dzjeun.7olm.org/t91-topic
94.23.150.222301 Moved Permanently 0 B URL HTTP/1.1 dzjeun.7olm.org/t91-topic
IP 94.23.150.222:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t91-topic HTTP/1.1
Host: dzjeun.7olm.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 02 Nov 2022 12:37:50 GMT
Content-Length: 0
Location: https://dzjeun.7olm.org/t91-topic
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 33c3dea45eaabae3557235f002dda989
38a1903e09bff723af30fe5080f79646247b9254
b00022c599d7a74bd264b90a1ca9f935eb8a7bc6e63a9751dddc8acfbafe58da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B00022C599D7A74BD264B90A1CA9F935EB8A7BC6E63A9751DDDC8ACFBAFE58DA"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6347
Expires: Wed, 02 Nov 2022 14:23:37 GMT
Date: Wed, 02 Nov 2022 12:37:50 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5f57d2cc1ab8bbee50dff2b2be18b9db
2c8acd2018995b9bbed8f4dbfa33c8044b293080
a25e2337dad42018caefae70e0e596a4006aa9c1fe6af7f29c93a21fda1554b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 973
Cache-Control: max-age=162568
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:50 GMT
Etag: "636238d9-1d7"
Expires: Fri, 04 Nov 2022 09:47:18 GMT
Last-Modified: Wed, 02 Nov 2022 09:31:05 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5f57d2cc1ab8bbee50dff2b2be18b9db
2c8acd2018995b9bbed8f4dbfa33c8044b293080
a25e2337dad42018caefae70e0e596a4006aa9c1fe6af7f29c93a21fda1554b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 973
Cache-Control: max-age=162568
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:50 GMT
Etag: "636238d9-1d7"
Expires: Fri, 04 Nov 2022 09:47:18 GMT
Last-Modified: Wed, 02 Nov 2022 09:31:05 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43ea74d83493710eb8b64a74046ff569
74dee6d9e8b796d34f2788a472b90b3f7fc79ecd
f62eff2ad4d64d785a48e2761d7f2bda9171f1e60b0e9dc525d8f589f9ef7c60
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F62EFF2AD4D64D785A48E2761D7F2BDA9171F1E60B0E9DC525D8F589F9EF7C60"
Last-Modified: Tue, 01 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4000
Expires: Wed, 02 Nov 2022 13:44:30 GMT
Date: Wed, 02 Nov 2022 12:37:50 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: dF46HINpt1MTwB23FHeZWodjGxYOWu+30HsikD5rtf23d2FKWMTah/OPgxlEfZVGRO0WTmMVCAc=
x-amz-request-id: MA18TMFJ0QZ3ZABD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 02 Nov 2022 11:45:51 GMT
age: 3119
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash abcf66ec5899eb5222b2fc1d16bc1766
0d785f8960023da1b07894f59fa5347c95e505bb
9989abcab1e1fc37d61a5d2e12604ce6e14271a148cd658cb4c421f062726be4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9989ABCAB1E1FC37D61A5D2E12604CE6E14271A148CD658CB4C421F062726BE4"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7612
Expires: Wed, 02 Nov 2022 14:44:42 GMT
Date: Wed, 02 Nov 2022 12:37:50 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 12:37:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 795b8afc7a3c816d8eab89d9baa1d993
33a88276707a7ab327c79d8c165921a25f1a2c7c
939d75d7bba60578a31e90bd8ecdfc8414d2146189719ace334c5b78d6b22e79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5183
Cache-Control: max-age=149129
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:50 GMT
Etag: "6361f3e8-116"
Expires: Fri, 04 Nov 2022 06:03:19 GMT
Last-Modified: Wed, 02 Nov 2022 04:36:56 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 795b8afc7a3c816d8eab89d9baa1d993
33a88276707a7ab327c79d8c165921a25f1a2c7c
939d75d7bba60578a31e90bd8ecdfc8414d2146189719ace334c5b78d6b22e79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5183
Cache-Control: max-age=149129
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:50 GMT
Etag: "6361f3e8-116"
Expires: Fri, 04 Nov 2022 06:03:19 GMT
Last-Modified: Wed, 02 Nov 2022 04:36:56 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 795b8afc7a3c816d8eab89d9baa1d993
33a88276707a7ab327c79d8c165921a25f1a2c7c
939d75d7bba60578a31e90bd8ecdfc8414d2146189719ace334c5b78d6b22e79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5183
Cache-Control: max-age=149129
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:50 GMT
Etag: "6361f3e8-116"
Expires: Fri, 04 Nov 2022 06:03:19 GMT
Last-Modified: Wed, 02 Nov 2022 04:36:56 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 795b8afc7a3c816d8eab89d9baa1d993
33a88276707a7ab327c79d8c165921a25f1a2c7c
939d75d7bba60578a31e90bd8ecdfc8414d2146189719ace334c5b78d6b22e79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4062
Cache-Control: max-age=148008
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:50 GMT
Etag: "6361f3e8-116"
Expires: Fri, 04 Nov 2022 05:44:38 GMT
Last-Modified: Wed, 02 Nov 2022 04:36:56 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 9b619d8e2a4af135be1bde1f6b3510a4
d296f39e4f26b135a34243770222f4ed2207e071
1b637f60fffa792733ec71bfd32812c0b342af64623f59147b2d37300e117ba2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash abae2de07c673b4a8f7eb0b8b0e182e5
e17d882cd933b135c27b4d7619d227a5728e00ec
0f5d11356a96362cc0622658e85af39bb3e5b98a4707d4915d23210209138738
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 96c0df614e3ad375f30b823c7b305544
f948e3be471d0b58c05fcda4196e64c0e1713a20
3ece7c5915fc2134c956c75620afe498e90d2d4f0a286a7637581f2269b0ba9c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2130
Cache-Control: max-age=101803
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:50 GMT
Etag: "636146f7-2d7"
Expires: Thu, 03 Nov 2022 16:54:33 GMT
Last-Modified: Tue, 01 Nov 2022 16:19:03 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 854ad18b161a2f5c986989d41f840aa5
f0a0c70b4d89524133d42be0a3a7a887a4a46727
8f0fffe0487688f5918e1d740662761c5c88761129363a5270cfe43d9ace3206
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4967
Cache-Control: max-age=103196
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:50 GMT
Etag: "63614154-1d7"
Expires: Thu, 03 Nov 2022 17:17:46 GMT
Last-Modified: Tue, 01 Nov 2022 15:55:00 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash abae2de07c673b4a8f7eb0b8b0e182e5
e17d882cd933b135c27b4d7619d227a5728e00ec
0f5d11356a96362cc0622658e85af39bb3e5b98a4707d4915d23210209138738
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js
142.250.74.170200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js
IP 142.250.74.170:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash d989f35706c62ce4a5c561586c55566e
d32e7958e5765609bf08dcdefd0b2c2a8714ce34
375dfe942a03ee024b5cc827b3efda5550d13df7530281f50862ce3b33fcb716
GET /ajax/libs/jquery/1.7.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33845
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 28 Oct 2022 22:41:25 GMT
expires: Sat, 28 Oct 2023 22:41:25 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 395785
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=
142.250.74.168200 OK 38 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=
IP 142.250.74.168:0
File type ASCII text, with very long lines (1580)
Hash 6c405f2b78c98e840c95aa63e3c3d595
fbc10243d77bb61d48706894e5feb18d8d154b80
8c031237807b799def664d3dc2b3e9e065633bec3192b615d1e670180f7e2b0e
GET /gtag/js?id= HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 02 Nov 2022 12:37:50 GMT
expires: Wed, 02 Nov 2022 12:37:50 GMT
cache-control: private, max-age=900
last-modified: Wed, 02 Nov 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 37450
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 795b8afc7a3c816d8eab89d9baa1d993
33a88276707a7ab327c79d8c165921a25f1a2c7c
939d75d7bba60578a31e90bd8ecdfc8414d2146189719ace334c5b78d6b22e79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5727
Cache-Control: max-age=149673
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:50 GMT
Etag: "6361f3e8-116"
Expires: Fri, 04 Nov 2022 06:12:23 GMT
Last-Modified: Wed, 02 Nov 2022 04:36:56 GMT
Server: ECS (amb/6B74)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 8db6207d772c3e45c3fb2e7778bb9715
c937aee30b546435a2e18862445ddc1e0a811959
e110de7355137aa3db5661dc5e9b5b2561e91bc95903e0a021a5aca0e86941a5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3634
Cache-Control: max-age=106181
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:50 GMT
Etag: "63615231-139"
Expires: Thu, 03 Nov 2022 18:07:31 GMT
Last-Modified: Tue, 01 Nov 2022 17:06:57 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 313
connect.facebook.net/ar_AR/all.js
157.240.240.1200 OK 1.7 kB URL HTTP/2 connect.facebook.net/ar_AR/all.js
IP 157.240.240.1:0
File type ASCII text, with very long lines (1961)
Hash 942aa5ff3317dcc5da8ee876a7320411
ca93cbe5fe63e8f0a03e4ef79f64a39cf51d77d9
a8285efd4e7cf8d1684eed28d79b1c72b4155262fa090573e5ab613802beb895
GET /ar_AR/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: ad13fb667c3708b200690c6752d45fe4
etag: "0437982c881cfe587a305c775890d364"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 02 Nov 2022 12:47:07 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: lCql/zMX3MXajuh2pzIEEQ==
x-fb-debug: Vip0dYjZHuCWsHEsEPdiHtPygFbZICMPudOSbtRFgPB2PsLaN5Va9Q8xmq5BAYKyGeBn6WIq4N4v5cWvy5R9Yg==
priority: u=3,i
content-length: 1686
x-fb-trip-id: 1679558926
date: Wed, 02 Nov 2022 12:37:50 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-144347007-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-144347007-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1296)
Hash 34535f1a15208bca436d086668f3b18d
baf006b5d96bc9e6d56898270204a57233e91427
abdf00f4d441cffe9d40c6d21872ea62cde1e82b8a214544bebe74ea77e451eb
GET /gtag/js?id=UA-144347007-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 02 Nov 2022 12:37:50 GMT
expires: Wed, 02 Nov 2022 12:37:50 GMT
cache-control: private, max-age=900
last-modified: Wed, 02 Nov 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43676
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd65439b27a0101cd831309f178fbb45
4daa9343dda0f37ba734e2b5500caf2728cf89db
37e6d155f598b5154e3ce96105c39798716b5d35e12a98b9aec172c160de5f6a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4413
Cache-Control: max-age=160950
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:51 GMT
Etag: "63622518-1d7"
Expires: Fri, 04 Nov 2022 09:20:21 GMT
Last-Modified: Wed, 02 Nov 2022 08:06:48 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
illiweb.com/rs3/63/frm/jquery/cookie/jquery.cookie.js
104.21.63.213200 OK 943 B URL HTTP/2 illiweb.com/rs3/63/frm/jquery/cookie/jquery.cookie.js
IP 104.21.63.213:0
File type ASCII text, with very long lines (1011), with no line terminators
Hash 227d00283e3b05f722dc2af9304f4476
42dac52850ce6bdda6e95672325f545f802cbd24
1a11fd9434a93c332bc449649e2ca36a8a50d45463f7693133bcafaf956bdc72
GET /rs3/63/frm/jquery/cookie/jquery.cookie.js HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:50 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
expires: Fri, 08 Sep 2023 08:06:37 GMT
last-modified: Wed, 09 Sep 2020 09:40:28 GMT
x-cache-ne: HIT
x-cache-pr: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 4768273
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iml3ZG8q9%2Bi%2B6N16j5dcv5fXsURw4cZZtlVG1JmrdEdZ2mP33jziE1fMFevL6c8Veej07YCKTgLM36H8va2O5wUqfHrOcTbXDm2dLFjUf7TwnZKDBvSGZo4APCiZKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec80ab48b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash abae2de07c673b4a8f7eb0b8b0e182e5
e17d882cd933b135c27b4d7619d227a5728e00ec
0f5d11356a96362cc0622658e85af39bb3e5b98a4707d4915d23210209138738
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 854ad18b161a2f5c986989d41f840aa5
f0a0c70b4d89524133d42be0a3a7a887a4a46727
8f0fffe0487688f5918e1d740662761c5c88761129363a5270cfe43d9ace3206
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3447
Cache-Control: max-age=101676
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:51 GMT
Etag: "63614154-1d7"
Expires: Thu, 03 Nov 2022 16:52:27 GMT
Last-Modified: Tue, 01 Nov 2022 15:55:00 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
dzjeun.7olm.org/0-rtl.css
178.33.115.32200 OK 56 kB URL HTTP/2 dzjeun.7olm.org/0-rtl.css
IP 178.33.115.32:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash bfa152d66b132427ffacb8bc60cf9fdc
454894345e78afa82337428fa24d69d01367dc4d
2b4edab9ca4bb0e5e3078a4225481682d2379475be18be26661f7b0fe9307981
GET /0-rtl.css HTTP/1.1
Host: dzjeun.7olm.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/t91-topic
Cookie: exadd=166740
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:50 GMT
content-type: text/css
content-length: 56453
last-modified: Wed, 02 Nov 2022 00:00:00 GMT
content-security-policy: upgrade-insecure-requests
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-cache-ma: MISS
X-Firefox-Spdy: h2
2img.net/i/fa/social_bookmarking/reddit.gif
172.64.139.29200 OK 717 B URL HTTP/2 2img.net/i/fa/social_bookmarking/reddit.gif
IP 172.64.139.29:0
File type GIF image data, version 89a, 20 x 20\012- data
Hash 87ccc0926c1e638e219b1a62b03ae993
4bf5dc66299ca41ce482fc5ac75c8f6a99f8601a
3174887814d1432109a58b186ea78834f33ee118bf8dfb7839e15f2b21e5f583
GET /i/fa/social_bookmarking/reddit.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/gif
content-length: 717
last-modified: Wed, 04 Jan 2017 15:20:52 GMT
etag: "586d12d4-2cd"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 2265458
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=InZX3Rx7kLnKzq3Ov47YBF69t62VZQ4gO%2Fwk05KlXp9yBpjrVH9SUDr%2FxdOTaPzrcFNaO8K0qwCED5dysWJdN4gUUxjRurMPBEbf8LDLNt8zDzb8aojQjQfgNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec82e82475d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/i/fa/subsilver/icon_www.gif
172.64.139.29200 OK 733 B URL HTTP/2 2img.net/i/fa/subsilver/icon_www.gif
IP 172.64.139.29:0
File type GIF image data, version 89a, 59 x 18\012- data
Hash 05d80505deb19651f0b3601d76df1670
a173e6839dfabb9fbb672d8ae9a0cc570b698f26
02be12aef9119686fd59cb18175cb585e21e46a6aa5ec6b10074e6dd37476eef
GET /i/fa/subsilver/icon_www.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/gif
content-length: 733
last-modified: Sat, 01 Jan 2005 00:00:00 GMT
etag: "41d5e800-2dd"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 2265536
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G%2Fv2%2FStxNoM2%2Bww4zKxhNHp9O1AOuSam7PU8V6giul0swDSam7GYsP3DGvaqEWmqeHq4wKGzZlPTAS0Nt%2BxLenaXcSFomkOckFsSuz%2BoFhn6CpUEaJVTdueRrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec82dffe75d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/i/fa/social_bookmarking/facebook.gif
172.64.139.29200 OK 646 B URL HTTP/2 2img.net/i/fa/social_bookmarking/facebook.gif
IP 172.64.139.29:0
File type GIF image data, version 89a, 20 x 20\012- data
Hash 4bfe409ecaaad3cb02b70487d0ea4ca2
de6791b9910220fe46ca2222b5a863593e93c0a2
5206296d25769debb150836abafd9a12316ccd64492e1ea77c583c2e83a8bf62
GET /i/fa/social_bookmarking/facebook.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/gif
content-length: 646
last-modified: Wed, 04 Jan 2017 15:17:32 GMT
