r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6716f88f982aa553eaf5de31b2629224
97ab757b0a059027ffb04675114e5c55738fccaf
06af9ae9fc72a3aeb4be2b742128a0cb8ea4aff348afe2e4490d3639b3b377d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "06AF9AE9FC72A3AEB4BE2B742128A0CB8EA4AFF348AFE2E4490D3639B3B377D9"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6235
Expires: Thu, 15 Sep 2022 05:16:52 GMT
Date: Thu, 15 Sep 2022 03:32:57 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 15 Sep 2022 03:10:14 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: eL-d99_amqIySMIIM6tUBLLKN0Icynt5OQ9V2ocLg-NhpFi__h3rug==
Age: 1363
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 14 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: muce8bI7dq90g9UlhX_3ty8b25ikRAAPXQKF8ZCQ_WDNTi5HGEWY4A==
age: 82662
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 03:32:57 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
rodrigosopadeletrinha.blogspot.com/2012/11/lei-da-copa.html
142.250.74.161301 Moved Permanently 203 B URL HTTP/1.1 rodrigosopadeletrinha.blogspot.com/2012/11/lei-da-copa.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 3b637ae192d31ce091764ee7365dc04c
98c09c3f9c23b7bcb27e6bf509be94846e496c0d
682f3d6d765fb0c45bebfa8aacf9e821a20ddd3a0165bfd5cf06c9576de82a26
Analyzer Verdict Alert fortinet Phishing
GET /2012/11/lei-da-copa.html HTTP/1.1
Host: rodrigosopadeletrinha.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://rodrigosopadeletrinha.blogspot.com/2012/11/lei-da-copa.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Thu, 15 Sep 2022 03:32:57 GMT
Expires: Thu, 15 Sep 2022 03:32:57 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 203
Server: GSE
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 15 Sep 2022 03:03:22 GMT
Cache-Control: max-age=3600
Expires: Thu, 15 Sep 2022 03:47:38 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kUzhRrjs28LwMFZFp4JWw9PjPTFeK0eK65mScgvwtFo9ODMgwVlJfg==
Age: 1776
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3e7c231d1e169fca3f9ba4685bd2fa09
791c6fa9b210350fbd1f60e4145434f318ac02b5
3b9b901b2fa5a93108f146590b4aaa60886e893ebdcb254fc911a17480afef44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3ac56507d17ffff5e8b486406985d68
17d26336cd8ea65af3f23db166945f1b3fbbfbab
e7e321340eed681c1269f715b0214e1511d5762fffbe930e7c157b800afa9a39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4381
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:58 GMT
Last-Modified: Thu, 15 Sep 2022 02:19:57 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.164.47.107101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.47.107:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3tmNUNsNeSKtu72KbCrXfQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: aJDsrZFXG+nBOZTEMKrQ6Oy2Ouw=
rodrigosopadeletrinha.blogspot.com/2012/11/lei-da-copa.html
142.250.74.161200 OK 17 kB URL HTTP/2 rodrigosopadeletrinha.blogspot.com/2012/11/lei-da-copa.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4937)
Hash 845cbd37b9286b0dc29150cad0269c5c
81de170401ffad2b3746163fe3e01b07c49c5cc7
7274853ff47371b1845f323516e17075d6ac010e5812d4ae938ef7517b0aa850
Analyzer Verdict Alert fortinet Phishing
GET /2012/11/lei-da-copa.html HTTP/1.1
Host: rodrigosopadeletrinha.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Thu, 15 Sep 2022 03:32:58 GMT
date: Thu, 15 Sep 2022 03:32:58 GMT
cache-control: private, max-age=0
last-modified: Tue, 21 Dec 2021 00:04:39 GMT
etag: W/"faa701d4bd5deff99519591d15a559ea28f49ab441a77c6556e2a4fb9d0ebbfa"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 16817
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3e7c231d1e169fca3f9ba4685bd2fa09
791c6fa9b210350fbd1f60e4145434f318ac02b5
3b9b901b2fa5a93108f146590b4aaa60886e893ebdcb254fc911a17480afef44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ee256b7ce0ba8310b3bbe239218b7a69
