&en=1
IP 151.101.193.44:0
Hash cfb632ad063857e2bbece86b20646778
add5ac9e211404f931390d65a931ebd1c389c49c
ffab6aa9b2c12fe1b7ed9f487efd254f231505ba6d46340eb79a29b4ffccd73d
POST /VideoBidRequestHandlerServlet?oid=15&width=728&height=409&pubid=169497&tagid=953497&crid=-1&noaop=5&sortOrderType=0&cb=1671702636779&mimes=5,10,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=1&pv=1490&pt=-1539969359&tz=0&viewable=true&ddast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=7&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&dtagid=2090795&dpubid=240385&abtst=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&mPre=0.025&cirf=https%3A%2F%2Fbokradz.yoo7.com&en=1 HTTP/1.1
Host: wf.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 133
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/json;charset=utf-8
machineid: 1452
pragma: no-cache
cache-control: no-cache,must-revalidate,no-store,max-age=0,s-maxage=0
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: https://bokradz.yoo7.com
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1671702637.349057,VS0,VE137
vary: Accept-Encoding
X-Firefox-Spdy: h2
vidstat.taboola.com/vpaid/units/32_4_6/infra/cmTagWIDGET_ITEM.js
151.101.193.44200 OK 129 kB URL HTTP/2 vidstat.taboola.com/vpaid/units/32_4_6/infra/cmTagWIDGET_ITEM.js
IP 151.101.193.44:0
File type Unicode text, UTF-8 text, with very long lines (65489), with no line terminators
Size 129 kB (128647 bytes)
Hash f89a717eae81bea67ca723eb19a95f51
7024de1e0534703414a2d2340b08415ee1826e4f
ea7d0704fc1caa32d19bd397507220e4d0b4d31982f7dca7352152badb9ca02c
GET /vpaid/units/32_4_6/infra/cmTagWIDGET_ITEM.js HTTP/1.1
Host: vidstat.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: QTr2gY20Os1JO1tNd4qIa5aDZmyR0DHU5Om1iIOEGoB3xuPNC42xBc+lt1IfSayaqNij2EpV9oo=
x-amz-request-id: SVWACD3MYC6T11N5
last-modified: Wed, 21 Dec 2022 10:06:43 GMT
etag: "f89a717eae81bea67ca723eb19a95f51"
x-amz-meta-ctime: 1671617202
x-amz-meta-mode: 33188
x-amz-meta-gid: 0
x-amz-meta-uid: 0
x-amz-meta-mtime: 1671617201
content-type: application/javascript
cache-control: public, max-age=2592000
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:37 GMT
via: 1.1 varnish
age: 85166
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 135
x-timer: S1671702638.520054,VS0,VE0
vary: Accept-Encoding
server: AmazonS3-br
content-encoding: br
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-headers: *
content-length: 128647
X-Firefox-Spdy: h2
imprammp.taboola.com/st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=66361655&crid=-1&dast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&cmcv=&pix=undefined&cb=1671702636743&uv=3246&tms=1671702636743&abt=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&ft=0&unm=WIDGET_ITEM&aure=false&agl=1&cirid=a1d9059a-0424-4217-9ae1-04bd551d44ef&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1
151.101.193.44200 OK 395 B URL HTTP/2 imprammp.taboola.com/st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=66361655&crid=-1&dast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&cmcv=&pix=undefined&cb=1671702636743&uv=3246&tms=1671702636743&abt=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&ft=0&unm=WIDGET_ITEM&aure=false&agl=1&cirid=a1d9059a-0424-4217-9ae1-04bd551d44ef&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1
IP 151.101.193.44:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (742), with no line terminators
Hash 39da82976567401a7629ab307831318a
80f6271faa2f7984a80bbc1a9454bf4fc59fc026
472f739499d43be3081e7c9104126ec9eb42286120ed68a4373f240b20255834
GET /st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=66361655&crid=-1&dast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&cmcv=&pix=undefined&cb=1671702636743&uv=3246&tms=1671702636743&abt=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&ft=0&unm=WIDGET_ITEM&aure=false&agl=1&cirid=a1d9059a-0424-4217-9ae1-04bd551d44ef&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1 HTTP/1.1
Host: imprammp.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/html;charset=ISO-8859-1
content-encoding: gzip
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1671702637.221768,VS0,VE24
vary: Accept-Encoding
X-Firefox-Spdy: h2
trc.taboola.com/forumotion-ar/log/3/visible?route=AM%3AIL%3AV<i=deflated
151.101.193.44204 No Content 0 B URL HTTP/2 trc.taboola.com/forumotion-ar/log/3/visible?route=AM%3AIL%3AV<i=deflated
IP 151.101.193.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /forumotion-ar/log/3/visible?route=AM%3AIL%3AV<i=deflated HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2593
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://bokradz.yoo7.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1671702638.605017,VS0,VE88
x-vcl-time-ms: 88
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f662908d260755f53cb7350b96c43427
c33991af9a0b7be062d6c34d9764a4ded48c4518
3eb4ac77654e247ab942960296aa0d04e8f52f8a564fd5f77fe44ae6b15a84bf
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6113
Cache-Control: max-age=144266
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:37 GMT
Etag: "63a3a116-1d7"
Expires: Sat, 24 Dec 2022 01:55:03 GMT
Last-Modified: Thu, 22 Dec 2022 00:13:10 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f662908d260755f53cb7350b96c43427
c33991af9a0b7be062d6c34d9764a4ded48c4518
3eb4ac77654e247ab942960296aa0d04e8f52f8a564fd5f77fe44ae6b15a84bf
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6182
Cache-Control: max-age=144335
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:37 GMT
Etag: "63a3a116-1d7"
Expires: Sat, 24 Dec 2022 01:56:12 GMT
Last-Modified: Thu, 22 Dec 2022 00:13:10 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f662908d260755f53cb7350b96c43427
c33991af9a0b7be062d6c34d9764a4ded48c4518
3eb4ac77654e247ab942960296aa0d04e8f52f8a564fd5f77fe44ae6b15a84bf
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4456
Cache-Control: max-age=142609
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:37 GMT
Etag: "63a3a116-1d7"
Expires: Sat, 24 Dec 2022 01:27:26 GMT
Last-Modified: Thu, 22 Dec 2022 00:13:10 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f662908d260755f53cb7350b96c43427
c33991af9a0b7be062d6c34d9764a4ded48c4518
3eb4ac77654e247ab942960296aa0d04e8f52f8a564fd5f77fe44ae6b15a84bf
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6182
Cache-Control: max-age=144335
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:37 GMT
Etag: "63a3a116-1d7"
Expires: Sat, 24 Dec 2022 01:56:12 GMT
Last-Modified: Thu, 22 Dec 2022 00:13:10 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
185.94.180.126302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://imprammp.taboola.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 22 Dec 2022 09:50:37 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=167824d3-81de-11ed-b87f-1dbc55590106; expires=Thu, 19-Jan-2023 09:50:37 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=16782517-81de-11ed-b87f-1dbc55590106
X-fe: 97
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
vidstat.taboola.com/vpaid/vPlayer/player/v14.9.0/OvaMediaPlayer.js
151.101.193.44200 OK 88 kB URL HTTP/2 vidstat.taboola.com/vpaid/vPlayer/player/v14.9.0/OvaMediaPlayer.js
IP 151.101.193.44:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 4f7adde1e51e8199043f2e48edb03dad
66dc4c61fd4e7f19d6ab1dbf8e93d592e4eb045c
f1b19cdef1ca711a6ac08fc5d64fb820a060d6f5f66fd2a3750cca7c60660002
GET /vpaid/vPlayer/player/v14.9.0/OvaMediaPlayer.js HTTP/1.1
Host: vidstat.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: GQ6rT7Mxgp9ZCIGSMeS31zz/bnpw2SiyZwNZzWPmX4YJ1SJybWum8+gNwli/Igbz02EFXzE0n58=