etag: "586d120c-286"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 2265458
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4HuJeYCx39wW8e9f9dLiInwScdhRc3mwvbORgUGU46GzbnUbWR83KaWgwZS8bdb%2BXkmcZF9Z9jtfWWpy6YLbPtfboX24GxCUyyFWwBE%2FcZakcP5gxZ4MTC%2FZig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec82e82275d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/i/fa/social_bookmarking/twitter.gif
172.64.139.29200 OK 328 B URL HTTP/2 2img.net/i/fa/social_bookmarking/twitter.gif
IP 172.64.139.29:0
File type GIF image data, version 89a, 20 x 20\012- data
Hash 3090b55e55fa9891b1ea36d3d3400b40
86c00625be1855cc40f9619c569b32931598a947
3906923ab5823ddeb0b609865c895827aac92d1e4c51ca716809babe940f9675
GET /i/fa/social_bookmarking/twitter.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/gif
content-length: 328
last-modified: Wed, 04 Jan 2017 15:16:22 GMT
etag: "586d11c6-148"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 2265458
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5QzSUODeqJdfYULi42GxgY14OcpCzA8nvlz4p2Q%2BFDp9Gi715KKgM%2Fzy2tKCbrn4Osa10wL0zek6IHslU%2BEg0QAB9H68XYzc0s2Y0bT1AxvehsIFsamLu9UY%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec82d80475d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/i/empty.gif
172.64.139.29200 OK 43 B IP 172.64.139.29:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277
GET /i/empty.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 09 May 2016 08:45:50 GMT
etag: "57304e3e-2b"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 2265537
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5n0RYq1IRD5cgUo%2Bcf5gvI2ujs6qcRJ4YvTMX729IsTxRjJQwvFqYAzw0yuxkTN%2BBofE294P%2BkYMEI4SqBtQJ1FNPZ%2BkepjustVJoxZkdlz7Q3zAHC%2F9cLJTZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec82f84975d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/s/t/18/61/57/i_vote_lcap.gif
172.64.139.29200 OK 272 B URL HTTP/2 2img.net/s/t/18/61/57/i_vote_lcap.gif
IP 172.64.139.29:0
File type GIF image data, version 89a, 1 x 49\012- data
Hash 8a975afb461d473f43555cce83d6a03f
8bb16e8a02dbf1c662dd02da354f15c5be2f2f7d
2a8f28857d87e878a5b3e9ed375b1c4f6fcf19e6f64a78c685e225fcac4c69b8
GET /s/t/18/61/57/i_vote_lcap.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/gif
content-length: 272
last-modified: Fri, 20 Apr 2012 08:06:58 GMT
etag: "4f911922-110"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PaAz%2FpjmDfYk5g7EiPhyga6r1fUc1Upo%2FrD%2FNAmrCp1BNx6rahHU7v3Cs9gHVbqO9MJjNfq4JOPFf82Jl0uIxtfSBKtofxSUES5bg4r0WKCX6WNo7uZDEI2OCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec82dff575d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/s/t/18/61/57/i_vote_rcap.gif
172.64.139.29200 OK 272 B URL HTTP/2 2img.net/s/t/18/61/57/i_vote_rcap.gif
IP 172.64.139.29:0
File type GIF image data, version 89a, 1 x 49\012- data
Hash 8a975afb461d473f43555cce83d6a03f
8bb16e8a02dbf1c662dd02da354f15c5be2f2f7d
2a8f28857d87e878a5b3e9ed375b1c4f6fcf19e6f64a78c685e225fcac4c69b8
GET /s/t/18/61/57/i_vote_rcap.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/gif
content-length: 272
last-modified: Fri, 20 Apr 2012 08:06:58 GMT
etag: "4f911922-110"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mr8ytN7%2FneUr1itOXEhEt9jay9NrvYvUzCRMnuFCqndTBZxVc89SJK9cDeJRobF9fKBLUSYCX%2FQJSzt7NvPeqNz0p5XVLuNSGn8%2FjgmwxHKmU4%2FA7Tn3Pffe3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec82d80175d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/h/www.weyak.ae/channels/blog/user_files/ashraf79/images/1_567511_1_34.jpg
172.64.139.29200 OK 11 kB URL HTTP/2 2img.net/h/www.weyak.ae/channels/blog/user_files/ashraf79/images/1_567511_1_34.jpg
IP 172.64.139.29:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2597)
Hash 37df4460a9dd811e1e30ba35be6ce879
891d28a2f323f485a183a69a549dee943392974f
6c8e2652b5aa2802bc4b4c312a2691f13231affc1e19a3f965f1e7ce0344ce5a
GET /h/www.weyak.ae/channels/blog/user_files/ashraf79/images/1_567511_1_34.jpg HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/jpeg
content-length: 11161
last-modified: Mon, 31 May 2021 10:50:23 GMT
etag: "60b4bf6f-2b99"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xoh8KDE3S%2BxmBQMeqpMg%2BDiY6o%2B29%2BGMQkozj%2FF%2F3ANmvccrbiAlZwNreD3GuM%2FvCz14bsT020yo7Z3JT%2F2H3SKK2Ox%2BOKCBWIEsqJflt3mtmtQBZ4JzgiKG7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec82e82775d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/s/t/18/61/57/i_icon_mini_index.png
172.64.139.29200 OK 3.0 kB URL HTTP/2 2img.net/s/t/18/61/57/i_icon_mini_index.png
IP 172.64.139.29:0
File type PNG image data, 81 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash aec936d2de77cda76333770fead4e6ea
e3a04b6d0f61fb17343637dc77db70d18b5d8055
5654550b559d02fa4ed9eeda35a4ac28971201d8fb9a035204fd16b6f2866620
GET /s/t/18/61/57/i_icon_mini_index.png HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/png
content-length: 3034
last-modified: Fri, 20 Apr 2012 08:07:02 GMT
etag: "4f911926-bda"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y%2BIOVOg3e6j%2FKfsPAGyNxO0g%2BEpzC4tA9vhUckHHC3Ac562iqcjHOIB2IbBAV0IA06YvWJY5zG%2Bi8T6YyEjVbVTaZe%2BDKDrqxdDUIeFXK%2B%2FOD1UWvnyRZBaShA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec82dffb75d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/i/fa/sprite_icons.png
172.64.139.29200 OK 1.5 kB URL HTTP/2 2img.net/i/fa/sprite_icons.png
IP 172.64.139.29:0
File type PNG image data, 1395 x 12, 8-bit colormap, non-interlaced\012- data
Hash 6c31830c94fd2987aab8ed4af1e6b756
9bb52d402fd3cd4a0515c54b5061b655fdabfd96
b621467f74054e2999a7e213edf26895f9639e255f7c11b2047509fd0879f6c8
GET /i/fa/sprite_icons.png HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/png
content-length: 1459
last-modified: Mon, 16 May 2016 11:01:49 GMT
etag: "5739a89d-5b3"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 2265536
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oj3AuprPsobDMGxxC1Vy%2FHruGWpIe6FvZPZ8G683jBddlzhhPV%2BIoeJ5b8PI9tx4Jtmf3Blc0TlwzhZNDB3quo7gMho%2B3SvMEyyHVrI5korduVczVRY0%2Ffx60A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec83289d75d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/s/t/18/61/57/i_voting_bar.gif
172.64.139.29200 OK 272 B URL HTTP/2 2img.net/s/t/18/61/57/i_voting_bar.gif
IP 172.64.139.29:0
File type GIF image data, version 89a, 1 x 49\012- data
Hash 8a975afb461d473f43555cce83d6a03f
8bb16e8a02dbf1c662dd02da354f15c5be2f2f7d
2a8f28857d87e878a5b3e9ed375b1c4f6fcf19e6f64a78c685e225fcac4c69b8
GET /s/t/18/61/57/i_voting_bar.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/gif
content-length: 272
last-modified: Fri, 20 Apr 2012 08:06:58 GMT
etag: "4f911922-110"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fvlgry3g2zwk5tDckZqI6tZxpRG7MGnwqYp3jnNZl1QEjlLP%2BYrGvk9rXbhv7Ups70Mwi%2FVnvFFg%2BdPDTOicFTT8BX4P1TLqTs%2BP8ixLWFDRYe2tcutXK6db%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec82f84775d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/s/t/18/61/57/i_icon_mini_login.png
172.64.139.29200 OK 3.1 kB URL HTTP/2 2img.net/s/t/18/61/57/i_icon_mini_login.png
IP 172.64.139.29:0
File type PNG image data, 81 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f934aba3f763b6b716b0f7f0feaec70
a185cbd4c41d7976addf44b70e4af97eff8e0258
b853c191a8cbfeb541b69c100bb7ff92224e2f26e9cc835c546605a66c3e12c1
GET /s/t/18/61/57/i_icon_mini_login.png HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/png
content-length: 3078
last-modified: Fri, 20 Apr 2012 08:07:01 GMT
etag: "4f911925-c06"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PVyZj9vj9kw2eoe0zzkkl10jDTI6zCX9kf%2BD5JE9QuUTC6W2GdXTWxs3e9Esoc5N9i3rOL93q6yBPPZWz2nd8hk%2FjhyDVirNTnijvk0oPr6chHLJKDCO%2B7ki9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec82f84175d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/s/t/18/61/57/i_icon_mini_portal.png
172.64.139.29200 OK 3.1 kB URL HTTP/2 2img.net/s/t/18/61/57/i_icon_mini_portal.png
IP 172.64.139.29:0
File type PNG image data, 81 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash b8766d4145f4b916952dcf480555cfb6
14ca7cf6f23379a5301949dfaa780b6706ee642d
8bfbb3f3bf02e46c9e64bcaac56b5d03ad736b158ca16c35e35b70eb1c923574
GET /s/t/18/61/57/i_icon_mini_portal.png HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/png
content-length: 3136
last-modified: Fri, 20 Apr 2012 08:07:03 GMT
etag: "4f911927-c40"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EbcRPfgZuO90dqlroWAsLPirgEOF0rRkE82z%2BTS2gk7lQlbtcLILSS2TAI%2B7%2FRqLkIefwELZE1ILiEvj0KAXoZjCj9VwZQP4MiQISSeIEEEtgsEoY8vZdH7auA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec82f84575d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i.servimg.com/u/f62/14/92/70/14/sans_t18.png
172.67.178.62200 OK 165 B URL HTTP/2 i.servimg.com/u/f62/14/92/70/14/sans_t18.png
IP 172.67.178.62:0
File type PNG image data, 25 x 7, 8-bit/color RGBA, non-interlaced\012- data
Hash 815037721c24e94828d9d30f40695454
78edb0381b33a3fd5969a70d0eacf30e40b7127c
1932c5fe3ffb8834d33d7f67f6fed2cf1a6af9a0615ecb45f7ac345453429e8d
GET /u/f62/14/92/70/14/sans_t18.png HTTP/1.1
Host: i.servimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/png
content-length: 165
last-modified: Tue, 04 Nov 2014 18:26:39 GMT
etag: "54591a5f-a5"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Tue, 25 Apr 2023 08:17:20 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 568303
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7xTyjkuFhrhjkvTgulaCANuBStBhHoMw5rqq3sP9qye4M9Bv%2BshYE1cEiJkub2D%2BmkK%2BxQP4L%2F81aNv0mvVwWWsHlcjpa9Za5ksVxsrvDIGuYQ6PHhAsIiS87U0Jq0nX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 763cec835f7eb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/s/t/18/61/57/i_icon_mini_register.gif
172.64.139.29200 OK 2.3 kB URL HTTP/2 2img.net/s/t/18/61/57/i_icon_mini_register.gif
IP 172.64.139.29:0
File type GIF image data, version 89a, 81 x 31\012- data
Hash 92818036abb66d72baeafff09c61f0e8
ab8ef1bdc4dbf6480774b7d0c488ee2595371d0b
c6c47def9e30c2d3ccbde6bae3e9d12f57676459527b2da9bfd004372d882a37
GET /s/t/18/61/57/i_icon_mini_register.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/gif
content-length: 2317
last-modified: Fri, 20 Apr 2012 08:06:59 GMT
etag: "4f911923-90d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pKIZdovD6vBtTgJmR2wRwVJG%2FPQGzrIMX2OlquAZuCSIHKVJ7t0so8rBDzobeH7C04NCf%2Fac0aPKmHAFxq6SlE53HEuykEw7M7E7mmJaLd4qOXco7rutgXvQLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec82f84475d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i.servimg.com/u/f46/16/46/77/76/ouuus138.jpg
172.67.178.62200 OK 43 B URL HTTP/2 i.servimg.com/u/f46/16/46/77/76/ouuus138.jpg
IP 172.67.178.62:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /u/f46/16/46/77/76/ouuus138.jpg HTTP/1.1
Host: i.servimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vjR4dd%2Bd9eKUEZ8%2BCLIENI4Zm%2BOp0DVt32s8v80XWo4J%2FZ4H3D5Hiax0tSPOw9TiLm6a6So6QWdZHgQNvxkyTUzJvJUHYd2hZc%2BG8z6KCnPJ8foUaqX6l2lj9F3LU6P7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 763cec831f01b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/i/fa/social_bookmarking/social_bookmarking_fa.png
172.64.139.29200 OK 10 kB URL HTTP/2 2img.net/i/fa/social_bookmarking/social_bookmarking_fa.png
IP 172.64.139.29:0
File type PNG image data, 40 x 704, 8-bit/color RGBA, non-interlaced\012- data
Hash 7dd1382657292cbc2cba277f2b756c31
a3da128f6dde546f1bec78a53ad0145f729e2659
0d8deb3f360c48eb0d2a4eb2fc69b8d6c5530dc31bf8984ede26443633a9ebb2
GET /i/fa/social_bookmarking/social_bookmarking_fa.png HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/png
content-length: 10100
last-modified: Fri, 05 May 2017 10:08:36 GMT
etag: "590c4f24-2774"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 2265458
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F8CSvfU%2BJHRDIwo4iqR4YXZy%2Be60baOq7p5vcM20InRGG9CV4ePyQmkbvPYJAFSjEdXCea2kD5u6OfBndXfoVggqAsZ3w2EHLKqRF%2B%2BXDin2ckAeM4UJyqFmSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec8358f175d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/s/t/18/61/57/i_background.png
172.64.139.29200 OK 5.4 kB URL HTTP/2 2img.net/s/t/18/61/57/i_background.png
IP 172.64.139.29:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 1d66732aa3a4d9fe0fa5ecc54173f7dd
40b8ef1db081a48d7f29bf379e4912dacf8ebd79
7dbc48d0933000c26d4a44da07011c524dec3e9961039c531cce0747094059eb
GET /s/t/18/61/57/i_background.png HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/png
content-length: 5425
last-modified: Fri, 20 Apr 2012 08:06:57 GMT
etag: "4f911921-1531"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0ODZUmIJ%2FysiRcdAsyAtkJtxQDc1YJUeSjcHWLOE3hY51uXBW8SUOZlT%2B1ByRn3Sgt6taTs9VRwisxAK9DvYJjeP2Ew%2BMHwb%2F5fxEs2xpKSXR3z23HZANejGzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec83189075d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e3664476be53eb84c6486b35b2c34434
e6ae9cfebba75f97888b389a382ec89f86d52758
749895e480419b17b3f40a1aafbc2d4dce5cb351e471f949e34e630a11880bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "749895E480419B17B3F40A1AAFBC2D4DCE5CB351E471F949E34E630A11880BC1"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15778
Expires: Wed, 02 Nov 2022 17:00:49 GMT
Date: Wed, 02 Nov 2022 12:37:51 GMT
Connection: keep-alive
push.services.mozilla.com/
44.240.207.158101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.240.207.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kBO0bw24IcbfModmpn1BfA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: C09Yp4/qoynyQ2s0/uytqI8A0xY=
i.servimg.com/u/f23/11/06/04/82/allah_10.gif
172.67.178.62200 OK 73 kB URL HTTP/2 i.servimg.com/u/f23/11/06/04/82/allah_10.gif
IP 172.67.178.62:0
File type GIF image data, version 89a, 108 x 90\012- data
Hash ee8ac8ce678ec01bddcc5acf55f52279
a39c4bd382febf8ac44c736ef9eee7ac29240bdd
309aa2f36dd5735bed06ef1dac3640ab804ea5df78a661256a11bfcbb0cc7e70
GET /u/f23/11/06/04/82/allah_10.gif HTTP/1.1
Host: i.servimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/gif
content-length: 72694
last-modified: Sun, 07 Oct 2007 16:33:12 GMT
etag: "47090a48-11bf6"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Tue, 25 Apr 2023 08:46:37 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c8A6pxrTt9lBAueiQ2pkn4C8BIutJ%2BszhMWtvzJw7HCuHmjyAFngcjmXADmFv63iCGGZlLVnHtAw%2Bf7MpWlDPEMQuWCvmo0S8DspMpP27hhu49Gw%2BfkZDvwEdaAF4IBy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 763cec827dfdb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2img.net/s/t/18/61/57/i_back_catg.gif
172.64.139.29200 OK 272 B URL HTTP/2 2img.net/s/t/18/61/57/i_back_catg.gif
IP 172.64.139.29:0
File type GIF image data, version 89a, 1 x 49\012- data
Hash 8a975afb461d473f43555cce83d6a03f
8bb16e8a02dbf1c662dd02da354f15c5be2f2f7d
2a8f28857d87e878a5b3e9ed375b1c4f6fcf19e6f64a78c685e225fcac4c69b8
GET /s/t/18/61/57/i_back_catg.gif HTTP/1.1
Host: 2img.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/gif