f14ff579194c66806637e7054eb4a59bc9bb4893
45a741224496e9f3c0abf3f3fb12e445054a92bf040a68c8838aec67d0f0131c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.201200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.201:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 06:04:30 GMT
expires: Fri, 08 Sep 2023 06:04:30 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Sep 2022 10:56:11 GMT
content-type: text/css
age: 595709
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
code.jquery.com/jquery-1.6.2.min.js
69.16.175.42200 OK 32 kB URL HTTP/2 code.jquery.com/jquery-1.6.2.min.js
IP 69.16.175.42:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32764)
Hash 86ae1ea4da012caf06dbcfa9e32001ea
4f6fce62c94fc50d0529a09d5f84a277c64fa0a1
60c3705049a05d3543b2ecf5ccd9516d338322b38f2a9b006eda24189db1afc3
GET /jquery-1.6.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 03:32:59 GMT
content-encoding: gzip
content-length: 32049
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-165a4"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1663212779.dop072.sk1.t,1663212779.cds249.sk1.hn,1663212779.cds248.sk1.c
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 62c4df88fc2f69e10d2d54c660fe2c99
a032bfd92c236fe0091a69584b379d9a79f37df5
d2c5f5dc986c5890515f14942563bea72cd106b66d2f01bc7c2432378272075a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3004
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Last-Modified: Thu, 15 Sep 2022 02:42:55 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
www.blogger.com/static/v1/widgets/3753684042-widgets.js
216.58.207.201200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/3753684042-widgets.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (2221)
Hash 9310029f33929201831992bd74c13953
092fc9b60b0fcc7e24b80eb89f40178e91effb98
ed0ad17efb3c922e7bc8feffa0a5718d2ad226c44f2bb183b6ad163684f3b982
GET /static/v1/widgets/3753684042-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 57039
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 01:53:41 GMT
expires: Fri, 15 Sep 2023 01:53:41 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 08 Sep 2022 20:54:17 GMT
content-type: text/javascript
age: 5958
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c86fc6649c7c512abb52fcd62d51ee26
bf241d6c1779668447df444a239d715b6ed46f6d
822cb499ea058f2c40ce4942048528575fadc172d3669007f5f34fae41c7ea49
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 62c4df88fc2f69e10d2d54c660fe2c99
a032bfd92c236fe0091a69584b379d9a79f37df5
d2c5f5dc986c5890515f14942563bea72cd106b66d2f01bc7c2432378272075a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3004
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Last-Modified: Thu, 15 Sep 2022 02:42:55 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
www.blogger.com/static/v1/jsbin/3262169375-comment_from_post_iframe.js
216.58.207.201200 OK 6.5 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3262169375-comment_from_post_iframe.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (1264)
Hash 30af015884191ce4fe52ce1e707baed9
faa1418efa036704d31eb90f4fbd82de456b81b7
0456cf81299c957c8e54dabb00b4d6d96b76be729b1e112d478b34ba56d8059d
GET /static/v1/jsbin/3262169375-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6499
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 14:54:37 GMT
expires: Sat, 09 Sep 2023 14:54:37 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 08 Sep 2022 15:01:24 GMT
content-type: text/javascript
age: 477502
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s7.addthis.com/js/250/addthis_widget.js
23.38.200.123200 OK 116 kB URL HTTP/2 s7.addthis.com/js/250/addthis_widget.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (54602)
Size 116 kB (116397 bytes)
Hash ab5316902b2331dd2955fa1f46076602
d60979fcbecaf6635ad72347c15a3f1af2c142b1