x-amz-request-id: 8P0V7YHR24NSXTJH
last-modified: Tue, 20 Dec 2022 10:01:24 GMT
etag: "4f7adde1e51e8199043f2e48edb03dad"
x-amz-meta-ctime: 1671530483
x-amz-meta-mode: 33188
x-amz-meta-gid: 0
x-amz-meta-uid: 0
x-amz-meta-mtime: 1671530471
content-type: application/javascript
cache-control: public, max-age=2592000
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:37 GMT
via: 1.1 varnish
age: 172099
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 25014
x-timer: S1671702638.848578,VS0,VE0
vary: Accept-Encoding
server: AmazonS3-br
content-encoding: br
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-headers: *
content-length: 88198
X-Firefox-Spdy: h2
am-match.taboola.com/sync?dast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&excid=22&docw=0&cijs=1&nlb=true
141.226.228.48200 OK 1.2 kB URL HTTP/2 am-match.taboola.com/sync?dast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&excid=22&docw=0&cijs=1&nlb=true
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash e8974b90a32e4b872fe4c10263b65ca4
b12d4aa9068ea6ea5f1e21dca438ab01f59352bb
e3fcbe8b47b3f96153e5c14a2c16f67e5f66238bee5c7e7cf52d561f2ce8a377
GET /sync?dast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&excid=22&docw=0&cijs=1&nlb=true HTTP/1.1
Host: am-match.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:37 GMT
content-type: text/html;charset=ISO-8859-1
machineid: 3408
X-Firefox-Spdy: h2
vidstatb.taboola.com/vid/blackScreen5.mp4
151.101.193.44206 Partial Content 91 kB URL HTTP/2 vidstatb.taboola.com/vid/blackScreen5.mp4
IP 151.101.193.44:0
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Hash b2b087fe4ae638c533731c347fcd4df8
62851c888c21bb51cc04f13b6fc0451279fe0425
0407dafc112212a135d1aa4dd9b40ba0208c6bb6b1959f5535af093254189d66
GET /vid/blackScreen5.mp4 HTTP/1.1
Host: vidstatb.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
content-type: video/mp4
last-modified: Sun, 02 Jul 2017 20:40:57 GMT
etag: "b2b087fe4ae638c533731c347fcd4df8"
x-amz-meta-mode: 33188
x-amz-meta-gid: 0
x-amz-meta-uid: 0
x-amz-meta-mtime: 1497790207
server: AmazonS3
via: 1.1 9803a30a87f1ec1047cb2b8ad5ecc43e.cloudfront.net (CloudFront), 1.1 varnish
x-amz-cf-pop: ARN56-P1
x-amz-cf-id: gopM2XYfUoVUFmJXQ0440-QEF6IoAyvdLK0EUOquu3M35zK6ZGLwLg==
cache-control: public, max-age=2592000
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:37 GMT
age: 1757614
x-served-by: cache-bma1626-BMA
x-cache: Hit from cloudfront, HIT
x-cache-hits: 690490
x-timer: S1671702638.989864,VS0,VE0
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-headers: *
content-range: bytes 0-90783/90784
content-length: 90784
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
185.94.180.126302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-match.taboola.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 22 Dec 2022 09:50:37 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=16952104-81de-11ed-b162-1891fad20206; expires=Thu, 19-Jan-2023 09:50:37 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=1695213c-81de-11ed-b162-1891fad20206
X-fe: 83
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
185.94.180.126302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://imprammp.taboola.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 22 Dec 2022 09:50:37 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=1694e327-81de-11ed-ab72-14d534130406; expires=Thu, 19-Jan-2023 09:50:37 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=1694e367-81de-11ed-ab72-14d534130406
X-fe: 57
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=16782517-81de-11ed-b87f-1dbc55590106
185.94.180.126204 No Content 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=16782517-81de-11ed-b87f-1dbc55590106
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=16782517-81de-11ed-b87f-1dbc55590106 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://imprammp.taboola.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Thu, 22 Dec 2022 09:50:37 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=16952941-81de-11ed-9c26-19b4ac340206; expires=Thu, 19-Jan-2023 09:50:37 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 89
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
185.94.180.126302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-match.taboola.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 22 Dec 2022 09:50:38 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=16960651-81de-11ed-8417-1ce730eb0206; expires=Thu, 19-Jan-2023 09:50:38 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=1696069b-81de-11ed-8417-1ce730eb0206
X-fe: 140
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
185.94.180.126302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-match.taboola.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 22 Dec 2022 09:50:38 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=169b8043-81de-11ed-8349-1ce730eb0506; expires=Thu, 19-Jan-2023 09:50:38 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=169b8089-81de-11ed-8349-1ce730eb0506
X-fe: 140
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=1695213c-81de-11ed-b162-1891fad20206
185.94.180.126204 No Content 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=1695213c-81de-11ed-b162-1891fad20206
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=1695213c-81de-11ed-b162-1891fad20206 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://am-match.taboola.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Thu, 22 Dec 2022 09:50:38 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=16cbc3e3-81de-11ed-9bbe-1afcdea00306; expires=Thu, 19-Jan-2023 09:50:38 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 130
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=1694e367-81de-11ed-ab72-14d534130406
185.94.180.126204 No Content 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=1694e367-81de-11ed-ab72-14d534130406
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=1694e367-81de-11ed-ab72-14d534130406 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://imprammp.taboola.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Thu, 22 Dec 2022 09:50:38 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=16cc1e8f-81de-11ed-a974-1f932c7f0506; expires=Thu, 19-Jan-2023 09:50:38 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 103
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=169b8089-81de-11ed-8349-1ce730eb0506
185.94.180.126204 No Content 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=169b8089-81de-11ed-8349-1ce730eb0506
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=169b8089-81de-11ed-8349-1ce730eb0506 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://am-match.taboola.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Thu, 22 Dec 2022 09:50:38 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=16cc7171-81de-11ed-8603-1644f9a80106; expires=Thu, 19-Jan-2023 09:50:38 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 96
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cdn.taboola.com/scripts/cds-pips.js
151.101.193.44200 OK 1.3 kB URL HTTP/2 cdn.taboola.com/scripts/cds-pips.js
IP 151.101.193.44:0
File type ASCII text, with very long lines (3545), with no line terminators
Hash 780c5c514014519ce276709f515905a0
04fe86d00b9c9077effe05171d066d243ecab221
015db06150b62ad2ad533883652174ebb6f07e24a7147fdac01a0ccd266e3f30
GET /scripts/cds-pips.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 2KBeU0d7OyPXtZDYUoIqlTBmhGhsve90tjYoemCxISjKQrNgcxT28sPXVt5KfJt+6r7dFoJgA8g=
x-amz-request-id: NFWGDQGY1WQ95XHE
x-amz-replication-status: COMPLETED
last-modified: Wed, 12 Oct 2022 13:57:57 GMT