content-length: 272
last-modified: Fri, 20 Apr 2012 08:06:57 GMT
etag: "4f911921-110"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PI73zm5DxykPiCMyTyQBrMOvmD6GNT0Z31ITzdcG4rUHzjGsV2O2pfXGl3p903z6fFM3b7FUYPyKaB89R1Kc7yg8Y1q1uKmen6f2MPa4LaS2s7Lf95jirqzV9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec83289975d2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.criteo.net/js/ld/publishertag.js
178.250.2.130200 OK 40 kB URL HTTP/2 static.criteo.net/js/ld/publishertag.js
IP 178.250.2.130:0
Hash ea1857746abaec6fb1761ecd9855027a
f994fdec6c9104537529de5b49941bd2b4633cec
59ccca8e63b75e915c05f78365874337e1241c92423b06119b9fb2a09a67c48b
GET /js/ld/publishertag.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: text/javascript
last-modified: Mon, 24 Oct 2022 11:21:19 GMT
etag: W/"6356752f-1e444"
expires: Thu, 03 Nov 2022 12:37:51 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
connect.topicit.net/scripts/connect.js
172.67.158.56200 OK 1.6 kB URL HTTP/2 connect.topicit.net/scripts/connect.js
IP 172.67.158.56:0
File type ASCII text, with very long lines (615)
Hash 4b54e65c3e4c2c616dc7cb0cdf1b91ee
f9ffa386d1585499c8d4bf182152983300a04288
f268091b06e64462bbcf48d71c8d0410b36dc35690a02ed76bf3c3d748506ef9
GET /scripts/connect.js HTTP/1.1
Host: connect.topicit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=5437
access-control-allow-origin: *
etag: W/"5d653880-153d"
last-modified: Tue, 27 Aug 2019 14:04:48 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=86400
cf-cache-status: HIT
age: 5002
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NsUuul1gMAJvxZ%2B%2BwDE7kjhCJq64vW3MoHemCHDfrSwUhn1PmDeAvohAUltWUloR0r3zYYUmdhgKqbntzWpdE7lRYw%2F3KE%2FsTvrGFxkLtk8b%2BykoZViFRG2ffnnTEDjqYw8dPr6p"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec8428c7b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i.servimg.com/u/f46/16/46/77/76/gradie35.gif
172.67.178.62200 OK 43 B URL HTTP/2 i.servimg.com/u/f46/16/46/77/76/gradie35.gif
IP 172.67.178.62:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /u/f46/16/46/77/76/gradie35.gif HTTP/1.1
Host: i.servimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x9p%2BKsqy0AFB%2BsF7FWgpb3HP4t6MvteatxAAnVr1Xxk7%2BQ1PFt5C27NsjYXnBRyHaKeUT7DMZdDsoyyv57DdGQ9UIWEUMXwxJsOncKSghcatanKR7VGZcw8T8w6c5MyZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 763cec835f6fb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i.servimg.com/u/f46/16/46/77/76/gradie36.gif
172.67.178.62200 OK 43 B URL HTTP/2 i.servimg.com/u/f46/16/46/77/76/gradie36.gif
IP 172.67.178.62:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /u/f46/16/46/77/76/gradie36.gif HTTP/1.1
Host: i.servimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NbN%2FNoA205Y6%2FMeaG3dnkHJD4VTd%2FizSIURlVGVPTo861raIi0UVzOmO%2FyKejwAlutS9k8jcsbrt1z1jqaxpwjNpRK1B8rU4Vw3fbfhQ%2BPvWoVASCL7RtGYKVrPDYLVX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 763cec831f0fb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/plugins/like.php?locale=en_GB&href=https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic&send=false&layout=standard&width=60&show_faces=false&action=like&colorscheme=light&font&height=60
157.240.240.35200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?locale=en_GB&href=https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic&send=false&layout=standard&width=60&show_faces=false&action=like&colorscheme=light&font&height=60
IP 157.240.240.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?locale=en_GB&href=https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic&send=false&layout=standard&width=60&show_faces=false&action=like&colorscheme=light&font&height=60 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: wrRSk/xpsuSc4NqYZvIn18ziflsepK1UWsfDM2PP4lghAJA3PBW25xt38cX1dyvlecYmxsYrMd7OhteghwAwZA==
content-length: 0
date: Wed, 02 Nov 2022 12:37:51 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
i.servimg.com/u/f46/16/46/77/76/ououu228.jpg
172.67.178.62200 OK 43 B URL HTTP/2 i.servimg.com/u/f46/16/46/77/76/ououu228.jpg
IP 172.67.178.62:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /u/f46/16/46/77/76/ououu228.jpg HTTP/1.1
Host: i.servimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3O0KaMrqmQG5T8lyWJFmlD8egRDGHHPgQ7NZ8V7UTezjHBAPEovPlamhSWFksdIFFF9OSA9wFNXmYtbtICs%2FF951glRRW8nBPpiM5Oq93mj4TNXAxXKFl4vCWtdldN6g"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 763cec835f83b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
stootsou.net/zone?pub=0&zone_id=2308013&is_mobile=false&domain=dzjeun.7olm.org&var=&ymid=&var_3=
139.45.197.250200 OK 758 B URL HTTP/2 stootsou.net/zone?pub=0&zone_id=2308013&is_mobile=false&domain=dzjeun.7olm.org&var=&ymid=&var_3=
IP 139.45.197.250:0
File type JSON data\012- , ASCII text, with very long lines (757)
Hash cf3a9de326038754813cf3630ceae81e
d62ce3673976bd1d7aeb081d0e280de603b9475e
ae08df2f0e606c27ee80da1e4440af98bfeb625466d66efa27e1f53a59584570
GET /zone?pub=0&zone_id=2308013&is_mobile=false&domain=dzjeun.7olm.org&var=&ymid=&var_3= HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dzjeun.7olm.org/
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: application/json; charset=utf-8
content-length: 758
x-trace-id: 5acd6e50c6a5180a5342d5be476a686a
access-control-allow-origin: https://dzjeun.7olm.org
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 9ae6617b11c361712b041b53b3d65e8e
0283d99a6a750796ed5f579a14635dc02035c158
9a1be983357ea5e68533867073424c31f01f8cc46a79a8dae7cc7278cbb5c7b4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4624
Cache-Control: max-age=105749
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:51 GMT
Etag: "63614ca4-139"
Expires: Thu, 03 Nov 2022 18:00:20 GMT
Last-Modified: Tue, 01 Nov 2022 16:43:16 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 313
dnacdn.net/dna
178.250.2.146200 OK 1.3 kB IP 178.250.2.146:0
Hash d67ba914831928e9a3a93ebe82ca0901
57213522edb687153aac02027b3e32fa07dc311f
773fdc47e6f63f0a90f8f4ac25ea2134cb3383765be4839d98be270466aca7db
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=0PbyLl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czNOSzVYRExGaEI4TWgzWiUyQmFqbnEyQ05aekdUR2QlMkJka2ZrdDBBOUE4WUVZ; expires=Mon, 27 Nov 2023 12:37:51 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 295247
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
illiweb.com/rs3/63/frm/lang/ar.js
104.21.63.213200 OK 162 kB URL HTTP/2 illiweb.com/rs3/63/frm/lang/ar.js
IP 104.21.63.213:0
File type Unicode text, UTF-8 text, with very long lines (64093), with no line terminators
Size 162 kB (161561 bytes)
Hash 6d437028e4006355d696e49eb7e17468
e43aa06fa2324eb2fa44931a5c294a92e3f67b75
f4d793e4eb50dd6e54580dd6ac96de8b03a32c635361d376ae6188ece0666de1
GET /rs3/63/frm/lang/ar.js HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:50 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=74879
access-control-allow-origin: *
expires: Fri, 08 Sep 2023 08:07:52 GMT
last-modified: Thu, 08 Sep 2022 07:38:48 GMT
x-cache-ne: EXPIRED
x-cache-pr: EXPIRED
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 4768198
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c4BkxEi%2FiSg6s%2BMmn43nM%2BsrTWhOQKkbOKFovNex8hyc8OtqWf7hO4pTfMvEjSqbpo4dN2bZdH9N5u9C5PgBXGZHP%2FnWukqAcqFwGE7L5Uytd1u457%2FYnhq3PD0V%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec80ab3db503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash cbfcd61cec4ebf5f926459f802db84ff
118144252cd06b475eec490a30bd5ef34eed53b5
3935f30abcadeb94e74a93744e10b94187d7eab45f5d55de76aba086d761436c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6005
Cache-Control: max-age=165791
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:51 GMT
Etag: "636231c9-139"
Expires: Fri, 04 Nov 2022 10:41:02 GMT
Last-Modified: Wed, 02 Nov 2022 09:00:57 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 313
platform.twitter.com/widgets.js?_=1667392671215
93.184.220.66200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js?_=1667392671215
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 4022ee7b53654f65608ad9a3ba759687
cc243d089a8a77c0a7123434746ea36b054634dd
7af6243905b2256cb4f8fe0e77386c274592c322fb23b11784ecf86d250c7e09
GET /widgets.js?_=1667392671215 HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 171
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Wed, 02 Nov 2022 12:37:51 GMT
Etag: "f26384f93da6974ed577808dfa1fede5+gzip"
Last-Modified: Wed, 28 Sep 2022 20:05:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F707)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
x-amzn-internal-status: 304
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29223
stootsou.net/pfe/current/tag.min.js?z=2308013
139.45.197.250200 OK 26 kB URL HTTP/2 stootsou.net/pfe/current/tag.min.js?z=2308013
IP 139.45.197.250:0
File type C source, ASCII text, with very long lines (14796)
Hash 0725cdb2029bccb8d26db0172005c097
e3cd9e0ec6e47c42dac64482ce7a19c849fee20b
74b06734037b00b30e5d31f6417fc19a22b814a65d1e48c2a6f1b0f523602bf9
GET /pfe/current/tag.min.js?z=2308013 HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: application/javascript
last-modified: Tue, 25 Oct 2022 09:56:56 GMT
etag: W/"6357b2e8-39be"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
connect.topicit.net/button/light?id=topicit-connect-0&redirect=https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic&lang=ar&loc=https%3A%2F%2Fconnect.topicit.net%2F&login=https%3A%2F%2Fdzjeun.7olm.org%2Ftopicit%2Findex.php%2Fconnect&version=1
172.67.158.56200 OK 26 kB URL HTTP/2 connect.topicit.net/button/light?id=topicit-connect-0&redirect=https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic&lang=ar&loc=https%3A%2F%2Fconnect.topicit.net%2F&login=https%3A%2F%2Fdzjeun.7olm.org%2Ftopicit%2Findex.php%2Fconnect&version=1
IP 172.67.158.56:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bf2117375dc52e844c1516135ac32528
b82bd4b095e1c9543b60cf152b8ceb363f3b25a5
bb0dccbccfa9eefd3454489b84dc580fe925db30e2d88e6f125d2fdabe1b10df
GET /button/light?id=topicit-connect-0&redirect=https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic&lang=ar&loc=https%3A%2F%2Fconnect.topicit.net%2F&login=https%3A%2F%2Fdzjeun.7olm.org%2Ftopicit%2Findex.php%2Fconnect&version=1 HTTP/1.1
Host: connect.topicit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, post-check=0, pre-check=0, private
last-modified: Wed, 02 Nov 2022 12:37:49 GMT
expires: Wed, 02 Nov 2022 00:00:00 GMT
set-cookie: XSRF-TOKEN=eyJpdiI6IjJOaXJtQ0hvT0lyZlc5Z3hqMnQwcEE9PSIsInZhbHVlIjoiQ3lEeU0zMngrWmRUZXZNTzF2T1V0VUVlMTdHaWUwRVZWXC85d3dzS2pxSnN6WmhibVlOcnBUaG42UFFxU3JuM3QiLCJtYWMiOiJhNDhhN2IwZDVkMDhhN2M1MWE0MzRiNzdkZjBiYWVhZmZiM2ZlMmNlOTcyMmRhOTVhMGI3OWQwMWJlYTc3OGQ3In0%3D; expires=Wed, 02-Nov-2022 14:37:49 GMT; Max-Age=7200; path=/; domain=.topicit.net
topicit_session=zWSUhK8se2lYNxQQWGIGeEr8bmmTQPyI2XuTFqB1; expires=Wed, 02-Nov-2022 14:37:49 GMT; Max-Age=7200; path=/; domain=.topicit.net; httponly
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
x-cache-ne: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x44me%2FJUIxxiivdgLjH7fiyaEhwjD2EnpnlixGnB3ngkEjQY%2BUXfXAsDRwHqg8pFF26G7ACiY1VEimEwfQ94VSkc1dyZ%2F9olJsfkTZtuau9q2ngd9e84mdtZqY5nkouuzOHFqX5a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 763cec847919b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bidder.criteo.com/cdb?ptv=132&profileId=206&cb=47210424536
178.250.0.165200 OK 161 B URL HTTP/2 bidder.criteo.com/cdb?ptv=132&profileId=206&cb=47210424536
IP 178.250.0.165:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bd32edf2b7970e6a9659050a06c5c8ee
862b5eb62102a0e3ad424bb31b091681fcebac4f
e0a6e188542e5c5a7f32a2eae00ebdb0dfad229b3e3de0600d580bca9a166a10
POST /cdb?ptv=132&profileId=206&cb=47210424536 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 563
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
vary: Origin
server: Finatra
content-type: application/json; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: https://dzjeun.7olm.org
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
content-encoding: gzip
content-length: 161
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=470602022&t=pageview&_s=1&dl=https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic&ul=en-us&de=UTF-8&dt=%D8%AC%D8%AF%D9%8A%D8%AF%20%D8%A7%D9%84%D9%82%D8%A7%D9%86%D9%88%D9%86%20%D8%A7%D9%84%D8%A3%D8%B3%D8%A7%D8%B3%D9%8A%20%D9%84%D8%B9%D9%85%D8%A7%D9%84%20%D8%A7%D9%84%D8%AA%D8%B1%D8%A8%D9%8A%D8%A9&sd=24-bit&sr=1280x1024&vp=1140x836&je=0&_u=YEBAAUABAAAAACAAI~&jid=1272042687&gjid=1178825540&cid=1483870088.1667392672&tid=UA-144347007-1&_gid=36785933.1667392672&_r=1>m=2ouav0&z=18909600
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=470602022&t=pageview&_s=1&dl=https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic&ul=en-us&de=UTF-8&dt=%D8%AC%D8%AF%D9%8A%D8%AF%20%D8%A7%D9%84%D9%82%D8%A7%D9%86%D9%88%D9%86%20%D8%A7%D9%84%D8%A3%D8%B3%D8%A7%D8%B3%D9%8A%20%D9%84%D8%B9%D9%85%D8%A7%D9%84%20%D8%A7%D9%84%D8%AA%D8%B1%D8%A8%D9%8A%D8%A9&sd=24-bit&sr=1280x1024&vp=1140x836&je=0&_u=YEBAAUABAAAAACAAI~&jid=1272042687&gjid=1178825540&cid=1483870088.1667392672&tid=UA-144347007-1&_gid=36785933.1667392672&_r=1>m=2ouav0&z=18909600
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j98&a=470602022&t=pageview&_s=1&dl=https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic&ul=en-us&de=UTF-8&dt=%D8%AC%D8%AF%D9%8A%D8%AF%20%D8%A7%D9%84%D9%82%D8%A7%D9%86%D9%88%D9%86%20%D8%A7%D9%84%D8%A3%D8%B3%D8%A7%D8%B3%D9%8A%20%D9%84%D8%B9%D9%85%D8%A7%D9%84%20%D8%A7%D9%84%D8%AA%D8%B1%D8%A8%D9%8A%D8%A9&sd=24-bit&sr=1280x1024&vp=1140x836&je=0&_u=YEBAAUABAAAAACAAI~&jid=1272042687&gjid=1178825540&cid=1483870088.1667392672&tid=UA-144347007-1&_gid=36785933.1667392672&_r=1>m=2ouav0&z=18909600 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://dzjeun.7olm.org
date: Wed, 02 Nov 2022 12:37:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.145200 OK 106 kB URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.145:0
File type JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 106 kB (105483 bytes)
Hash 07662279e0a83ee18369d367106466b4
731e664d10d980eebdc5c25d4e9baadcd67a2c11
cfb773911772d09438ace652f94ae089845b155d27f493b6255e700fb5916487
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 83450
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/impl.20221102-9-RELEASE.js
151.101.85.44200 OK 146 kB URL HTTP/2 cdn.taboola.com/libtrc/impl.20221102-9-RELEASE.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (65509)
Size 146 kB (145905 bytes)
Hash 780f66ec045f427a0409f283aa47ba70
fcf6e4038f323bc2371f04aed0ee37017daf64ef
456846f9d318afad08e0908848df423a6554efd4de4df0bcfcd2fc71fc319c96
GET /libtrc/impl.20221102-9-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: fK3WfroMXHdj63wgLCtA1FHV7oWH2p68MshZTMIM65BpqVFi3OhAXvONywleoq8v3S0oBDhL1ts=
x-amz-request-id: 1YP2NTTJX1GEW1PQ