2d70f3bc72aebbbef72f22141bb174cf948084415815d498cdecf9bc0ab458b7
GET /js/250/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-type: application/javascript
content-encoding: gzip
content-length: 116397
date: Thu, 15 Sep 2022 03:32:59 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 62c4df88fc2f69e10d2d54c660fe2c99
a032bfd92c236fe0091a69584b379d9a79f37df5
d2c5f5dc986c5890515f14942563bea72cd106b66d2f01bc7c2432378272075a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3004
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Last-Modified: Thu, 15 Sep 2022 02:42:55 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ee256b7ce0ba8310b3bbe239218b7a69
f14ff579194c66806637e7054eb4a59bc9bb4893
45a741224496e9f3c0abf3f3fb12e445054a92bf040a68c8838aec67d0f0131c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 74cf77ca0dd7e4f96dfea6ceb4536e65
fa0492bed3fa3b15cc0380e3692320088aa7b217
94f64669694fa90640f8ee8c22f1cb792166c18bab72200a991bc6eaf8f09453
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4770
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Last-Modified: Thu, 15 Sep 2022 02:13:29 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0dfd060e0fb8dec42e8f52f8db247b61
d6f33b6390aa9a4b34375d58009977926bc1fff3
17e3d9698e2cd4caf0cbf66b71393b473300fb9a8a4b6f7b97f421e93d54ec44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 62c4df88fc2f69e10d2d54c660fe2c99
a032bfd92c236fe0091a69584b379d9a79f37df5
d2c5f5dc986c5890515f14942563bea72cd106b66d2f01bc7c2432378272075a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2648
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Last-Modified: Thu, 15 Sep 2022 02:48:51 GMT
Server: ECS (amb/6B8F)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3a1cecf88463021fe38a911a9e70c043
741d8825454d383b3fa132a914f2063fe9f88804
fba5761d10394a42938c346b7f9814704692e61f59aae39ba077419905f78ce4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.ggpht.com/_pt7i0nbIOCY/SWwj8KhadjI/AAAAAAAAA2A/GNyl8VBie3o/Spain_thumb%5B1%5D.png?imgmax=800
142.250.74.161200 OK 791 B URL HTTP/2 lh3.ggpht.com/_pt7i0nbIOCY/SWwj8KhadjI/AAAAAAAAA2A/GNyl8VBie3o/Spain_thumb%5B1%5D.png?imgmax=800
IP 142.250.74.161:0
File type PNG image data, 22 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 2eb8325f327c2ed23ec4fd4439290195
5abe4c7aa26d0653daba3634dbc9692f43ec912b
dd07b8c2e703596c3682352d4e71af7f7c4a17320f5110b9c4367b5f266ee2c2
GET /_pt7i0nbIOCY/SWwj8KhadjI/AAAAAAAAA2A/GNyl8VBie3o/Spain_thumb%5B1%5D.png?imgmax=800 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="Spain_thumb[1].png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 791
x-xss-protection: 0
date: Thu, 15 Sep 2022 01:34:17 GMT
expires: Wed, 19 Jan 2022 14:25:15 GMT
cache-control: public, max-age=86400, no-transform
age: 7122
etag: "v360"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0dfd060e0fb8dec42e8f52f8db247b61
d6f33b6390aa9a4b34375d58009977926bc1fff3
17e3d9698e2cd4caf0cbf66b71393b473300fb9a8a4b6f7b97f421e93d54ec44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.ggpht.com/_pt7i0nbIOCY/SWwj1AdOWZI/AAAAAAAAA1w/lWUkGNrOFYo/French_thumb%5B5%5D.png?imgmax=800
142.250.74.161200 OK 700 B URL HTTP/2 lh3.ggpht.com/_pt7i0nbIOCY/SWwj1AdOWZI/AAAAAAAAA1w/lWUkGNrOFYo/French_thumb%5B5%5D.png?imgmax=800
IP 142.250.74.161:0
File type PNG image data, 22 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e71fb9f590d17bc01a037665c938aad
836ce773a900c45a5deeadd6a89243708b89edd1
d5b8240a825f6170eb4a3cb6102ee2bb0431f7cd6103acd4fba7069f622ae38f
GET /_pt7i0nbIOCY/SWwj1AdOWZI/AAAAAAAAA1w/lWUkGNrOFYo/French_thumb%5B5%5D.png?imgmax=800 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="French_thumb[5].png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 700
x-xss-protection: 0
date: Thu, 15 Sep 2022 01:34:17 GMT
expires: Wed, 17 Nov 2021 18:20:10 GMT
cache-control: public, max-age=86400, no-transform
age: 7122