etag: "383fa66d2a0a09f4a6e64a9593ad43bb"
x-amz-version-id: z5FoayaLm_Bvew3pbkytkoHczFCvkPwT
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:38 GMT
via: 1.1 varnish
age: 2672
x-served-by: cache-bma1626-BMA
x-cache: HIT
x-cache-hits: 2876
x-timer: S1671702638.367692,VS0,VE0
vary: Accept-Encoding
abp: 17
cache-control: private, max-age=3600
content-length: 1340
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=1696069b-81de-11ed-8417-1ce730eb0206
185.94.180.126204 No Content 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=1696069b-81de-11ed-8417-1ce730eb0206
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=1696069b-81de-11ed-8417-1ce730eb0206 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://am-match.taboola.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Thu, 22 Dec 2022 09:50:38 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=16cd1590-81de-11ed-bb26-1e87ce780406; expires=Thu, 19-Jan-2023 09:50:38 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 49
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
185.94.180.126302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-match.taboola.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 22 Dec 2022 09:50:38 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=16d0be15-81de-11ed-82ab-14d534130206; expires=Thu, 19-Jan-2023 09:50:38 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=16d0be50-81de-11ed-82ab-14d534130206
X-fe: 57
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 9b6b7988526d9453843a2a3172c7ae8a
7fd8351a9bcbdd87568604e5a189230b805d69d0
966eb835c95617c9d3f7038cb639f3adab4686439c4dbf4865e03bbe2690a66e
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Dec 2022 09:50:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Mon, 26 Dec 2022 07:21:06 GMT
ETag: "7fd8351a9bcbdd87568604e5a189230b805d69d0"
Last-Modified: Thu, 22 Dec 2022 07:21:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1550
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77d7f4524c11b523-OSL
sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=16d0be50-81de-11ed-82ab-14d534130206
185.94.180.126204 No Content 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=16d0be50-81de-11ed-82ab-14d534130206
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?gdpr=1&adv_id=8532&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Fspotx-rtb-network%2F1%2Frtb-h%3Ftaboola_hm%3D%24SPOTX_USER_ID%26orig%3Dvideo%26us_privacy%3D1---gdpr%3D1%26&__user_check__=1&sync_id=16d0be50-81de-11ed-82ab-14d534130206 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://am-match.taboola.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Thu, 22 Dec 2022 09:50:38 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=16da0470-81de-11ed-ab32-14604df00506; expires=Thu, 19-Jan-2023 09:50:38 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 20
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?gdpr=1&p=15414&us_privacy=1---&endpoint=
2.21.206.244301 Moved Permanently 0 B URL HTTP/2 secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?gdpr=1&p=15414&us_privacy=1---&endpoint=
IP 2.21.206.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utils/xapi/multi-sync.html?gdpr=1&p=15414&us_privacy=1---&endpoint= HTTP/1.1
Host: secure-assets.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://imprammp.taboola.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?gdpr=1&p=15414&us_privacy=1---&endpoint=
date: Thu, 22 Dec 2022 09:50:38 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
pips.taboola.com/
151.101.129.44200 OK 4 B IP 151.101.129.44:0
File type ASCII text, with no line terminators
Hash 6c3e226b4d4795d518ab341b0824ec29
eef19c54306daa69eda49c0272623bdb5e2b341f
fb329000228cc5a24c264c57139de8bf854fc86fc18bf1c04ab61a2b5cb4b921
GET / HTTP/1.1
Host: pips.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
access-control-allow-methods: GET
access-control-allow-origin: https://bokradz.yoo7.com
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:38 GMT
via: 1.1 varnish
x-served-by: cache-bma1659-BMA
x-cache: HIT
x-cache-hits: 0
cache-control: no-store
content-length: 4
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1dc1f2cfbb4c5cee6ed6be8a03a10201
e4862f3055f1bb816619c18492ab26fc49352638
e93a89b20730079ec434bc3adbcd549f852c0a917900b9b4183012b84a298e4f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3505
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 09:50:38 GMT
Last-Modified: Thu, 22 Dec 2022 08:52:13 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
match.adsrvr.org/track/cmf/generic?gdpr=1&ttd_pid=054f32o&us_privacy=1---&ttd_tpi=1
35.71.131.137200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?gdpr=1&ttd_pid=054f32o&us_privacy=1---&ttd_tpi=1
IP 35.71.131.137:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?gdpr=1&ttd_pid=054f32o&us_privacy=1---&ttd_tpi=1 HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://imprammp.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:38 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
am-match.taboola.com/sync?dast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&excid=22&docw=0&cijs=1&nlb=true
141.226.228.48200 OK 1.2 kB URL HTTP/2 am-match.taboola.com/sync?dast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&excid=22&docw=0&cijs=1&nlb=true
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash 54772f8a5f02f5a7e51c7309400a6c27
7a60439a61f0480601a1ce12f0a545446db40230
2f8cbd9481f8afcb15f34be3447d1bbda4b8f34eac523fe3a23ff3c3a7aca5cf
GET /sync?dast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&excid=22&docw=0&cijs=1&nlb=true HTTP/1.1
Host: am-match.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:38 GMT
content-type: text/html;charset=ISO-8859-1
machineid: 3401
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58534/occ
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58534/occ
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58534/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-match.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 22 Dec 2022 09:50:38 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58534/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBG4opGMCEMuetpic9LqhHKCqWX7KQbYFEgEBAQF5pWOuYwAAAAAA_eMAAA&S=AQAAAkBagfE0kgjI2OoLX1X5eEA; Expires=Fri, 22 Dec 2023 15:50:38 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.js
2.23.134.137200 OK 10 kB URL HTTP/1.1 eus.rubiconproject.com/usync.js
IP 2.23.134.137:0
ASN #1299 Telia Company AB
File type ASCII text, with very long lines (18728)
Hash 0693e2f0ff1cff2111128f5b0b32c83c
f4e963a13fa5f9f8592ac6f85b6410c3f14ad26a
067da5f7ff8514fa3c4837fbe88a9bd4d0a76ea5ef75f6ed9ae924eda8c73f29
GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/usync.html?gdpr=1&p=15414&us_privacy=1---&endpoint=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Wed, 21 Dec 2022 14:28:32 GMT
Content-Encoding: gzip
Content-Length: 10067
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=16657
Expires: Thu, 22 Dec 2022 14:28:15 GMT
Date: Thu, 22 Dec 2022 09:50:38 GMT
Connection: keep-alive
Vary: Accept-Encoding
ups.analytics.yahoo.com/ups/58534/occ?verify=true
18.156.0.31204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58534/occ?verify=true
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58534/occ?verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://am-match.taboola.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 22 Dec 2022 09:50:38 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBG4opGMCEFSnRqdf6Jxn4LUpGkAtBaAFEgEBAQF5pWOuYwAAAAAA_eMAAA&S=AQAAAowwC1-zpyKH-qd0mVqmbdo; Expires=Fri, 22 Dec 2023 15:50:38 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash a25170c3e21ea40a4d1324d8b5287710