last-modified: Wed, 02 Nov 2022 10:13:28 GMT
etag: "780f66ec045f427a0409f283aa47ba70"
content-encoding: br
x-amz-version-id: cHW_ai1APgIgWbq5vzRdkGHxlcgu5nL6
content-type: application/javascript
accept-ranges: bytes
date: Wed, 02 Nov 2022 12:37:51 GMT
via: 1.1 varnish
age: 8618
x-served-by: cache-bma1656-BMA
x-cache: HIT
x-cache-hits: 4315
x-timer: S1667392672.812135,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 2
server: AmazonS3-br
content-length: 145905
X-Firefox-Spdy: h2
ocsp.comodoca4.com/
104.18.32.68200 OK 283 B IP 104.18.32.68:0
Hash 4c5d607d2db04057b20e8e29a6ca33c0
93333aae74f32b1d9d948380170f5b3b4ec69843
d224a1e4ee104ef59d2cd298bc00ff80a5ce18dcd73917b3492f27cabb6b197a
POST / HTTP/1.1
Host: ocsp.comodoca4.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 12:37:51 GMT
Content-Type: application/ocsp-response
Content-Length: 283
Connection: keep-alive
Last-Modified: Tue, 01 Nov 2022 12:47:14 GMT
Expires: Tue, 08 Nov 2022 12:47:13 GMT
Etag: "93333aae74f32b1d9d948380170f5b3b4ec69843"
Cache-Control: max-age=518361,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 763cec863c4db4ff-OSL
cdn.viglink.com/api/vglnk.js
104.16.162.13200 OK 29 kB URL HTTP/2 cdn.viglink.com/api/vglnk.js
IP 104.16.162.13:0
File type ASCII text, with very long lines (693)
Hash 072eaf64a771815874455704fca9301b
6c6226d00f14bb800cd4390b3cd42df941be43b1
bb35c8c300bd1acfe7ed86eb988f74ff2e8d86a4fb0409c5d78a890f9fd14b8e
GET /api/vglnk.js HTTP/1.1
Host: cdn.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: text/javascript
content-length: 28567
x-amz-id-2: kFPAC60DOwNQb4CdhqHG+tKjRF2TQjxpEdeKJyhLPdvjoiSwXPmNvXMEMMBRIwIu/QGXu5HJg1c=
x-amz-request-id: NTCW971RKN3GM3ZQ
last-modified: Wed, 02 Dec 2020 18:57:12 GMT
etag: "072eaf64a771815874455704fca9301b"
cache-control: public, max-age=604800
content-encoding: gzip
cf-cache-status: HIT
age: 1089124
expires: Wed, 09 Nov 2022 12:37:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec878d05b50f-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash ee13aba48e67e15cecf73c11cd972aaa
3c11702f4a5b3013c76a55cc2a92db4f44dcaccb
49ba16a9fbda50feed7b94a8adf0d1acf70ccba37ac347092523b03fb63021af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1986
Cache-Control: max-age=144100
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:51 GMT
Etag: "6361ecc1-139"
Expires: Fri, 04 Nov 2022 04:39:31 GMT
Last-Modified: Wed, 02 Nov 2022 04:06:25 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 313
syndication.twitter.com/settings?session_id=260cae9e37aa10312983bc987a01d3b9342e07bf
104.244.42.200200 OK 375 B URL HTTP/2 syndication.twitter.com/settings?session_id=260cae9e37aa10312983bc987a01d3b9342e07bf
IP 104.244.42.200:0
File type JSON data\012- , ASCII text, with very long lines (914), with no line terminators
Hash 22ba4030aabb3e3f64bbbcb1148617f0
2fc6418de8aeb4439351672d396dc8823b3e9357
db89caae1654117a1d9191db8633b6da5cde5deebf238bbd1800616cfc8f4254
GET /settings?session_id=260cae9e37aa10312983bc987a01d3b9342e07bf HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Wed, 02 Nov 2022 12:37:52 GMT
content-length: 375
content-encoding: gzip
x-transaction-id: 8f8b2a184696ee8d
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 111
x-connection-hash: 7f5ec473bd2ad38a416074fee485e0b36bf5562eaec4a86cd7a4e10d91cb8c01
X-Firefox-Spdy: h2
trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A51.914&type=info&msg=%7B%22mode%22%3A%22thumbnails-728x90%22%2C%22container%22%3A%22taboola-728x90-thumbnails%22%2C%22placement%22%3A%22728x90%20Thumbnails%22%2C%22target_type%22%3A%22mix%22%7D&llvl=2&id=2418&cv=20221102-9-RELEASE<=deflated&pct=1
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A51.914&type=info&msg=%7B%22mode%22%3A%22thumbnails-728x90%22%2C%22container%22%3A%22taboola-728x90-thumbnails%22%2C%22placement%22%3A%22728x90%20Thumbnails%22%2C%22target_type%22%3A%22mix%22%7D&llvl=2&id=2418&cv=20221102-9-RELEASE<=deflated&pct=1
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /forumotion-ar/log/2/debug?tim=12%3A37%3A51.914&type=info&msg=%7B%22mode%22%3A%22thumbnails-728x90%22%2C%22container%22%3A%22taboola-728x90-thumbnails%22%2C%22placement%22%3A%22728x90%20Thumbnails%22%2C%22target_type%22%3A%22mix%22%7D&llvl=2&id=2418&cv=20221102-9-RELEASE<=deflated&pct=1 HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
x-fastly-to-nlb-rtt: 22457
access-control-allow-credentials: true
X-Firefox-Spdy: h2
trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A51.915&type=info&msg=%7B%22mode%22%3A%22thumbnails-desktop-a%22%2C%22container%22%3A%22taboola-below-desktop-forum-thumbnails%22%2C%22placement%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22target_type%22%3A%22mix%22%7D&llvl=2&id=8746&cv=20221102-9-RELEASE<=deflated&pct=1
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A51.915&type=info&msg=%7B%22mode%22%3A%22thumbnails-desktop-a%22%2C%22container%22%3A%22taboola-below-desktop-forum-thumbnails%22%2C%22placement%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22target_type%22%3A%22mix%22%7D&llvl=2&id=8746&cv=20221102-9-RELEASE<=deflated&pct=1
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /forumotion-ar/log/2/debug?tim=12%3A37%3A51.915&type=info&msg=%7B%22mode%22%3A%22thumbnails-desktop-a%22%2C%22container%22%3A%22taboola-below-desktop-forum-thumbnails%22%2C%22placement%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22target_type%22%3A%22mix%22%7D&llvl=2&id=8746&cv=20221102-9-RELEASE<=deflated&pct=1 HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
x-fastly-to-nlb-rtt: 22457
access-control-allow-credentials: true
X-Firefox-Spdy: h2
trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A51.924&type=info&msg=Below%20Desktop%20Forum%20Thumbnails%20thumbnails-desktop-a&llvl=2&id=7989&cv=20221102-9-RELEASE<=deflated&pct=1
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A51.924&type=info&msg=Below%20Desktop%20Forum%20Thumbnails%20thumbnails-desktop-a&llvl=2&id=7989&cv=20221102-9-RELEASE<=deflated&pct=1
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /forumotion-ar/log/2/debug?tim=12%3A37%3A51.924&type=info&msg=Below%20Desktop%20Forum%20Thumbnails%20thumbnails-desktop-a&llvl=2&id=7989&cv=20221102-9-RELEASE<=deflated&pct=1 HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
x-fastly-to-nlb-rtt: 22457
access-control-allow-credentials: true
X-Firefox-Spdy: h2
trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A51.911&type=info&msg=https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic&llvl=2&id=1907&cv=20221102-9-RELEASE<=deflated&pct=1
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A51.911&type=info&msg=https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic&llvl=2&id=1907&cv=20221102-9-RELEASE<=deflated&pct=1
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /forumotion-ar/log/2/debug?tim=12%3A37%3A51.911&type=info&msg=https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic&llvl=2&id=1907&cv=20221102-9-RELEASE<=deflated&pct=1 HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
x-fastly-to-nlb-rtt: 22457
access-control-allow-credentials: true
X-Firefox-Spdy: h2
trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A51.922&type=info&msg=728x90%20Thumbnails%20thumbnails-728x90&llvl=2&id=623&cv=20221102-9-RELEASE<=deflated&pct=1
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A51.922&type=info&msg=728x90%20Thumbnails%20thumbnails-728x90&llvl=2&id=623&cv=20221102-9-RELEASE<=deflated&pct=1
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /forumotion-ar/log/2/debug?tim=12%3A37%3A51.922&type=info&msg=728x90%20Thumbnails%20thumbnails-728x90&llvl=2&id=623&cv=20221102-9-RELEASE<=deflated&pct=1 HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
x-fastly-to-nlb-rtt: 22457
access-control-allow-credentials: true
X-Firefox-Spdy: h2
trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A51.913&type=usage&msg=rtus&llvl=2&id=7516&cv=20221102-9-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A51.913&type=usage&msg=rtus&llvl=2&id=7516&cv=20221102-9-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /forumotion-ar/log/2/debug?tim=12%3A37%3A51.913&type=usage&msg=rtus&llvl=2&id=7516&cv=20221102-9-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
x-fastly-to-nlb-rtt: 22457
access-control-allow-credentials: true
X-Firefox-Spdy: h2
dzjeun.7olm.org/images/icons-180.png
178.33.115.32200 OK 31 kB URL HTTP/2 dzjeun.7olm.org/images/icons-180.png
IP 178.33.115.32:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 3c393600413d53c1778b1ff0d1d85751
81f0e26ff4db6cfdbf18cf83ef90b8f8a36b46e7
a72c11ef9bb1dcc92591e359d85d112108e14c36d7cbbeafab5bb062773dc0e4
GET /images/icons-180.png HTTP/1.1
Host: dzjeun.7olm.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/t91-topic
Cookie: exadd=166740; _fa-screen=%7B%22w%22%3A1152%2C%22h%22%3A836%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:52 GMT
content-type: image/png
content-length: 30911
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 02 Nov 2022 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
x-cache-ic: MISS
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 96e038ea52eec667120343c64b0ae954
bb7f04adb7d1ae6a2f2ecf81e696dcd789821ddd
fb9dad023525b19dce99664879c4ec23c41e9637e98b2c120bcd3084adb76e79
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=157513
Date: Wed, 02 Nov 2022 12:37:52 GMT
Etag: "63621438-1d7"
Expires: Fri, 04 Nov 2022 08:23:05 GMT
Last-Modified: Wed, 02 Nov 2022 06:54:48 GMT
Server: ECS (nyb/1D0E)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vDoqr_l0ylXaohxcA8zrI_2y1H0ttzBHnTrLbdZphlNWtIOeevDR5A==
Age: 5297
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7d1a90c0cbeaa4e8379f5f77b916013b
fbbe002d592a8c20646066c57d8c2bcfaa8af96c
44b11c299f37ddbfde89f6d8c86d7d50db0f861d216b80ae839b698abc08d098
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.viglink.com/api/ping
52.31.71.92200 OK 260 B IP 52.31.71.92:0
File type ASCII text, with no line terminators
Hash e94990e91fd9da22f7b258e6e30fa917
f758bf6441a645e81a244b5e32b61d33643c29b9
2879cd5dc4c58670feb953425264441cd4d9e33de998977e8d1a47fbb6dc9601
POST /api/ping HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 133
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://dzjeun.7olm.org
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Date: Wed, 02 Nov 2022 12:37:51 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 260
Connection: keep-alive
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144347007-1&cid=1483870088.1667392672&jid=1272042687&gjid=1178825540&_gid=36785933.1667392672&_u=YEBAAUAAAAAAACAAI~&z=442730922
64.233.161.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144347007-1&cid=1483870088.1667392672&jid=1272042687&gjid=1178825540&_gid=36785933.1667392672&_u=YEBAAUAAAAAAACAAI~&z=442730922
IP 64.233.161.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144347007-1&cid=1483870088.1667392672&jid=1272042687&gjid=1178825540&_gid=36785933.1667392672&_u=YEBAAUAAAAAAACAAI~&z=442730922 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://dzjeun.7olm.org
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 02 Nov 2022 12:37:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7d1a90c0cbeaa4e8379f5f77b916013b
fbbe002d592a8c20646066c57d8c2bcfaa8af96c
44b11c299f37ddbfde89f6d8c86d7d50db0f861d216b80ae839b698abc08d098
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 365c421f54a1251958c9f5d939fdb2ba
9b87e515122456f4317655120aaa3762db4c8fe3
96a733a05e7acc249c179e9545b4e025e2dd8da5cf2aee4e54281bb0b6a77fb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96A733A05E7ACC249C179E9545B4E025E2DD8DA5CF2AEE4E54281BB0B6A77FB3"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9675
Expires: Wed, 02 Nov 2022 15:19:07 GMT
Date: Wed, 02 Nov 2022 12:37:52 GMT
Connection: keep-alive
stootsou.net/custom
139.45.197.250200 OK 0 B IP 139.45.197.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://dzjeun.7olm.org/
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://dzjeun.7olm.org
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=publishertag&domain=7olm.org&sn=FirefoxSyncframe&so=0&topUrl=dzjeun.7olm.org&info=o_CZmV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czNOSzVYRExGaEI4TWgzWiUyQmFqbnEyREdoOVZGQ2dNVjczek5tJTJGUER3bllK&idsd=-2043637528,718193214&cw=1&lsw=1
178.250.0.157200 OK 296 B URL HTTP/2 gum.criteo.com/sid/json?origin=publishertag&domain=7olm.org&sn=FirefoxSyncframe&so=0&topUrl=dzjeun.7olm.org&info=o_CZmV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czNOSzVYRExGaEI4TWgzWiUyQmFqbnEyREdoOVZGQ2dNVjczek5tJTJGUER3bllK&idsd=-2043637528,718193214&cw=1&lsw=1
IP 178.250.0.157:0
File type JSON data\012- , ASCII text, with very long lines (364), with no line terminators
Hash 401279f15c161ca8201ef537aef22606
41d52db4c066cd1454deb7c0906d2c31db503df7
5ffd9badd2b5bd559634a50b098509b6e30c5f276deb9dbb3d18ebffccca97b8
GET /sid/json?origin=publishertag&domain=7olm.org&sn=FirefoxSyncframe&so=0&topUrl=dzjeun.7olm.org&info=o_CZmV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czNOSzVYRExGaEI4TWgzWiUyQmFqbnEyREdoOVZGQ2dNVjczek5tJTJGUER3bllK&idsd=-2043637528,718193214&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=publishertag&topUrl=dzjeun.7olm.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1063992
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
stootsou.net/custom
139.45.197.250200 OK 0 B IP 139.45.197.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://dzjeun.7olm.org/
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://dzjeun.7olm.org
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
stootsou.net/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dzjeun.7olm.org/
Content-Type: application/json
Origin: https://dzjeun.7olm.org
Content-Length: 376
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 24fee23ed139edd5e30497d5ef35d030
access-control-allow-origin: https://dzjeun.7olm.org
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
stootsou.net/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dzjeun.7olm.org/
Content-Type: application/json
Origin: https://dzjeun.7olm.org
Content-Length: 760
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: ea715d92d3c9a9d1f3727372849bc80a
access-control-allow-origin: https://dzjeun.7olm.org
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
stootsou.net/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dzjeun.7olm.org/
Content-Type: application/json
Origin: https://dzjeun.7olm.org
Content-Length: 450
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: d96e51820cc28bffb16cc6974ac2a871
access-control-allow-origin: https://dzjeun.7olm.org
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
cdn.betgorebysson.club/apu.php?zoneid=3765907
139.45.195.8200 OK 32 kB URL HTTP/2 cdn.betgorebysson.club/apu.php?zoneid=3765907
IP 139.45.195.8:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 654bc5e591a01b72380c89d15fce8eaf