etag: "v35c"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6971ad04397ebe0a117d03ae5c1de8c5
5179eab2d14b4c8c52c00fd6bf2953fb98ad5b8f
97a64e5b9bf5e3e347b23e4bbf41aa0fe6ffd379d50b379770f5c7347e6bb248
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.ggpht.com/_pt7i0nbIOCY/SWwj-14HeyI/AAAAAAAAA2I/TN52dIqkO9Q/Italian_thumb%5B1%5D.png?imgmax=800
142.250.74.161200 OK 702 B URL HTTP/2 lh3.ggpht.com/_pt7i0nbIOCY/SWwj-14HeyI/AAAAAAAAA2I/TN52dIqkO9Q/Italian_thumb%5B1%5D.png?imgmax=800
IP 142.250.74.161:0
File type PNG image data, 22 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash c5cd6e889ff21c76bd7f0340834416e3
5cb1b0fc90b92600d490dac1415b87e67b1e1244
ba11525184905f63e5c638820db519b70c24261d98d24f208129c679164c775f
GET /_pt7i0nbIOCY/SWwj-14HeyI/AAAAAAAAA2I/TN52dIqkO9Q/Italian_thumb%5B1%5D.png?imgmax=800 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="Italian_thumb[1].png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 702
x-xss-protection: 0
date: Thu, 15 Sep 2022 01:34:17 GMT
expires: Tue, 08 Mar 2022 09:25:55 GMT
cache-control: public, max-age=86400, no-transform
age: 7122
etag: "v362"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c86fc6649c7c512abb52fcd62d51ee26
bf241d6c1779668447df444a239d715b6ed46f6d
822cb499ea058f2c40ce4942048528575fadc172d3669007f5f34fae41c7ea49
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/show_ads.js
142.250.74.98200 OK 41 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/show_ads.js
IP 142.250.74.98:0
File type ASCII text, with very long lines (2535)
Hash cc4154d318e25a899bc821756d92e168
e9a2147d68c00ccab285348cd74b66460e2c1c82
8f17c7bdf1494385c5f726fdce406146d39c778c6552b58790f03eee0a097817
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 15 Sep 2022 03:32:59 GMT
expires: Thu, 15 Sep 2022 03:32:59 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 6040536022130364941
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 40670
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3a1cecf88463021fe38a911a9e70c043
741d8825454d383b3fa132a914f2063fe9f88804
fba5761d10394a42938c346b7f9814704692e61f59aae39ba077419905f78ce4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/pt_BR/all.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/pt_BR/all.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1961)
Hash 9e8e7d5ff96a59ec4fbff9d1a502e6e1
71357b91b3ce44d582ddaf3c569ad93d06a0822f
28a487c583a086c4f80c6614b785c1b369d78ba208dc939a43ff1e7cf7955fde
GET /pt_BR/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 6a57c58adafcda2f253b5ffbe9c7d2d6
etag: "5bbdfd1e4aabccaecf0555a0721f305a"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 15 Sep 2022 03:52:59 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: no59X/lqWexPv/nRpQLm4Q==
x-fb-debug: pJYpkGLxLj6vNVQJGp1FLMsODzvOPaweWSjIAXuCmlAaxJKr2BQLy5uXtnb6K3x8IRmKOcKtb/sSKB/mGtYwxg==
content-length: 1684
priority: u=3,i
x-fb-trip-id: 1904183273
date: Thu, 15 Sep 2022 03:32:59 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.98200 OK 58 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.98:0
File type ASCII text, with very long lines (2903)
Hash f895ad2281c4b00ed10ae39b75a4d04c
34fc78e431abb6c230647d8e2376e9a3c209b822
b8ad49449c9c5faf3f42ef9b0e4f60d35862ce635a0ad2b24972c452b42739f4
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Thu, 15 Sep 2022 03:32:59 GMT
expires: Thu, 15 Sep 2022 03:32:59 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 8583407354570836415
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 57958
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.comodoca.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 14a71cafd18bc32ff1d5dddc6f2c0ff5
49337cf1d96e39b88a5197eec0b540ff48daaf18
35380977dd5cf4705a1f44b2eda589eb9886fe390618ad61d6d44be4d7c30a47
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 03:32:59 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 00:35:13 GMT