90f7f71f793ed68c369d3dc6f7c407cb90004d02
99ed7b226813205b33dc540b7871859a6877b80bd2025e79b1e1590753bc6aae
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=119342
Date: Thu, 22 Dec 2022 09:50:38 GMT
Etag: "63a33ea7-1d7"
Expires: Fri, 23 Dec 2022 18:59:40 GMT
Last-Modified: Wed, 21 Dec 2022 17:13:11 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wbqSNu6Yv-iFv1tgTYfApj6YlcOkF4aYRZjbqlU6BREYKFpIv32DeQ==
Age: 6389
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a40bce7b7404abfb7a17bb9aa991e95f
5f2e4cfa40d3dba30d5f2ce96b0250af88231ce4
3f102edcee88890932520481fc209b2af4837059b621f8d0ce5439183835b077
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Dec 2022 09:50:38 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 20 Dec 2022 13:56:50 GMT
Expires: Tue, 27 Dec 2022 13:56:49 GMT
Etag: "5f2e4cfa40d3dba30d5f2ce96b0250af88231ce4"
Cache-Control: max-age=446170,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d7f452a8d8fac4-OSL
x.bidswitch.net/sync?gdpr=1&us_privacy=1---&ssp=taboola
18.197.255.208200 OK 43 B URL HTTP/2 x.bidswitch.net/sync?gdpr=1&us_privacy=1---&ssp=taboola
IP 18.197.255.208:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?gdpr=1&us_privacy=1---&ssp=taboola HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://imprammp.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:38 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?pub=0&userId=cc63efbde5614d5ca761613a3d9a02e3&zoneId=2308013&checkDuplicate=true&ymid=&var=
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?pub=0&userId=cc63efbde5614d5ca761613a3d9a02e3&zoneId=2308013&checkDuplicate=true&ymid=&var=
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 710ee20d95388e60fd251a6b017fce7a
244f99acd465a59b2ad7189dcaeb64a345ba2719
c8b3577ec44bca641ccaa00dcaed294ea456db8233a6509fc551b184ce5e0d4f
GET /gid.js?pub=0&userId=cc63efbde5614d5ca761613a3d9a02e3&zoneId=2308013&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bokradz.yoo7.com/
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Cookie: ID=1ca7bddc68794849800bd9c767e24fe9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:43 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://bokradz.yoo7.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=1ca7bddc68794849800bd9c767e24fe9; expires=Fri, 22 Dec 2023 09:50:43 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
stootsou.net/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bokradz.yoo7.com/
Content-Type: application/json
Origin: https://bokradz.yoo7.com
Content-Length: 387
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:43 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 0eef0706e9c75010661025f5b9d82cd3
access-control-allow-origin: https://bokradz.yoo7.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c713c6ee540714fdc31c4530f94fbc22
c6bb3a6441b7fa721c1ef7d5b21334d3e2a25561
bf746e919bb7b5c6b91d8997e43b53a2db413719ea18c5c8e4afa08824a89db7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF746E919BB7B5C6B91D8997E43B53A2DB413719EA18C5C8E4AFA08824A89DB7"
Last-Modified: Tue, 20 Dec 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15577
Expires: Thu, 22 Dec 2022 14:10:20 GMT
Date: Thu, 22 Dec 2022 09:50:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01873799-f599-4f82-a53f-277ef7496596.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01873799-f599-4f82-a53f-277ef7496596.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a690552536ccc61e7bec94d9a15042e
413ca0f3801920896cb63f55a2e77ff896b10128
4e5cf75249af308c3fe579c0b11ccb6bd3bfeee1f13229bf709df30afad835ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01873799-f599-4f82-a53f-277ef7496596.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10977
x-amzn-requestid: d4c0e7f1-8056-4a56-b37c-dd36f2b5227c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dhBhQFrBIAMFrxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a37c6e-2b85071e123524dc6c69bdea;Sampled=0
x-amzn-remapped-date: Wed, 21 Dec 2022 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: V5-mY-CnuJztKyXcVEfJj_FPIkG1UCNjhwCpMja_LC4IaJqcK3Tehg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 22:07:35 GMT
age: 42188
etag: "413ca0f3801920896cb63f55a2e77ff896b10128"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.76200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.76:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:36 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 83917
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bokradz.yoo7.com/
x-crto-bundle: cWUPgF9EVUNCWE01SW1QSEUlMkY0RWhGbHZlSnhBcEFCcjZtTDFEOEtua1B2ZDQxVDc5cUFaeUZoT0RqVE4lMkZ0OVM2Wk9oVSUyRmt2NERXcXpXTkhEQlJyNVhsZlh4TkFIbTJoZFllc25yeUlQWUtUR0RHWm5ibmNQYjRZJTJGMU8wYVhCWXYlMkZWSmQ
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:35 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://bokradz.yoo7.com
server-processing-duration-in-ticks: 1795323
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
illiweb.com/rs3/67/frm/lang/ar.js
172.67.150.97200 OK 0 B URL HTTP/2 illiweb.com/rs3/67/frm/lang/ar.js
IP 172.67.150.97:0
GET /rs3/67/frm/lang/ar.js HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=74879
access-control-allow-origin: *
expires: Thu, 14 Dec 2023 08:37:08 GMT
last-modified: Thu, 08 Sep 2022 07:38:48 GMT
x-cache-ne: HIT
x-cache-pr: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 695606
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hxhuPdBZW3c%2B4h1hlk%2BTJu8FkOPQvk%2FNyKdvuE4bBqC4CEAHhSG%2F%2FX9FoSaCTgzKRXCNDwFYxx0SVddZihm4QQM4URM2YUOQTEyLSYoKWVYIbEDoy%2BQh3zsRSU9JzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43a2fe7b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bokradz.yoo7.com/images/smilies/icon_wave.gif
178.33.43.150404 Not Found 0 B URL HTTP/2 bokradz.yoo7.com/images/smilies/icon_wave.gif
IP 178.33.43.150:0
GET /images/smilies/icon_wave.gif HTTP/1.1
Host: bokradz.yoo7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/t109-topic
Cookie: exadd=167171
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: text/html
etag: W/"5db7f6f0-1044"
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:35 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 353877
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.betgorebysson.club/?rb=m2ojAbUTvRbv9hTF_F27jq4fUy8NFXZA8bG53J6Z5Qxzgi_Pk10-zvotSl1_X4xeKJvFjq29618jffkeBjz8Cr9kLzlPP-ChDL1oBXpHSiDbNEUy9-gtUKzHcHnF9hRNVoIFS-5iEe8zNFDksknB7qAWxxhyHHB5DDRJv2k3HIgDNab22WDI3w_fgqIKP3U5-Vq6RrA5jClno8P2c5La7RJd2uzSFzc0w9lXXydKXrQdvoWsYvIJ6A%3D%3D&request_ab2=96003&zoneid=3765907&js_build=iclick-v1.464.1&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1152&wh=921&cw=1140&wih=836&wiw=1152&wfc=3&pl=https%3A%2F%2Fbokradz.yoo7.com%2Ft109-topic&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.464.1&bs=d4faaf5d-8e0f-4139-87ab-83da37060cab&userId=1ca7bddc68794849800bd9c767e24fe9&m=link
139.45.195.8200 OK 0 B URL HTTP/2 cdn.betgorebysson.club/?rb=m2ojAbUTvRbv9hTF_F27jq4fUy8NFXZA8bG53J6Z5Qxzgi_Pk10-zvotSl1_X4xeKJvFjq29618jffkeBjz8Cr9kLzlPP-ChDL1oBXpHSiDbNEUy9-gtUKzHcHnF9hRNVoIFS-5iEe8zNFDksknB7qAWxxhyHHB5DDRJv2k3HIgDNab22WDI3w_fgqIKP3U5-Vq6RrA5jClno8P2c5La7RJd2uzSFzc0w9lXXydKXrQdvoWsYvIJ6A%3D%3D&request_ab2=96003&zoneid=3765907&js_build=iclick-v1.464.1&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1152&wh=921&cw=1140&wih=836&wiw=1152&wfc=3&pl=https%3A%2F%2Fbokradz.yoo7.com%2Ft109-topic&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.464.1&bs=d4faaf5d-8e0f-4139-87ab-83da37060cab&userId=1ca7bddc68794849800bd9c767e24fe9&m=link
IP 139.45.195.8:0