8c2098f2e101acad2d22911a8e8873dbbecb3496
b5eb3ea7cf690933cd9570179e34e2b0d156a2978dddf4ef2c55fe345302e18e
GET /apu.php?zoneid=3765907 HTTP/1.1
Host: cdn.betgorebysson.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
content-type: application/javascript
x-trace-id: 3eb4fb2e0542d470e424366783888889
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=0c71203b6bce4ce68736bed2af0c2c5f; expires=Thu, 02 Nov 2023 12:37:52 GMT; path=/; secure; SameSite=None
oaidts=1667392672; expires=Thu, 02 Nov 2023 12:37:52 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
178.250.6.217200 OK 83 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 178.250.6.217:0
Hash c8f323a555c150e0283a4d313c559dc6
302350f4243f44afec9458a41f459be489aafc80
27e414e9c2ef8366d1efe7cb5581b0e8fa46f6e5a9e18641cd956f3488ec4f4f
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:52 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 67906
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 9e22dfe51ab9c940bb579430ed3b78a4
ccae561eb9b63619ffe425b9f869cbbbc3ee7c0b
0a2184c28a4c739add7ff59ff6e4a124d93505fc75b185199f60d0348b881e6e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4d26604d5bad5609f13349fd3c33906d
2e520385b866cdd0e646cfe81d7eaa019ed42fab
dd67edcee5d3b6b315f4c062fcd3c8eaed3d093e835f28a90ee2b540a38f10c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gem.gbc.criteo.com/newidsd
185.235.84.145200 OK 81 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.145:0
Hash 9ff98a3555d6acf9bbedddfa386fca98
2e18d3ae917a0db48f218e6a172c6c724e512e81
6486a49459899aa9f35fe512a4a6c1033cf1ae2a5224ac630035644160870a93
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 92430
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144347007-1&cid=1483870088.1667392672&jid=1272042687&_u=YEBAAUAAAAAAACAAI~&z=916050972
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144347007-1&cid=1483870088.1667392672&jid=1272042687&_u=YEBAAUAAAAAAACAAI~&z=916050972
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144347007-1&cid=1483870088.1667392672&jid=1272042687&_u=YEBAAUAAAAAAACAAI~&z=916050972 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 12:37:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144347007-1&cid=1483870088.1667392672&jid=1272042687&_u=YEBAAUAAAAAAACAAI~&z=916050972
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144347007-1&cid=1483870088.1667392672&jid=1272042687&_u=YEBAAUAAAAAAACAAI~&z=916050972
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144347007-1&cid=1483870088.1667392672&jid=1272042687&_u=YEBAAUAAAAAAACAAI~&z=916050972 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 12:37:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4d26604d5bad5609f13349fd3c33906d
2e520385b866cdd0e646cfe81d7eaa019ed42fab
dd67edcee5d3b6b315f4c062fcd3c8eaed3d093e835f28a90ee2b540a38f10c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c1af38ec0609b645477f3a9fe1054f30
590be080fbdea4626418c10472ffaada28f2d50a
6802d3acb54cf6d879d8eb65435dd9748ac2dcfda9eacc430df1b6fdd0bb7c67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.taboola.com/libtrc/userx.20221102-9-RELEASE.es6.js
151.101.85.44200 OK 5.4 kB URL HTTP/2 cdn.taboola.com/libtrc/userx.20221102-9-RELEASE.es6.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (17842)
Hash 1a336aac9735296300d73a0d78010d88
f2c0374fd4357b7692cde362406efe55a93ba95b
4cf2ef194446399a273fc1847cbc4e8de08dea67a859679bf341c0abd11d5b87
GET /libtrc/userx.20221102-9-RELEASE.es6.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: oR5qGYAXzzfRDfYSHRvLaK8GoUz7kCOjr5Adj2HJ4kaPCnthHuuDBN1Bt0eskpr8A/y5GIqoLPQ=
x-amz-request-id: DX0NBSSMKSEHGD90
x-amz-replication-status: PENDING
last-modified: Wed, 02 Nov 2022 12:15:14 GMT
etag: "3040de865204e09a1606037164f343a8"
x-amz-version-id: sZW1UoQKwrYXW7hFycRboNlH3_1N95JN
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 02 Nov 2022 12:37:52 GMT
via: 1.1 varnish
age: 1357
x-served-by: cache-bma1656-BMA
x-cache: HIT
x-cache-hits: 187
x-timer: S1667392673.679588,VS0,VE0
cache-control: private,max-age=14400
vary: Accept-Encoding
abp: 2
content-length: 5397
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/cta-component.20221102-9-RELEASE.es6.js
151.101.85.44200 OK 5.1 kB URL HTTP/2 cdn.taboola.com/libtrc/cta-component.20221102-9-RELEASE.es6.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (18924)
Hash 1824c0b6834e456b7b635c82ff71de70
4a1487b6d187dcf8917d96a76c70f8101a38d4a3
968f0fc40a56f5be9e71ca6d15c8ec763f03e7a922869b1d4b3e6ec7c91488b3
GET /libtrc/cta-component.20221102-9-RELEASE.es6.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: cCCifrR8Ni3JtjAaOnh+uzDMRCYWP1yl9MbxVYe+5dEQvupMBk5g36Nt/fpi2Ojxnrq/x+6uKb8=
x-amz-request-id: B6S5HNFF2ZCJYMKN
x-amz-replication-status: PENDING
last-modified: Wed, 02 Nov 2022 12:18:12 GMT
etag: "ac9a9de0689c0be6766d0b6880ec750b"
x-amz-version-id: s4zMHVSoH8evJ.XX33Og966BuslNeU7Q
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 02 Nov 2022 12:37:52 GMT
via: 1.1 varnish
age: 1179
x-served-by: cache-bma1656-BMA
x-cache: HIT
x-cache-hits: 397
x-timer: S1667392673.679614,VS0,VE0
cache-control: private,max-age=14400
vary: Accept-Encoding
abp: 2
content-length: 5107
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c18aead96956fc8de41d067a99071c73
29b784835d23ec09a11f91dda1f3ac9f9550c129
106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3853
Expires: Wed, 02 Nov 2022 13:42:05 GMT
Date: Wed, 02 Nov 2022 12:37:52 GMT
Connection: keep-alive
dnacdn.net/dna
178.250.2.146200 OK 170 B IP 178.250.2.146:0
Hash 2ef926b24860a87df5ba3aa7da914ae4
b257caae04efcacc543fd82d7f106d80b8d5f967
4ac06e9483955600edc200d553b4c0bc647d11aeffdcab406f35edb69e46bfb3
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=o_CZmV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czNOSzVYRExGaEI4TWgzWiUyQmFqbnEyREdoOVZGQ2dNVjczek5tJTJGUER3bllK
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=mW8fzl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czNOSzVYRExGaEI4TWgzWiUyQmFqbnEyRFZRbHZtJTJCUzAwWWFtTjZhM3BYZW9C; expires=Mon, 27 Nov 2023 12:37:52 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 286293
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c18aead96956fc8de41d067a99071c73
29b784835d23ec09a11f91dda1f3ac9f9550c129
106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3853
Expires: Wed, 02 Nov 2022 13:42:05 GMT
Date: Wed, 02 Nov 2022 12:37:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c18aead96956fc8de41d067a99071c73
29b784835d23ec09a11f91dda1f3ac9f9550c129
106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3853
Expires: Wed, 02 Nov 2022 13:42:05 GMT
Date: Wed, 02 Nov 2022 12:37:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ae2b8d827fb2c8bef64febcd36f1645
f7705fcd2d91ce90c58e79324cce1e3abba6c1c8
2dc55e97ef3a85fccb104b80161a8bac16b12d37527c336563677432584c7ad5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11421
x-amzn-requestid: 8436166b-f342-44e9-9a31-e25dcaa7b85c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a2gEOEYRIAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635f46e7-0616a6b95503fffd4f597509;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 03:54:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: g3OtcJnT2JfzIAvUjoLvC8pOzfwGFQ-M0cH4uwNSVcr2T9jYgCihTw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 22:57:41 GMT
age: 49211
etag: "f7705fcd2d91ce90c58e79324cce1e3abba6c1c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48bbdd9c-6fd8-4186-9826-5b75daa3f949.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48bbdd9c-6fd8-4186-9826-5b75daa3f949.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e6d78844aa60ad0bd62fc70779a63e8
80dbe6518bd99eb7cab1ba0ff9b5c53d0cc85949
ac1ee1c30bee586a5edd9605a514548e1e91e6ef39c55cc866cf026b8ed3df82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48bbdd9c-6fd8-4186-9826-5b75daa3f949.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10496
x-amzn-requestid: 4b3864a5-5e0b-42f3-83b3-c997f66eeb55
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OG_H3oIAMFalA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619092-6e450a0c6393d47f4d72ce35;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:33:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V8KvfFEQSkb7CkT0DUL3D6JtMUkhRJaKIuHhPnbDLCOIINyEt-1a-A==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 22:12:59 GMT
age: 51893
etag: "80dbe6518bd99eb7cab1ba0ff9b5c53d0cc85949"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4ebdcc9-b605-4814-b94b-32df2890ba40.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4ebdcc9-b605-4814-b94b-32df2890ba40.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 80a15bf497eed7ce0dc0bab1fc27c18d
5da512cc8d716ed6d83db95ffe40a8113aca3036
5f7fc4ccda5c71792416faa54964966731c1d3b612b56891f9d5e5e8f3c69666
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4ebdcc9-b605-4814-b94b-32df2890ba40.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7495
x-amzn-requestid: 4980bd4a-9383-47d4-81de-3c1f1788f917
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8N9sFbOoAMF7mQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619057-1451572557667da827b5d123;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:32:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NM1DGRHUQS98x4ZZdBupZAloibcrqieultKoescIzjnRnAMylp3B5g==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 22:06:59 GMT
etag: "5da512cc8d716ed6d83db95ffe40a8113aca3036"
content-type: image/jpeg
age: 52253
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F313304af-480e-4f0d-9edd-a56668e1dcf2.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F313304af-480e-4f0d-9edd-a56668e1dcf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 40dd1815b65de55e5cd0da770f055ba0
fba216e77ddd5e4088eee8cc56c40ad9e654410a
84b908f527fabe87d9bb2c8d09bb33361788228ab5dafa7faed2ab5d0a0a1931
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F313304af-480e-4f0d-9edd-a56668e1dcf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9432
x-amzn-requestid: 3a2c6bcc-2b48-4efa-b99b-56d091941c2c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8Op4HsLoAMF1ZQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619172-6ec7504d54fb867f2f4d96f8;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:36:50 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: koFTF7izpw9ps1zpAVUaHRbsINagoFO4WQ2dCJ6UNRkQub2Fa5xCsg==
via: 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 22:12:47 GMT
age: 51905
etag: "fba216e77ddd5e4088eee8cc56c40ad9e654410a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec2e029c-fc0b-49fc-86fd-a0353e4bf400.png
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec2e029c-fc0b-49fc-86fd-a0353e4bf400.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d889392defc575d85e26321730c2722
28177e0094cb108a96751ba23830134e1d4b8e15
758b77490f2f67d8d4297e0060b0a310be6f03dcda4808969147e1610879e836
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec2e029c-fc0b-49fc-86fd-a0353e4bf400.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12840
x-amzn-requestid: c6424625-a000-41be-8043-4ac408d25086
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OHAG5QIAMFodA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619093-2d8d7616088723ab392f74ff;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:33:07 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _nhbB7wn_tje5pEJa66ub53DJMk6pvkjSfpKsruWEuzYPDoUlm_icg==
via: 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 21:51:55 GMT
age: 53157
etag: "28177e0094cb108a96751ba23830134e1d4b8e15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabfa0ff8-fada-4af4-ab5f-529906656572.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabfa0ff8-fada-4af4-ab5f-529906656572.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ab331970f5e4f7f2e0ff0c042095ec4e
2b72b9df83cc12db944f6d079d91d6362be036d0
35dd7f4cc581389be9e90be3e7a8663831eeeb89c261cb3eb3fcc66cb9e56f24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabfa0ff8-fada-4af4-ab5f-529906656572.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7026
x-amzn-requestid: f5a992f1-beb7-463c-8125-e0f74009f272
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8N75GyioAMFsEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6361904b-648797425d1d3d485d17d773;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:31:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ct2UyXUhCL58M5_X1nCM5LhPGWDxuZgav0SiSsm99PUF_ergMz34tw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 21:40:58 GMT
age: 53814
etag: "2b72b9df83cc12db944f6d079d91d6362be036d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
api.viglink.com/api/domains
52.31.71.92200 OK 68 B URL HTTP/1.1 api.viglink.com/api/domains
IP 52.31.71.92:0
File type ASCII text, with no line terminators
Hash 5a54dc14c66a6abdb221acef74098fa6
dee11ed3e728ad18d9a74ebb745cecbb34aa0e8c
a8f41777c86dad1cb7a2a46ae9a0882a8f702d7590b4e82380e07d4d879f2d92
POST /api/domains HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 315
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://dzjeun.7olm.org
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Date: Wed, 02 Nov 2022 12:37:52 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 68
Connection: keep-alive
bidder.criteo.com/csm/events
178.250.0.165204 No Content 0 B URL HTTP/2 bidder.criteo.com/csm/events
IP 178.250.0.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csm/events HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 370
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 02 Nov 2022 12:37:52 GMT
vary: Origin
server: Finatra
timing-allow-origin: *
access-control-allow-origin: https://dzjeun.7olm.org
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
platform.twitter.com/widgets/tweet_button.7dae38096d06923d683a2a807172322a.ar.html
93.184.220.66200 OK 14 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.7dae38096d06923d683a2a807172322a.ar.html
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32033)
Hash 81d22501f851a17f72635734d02d6f11
ed76578c5a272fad6063b1d7ce9f47358cf73433
d4baa24731586362fedd910747819c1b50553483d4016c6956d56b61641b79ca
GET /widgets/tweet_button.7dae38096d06923d683a2a807172322a.ar.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1130002
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Wed, 02 Nov 2022 12:37:52 GMT
Etag: "ff62cae2dabf0a5ef7f2bb2ce43bbff0+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:23 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F707)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 14164
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash c2cb0efbaa7f2d6a0ec85c7a2b958418
70c869f0611b8124a096bd985c90618da7d484a3
6c7bca57912adb84c399a1ec207655ab31ae09060874cf233dabddf6b28eb362
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1652
Cache-Control: max-age=155313