GET /?rb=m2ojAbUTvRbv9hTF_F27jq4fUy8NFXZA8bG53J6Z5Qxzgi_Pk10-zvotSl1_X4xeKJvFjq29618jffkeBjz8Cr9kLzlPP-ChDL1oBXpHSiDbNEUy9-gtUKzHcHnF9hRNVoIFS-5iEe8zNFDksknB7qAWxxhyHHB5DDRJv2k3HIgDNab22WDI3w_fgqIKP3U5-Vq6RrA5jClno8P2c5La7RJd2uzSFzc0w9lXXydKXrQdvoWsYvIJ6A%3D%3D&request_ab2=96003&zoneid=3765907&js_build=iclick-v1.464.1&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1152&wh=921&cw=1140&wih=836&wiw=1152&wfc=3&pl=https%3A%2F%2Fbokradz.yoo7.com%2Ft109-topic&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.464.1&bs=d4faaf5d-8e0f-4139-87ab-83da37060cab&userId=1ca7bddc68794849800bd9c767e24fe9&m=link HTTP/1.1
Host: cdn.betgorebysson.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bokradz.yoo7.com/
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Cookie: OAID=1ca7bddc68794849800bd9c767e24fe9; oaidts=1671702636
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:36 GMT
content-type: application/json
x-trace-id: 7a21901ae191cc692b6049b0406caafe
access-control-allow-origin: https://bokradz.yoo7.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=1ca7bddc68794849800bd9c767e24fe9; expires=Fri, 22 Dec 2023 09:50:36 GMT; path=/; secure; SameSite=None
oaidts=1671702636; expires=Fri, 22 Dec 2023 09:50:36 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Thu, 29 Dec 2022 09:50:36 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
bokradz.yoo7.com/images/smilies/icon_wave.gif
178.33.43.150404 Not Found 0 B URL HTTP/2 bokradz.yoo7.com/images/smilies/icon_wave.gif
IP 178.33.43.150:0
GET /images/smilies/icon_wave.gif HTTP/1.1
Host: bokradz.yoo7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/t109-topic
Cookie: exadd=167171; _fa-screen=%7B%22w%22%3A1152%2C%22h%22%3A836%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: text/html
etag: W/"5db7f6f0-1044"
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
trc.taboola.com/forumotion-ar/trc/3/json?tim=09%3A50%3A35.509<i=deflated&data=%7B%22id%22%3A125%2C%22ii%22%3A%22%2Ft109-topic%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1671638603564%2C%22vi%22%3A1671702635507%2C%22cv%22%3A%2220221221-28-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fbokradz.yoo7.com%2Ft109-topic%22%2C%22bv%22%3A%220%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22https%3A%2F%2Fbokradz.yoo7.com%2Ft109-topic%22%2C%22vpi%22%3A%22%2Ft109-topic%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1024%2C%22bw%22%3A1152%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A836%2C%22dw%22%3A1140%2C%22dh%22%3A5006%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A1%2C%22uim%22%3A%22thumbnails-728x90%3Aabp%3D0%22%2C%22uip%22%3A%22728x90%20Thumbnails%22%2C%22orig_uip%22%3A%22728x90%20Thumbnails%22%2C%22cd%22%3A723.4000244140625%2C%22mw%22%3A0%2C%22amw%22%3A885.5499877929688%7D%2C%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A5%2C%22uim%22%3A%22thumbnails-desktop-a%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22cd%22%3A4963.39990234375%2C%22mw%22%3A960%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Ft109-topic%2C728x90%20Thumbnails%3Dthumbnails-728x90%3Aabp%3D0%2C%2CBelow%20Desktop%20Forum%20Thumbnails%3Dthumbnails-desktop-a%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2
151.101.193.44200 OK 0 B URL HTTP/2 trc.taboola.com/forumotion-ar/trc/3/json?tim=09%3A50%3A35.509<i=deflated&data=%7B%22id%22%3A125%2C%22ii%22%3A%22%2Ft109-topic%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1671638603564%2C%22vi%22%3A1671702635507%2C%22cv%22%3A%2220221221-28-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fbokradz.yoo7.com%2Ft109-topic%22%2C%22bv%22%3A%220%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22https%3A%2F%2Fbokradz.yoo7.com%2Ft109-topic%22%2C%22vpi%22%3A%22%2Ft109-topic%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1024%2C%22bw%22%3A1152%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A836%2C%22dw%22%3A1140%2C%22dh%22%3A5006%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A1%2C%22uim%22%3A%22thumbnails-728x90%3Aabp%3D0%22%2C%22uip%22%3A%22728x90%20Thumbnails%22%2C%22orig_uip%22%3A%22728x90%20Thumbnails%22%2C%22cd%22%3A723.4000244140625%2C%22mw%22%3A0%2C%22amw%22%3A885.5499877929688%7D%2C%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A5%2C%22uim%22%3A%22thumbnails-desktop-a%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22cd%22%3A4963.39990234375%2C%22mw%22%3A960%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Ft109-topic%2C728x90%20Thumbnails%3Dthumbnails-728x90%3Aabp%3D0%2C%2CBelow%20Desktop%20Forum%20Thumbnails%3Dthumbnails-desktop-a%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2
IP 151.101.193.44:0
GET /forumotion-ar/trc/3/json?tim=09%3A50%3A35.509<i=deflated&data=%7B%22id%22%3A125%2C%22ii%22%3A%22%2Ft109-topic%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1671638603564%2C%22vi%22%3A1671702635507%2C%22cv%22%3A%2220221221-28-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fbokradz.yoo7.com%2Ft109-topic%22%2C%22bv%22%3A%220%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22https%3A%2F%2Fbokradz.yoo7.com%2Ft109-topic%22%2C%22vpi%22%3A%22%2Ft109-topic%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1024%2C%22bw%22%3A1152%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A836%2C%22dw%22%3A1140%2C%22dh%22%3A5006%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A1%2C%22uim%22%3A%22thumbnails-728x90%3Aabp%3D0%22%2C%22uip%22%3A%22728x90%20Thumbnails%22%2C%22orig_uip%22%3A%22728x90%20Thumbnails%22%2C%22cd%22%3A723.4000244140625%2C%22mw%22%3A0%2C%22amw%22%3A885.5499877929688%7D%2C%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A5%2C%22uim%22%3A%22thumbnails-desktop-a%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22cd%22%3A4963.39990234375%2C%22mw%22%3A960%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Ft109-topic%2C728x90%20Thumbnails%3Dthumbnails-728x90%3Aabp%3D0%2C%2CBelow%20Desktop%20Forum%20Thumbnails%3Dthumbnails-desktop-a%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://bokradz.yoo7.com
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:36 GMT
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1671702636.969970,VS0,VE336
vary: Accept-Encoding
x-vcl-time-ms: 336
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=RXHPuV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVMZEZ5Y2E2MGtUZXJ2UTlsWnFLOW5hTUhUaXJzSnlHdVNUNFFGVnh3M0k
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:36 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=mI6N7F80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVMZEZ5Y2E2MGtUZXJ2UTlsWnFLOWt1eE1ZN2xONWwxdUllamFlZWRKOXc; expires=Tue, 16 Jan 2024 09:50:36 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 291327
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
static.criteo.net/js/ld/publishertag.js
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/publishertag.js
IP 178.250.2.130:0
GET /js/ld/publishertag.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: text/javascript
last-modified: Mon, 24 Oct 2022 11:21:19 GMT
etag: W/"6356752f-1e444"
expires: Fri, 23 Dec 2022 09:50:34 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
illiweb.com/rs3/67/frm/jquery/cookie/jquery.cookie.js
172.67.150.97200 OK 0 B URL HTTP/2 illiweb.com/rs3/67/frm/jquery/cookie/jquery.cookie.js
IP 172.67.150.97:0
GET /rs3/67/frm/jquery/cookie/jquery.cookie.js HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
expires: Thu, 14 Dec 2023 08:22:48 GMT
last-modified: Wed, 09 Sep 2020 09:40:28 GMT
x-cache-ne: HIT
x-cache-pr: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 696466
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LfvcKr%2BtzOa865pNdtFJ%2FVi%2BlZlkOENvcY1l20ebq2%2B6jbiZQ3viWATLO0Aj97VkdwXmYTEULU9%2FDrq3e8LeqUYnsFKpzCs7WCepGTJOokTb8qvpNuo46GvarNcH0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43a3fedb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=UGkayl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVMZEZ5Y2E2MGtUZXJ2UTlsWnFLOWtWalY5T1RISGVzM1l6d3NWWVlVJTJCRg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:35 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=RXHPuV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czVMZEZ5Y2E2MGtUZXJ2UTlsWnFLOW5hTUhUaXJzSnlHdVNUNFFGVnh3M0k; expires=Tue, 16 Jan 2024 09:50:36 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 365181
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
15.taboola.com/tb?oid=15&pubnm=forumotion-ar&unitType=226&tbloc=&pageType=text&pstn=Below%20Desktop%20Forum%20Thumbnails&uuip=&cisrf=&cirf=https%3A%2F%2Fbokradz.yoo7.com%2Ft109-topic&encoded=1&uid=5c89ae01-643f-4e7a-9e58-9fe06716c8cd-tucta9dadec&variant=-100|1786174634&callback=TRC.videoTagCallbacks.videoCallback2&cb=1671702635991&tagid=&cntry=NO&platform=1&sesid=cb430040a4f374972ee00ac2489710c6&itemid=/t109-topic&viewid=1671702635507&geolat=&geoing=&deviceifa=&appid=&sd=v2_cb430040a4f374972ee00ac2489710c6_5c89ae01-643f-4e7a-9e58-9fe06716c8cd-tucta9dadec_1671702636_1671702636_CNawjgYQ3pxDGPPH98nTMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ri=62b12dc570966955207bc87a5ad8ebbf&appname=&cdb=&gdprApplies=true&rid=&sii=2973679428720041176&oee=true&tpubid=1101406&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=®ion=03&hasGDPRConsent=true&tcfVersion=&cmpStatus=&tnetid=1037540&prcnt=&layer=&normp=1&gvv=8596
151.101.193.44200 OK 0 B URL HTTP/2 15.taboola.com/tb?oid=15&pubnm=forumotion-ar&unitType=226&tbloc=&pageType=text&pstn=Below%20Desktop%20Forum%20Thumbnails&uuip=&cisrf=&cirf=https%3A%2F%2Fbokradz.yoo7.com%2Ft109-topic&encoded=1&uid=5c89ae01-643f-4e7a-9e58-9fe06716c8cd-tucta9dadec&variant=-100|1786174634&callback=TRC.videoTagCallbacks.videoCallback2&cb=1671702635991&tagid=&cntry=NO&platform=1&sesid=cb430040a4f374972ee00ac2489710c6&itemid=/t109-topic&viewid=1671702635507&geolat=&geoing=&deviceifa=&appid=&sd=v2_cb430040a4f374972ee00ac2489710c6_5c89ae01-643f-4e7a-9e58-9fe06716c8cd-tucta9dadec_1671702636_1671702636_CNawjgYQ3pxDGPPH98nTMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ri=62b12dc570966955207bc87a5ad8ebbf&appname=&cdb=&gdprApplies=true&rid=&sii=2973679428720041176&oee=true&tpubid=1101406&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=®ion=03&hasGDPRConsent=true&tcfVersion=&cmpStatus=&tnetid=1037540&prcnt=&layer=&normp=1&gvv=8596
IP 151.101.193.44:0
GET /tb?oid=15&pubnm=forumotion-ar&unitType=226&tbloc=&pageType=text&pstn=Below%20Desktop%20Forum%20Thumbnails&uuip=&cisrf=&cirf=https%3A%2F%2Fbokradz.yoo7.com%2Ft109-topic&encoded=1&uid=5c89ae01-643f-4e7a-9e58-9fe06716c8cd-tucta9dadec&variant=-100|1786174634&callback=TRC.videoTagCallbacks.videoCallback2&cb=1671702635991&tagid=&cntry=NO&platform=1&sesid=cb430040a4f374972ee00ac2489710c6&itemid=/t109-topic&viewid=1671702635507&geolat=&geoing=&deviceifa=&appid=&sd=v2_cb430040a4f374972ee00ac2489710c6_5c89ae01-643f-4e7a-9e58-9fe06716c8cd-tucta9dadec_1671702636_1671702636_CNawjgYQ3pxDGPPH98nTMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ri=62b12dc570966955207bc87a5ad8ebbf&appname=&cdb=&gdprApplies=true&rid=&sii=2973679428720041176&oee=true&tpubid=1101406&uis=2&fagg=1&ccpaDns=false&ccpaPrivacy=®ion=03&hasGDPRConsent=true&tcfVersion=&cmpStatus=&tnetid=1037540&prcnt=&layer=&normp=1&gvv=8596 HTTP/1.1
Host: 15.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/html;charset=ISO-8859-1
machineid: 1444
link: <https://am-wf.taboola.com>; rel=preconnect
xvid-debug: mrmr - :
pragma: no-cache
cache-control: no-cache,must-revalidate,no-store,max-age=0,s-maxage=0
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: https://bokradz.yoo7.com
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:36 GMT
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1671702637.856910,VS0,VE34
vary: Accept-Encoding
X-Firefox-Spdy: h2
am-match.taboola.com/sync?dast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&excid=22&docw=0&cijs=1&nlb=false
141.226.228.48200 OK 0 B URL HTTP/2 am-match.taboola.com/sync?dast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&excid=22&docw=0&cijs=1&nlb=false
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sync?dast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&excid=22&docw=0&cijs=1&nlb=false HTTP/1.1
Host: am-match.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:37 GMT
content-type: text/html;charset=ISO-8859-1
machineid: 3408
X-Firefox-Spdy: h2
taboola-supply-partners.tremorhub.com/sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo
34.203.60.99200 OK 0 B URL HTTP/2 taboola-supply-partners.tremorhub.com/sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo
IP 34.203.60.99:0
GET /sync?UISTB=%3CtaboolaUserId%3E&gdpr=1&us_privacy=1---&redir=https%3A%2F%2Fsync-t1.taboola.com%2Fsg%2Ftelaria-rtb-network%2F1%2Frtb-h%2F%3Fgdpr%3D1%26us_privacy%3D1---%26taboola_hm%3D%5BTVUSER_ID%5D%26orig%3Dvideo HTTP/1.1
Host: taboola-supply-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://imprammp.taboola.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:38 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
bokradz.yoo7.com/t109-topic
178.33.43.150200 OK 0 B URL HTTP/2 bokradz.yoo7.com/t109-topic
IP 178.33.43.150:0
GET /t109-topic HTTP/1.1
Host: bokradz.yoo7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: text/html; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-cache
pragma: no-cache
expires: Thu, 22 Dec 2022 00:00:00 GMT
last-modified: Thu, 22 Dec 2022 09:50:34 GMT
vary: User-Agent
set-cookie: exadd=167171; expires=Thu, 22-Dec-2022 13:50:34 GMT; Max-Age=14400
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
pkg-store.dl.mail.ru/packages/shop/0_2015768distrib1/PhotoWorld/Binaries/Win64/PhotoWorld.exe
188.93.63.73200 OK 0 B URL HTTP/1.1 pkg-store.dl.mail.ru/packages/shop/0_2015768distrib1/PhotoWorld/Binaries/Win64/PhotoWorld.exe
IP 188.93.63.73:0
NIDS Severity Alert suricata high ET POLICY PE EXE or DLL Windows file download HTTP
GET /packages/shop/0_2015768distrib1/PhotoWorld/Binaries/Win64/PhotoWorld.exe HTTP/1.1
Host: pkg-store.dl.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 22 Dec 2022 09:50:35 GMT
Content-Type: application/octet-stream
Content-Length: 102416896
Last-Modified: Sat, 26 Jun 2021 07:40:19 GMT
Connection: keep-alive
ETag: "60d6d9e3-61ac200"
Accept-Ranges: bytes
ag.gbc.criteo.com/newidsd
178.250.6.89200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 178.250.6.89:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:35 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 101404
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=373&height=209&pubid=169497&tagid=953497&crid=5664665&noaop=5&sortOrderType=0&cb=1671702642014&mimes=5,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=2&pv=1490&pt=-441743752&tz=0&viewable=true&ddast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=7&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&dtagid=2090795&dpubid=240385&abtst=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm_vA!ul3246_vA&mPre=0.025&cirf=https%3A%2F%2Fbokradz.yoo7.com&en=1
151.101.193.44200 OK 0 B URL HTTP/2 wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=373&height=209&pubid=169497&tagid=953497&crid=5664665&noaop=5&sortOrderType=0&cb=1671702642014&mimes=5,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=2&pv=1490&pt=-441743752&tz=0&viewable=true&ddast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=7&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&dtagid=2090795&dpubid=240385&abtst=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm_vA!ul3246_vA&mPre=0.025&cirf=https%3A%2F%2Fbokradz.yoo7.com&en=1