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:52 GMT
Etag: "636219dd-117"
Expires: Fri, 04 Nov 2022 07:46:25 GMT
Last-Modified: Wed, 02 Nov 2022 07:18:53 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash c2cb0efbaa7f2d6a0ec85c7a2b958418
70c869f0611b8124a096bd985c90618da7d484a3
6c7bca57912adb84c399a1ec207655ab31ae09060874cf233dabddf6b28eb362
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1652
Cache-Control: max-age=155313
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:52 GMT
Etag: "636219dd-117"
Expires: Fri, 04 Nov 2022 07:46:25 GMT
Last-Modified: Wed, 02 Nov 2022 07:18:53 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A52.539&type=info&msg=Start%20Rendering%20728x90%20Thumbnails&llvl=2&id=3114&cv=20221102-9-RELEASE<=deflated&pct=1
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A52.539&type=info&msg=Start%20Rendering%20728x90%20Thumbnails&llvl=2&id=3114&cv=20221102-9-RELEASE<=deflated&pct=1
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /forumotion-ar/log/2/debug?tim=12%3A37%3A52.539&type=info&msg=Start%20Rendering%20728x90%20Thumbnails&llvl=2&id=3114&cv=20221102-9-RELEASE<=deflated&pct=1 HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
x-fastly-to-nlb-rtt: 71561
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash eeac6fcc0b8e78fc49f6613abb43e116
9417f5321e4aecb57dee5d22644377cd18c07683
e00057cfeeadd325d90a114a313d9ebb986b58b9e07de058712837d6d9113feb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 12:37:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 31 Oct 2022 06:25:19 GMT
Expires: Mon, 07 Nov 2022 06:25:18 GMT
Etag: "9417f5321e4aecb57dee5d22644377cd18c07683"
Cache-Control: max-age=409045,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 763cec8dca5d0b59-OSL
il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A52.558&type=info&msg=Start%20Rendering%20Below%20Desktop%20Forum%20Thumbnails&llvl=2&id=9754&cv=20221102-9-RELEASE<=deflated&pct=1
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A52.558&type=info&msg=Start%20Rendering%20Below%20Desktop%20Forum%20Thumbnails&llvl=2&id=9754&cv=20221102-9-RELEASE<=deflated&pct=1
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /forumotion-ar/log/2/debug?tim=12%3A37%3A52.558&type=info&msg=Start%20Rendering%20Below%20Desktop%20Forum%20Thumbnails&llvl=2&id=9754&cv=20221102-9-RELEASE<=deflated&pct=1 HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
x-fastly-to-nlb-rtt: 71561
access-control-allow-credentials: true
X-Firefox-Spdy: h2
il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A52.547&type=info&msg=Finish%20Rendering%20728x90%20Thumbnails&llvl=2&id=7930&cv=20221102-9-RELEASE<=deflated&pct=1
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A52.547&type=info&msg=Finish%20Rendering%20728x90%20Thumbnails&llvl=2&id=7930&cv=20221102-9-RELEASE<=deflated&pct=1
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /forumotion-ar/log/2/debug?tim=12%3A37%3A52.547&type=info&msg=Finish%20Rendering%20728x90%20Thumbnails&llvl=2&id=7930&cv=20221102-9-RELEASE<=deflated&pct=1 HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
x-fastly-to-nlb-rtt: 71561
access-control-allow-credentials: true
X-Firefox-Spdy: h2
il-trc-events.taboola.com/forumotion-ar/log/3/abtests?route=AM:IL:V<i=deflated&ri=69d99392a204d4a80d4abb323d45ceae&sd=v2_862a68d9e579c89705fcb6475c9999a5_a0f45fc4-3409-4f47-981e-ab648672e659-tucta5bea20_1667392672_1667392672_CNawjgYQ3pxDGLCh5MLDMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=a0f45fc4-3409-4f47-981e-ab648672e659-tucta5bea20&pi=/t91-topic&wi=8795673584331275332&pt=text&vi=1667392671920&d=%7B%22abTestsEventType%22%3A%22simple%22%2C%22name%22%3A%22blockedVideo%22%2C%22type%22%3A1%2C%22eventTime%22%3A1667392672570%7D&tim=12%3A37%3A52.570&id=6266&llvl=2&cv=20221102-9-RELEASE&
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/forumotion-ar/log/3/abtests?route=AM:IL:V<i=deflated&ri=69d99392a204d4a80d4abb323d45ceae&sd=v2_862a68d9e579c89705fcb6475c9999a5_a0f45fc4-3409-4f47-981e-ab648672e659-tucta5bea20_1667392672_1667392672_CNawjgYQ3pxDGLCh5MLDMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=a0f45fc4-3409-4f47-981e-ab648672e659-tucta5bea20&pi=/t91-topic&wi=8795673584331275332&pt=text&vi=1667392671920&d=%7B%22abTestsEventType%22%3A%22simple%22%2C%22name%22%3A%22blockedVideo%22%2C%22type%22%3A1%2C%22eventTime%22%3A1667392672570%7D&tim=12%3A37%3A52.570&id=6266&llvl=2&cv=20221102-9-RELEASE&
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /forumotion-ar/log/3/abtests?route=AM:IL:V<i=deflated&ri=69d99392a204d4a80d4abb323d45ceae&sd=v2_862a68d9e579c89705fcb6475c9999a5_a0f45fc4-3409-4f47-981e-ab648672e659-tucta5bea20_1667392672_1667392672_CNawjgYQ3pxDGLCh5MLDMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=a0f45fc4-3409-4f47-981e-ab648672e659-tucta5bea20&pi=/t91-topic&wi=8795673584331275332&pt=text&vi=1667392671920&d=%7B%22abTestsEventType%22%3A%22simple%22%2C%22name%22%3A%22blockedVideo%22%2C%22type%22%3A1%2C%22eventTime%22%3A1667392672570%7D&tim=12%3A37%3A52.570&id=6266&llvl=2&cv=20221102-9-RELEASE& HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=0c71203b6bce4ce68736bed2af0c2c5f
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=0c71203b6bce4ce68736bed2af0c2c5f
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash d2b88b048dee0f68e9fa398b76627c13
d1b8657a0952a0e7b6bf96e0e43795fd731ca0d0
893346b5b8ed9ed9972ebf0a83d5a3c3de31aa788266dd793aee51320f925acb
GET /gid.js?userId=0c71203b6bce4ce68736bed2af0c2c5f HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://dzjeun.7olm.org
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=0c71203b6bce4ce68736bed2af0c2c5f; expires=Thu, 02 Nov 2023 12:37:52 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
il-trc-events.taboola.com/forumotion-ar/log/3/abtests?route=AM:IL:V<i=deflated&ri=69d99392a204d4a80d4abb323d45ceae&sd=v2_862a68d9e579c89705fcb6475c9999a5_a0f45fc4-3409-4f47-981e-ab648672e659-tucta5bea20_1667392672_1667392672_CNawjgYQ3pxDGLCh5MLDMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=a0f45fc4-3409-4f47-981e-ab648672e659-tucta5bea20&pi=/t91-topic&wi=8795673584331275332&pt=text&vi=1667392671920&d=%7B%22abTestsEventType%22%3A%22simple%22%2C%22name%22%3A%22blockedVideo%22%2C%22type%22%3A1%2C%22eventTime%22%3A1667392672547%7D&tim=12%3A37%3A52.548&id=4145&llvl=2&cv=20221102-9-RELEASE&
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/forumotion-ar/log/3/abtests?route=AM:IL:V<i=deflated&ri=69d99392a204d4a80d4abb323d45ceae&sd=v2_862a68d9e579c89705fcb6475c9999a5_a0f45fc4-3409-4f47-981e-ab648672e659-tucta5bea20_1667392672_1667392672_CNawjgYQ3pxDGLCh5MLDMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=a0f45fc4-3409-4f47-981e-ab648672e659-tucta5bea20&pi=/t91-topic&wi=8795673584331275332&pt=text&vi=1667392671920&d=%7B%22abTestsEventType%22%3A%22simple%22%2C%22name%22%3A%22blockedVideo%22%2C%22type%22%3A1%2C%22eventTime%22%3A1667392672547%7D&tim=12%3A37%3A52.548&id=4145&llvl=2&cv=20221102-9-RELEASE&
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /forumotion-ar/log/3/abtests?route=AM:IL:V<i=deflated&ri=69d99392a204d4a80d4abb323d45ceae&sd=v2_862a68d9e579c89705fcb6475c9999a5_a0f45fc4-3409-4f47-981e-ab648672e659-tucta5bea20_1667392672_1667392672_CNawjgYQ3pxDGLCh5MLDMCABKAEwogE434cMQJ6XEEj5qNkDUN6lI1gAYABop5bpoOzs57vmAXAA&ui=a0f45fc4-3409-4f47-981e-ab648672e659-tucta5bea20&pi=/t91-topic&wi=8795673584331275332&pt=text&vi=1667392671920&d=%7B%22abTestsEventType%22%3A%22simple%22%2C%22name%22%3A%22blockedVideo%22%2C%22type%22%3A1%2C%22eventTime%22%3A1667392672547%7D&tim=12%3A37%3A52.548&id=4145&llvl=2&cv=20221102-9-RELEASE& HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A52.568&type=info&msg=Finish%20Rendering%20Below%20Desktop%20Forum%20Thumbnails&llvl=2&id=7728&cv=20221102-9-RELEASE<=deflated&pct=1
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A52.568&type=info&msg=Finish%20Rendering%20Below%20Desktop%20Forum%20Thumbnails&llvl=2&id=7728&cv=20221102-9-RELEASE<=deflated&pct=1
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /forumotion-ar/log/2/debug?tim=12%3A37%3A52.568&type=info&msg=Finish%20Rendering%20Below%20Desktop%20Forum%20Thumbnails&llvl=2&id=7728&cv=20221102-9-RELEASE<=deflated&pct=1 HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 02 Nov 2022 12:37:52 GMT
x-fastly-to-nlb-rtt: 71561
access-control-allow-credentials: true
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_180%2Cw_360%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/3d112ff85f7ee35ebfe501e75e96fbe1.jpeg
151.101.85.44200 OK 17 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_180%2Cw_360%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/3d112ff85f7ee35ebfe501e75e96fbe1.jpeg
IP 151.101.85.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d6e0d6594cf13d9b7ba779e94c1336b5
269a71b88a8bf4f5a78d3685cf2f1f3ec33c7137
60c7de5cc0cd7d6bf4af557a3215bfc4d6f16063c52d0ef7dbd153969c14f339
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_180%2Cw_360%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/3d112ff85f7ee35ebfe501e75e96fbe1.jpeg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 622117880863102738650267497272547648925,341818766630488423269086991181948173068,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 622117880863102738650267497272547648925,341818766630488423269086991181948173068,29ecf9b93bbf306179626feeda1fab70
etag: "35f9215938e9d037539a6bd37ca9a340"
expiration: expiry-date="Sat, 08 Oct 2022 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Wed, 07 Sep 2022 05:47:00 GMT
req-referer: https://www.lefigaro.fr/
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 79
x-backend-name: CH_DIR:3FP7YNX3LMizprTZsG7BSW--F_CH_nlb802
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 02 Nov 2022 12:37:53 GMT
age: 2569931
x-served-by: cache-iad-kcgs7200128-IAD, cache-iad-kiad7000157-IAD, cache-lga21959-LGA, cache-iad-kcgs7200028-IAD, cache-bma1656-BMA
x-cache: MISS, MISS, HIT, HIT, HIT
x-cache-hits: 0, 0, 1, 5, 1
x-timer: S1667392673.020314,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_180%2Cw_360%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/http%3A//cdn.taboola.com/libtrc/static/thumbnails/3d112ff85f7ee35ebfe501e75e96fbe1.jpeg
x-vcl-time-ms: 1
content-length: 17410
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-crto-bundle
Referer: https://dzjeun.7olm.org/
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:52 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-headers: X-CRTO-SID, X-CRTO-IDCPY, X-CRTO-OPTOUT, X-CRTO-BUNDLE
access-control-allow-origin: https://dzjeun.7olm.org
server-processing-duration-in-ticks: 558525
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A52.825&type=warn&msg=TRC.TranslationsManager%20-%20missing%20feature%20in%20translationMap%3A%20userx.&llvl=2&id=61&cv=20221102-9-RELEASE<=deflated&pct=1
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A52.825&type=warn&msg=TRC.TranslationsManager%20-%20missing%20feature%20in%20translationMap%3A%20userx.&llvl=2&id=61&cv=20221102-9-RELEASE<=deflated&pct=1
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /forumotion-ar/log/2/debug?tim=12%3A37%3A52.825&type=warn&msg=TRC.TranslationsManager%20-%20missing%20feature%20in%20translationMap%3A%20userx.&llvl=2&id=61&cv=20221102-9-RELEASE<=deflated&pct=1 HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Wed, 02 Nov 2022 12:37:53 GMT
x-fastly-to-nlb-rtt: 71667
access-control-allow-credentials: true
X-Firefox-Spdy: h2
il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A52.865&type=info&msg=Finish%20Rendering%20728x90%20Thumbnails&llvl=2&id=6351&cv=20221102-9-RELEASE<=deflated&pct=1
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/forumotion-ar/log/2/debug?tim=12%3A37%3A52.865&type=info&msg=Finish%20Rendering%20728x90%20Thumbnails&llvl=2&id=6351&cv=20221102-9-RELEASE<=deflated&pct=1
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /forumotion-ar/log/2/debug?tim=12%3A37%3A52.865&type=info&msg=Finish%20Rendering%20728x90%20Thumbnails&llvl=2&id=6351&cv=20221102-9-RELEASE<=deflated&pct=1 HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Wed, 02 Nov 2022 12:37:53 GMT
x-fastly-to-nlb-rtt: 71667
access-control-allow-credentials: true
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//ettxf.com/content/cb3fff13-4128-45a9-a77f-f75bdd4a5b9c
151.101.85.44200 OK 2.4 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//ettxf.com/content/cb3fff13-4128-45a9-a77f-f75bdd4a5b9c
IP 151.101.85.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash b529c9300ba26cb0ee4c0d400be290cc
d79e6536234dadce2001ba6880a74a0e87f217de
cdecc3bb3d7f1917089d76c90a59adfab37f7ed7aa67ed30ef644dd6d4dd7717
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//ettxf.com/content/cb3fff13-4128-45a9-a77f-f75bdd4a5b9c HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 396924567895655108550938473729629480865,296870302051874402078780526775162453794,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 396924567895655108550938473729629480865,296870302051874402078780526775162453794,29ecf9b93bbf306179626feeda1fab70
etag: "cf9c6f0d1a67b654bd5c89957876ba61"
expiration: expiry-date="Sat, 22 Oct 2022 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Wed, 21 Sep 2022 04:09:39 GMT
req-referer: https://web.ultra-soccer.jp/
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 1263
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb204
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 02 Nov 2022 12:37:53 GMT
age: 2441675
x-served-by: cache-iad-kcgs7200024-IAD, cache-iad-kjyo7100125-IAD, cache-lax10680-LGB, cache-iad-kiad7000144-IAD, cache-bma1656-BMA
x-cache: MISS, MISS, MISS, MISS, HIT
x-cache-hits: 0, 0, 0, 0, 1
x-timer: S1667392673.080058,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//ettxf.com/content/cb3fff13-4128-45a9-a77f-f75bdd4a5b9c
x-vcl-time-ms: 1
content-length: 2438
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f70/18/12/20/13/uou10.jpg
151.101.85.44200 OK 3.5 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f70/18/12/20/13/uou10.jpg
IP 151.101.85.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4a3299cb7586f869a00ac4167422214d
b7e53376f5126117a41761438a9fd52bf9b94673
fcaf170f291e63740974aa27504628ff38e779a73dc066409ebdd02a853b8fd3
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f70/18/12/20/13/uou10.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 613669426550226744769788410621596759672,296870302051874402078780526775162453794,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 613669426550226744769788410621596759672,296870302051874402078780526775162453794,29ecf9b93bbf306179626feeda1fab70
etag: "d754fe306cb263ce5dcb98df06b1298b"
last-modified: Thu, 15 Sep 2022 07:08:25 GMT
req-referer: https://fcbarcelona2012.yoo7.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: c2e09d795ca1873e02d2fc5b901afa20
x-envoy-upstream-service-time: 443