IP 151.101.193.44:0
POST /VideoBidRequestHandlerServlet?oid=15&width=373&height=209&pubid=169497&tagid=953497&crid=5664665&noaop=5&sortOrderType=0&cb=1671702642014&mimes=5,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=2&pv=1490&pt=-441743752&tz=0&viewable=true&ddast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=7&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&dtagid=2090795&dpubid=240385&abtst=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm_vA!ul3246_vA&mPre=0.025&cirf=https%3A%2F%2Fbokradz.yoo7.com&en=1 HTTP/1.1
Host: wf.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 133
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/json;charset=utf-8
machineid: 1457
pragma: no-cache
cache-control: no-cache,must-revalidate,no-store,max-age=0,s-maxage=0
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: https://bokradz.yoo7.com
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:43 GMT
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1671702643.304296,VS0,VE63
vary: Accept-Encoding
X-Firefox-Spdy: h2
connect.topicit.net/scripts/connect.js
172.67.158.56200 OK 0 B URL HTTP/2 connect.topicit.net/scripts/connect.js
IP 172.67.158.56:0
GET /scripts/connect.js HTTP/1.1
Host: connect.topicit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:35 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=5437
access-control-allow-origin: *
etag: W/"5d653880-153d"
last-modified: Tue, 27 Aug 2019 14:04:48 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=86400
cf-cache-status: HIT
age: 409
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YNMqZ%2FkmiTkEREm%2FuoBhmIxNW%2BWgAgr23OPTAKgSMun1cTzbGAsyE1FKZGF8J0EIuc3abdc4m3BH0WGGbXjYkZ6x69RcpBSV9Y%2BqI3jdv5H8QaDUwcB7n%2B%2Ftq35cB%2BmmGALEgsF9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d7f43e1dfcb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=728&height=409&pubid=169497&tagid=953497&crid=-1&noaop=5&sortOrderType=0&cb=1671702641864&mimes=5,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=2&pv=1490&pt=-441743752&tz=0&viewable=true&ddast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=7&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&dtagid=2090795&dpubid=240385&abtst=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm_vA!ul3246_vA&mPre=0.025&cirf=https%3A%2F%2Fbokradz.yoo7.com&en=1
151.101.193.44200 OK 0 B URL HTTP/2 wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=728&height=409&pubid=169497&tagid=953497&crid=-1&noaop=5&sortOrderType=0&cb=1671702641864&mimes=5,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=2&pv=1490&pt=-441743752&tz=0&viewable=true&ddast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=7&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&dtagid=2090795&dpubid=240385&abtst=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm_vA!ul3246_vA&mPre=0.025&cirf=https%3A%2F%2Fbokradz.yoo7.com&en=1
IP 151.101.193.44:0
POST /VideoBidRequestHandlerServlet?oid=15&width=728&height=409&pubid=169497&tagid=953497&crid=-1&noaop=5&sortOrderType=0&cb=1671702641864&mimes=5,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=2&pv=1490&pt=-441743752&tz=0&viewable=true&ddast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=7&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&dtagid=2090795&dpubid=240385&abtst=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm_vA!ul3246_vA&mPre=0.025&cirf=https%3A%2F%2Fbokradz.yoo7.com&en=1 HTTP/1.1
Host: wf.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 133
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/json;charset=utf-8
machineid: 1441
pragma: no-cache
cache-control: no-cache,must-revalidate,no-store,max-age=0,s-maxage=0
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: https://bokradz.yoo7.com
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:43 GMT
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1671702643.302017,VS0,VE150
vary: Accept-Encoding
X-Firefox-Spdy: h2
bokradz.yoo7.com/sw.js?v=3.1.411&o=1ca7bddc68794849800bd9c767e24fe9&pub=0&p=2308013
178.33.43.150200 OK 0 B URL HTTP/2 bokradz.yoo7.com/sw.js?v=3.1.411&o=1ca7bddc68794849800bd9c767e24fe9&pub=0&p=2308013
IP 178.33.43.150:0
GET /sw.js?v=3.1.411&o=1ca7bddc68794849800bd9c767e24fe9&pub=0&p=2308013 HTTP/1.1
Host: bokradz.yoo7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: exadd=167171; _fa-screen=%7B%22w%22%3A1152%2C%22h%22%3A836%7D; _ga=GA1.2.808838836.1671702635; _gid=GA1.2.384427534.1671702635; _gat_gtag_UA_144347007_1=1; cto_bundle=cWUPgF9EVUNCWE01SW1QSEUlMkY0RWhGbHZlSnhBcEFCcjZtTDFEOEtua1B2ZDQxVDc5cUFaeUZoT0RqVE4lMkZ0OVM2Wk9oVSUyRmt2NERXcXpXTkhEQlJyNVhsZlh4TkFIbTJoZFllc25yeUlQWUtUR0RHWm5ibmNQYjRZJTJGMU8wYVhCWXYlMkZWSmQ; trc_cookie_storage=taboola%2520global%253Auser-id%3D5c89ae01-643f-4e7a-9e58-9fe06716c8cd-tucta9dadec; prefetchAd_3765907=true
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:43 GMT
content-type: application/javascript
last-modified: Tue, 27 Aug 2019 13:54:01 GMT
etag: W/"5d6535f9-1554"
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
pushazam.com/ntfc.php?p=2308013&r=sw
139.45.197.251200 OK 0 B URL HTTP/2 pushazam.com/ntfc.php?p=2308013&r=sw
IP 139.45.197.251:0
GET /ntfc.php?p=2308013&r=sw HTTP/1.1
Host: pushazam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:43 GMT
content-type: application/javascript
last-modified: Wed, 21 Dec 2022 12:58:18 GMT
etag: W/"63a302ea-1c7e8"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=373&height=209&pubid=169497&tagid=953497&crid=5664665&noaop=5&sortOrderType=0&cb=1671702636854&mimes=5,10,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=1&pv=1490&pt=-1539969359&tz=0&viewable=true&ddast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=7&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&dtagid=2090795&dpubid=240385&abtst=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&mPre=0.025&cirf=https%3A%2F%2Fbokradz.yoo7.com&en=1
151.101.193.44200 OK 0 B URL HTTP/2 wf.taboola.com/VideoBidRequestHandlerServlet?oid=15&width=373&height=209&pubid=169497&tagid=953497&crid=5664665&noaop=5&sortOrderType=0&cb=1671702636854&mimes=5,10,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=1&pv=1490&pt=-1539969359&tz=0&viewable=true&ddast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=7&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&dtagid=2090795&dpubid=240385&abtst=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&mPre=0.025&cirf=https%3A%2F%2Fbokradz.yoo7.com&en=1
IP 151.101.193.44:0
POST /VideoBidRequestHandlerServlet?oid=15&width=373&height=209&pubid=169497&tagid=953497&crid=5664665&noaop=5&sortOrderType=0&cb=1671702636854&mimes=5,10,11,12&isvideo=0&plmd=2&mindur=1&maxdur=210&minbr=1&maxbr=10000&st=0&seq=1&pv=1490&pt=-1539969359&tz=0&viewable=true&ddast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&proto=2,3,5,6&encoded=1&pstn=vforce2&callback=&wfv=1&=0&qsz=7&ft=0&pb=0&pagg=1&sd=undefined&ctsldr=0&dtagid=2090795&dpubid=240385&abtst=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&mPre=0.025&cirf=https%3A%2F%2Fbokradz.yoo7.com&en=1 HTTP/1.1
Host: wf.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 133
Origin: https://bokradz.yoo7.com
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/json;charset=utf-8
machineid: 1461
pragma: no-cache
cache-control: no-cache,must-revalidate,no-store,max-age=0,s-maxage=0
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: https://bokradz.yoo7.com
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1671702637.401412,VS0,VE321
vary: Accept-Encoding
X-Firefox-Spdy: h2
bokradz.yoo7.com/serviceworker.js
178.33.43.150200 OK 0 B URL HTTP/2 bokradz.yoo7.com/serviceworker.js
IP 178.33.43.150:0
GET /serviceworker.js HTTP/1.1
Host: bokradz.yoo7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: exadd=167171; _fa-screen=%7B%22w%22%3A1152%2C%22h%22%3A836%7D
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: application/javascript
last-modified: Thu, 25 Feb 2021 14:30:57 GMT
etag: W/"6037b4a1-b0d"
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
twemoji.maxcdn.com/twemoji.min.js
151.139.237.124200 OK 0 B URL HTTP/2 twemoji.maxcdn.com/twemoji.min.js
IP 151.139.237.124:0
GET /twemoji.min.js HTTP/1.1
Host: twemoji.maxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 31 Mar 2022 03:24:15 GMT
access-control-allow-origin: *
etag: W/"62451edf-3bc8"
expires: Sat, 21 Jan 2023 09:50:34 GMT
cache-control: max-age=2592000
x-proxy-cache: MISS
x-github-request-id: 458C:7ED1:13F9992:1A5B999:639CFB37
vary: Accept-Encoding
x-fastly-request-id: ddf6451e07a4fdfe44c01326fb12c596949275ae
server: NetDNA-cache/2.2
powered-by: MaxCDN
x-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=publishertag&topUrl=bokradz.yoo7.com
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?origin=publishertag&topUrl=bokradz.yoo7.com
IP 178.250.0.157:0
GET /syncframe?origin=publishertag&topUrl=bokradz.yoo7.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:34 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=0c7284c6-9872-4eee-ae01-679a0c81fae9; expires=Tue, 16 Jan 2024 09:50:34 GMT; domain=.criteo.com; path=/; secure; samesite=none
optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 737488
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
bokradz.yoo7.com/?utm_source=pwa
178.33.43.150200 OK 0 B URL HTTP/2 bokradz.yoo7.com/?utm_source=pwa
IP 178.33.43.150:0
GET /?utm_source=pwa HTTP/1.1
Host: bokradz.yoo7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bokradz.yoo7.com/serviceworker.js
Connection: keep-alive
Cookie: exadd=167171; _fa-screen=%7B%22w%22%3A1152%2C%22h%22%3A836%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:35 GMT
content-type: text/html; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 22 Dec 2022 00:00:00 GMT
last-modified: Thu, 22 Dec 2022 09:50:35 GMT
vary: User-Agent
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
am-match.taboola.com/sync?dast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&excid=22&docw=0&cijs=1&nlb=false
141.226.228.48200 OK 0 B URL HTTP/2 am-match.taboola.com/sync?dast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&excid=22&docw=0&cijs=1&nlb=false
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sync?dast=V7G20CFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOEYOQer5cItGE1Ga9FksVsrFy7HWjCamFyrxcg0WtmMQBKOkXOwWi7cgtFktBZNFru1cuFyrAWjicm1WoxMo5XNChE3GQ6fg4Go6Hpb7A6n2fOGETSdDp_rXi_xey0Pk_Wu_Pt9c43f7Rc9Bsu16G94euwAAAAA8PD___8PAQAAABABAAAAIAEAAABAEVDxbyFwAQAAAIDx____rwHwyUHwnrPfHwAAAAAgAAAAACQAA6sBJQAf5ysn__________8xA_SZNzL_____NwY9AA8-AA9CAAAAF0MDkpKxt0x1hEQFiUWMAAAAALa0VDSPJnVCZVH1___fbwVwBQAQUJjTYy6SpTso8RYGAAAQMLZAD4vfb3bYNX63y_7_________zf7P_tGE3kav04JYRq_VfgEBANZ-AQEA2NQNAOAtAC7oCFoxGKxOIXbD2WI3mm1GswMAAAC4-____9cDGYtpMxiMBgvTzLMbLXeTlcswWHgso-FytxhsbNvr75PhdXI04eiLuMlw-BwMREXX22J3OM2e-1G0ZLlb7lajyWI0Wi43u-FmNNjfQAxWA5yIwXI5mSwmu9VoNdoMd6PZYIECMZggRUtWy-VytdmsVrvRYjbYLIebDVK0ajUbbQbD1Wwy2-1Ww8FwORohRUuWu-VuNZosRqPlcrMbbkaDIcLUxrhcuAyLtWy0mblFK9_CrVy5hmvlzGWY7RazjXFjcoteH9PDOXKYXB4vCgZs7EXytEgnytFg4djsFg6bcbFwjiaGhce4scxmq4VvMvNYdhOxRHOySCeyy75jMW0Gg9FgYZp5dqPlbrJyGQYLj2U0XO4Wg41t39oYlwuXYbGWjTYzt2jlW7iVK9dwrZy5DLPdYrYxbkxu0etjejhHDpPL42_MdovdYDLbzPaN2W6xG0xmm9m-Q2f4rj5nozM4nniEQpE5nJvaHAaFy2Dx_j4XaTPauBlV2rDForoWd66JVaeNnYydg9mg8A2vieHvp35eu9nbQWwwKGKJ4CKdyPyW19tvevrtboXlIpYoTRfpRC96DJZr0d_w9FjEEsHpIp2IXsbTRf1HhlzMlYO5aDJXrEarBAAAAAAAAACwhDnzJgAAAACngYwGm-FqnQcyWA52y9VyASCcvXR_DIkup_sXw3dTiEJf0Xw5sYsbP24wv-X19puefrtbYbkywAM1OfPmzwSxVqtlDQAAIIANAAAQwK2btwBsJv7___8_DgAAQEaOHgAAQHwfSEo1_MiVYo-fAFfL2QA!&excid=22&docw=0&cijs=1&nlb=false HTTP/1.1
Host: am-match.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 09:50:37 GMT
content-type: text/html;charset=ISO-8859-1
machineid: 3407
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
178.250.6.89200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 178.250.6.89:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 22 Dec 2022 09:50:35 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 68385
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
imprammp.taboola.com/st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=8083555&crid=5664665&dast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&cmcv=&pix=undefined&cb=1671702636848&uv=3246&tms=1671702636848&abt=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&ft=0&unm=WIDGET_ITEM&aure=false&agl=1&cirid=dc7e2e09-c3d3-4d75-9f55-5719f433a68f&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1
151.101.193.44200 OK 0 B URL HTTP/2 imprammp.taboola.com/st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=8083555&crid=5664665&dast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&cmcv=&pix=undefined&cb=1671702636848&uv=3246&tms=1671702636848&abt=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&ft=0&unm=WIDGET_ITEM&aure=false&agl=1&cirid=dc7e2e09-c3d3-4d75-9f55-5719f433a68f&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1
IP 151.101.193.44:0
GET /st?cijs=convusmp&ttype=0&cisd=convusmp&cipid=8083555&crid=5664665&dast=V71MwCFgNaT-JWVXY4xwRaT-JWVXY4xwUAAAAGBuIHJOTxrSwrw3Kt8Yw8a9HIt1orZ67VWrVbLGemzWZhG86MQIILm2vhcg7WEsfGtxYNF5a1wrZYuAWLjcs5MW4WI8dkCh7CMvt9BxHL8zX9DQcZ3_J6G0RF19tidzjNnjeMoOl0-Fz3eonfa3mYrHfl3--ba_xuv-gxWK5Ff8PTYwcAAACABwCrt0yIH0AAgAgAAAAACQAAAACKgIp_C4ELAAAAAAwAA5ILDYBPDoL3nP3-AABo2AIBABDAIAEYWA0oAfg4XzkBAAAAAAAAAGD5____jwHYwxqTARjZ3-kBePABeCAqIC1iBAAAALClpaJ5NKkTKosqAACCdCuAKwCAgMKcnnSjMAAAgICxBXpY_H6zw67xu10GAAAAAAAAAGD2f_aPJvQ2ep0WxDJ6rfYLCACw9gsIAMCmbgAAbwFwQUfQisFgdQqxG84Wu9FsM5odAAAAwN3___-_HshYTJvBYDRYmGae3Wi5m6xchsHCYxkNl7vFYGPbXn-fDK-TowlHn4ewzH7fQcTyfE1_w0HGt7zeBlHR9bbYHU6z534ULVnulrvVaLIYjZbLzW64GQ32NxCD1QAnYrBcTiaLyW41Wo02w91oNligQAwmSNGS1XK5XG02q9VutJgNNsvhZoMUrVrNRpvBcDWbzHa71XAwXI5GSNGS5W65W40mi9FoudzshpvRYIgwtTEuFy7DYi0bbWZu0cq3cCtXruFaOXMZZrvFbGPcmNyi18f0cI4cJpfHi4IBG3sRXKQTmd_yevtNT7_drbBcxBLNySKdyC77jsW0GQxGg4Vp5tmNlrvJymUYLDyW0XC5Www2tn1rY1wuXIbFWjbazNyilW_hVq5cw7Vy5jLMdovZxrgxuUWvj-nhHDlMLo-_MdstdoPJbDPbN2a7xW4wmW1m-w6d4bv6nI3O4HjiEQpF5nBuanMYFC6Dxfv7XKTNaONmVGnDFovqWty5JladNnYydg5mg8I3vCaGv5_6ee1mbwexwaCIJYLTRToRvYyni1gieVqkE9lk4piMPK7dYDmbLVeryWA38Rh3C9fCZFxZLDaLWKI0XaQTvegxWK5Ff8PTY1H_kSEXc-VgLprMFavRKgEAAAAAAAAALGHOvAkAAADAaSCjwWa4Wi4AhLOX7o8h0eV0_2L4bgpR6CuaLyd2cePHDea3vN5-09NvdyssVwZ4oCZn3uyZINZqtawBAAAEsAEAAAK4dfMWgM3I7QNJXSr0wI1e8xPgajkb!&cmcv=&pix=undefined&cb=1671702636848&uv=3246&tms=1671702636848&abt=amplean_vD!dfrc_vB!expl_vE!mprdctdt6_vA!smbs!t45!ufm!ul3246_vA&ft=0&unm=WIDGET_ITEM&aure=false&agl=1&cirid=dc7e2e09-c3d3-4d75-9f55-5719f433a68f&excid=e22lLINE_ITEM_ID_WILL_BE_HERE_ON_SERVINGc&tst=1&docw=0&cs=true&cias=1 HTTP/1.1
Host: imprammp.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bokradz.yoo7.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/html;charset=ISO-8859-1
content-encoding: gzip
accept-ranges: bytes
date: Thu, 22 Dec 2022 09:50:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1626-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1671702637.348274,VS0,VE23
vary: Accept-Encoding
X-Firefox-Spdy: h2