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb202
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 02 Nov 2022 12:37:53 GMT
age: 2431128
x-served-by: cache-iad-kiad7000161-IAD, cache-iad-kjyo7100103-IAD, cache-bur-kbur8200038-BUR, cache-iad-kjyo7100132-IAD, cache-bma1656-BMA
x-cache: MISS, MISS, MISS, HIT, HIT
x-cache-hits: 0, 0, 0, 78, 1
x-timer: S1667392673.080026,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f70/18/12/20/13/uou10.jpg
x-vcl-time-ms: 1
content-length: 3522
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f37/14/77/75/59/wqaa2110.jpg
151.101.85.44200 OK 6.1 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f37/14/77/75/59/wqaa2110.jpg
IP 151.101.85.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 07fd4dbe3398c304d0f35152cf746c66
76e5894d2ffd7f64e7933c0c7258c89c7bcd8b38
008e55236e660e6f20d8c00a89a5548c029adb2152183c04abc05966663c1fa2
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f37/14/77/75/59/wqaa2110.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 549930644253185078118877309127813515040,296870302051874402078780526775162453794,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 549930644253185078118877309127813515040,296870302051874402078780526775162453794,29ecf9b93bbf306179626feeda1fab70
etag: "6f1203c90b97dcf0b96e1e1e0f119d05"
expiration: expiry-date="Sat, 29 Oct 2022 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Wed, 28 Sep 2022 11:20:00 GMT
req-referer: https://shork99.yoo7.com/
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 1154
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb202
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 02 Nov 2022 12:37:53 GMT
age: 1071534
x-served-by: cache-iad-kiad7000154-IAD, cache-iad-kjyo7100167-IAD, cache-sna10723-LGB, cache-iad-kiad7000030-IAD, cache-bma1656-BMA
x-cache: MISS, MISS, MISS, HIT, HIT
x-cache-hits: 0, 0, 0, 10, 1
x-timer: S1667392673.079983,VS0,VE1
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f37/14/77/75/59/wqaa2110.jpg
x-vcl-time-ms: 1
content-length: 6080
X-Firefox-Spdy: h2
cdn.betgorebysson.club/?rb=cGtIjdRBrLgBbRLv2uD0fyiiuk-dJTusRcmFUCpIfhjoOkoTr0zvMGP_LiuAEC_IGtQcWJNuuXG37gFzU7Sk-Kub8LhN3Djv7XSuA5BHtDp6fiawlBSQ3xrS7yNe76AQWz1rfonm0qYAqfND67_cBnXitBzLRuq88CtmNQrcsSb-O0kRO0U-IckKvt4vw6rCE7ro258hUMj1QGX6Er14U2972e3kIW5VnvtI_ydg-eE%3D&request_ab2=0&zoneid=3765907&js_build=iclick-v1.445.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1152&wh=921&cw=1140&wih=836&wiw=1152&wfc=6&pl=https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.445.0&bs=a3dbed75-1b6d-4b46-8de2-eac0e22117a8&userId=0c71203b6bce4ce68736bed2af0c2c5f&m=link
139.45.195.8200 OK 1.8 kB URL HTTP/2 cdn.betgorebysson.club/?rb=cGtIjdRBrLgBbRLv2uD0fyiiuk-dJTusRcmFUCpIfhjoOkoTr0zvMGP_LiuAEC_IGtQcWJNuuXG37gFzU7Sk-Kub8LhN3Djv7XSuA5BHtDp6fiawlBSQ3xrS7yNe76AQWz1rfonm0qYAqfND67_cBnXitBzLRuq88CtmNQrcsSb-O0kRO0U-IckKvt4vw6rCE7ro258hUMj1QGX6Er14U2972e3kIW5VnvtI_ydg-eE%3D&request_ab2=0&zoneid=3765907&js_build=iclick-v1.445.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1152&wh=921&cw=1140&wih=836&wiw=1152&wfc=6&pl=https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.445.0&bs=a3dbed75-1b6d-4b46-8de2-eac0e22117a8&userId=0c71203b6bce4ce68736bed2af0c2c5f&m=link
IP 139.45.195.8:0
File type JSON data\012- , ASCII text, with very long lines (2292), with no line terminators
Hash dd23a047d6d4543c0065f0b86cf115c6
75b160db5203aa33378bb0a056009b0c925281cf
a44c1c575ba09b7abd437b8cce89e3b42d382e8c640b2e5bb4f89110b66bc677
GET /?rb=cGtIjdRBrLgBbRLv2uD0fyiiuk-dJTusRcmFUCpIfhjoOkoTr0zvMGP_LiuAEC_IGtQcWJNuuXG37gFzU7Sk-Kub8LhN3Djv7XSuA5BHtDp6fiawlBSQ3xrS7yNe76AQWz1rfonm0qYAqfND67_cBnXitBzLRuq88CtmNQrcsSb-O0kRO0U-IckKvt4vw6rCE7ro258hUMj1QGX6Er14U2972e3kIW5VnvtI_ydg-eE%3D&request_ab2=0&zoneid=3765907&js_build=iclick-v1.445.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1152&wh=921&cw=1140&wih=836&wiw=1152&wfc=6&pl=https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.445.0&bs=a3dbed75-1b6d-4b46-8de2-eac0e22117a8&userId=0c71203b6bce4ce68736bed2af0c2c5f&m=link HTTP/1.1
Host: cdn.betgorebysson.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dzjeun.7olm.org/
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Cookie: OAID=0c71203b6bce4ce68736bed2af0c2c5f; oaidts=1667392672
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 12:37:53 GMT
content-type: application/json
x-trace-id: dbd8f2cf6d77816382077e4b67b25ac5
access-control-allow-origin: https://dzjeun.7olm.org
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=0c71203b6bce4ce68736bed2af0c2c5f; expires=Thu, 02 Nov 2023 12:37:53 GMT; path=/; secure; SameSite=None
oaidts=1667392673; expires=Thu, 02 Nov 2023 12:37:53 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Wed, 09 Nov 2022 12:37:53 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22ahlamontada%22%2C%22language%22%3A%22ar%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1667392672758%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=260cae9e37aa10312983bc987a01d3b9342e07bf
104.244.42.200200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22ahlamontada%22%2C%22language%22%3A%22ar%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1667392672758%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=260cae9e37aa10312983bc987a01d3b9342e07bf
IP 104.244.42.200:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22ahlamontada%22%2C%22language%22%3A%22ar%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1667392672758%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=260cae9e37aa10312983bc987a01d3b9342e07bf HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:52 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Wed, 02 Nov 2022 12:37:53 GMT
content-length: 43
x-transaction-id: 70cc982cc33c572c
strict-transport-security: max-age=631138519
x-response-time: 106
x-connection-hash: 7f5ec473bd2ad38a416074fee485e0b36bf5562eaec4a86cd7a4e10d91cb8c01
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f21/19/73/51/38/vente-10.jpg
151.101.85.44200 OK 8.1 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f21/19/73/51/38/vente-10.jpg
IP 151.101.85.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 679744ee01cd8f0e9d5bd3f97de9a1fd
b678d18309e35ff0e206ae0bbc0d7f57001406f4
fdf1eda67cab7bf239fe9d9d494cf0a204f403ebacc19e6828c2d20fda48175c
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f21/19/73/51/38/vente-10.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 352690306229506137798207407469809578240,296870302051874402078780526775162453794,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 352690306229506137798207407469809578240,296870302051874402078780526775162453794,29ecf9b93bbf306179626feeda1fab70
etag: "f48ef060a18c1a36e8e104736857c035"
last-modified: Tue, 04 Oct 2022 10:35:32 GMT
req-referer: https://halimb.yoo7.com/
status: 200 OK
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-request-id: 3dcfd34bb355296090bd85c052a57255
x-envoy-upstream-service-time: 428
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb203
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 02 Nov 2022 12:37:53 GMT
age: 1308421
x-served-by: cache-iad-kiad7000084-IAD, cache-iad-kiad7000031-IAD, cache-lax10655-LGB, cache-iad-kjyo7100055-IAD, cache-bma1656-BMA
x-cache: MISS, MISS, MISS, HIT, MISS
x-cache-hits: 0, 0, 0, 84, 0
x-timer: S1667392673.080009,VS0,VE99
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f21/19/73/51/38/vente-10.jpg
x-vcl-time-ms: 99
content-length: 8080
X-Firefox-Spdy: h2
images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f35/18/71/82/84/o10.jpg
151.101.85.44200 OK 4.8 kB URL HTTP/2 images.taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f35/18/71/82/84/o10.jpg
IP 151.101.85.44:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f9bca16f9c855e85b1ac58cb693e96ee
a6b4d41555af6bd5dfc5929739c7905b8ab5198e
f4aa750952d29d40435c5da241f9954ce0e3ef7050ff94238cbc54a52aab30be
GET /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f35/18/71/82/84/o10.jpg HTTP/1.1
Host: images.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/webp
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-tag: 306466372957551130704574454496854686602,296870302051874402078780526775162453794,29ecf9b93bbf306179626feeda1fab70
edge-cache-tag: 306466372957551130704574454496854686602,296870302051874402078780526775162453794,29ecf9b93bbf306179626feeda1fab70
etag: "4ee6cfc4c2425c8c53879450e5cff7d7"
expiration: expiry-date="Tue, 25 Oct 2022 00:00:00 GMT", rule-id="delete fetch for taboola after 30 days"
last-modified: Sat, 24 Sep 2022 10:53:26 GMT
req-referer: https://haouari.yoo7.com/
timing-allow-origin: *
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 94
x-backend-name: LA_DIR:3FP7YNX3LMizprTZsG7BSW--F_LA_nlb203
via: 1.1 varnish, 1.1 varnish
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 02 Nov 2022 12:37:53 GMT
age: 2335863
x-served-by: cache-iad-kcgs7200085-IAD, cache-iad-kjyo7100090-IAD, cache-lax10655-LGB, cache-iad-kjyo7100163-IAD, cache-bma1656-BMA
x-cache: HIT, HIT, MISS, HIT, MISS
x-cache-hits: 1, 1, 0, 35, 0
x-timer: S1667392673.079989,VS0,VE100
vary: ImageFormat
x-debug: /taboola/image/fetch/f_jpg%2Cq_auto%2Ch_150%2Cw_180%2Cc_fill%2Cg_faces:auto%2Ce_sharpen/https%3A//i.servimg.com/u/f35/18/71/82/84/o10.jpg
x-vcl-time-ms: 100
content-length: 4826
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 5758e82c22596a29631328c053dc02ca
6a92afa7368213909807f655561812c0710465df
da0f73329e6f9ec197aea95afe665d2f18443f4ad178a348a48e1c0f496e2ff7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 12:37:53 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 01 Nov 2022 01:33:16 GMT
Expires: Tue, 08 Nov 2022 01:33:15 GMT
Etag: "6a92afa7368213909807f655561812c0710465df"
Cache-Control: max-age=477921,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 763cec8f6c1e0b59-OSL
datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
139.45.195.253200 OK 12 B URL HTTP/1.1 datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 139.45.195.253:0
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert quad9 Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 895
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Wed, 02 Nov 2022 12:37:53 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://dzjeun.7olm.org
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
api.viglink.com/api/domains
52.31.71.92200 OK 42 B URL HTTP/1.1 api.viglink.com/api/domains
IP 52.31.71.92:0
File type ASCII text, with no line terminators
Hash 0c65c9c81fa0a02cfb2c49929a882ade
2e9dfdd396cfa4311b4343c0fec8d7c89d1b8d23
07d5f423acb96d3088753257c158589d18df7716ae8e724f2f58684ae63b9420
POST /api/domains HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 190
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://dzjeun.7olm.org
Cache-Control: no-cache, no-store
Content-Type: text/javascript;charset=UTF-8
Date: Wed, 02 Nov 2022 12:37:53 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Pragma: no-cache
Server: Apache-Coyote/1.1
Content-Length: 42
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 06831eea6d68f1a316da404e0f34e25d
95ded84170a53b5648a5c049abf5ed93042336db
de06e416f3093731b7d275bd31099ac52f1b5592adeae304506c8b0f1f086304
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 573
Cache-Control: max-age=97015
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 12:37:53 GMT
Etag: "63613a5b-139"
Expires: Thu, 03 Nov 2022 15:34:48 GMT
Last-Modified: Tue, 01 Nov 2022 15:25:15 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 313
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:53 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png
151.101.85.44200 OK 254 B URL HTTP/2 cdn.taboola.com/libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png
IP 151.101.85.44:0
File type PNG image data, 12 x 12, 8-bit gray+alpha, non-interlaced\012- data
Hash dfa7b52c86e56bd67fa4002f6ed19854
7df722645482433c2b5c8d8ab4272a9874592f27
f68019eb4b4e5933301d4ee75969e0cb94ed8333bf514630fa749eb9c3e483c9
GET /libtrc/static/thumbnails/f539211219b796ffbb49949997c764f0.png HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: c3AK0F63Rmz1U+ZkwDZRH6hJiJRTGpZB8kTBPWz0vwbg9siBxtMOH8aEqr1NtVeNHtLhLAVUR9E=
x-amz-request-id: 4JKSR0YA3KVH073N
x-amz-replication-status: COMPLETED
last-modified: Wed, 24 Jun 2015 07:14:11 GMT
etag: "dfa7b52c86e56bd67fa4002f6ed19854"
x-amz-meta-s3cmd-attrs: uid:0/gname:root/uname:root/gid:0/mode:33188/mtime:1377415166/atime:1435052450/md5:dfa7b52c86e56bd67fa4002f6ed19854/ctime:1422381567
x-amz-version-id: hL.cyLD7Q4TL5ceY.7JQwF9m5IYI8mkC
content-type: image/png
server: AmazonS3
accept-ranges: bytes
date: Wed, 02 Nov 2022 12:37:53 GMT
via: 1.1 varnish
age: 18364
x-served-by: cache-bma1656-BMA
x-cache: HIT
x-cache-hits: 2367
x-timer: S1667392674.911482,VS0,VE0
cache-control: private,max-age=31536000
abp: 2
content-length: 254
X-Firefox-Spdy: h2
trc.taboola.com/forumotion-ar/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=2
151.101.85.44204 No Content 0 B URL HTTP/2 trc.taboola.com/forumotion-ar/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=2
IP 151.101.85.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /forumotion-ar/log/3/bulk?route=AM%3AIL%3AV<i=deflated&bulkSize=2 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 3778
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://dzjeun.7olm.org
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Wed, 02 Nov 2022 12:37:54 GMT
via: 1.1 varnish
x-served-by: cache-bma1656-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1667392674.945204,VS0,VE91
x-vcl-time-ms: 91
X-Firefox-Spdy: h2
cdn.taboola.com/scripts/cds-pips.js
151.101.85.44200 OK 1.3 kB URL HTTP/2 cdn.taboola.com/scripts/cds-pips.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (3545), with no line terminators
Hash 780c5c514014519ce276709f515905a0
04fe86d00b9c9077effe05171d066d243ecab221
015db06150b62ad2ad533883652174ebb6f07e24a7147fdac01a0ccd266e3f30
GET /scripts/cds-pips.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 2KBeU0d7OyPXtZDYUoIqlTBmhGhsve90tjYoemCxISjKQrNgcxT28sPXVt5KfJt+6r7dFoJgA8g=
x-amz-request-id: NFWGDQGY1WQ95XHE
x-amz-replication-status: COMPLETED
last-modified: Wed, 12 Oct 2022 13:57:57 GMT
etag: "383fa66d2a0a09f4a6e64a9593ad43bb"
x-amz-version-id: z5FoayaLm_Bvew3pbkytkoHczFCvkPwT
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Wed, 02 Nov 2022 12:37:54 GMT
via: 1.1 varnish
age: 2168
x-served-by: cache-bma1656-BMA
x-cache: HIT
x-cache-hits: 2510
x-timer: S1667392675.606491,VS0,VE0
vary: Accept-Encoding
abp: 2
cache-control: private, max-age=3600
content-length: 1340
X-Firefox-Spdy: h2
pips.taboola.com/
151.101.85.44200 OK 4 B IP 151.101.85.44:0
File type ASCII text, with no line terminators
Hash 6c3e226b4d4795d518ab341b0824ec29
eef19c54306daa69eda49c0272623bdb5e2b341f
fb329000228cc5a24c264c57139de8bf854fc86fc18bf1c04ab61a2b5cb4b921
GET / HTTP/1.1
Host: pips.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
access-control-allow-methods: GET
access-control-allow-origin: https://dzjeun.7olm.org
accept-ranges: bytes
date: Wed, 02 Nov 2022 12:37:54 GMT
via: 1.1 varnish
x-served-by: cache-bma1662-BMA
x-cache: HIT
x-cache-hits: 0
cache-control: no-store
content-length: 4
X-Firefox-Spdy: h2
stootsou.net/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dzjeun.7olm.org/
Content-Type: application/json
Origin: https://dzjeun.7olm.org
Content-Length: 384
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 12:37:59 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: fb4c2e5c06c4b5647a05550b66e412a7
access-control-allow-origin: https://dzjeun.7olm.org
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?pub=0&userId=a29093f51f5c4675b5deee20ae18e49a&zoneId=2308013&checkDuplicate=true&ymid=&var=
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?pub=0&userId=a29093f51f5c4675b5deee20ae18e49a&zoneId=2308013&checkDuplicate=true&ymid=&var=
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash d2b88b048dee0f68e9fa398b76627c13
d1b8657a0952a0e7b6bf96e0e43795fd731ca0d0
893346b5b8ed9ed9972ebf0a83d5a3c3de31aa788266dd793aee51320f925acb
GET /gid.js?pub=0&userId=a29093f51f5c4675b5deee20ae18e49a&zoneId=2308013&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dzjeun.7olm.org/
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Cookie: ID=0c71203b6bce4ce68736bed2af0c2c5f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 12:37:59 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://dzjeun.7olm.org
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=0c71203b6bce4ce68736bed2af0c2c5f; expires=Thu, 02 Nov 2023 12:37:59 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 659602
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=rtus&topUrl=dzjeun.7olm.org
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=dzjeun.7olm.org
IP 178.250.0.157:0
GET /syncframe?origin=rtus&topUrl=dzjeun.7olm.org HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=721123a3-c3e9-43a0-902e-44f212b9e211; expires=Mon, 27 Nov 2023 12:37:51 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 648697
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
dzjeun.7olm.org/sw.js
178.33.115.32200 OK 0 B IP 178.33.115.32:0
GET /sw.js HTTP/1.1
Host: dzjeun.7olm.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dzjeun.7olm.org/t91-topic
Connection: keep-alive
Cookie: exadd=166740; _fa-screen=%7B%22w%22%3A1152%2C%22h%22%3A836%7D; _ga=GA1.2.1483870088.1667392672; _gid=GA1.2.36785933.1667392672; _gat_gtag_UA_144347007_1=1; cto_bundle=2I0UlF9EQ0F4NDlPbFVyQUUlMkY5SExQc0c1cUNtZlppbUpiYm5HNDhScHJxMlk2RlZQVCUyQkMlMkJUZVBHNkRsNVh5MUhPaThLRWh1VDZ0Vkk5V3dQRTdwVm9HOGtBcVFFVFFsViUyRlk3RSUyRiUyQkl5ZnJaUlZkdG41QXIlMkIlMkJYYzVtU2hMS3IzUHA1T1c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:52 GMT
content-type: application/javascript
last-modified: Tue, 27 Aug 2019 13:54:01 GMT
etag: W/"5d6535f9-1554"
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
dc09.arabsh.com/i/02873/u91ge1zcyak6.jpg
172.67.218.33301 Moved Permanently 0 B URL HTTP/2 dc09.arabsh.com/i/02873/u91ge1zcyak6.jpg
IP 172.67.218.33:0
GET /i/02873/u91ge1zcyak6.jpg HTTP/1.1
Host: dc09.arabsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Wed, 02 Nov 2022 12:37:51 GMT
location: https://arabsh.com
cache-control: max-age=3600
expires: Wed, 02 Nov 2022 13:37:51 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DI%2B0YSQ9Nz54Ihjk%2BSlEyhKSVDulHXrb06JJB9O7E21IOH%2FM8o36zI2%2B7z5VoWIJzFKnkivKEoY91zqSgGI5DpZoFQ57ZiSm6NDypITa2DZ03qPwAeL688ZzqZzjs2yjVMY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec845ab8fac8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
illiweb.com/rs3/63/frm/embed/FA_Embed.js
104.21.63.213200 OK 0 B URL HTTP/2 illiweb.com/rs3/63/frm/embed/FA_Embed.js
IP 104.21.63.213:0
GET /rs3/63/frm/embed/FA_Embed.js HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:50 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
expires: Fri, 08 Sep 2023 08:06:07 GMT
last-modified: Tue, 20 Apr 2021 14:17:00 GMT
x-cache-ne: HIT
x-cache-pr: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 4768302
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zh58bDBVA6YDbEj6GDTo%2BQFajaSbVJvMPltQTvmKjuh%2FioNoCDD0eTd8Ge65h53Kfo5FonVY5ibmyDohzWlXBlFp0H5vUbn11nMct2ttrR0ZHyaq65lRg8yuKkHWRw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec816c48b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
twemoji.maxcdn.com/twemoji.min.js
23.111.9.57200 OK 0 B URL HTTP/2 twemoji.maxcdn.com/twemoji.min.js
IP 23.111.9.57:0
GET /twemoji.min.js HTTP/1.1
Host: twemoji.maxcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:50 GMT
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 31 Mar 2022 03:24:15 GMT
access-control-allow-origin: *
etag: W/"62451edf-3bc8"
expires: Fri, 02 Dec 2022 12:37:50 GMT
cache-control: max-age=2592000
x-proxy-cache: MISS
x-github-request-id: E042:8430:27CD466:2922CEC:63616F0B
vary: Accept-Encoding
x-fastly-request-id: b5d54b17e716d87112ad9a589df488796482241e
server: NetDNA-cache/2.2
powered-by: MaxCDN
x-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
104.21.84.149200 OK 0 B IP 104.21.84.149:0
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:52 GMT
content-type: application/javascript
last-modified: Tue, 18 Oct 2022 14:05:58 GMT
etag: W/"634eb2c6-32d9"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 4568
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eR0gjdecU2bgbjZDCvF7c3eHEYPxb1IStiVDDtm8GUuaK0Ttgo2Vf3SunoGykEUW830IyphKNPpQcxufpMDePf8aCStWzsxjB9oayHdCFYT%2FjsbxW29wJ6I4dBAyww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec8dadcb1c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dzjeun.7olm.org/t91-topic
178.33.115.32200 OK 0 B URL HTTP/2 dzjeun.7olm.org/t91-topic
IP 178.33.115.32:0
GET /t91-topic HTTP/1.1
Host: dzjeun.7olm.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:50 GMT
content-type: text/html; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-cache
pragma: no-cache
expires: Wed, 02 Nov 2022 00:00:00 GMT
last-modified: Wed, 02 Nov 2022 12:37:50 GMT
vary: User-Agent
set-cookie: exadd=166740; expires=Wed, 02-Nov-2022 16:37:50 GMT; Max-Age=14400
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
illiweb.com/rs3/63/frm/ograph/fb_login.js
104.21.63.213200 OK 0 B URL HTTP/2 illiweb.com/rs3/63/frm/ograph/fb_login.js
IP 104.21.63.213:0
GET /rs3/63/frm/ograph/fb_login.js HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:50 GMT
content-type: application/x-javascript
cache-control: max-age=31536000
cf-bgj: minify
access-control-allow-origin: *
expires: Fri, 08 Sep 2023 08:07:11 GMT
last-modified: Tue, 27 Aug 2019 14:00:11 GMT
x-cache-ne: EXPIRED
x-cache-pr: EXPIRED
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 4768239
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hm1C5gqbw2fBUJQdihaz2elgAjx%2FghaeDgj2O70Vbf9QjjkgZVSA64oviXigDA9aG5nvXDtCXxfnS44n6gouSL4XWqKoPDte%2B89faSGUIQYgT80AoT5S2gcEgnf83g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec80ab44b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
illiweb.com/rs3/63/frm/jquery/marquee/jquery.marquee.min.js
104.21.63.213200 OK 0 B URL HTTP/2 illiweb.com/rs3/63/frm/jquery/marquee/jquery.marquee.min.js
IP 104.21.63.213:0
GET /rs3/63/frm/jquery/marquee/jquery.marquee.min.js HTTP/1.1
Host: illiweb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:50 GMT
content-type: application/x-javascript
last-modified: Tue, 27 Aug 2019 14:00:14 GMT
expires: Fri, 08 Sep 2023 08:06:37 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
x-cache-ne: EXPIRED
x-cache-pr: EXPIRED
cf-cache-status: HIT
age: 4768273
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RrExObuWDouishUojt8I2L00NbzN1zrYgFXgABCJ%2BeO3rTrZF8OA0cZMuAdDLuObx4aMKNVxi1Id%2B56MGlj5x8tS1cfV2YKtHh08JRaxZ90y0x3914GkzJRkJd0mhw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 763cec80db86b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=publishertag&topUrl=dzjeun.7olm.org
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?origin=publishertag&topUrl=dzjeun.7olm.org
IP 178.250.0.157:0
GET /syncframe?origin=publishertag&topUrl=dzjeun.7olm.org HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:50 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=1831dfc5-0bb7-47c2-9aca-00ad7ee09db4; expires=Mon, 27 Nov 2023 12:37:50 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 629871
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=0PbyLl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czNOSzVYRExGaEI4TWgzWiUyQmFqbnEyQ05aekdUR2QlMkJka2ZrdDBBOUE4WUVZ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:52 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=o_CZmV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czNOSzVYRExGaEI4TWgzWiUyQmFqbnEyREdoOVZGQ2dNVjczek5tJTJGUER3bllK; expires=Mon, 27 Nov 2023 12:37:52 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 326639
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
trc.taboola.com/forumotion-ar/trc/3/json?tim=12%3A37%3A51.925<i=deflated&data=%7B%22id%22%3A463%2C%22ii%22%3A%22%2Ft91-topic%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1667384987186%2C%22vi%22%3A1667392671920%2C%22cv%22%3A%2220221102-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic%22%2C%22vpi%22%3A%22%2Ft91-topic%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1024%2C%22bw%22%3A1152%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A836%2C%22dw%22%3A1140%2C%22dh%22%3A5067%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A1%2C%22uim%22%3A%22thumbnails-728x90%3Aabp%3D0%22%2C%22uip%22%3A%22728x90%20Thumbnails%22%2C%22orig_uip%22%3A%22728x90%20Thumbnails%22%2C%22cd%22%3A551.4000244140625%2C%22mw%22%3A0%7D%2C%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A5%2C%22uim%22%3A%22thumbnails-desktop-a%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22cd%22%3A4916.39990234375%2C%22mw%22%3A728%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Ft91-topic%2C728x90%20Thumbnails%3Dthumbnails-728x90%3Aabp%3D0%2C%2CBelow%20Desktop%20Forum%20Thumbnails%3Dthumbnails-desktop-a%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2
151.101.85.44200 OK 0 B URL HTTP/2 trc.taboola.com/forumotion-ar/trc/3/json?tim=12%3A37%3A51.925<i=deflated&data=%7B%22id%22%3A463%2C%22ii%22%3A%22%2Ft91-topic%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1667384987186%2C%22vi%22%3A1667392671920%2C%22cv%22%3A%2220221102-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic%22%2C%22vpi%22%3A%22%2Ft91-topic%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1024%2C%22bw%22%3A1152%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A836%2C%22dw%22%3A1140%2C%22dh%22%3A5067%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A1%2C%22uim%22%3A%22thumbnails-728x90%3Aabp%3D0%22%2C%22uip%22%3A%22728x90%20Thumbnails%22%2C%22orig_uip%22%3A%22728x90%20Thumbnails%22%2C%22cd%22%3A551.4000244140625%2C%22mw%22%3A0%7D%2C%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A5%2C%22uim%22%3A%22thumbnails-desktop-a%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22cd%22%3A4916.39990234375%2C%22mw%22%3A728%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Ft91-topic%2C728x90%20Thumbnails%3Dthumbnails-728x90%3Aabp%3D0%2C%2CBelow%20Desktop%20Forum%20Thumbnails%3Dthumbnails-desktop-a%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2
IP 151.101.85.44:0
GET /forumotion-ar/trc/3/json?tim=12%3A37%3A51.925<i=deflated&data=%7B%22id%22%3A463%2C%22ii%22%3A%22%2Ft91-topic%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1667384987186%2C%22vi%22%3A1667392671920%2C%22cv%22%3A%2220221102-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic%22%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22https%3A%2F%2Fdzjeun.7olm.org%2Ft91-topic%22%2C%22vpi%22%3A%22%2Ft91-topic%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1024%2C%22bw%22%3A1152%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A836%2C%22dw%22%3A1140%2C%22dh%22%3A5067%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A1%2C%22uim%22%3A%22thumbnails-728x90%3Aabp%3D0%22%2C%22uip%22%3A%22728x90%20Thumbnails%22%2C%22orig_uip%22%3A%22728x90%20Thumbnails%22%2C%22cd%22%3A551.4000244140625%2C%22mw%22%3A0%7D%2C%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A5%2C%22uim%22%3A%22thumbnails-desktop-a%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Desktop%20Forum%20Thumbnails%22%2C%22cd%22%3A4916.39990234375%2C%22mw%22%3A728%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Ft91-topic%2C728x90%20Thumbnails%3Dthumbnails-728x90%3Aabp%3D0%2C%2CBelow%20Desktop%20Forum%20Thumbnails%3Dthumbnails-desktop-a%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Referer: https://dzjeun.7olm.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://dzjeun.7olm.org
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Wed, 02 Nov 2022 12:37:52 GMT
via: 1.1 varnish
x-served-by: cache-bma1656-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1667392672.038122,VS0,VE473
vary: Accept-Encoding
x-vcl-time-ms: 473
X-Firefox-Spdy: h2
dzjeun.7olm.org/?utm_source=pwa
178.33.115.32200 OK 0 B URL HTTP/2 dzjeun.7olm.org/?utm_source=pwa
IP 178.33.115.32:0
GET /?utm_source=pwa HTTP/1.1
Host: dzjeun.7olm.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dzjeun.7olm.org/serviceworker.js
Connection: keep-alive
Cookie: exadd=166740; _fa-screen=%7B%22w%22%3A1152%2C%22h%22%3A836%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: text/html; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
cache-control: no-cache, no-store
pragma: no-cache
expires: Wed, 02 Nov 2022 00:00:00 GMT
last-modified: Wed, 02 Nov 2022 12:37:51 GMT
vary: User-Agent
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
stootsou.net/pfe/current/universal.min.js?v=3.1.401
139.45.197.250200 OK 0 B URL HTTP/2 stootsou.net/pfe/current/universal.min.js?v=3.1.401
IP 139.45.197.250:0
GET /pfe/current/universal.min.js?v=3.1.401 HTTP/1.1
Host: stootsou.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dzjeun.7olm.org/
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 12:37:51 GMT
content-type: application/javascript
last-modified: Tue, 25 Oct 2022 09:56:56 GMT
etag: W/"6357b2e8-17e24"
access-control-allow-origin: https://dzjeun.7olm.org
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dzjeun.7olm.org/
x-crto-bundle: AbpX_l9penRaJTJCNVpFZm8wdVlwcnh0eHkzS1lLYTQ0Mll6Q256RkVuZ3VOZFAlMkJ6M2dOS255cE1iVFJ3YmJWM1dXQmxueWluUEVVSCUyQjRrbnR6cTRkV3NLNXglMkYlMkI2RllXZXNZUGdsYld4NDklMkZzS2lEWDgxc0lNWUJJemlVOWtCWUdaY3FRUQ
Origin: https://dzjeun.7olm.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 12:37:52 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://dzjeun.7olm.org
server-processing-duration-in-ticks: 2499597
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2