Expires: Tue, 20 Sep 2022 00:35:12 GMT
Etag: "49337cf1d96e39b88a5197eec0b540ff48daaf18"
Cache-Control: max-age=420732,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74ae4c5eaf4bb529-OSL
ocsp.comodoca.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 14a71cafd18bc32ff1d5dddc6f2c0ff5
49337cf1d96e39b88a5197eec0b540ff48daaf18
35380977dd5cf4705a1f44b2eda589eb9886fe390618ad61d6d44be4d7c30a47
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Sep 2022 03:32:59 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 00:35:13 GMT
Expires: Tue, 20 Sep 2022 00:35:12 GMT
Etag: "49337cf1d96e39b88a5197eec0b540ff48daaf18"
Cache-Control: max-age=420732,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 0
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74ae4c5eaa660b49-OSL
www.anunciad.com.br/static_ad.jsp
217.23.2.18200 200 0 B URL HTTP/1.1 www.anunciad.com.br/static_ad.jsp
IP 217.23.2.18:0
ASN #49981 WorldStream B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static_ad.jsp HTTP/1.1
Host: www.anunciad.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 200
Date: Thu, 15 Sep 2022 03:32:59 GMT
Server: Apache
Cache-Control: private
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: JSESSIONID=850EEE32D0DD2506CCC7C023058B5BC7; Path=/; Secure; HttpOnly
Content-Type: text/html
Content-Length: 0
Connection: close
www.anunciad.com.br/table_ad.jsp?u=31440
217.23.2.18200 200 0 B URL HTTP/1.1 www.anunciad.com.br/table_ad.jsp?u=31440
IP 217.23.2.18:0
ASN #49981 WorldStream B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /table_ad.jsp?u=31440 HTTP/1.1
Host: www.anunciad.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 200
Date: Thu, 15 Sep 2022 03:32:59 GMT
Server: Apache
Cache-Control: private
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: JSESSIONID=339999129030F7A2EEDF6E0489EEC4E5; Path=/; Secure; HttpOnly
Content-Type: text/html
Content-Length: 0
Connection: close
sites.google.com/site/paginblogger/numeradas/pagenav.js
142.250.74.142302 Found 205 B URL HTTP/2 sites.google.com/site/paginblogger/numeradas/pagenav.js
IP 142.250.74.142:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 21fc24f22a75da5cd91a9d5ef21f5b72
69197b304a97d2e4ea70ab69ac29b415d0c39486
2ee5383b6476a1356a390067b149f1d4b79ec5c0493ed360338b88a195393ad6
GET /site/paginblogger/numeradas/pagenav.js HTTP/1.1
Host: sites.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
x-robots-tag: noarchive
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 15 Sep 2022 03:32:59 GMT
last-modified: Sat, 04 Jul 2020 03:07:51 GMT
etag: "1593832071665"
location: https://sites.google.com/site/paginblogger/numeradas/pagenav.js?attredirects=0
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 205
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0dfd060e0fb8dec42e8f52f8db247b61
d6f33b6390aa9a4b34375d58009977926bc1fff3
17e3d9698e2cd4caf0cbf66b71393b473300fb9a8a4b6f7b97f421e93d54ec44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 74cf77ca0dd7e4f96dfea6ceb4536e65
fa0492bed3fa3b15cc0380e3692320088aa7b217
94f64669694fa90640f8ee8c22f1cb792166c18bab72200a991bc6eaf8f09453
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4770
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Last-Modified: Thu, 15 Sep 2022 02:13:29 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0LSBZlhXeTzzwW9E3SwA7o4kDoGxy13OG7IS-gKPnGj1Q1fbunh3rfoYqeSavBe75_vaHTyG3u-lH10JAMev4hyyFUtg=s0-d
142.250.74.33200 OK 26 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0LSBZlhXeTzzwW9E3SwA7o4kDoGxy13OG7IS-gKPnGj1Q1fbunh3rfoYqeSavBe75_vaHTyG3u-lH10JAMev4hyyFUtg=s0-d
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash d7a12f41a03070cedd56003390352c3f
fe93761c8f3d335ce0716f18f3a70382a6a03eb8
7dc671043c055a10f506a2bf1344882d53e6b5a00b3dc0003d996625a64dcd20
GET /blogger_img_proxy/ANbyha0LSBZlhXeTzzwW9E3SwA7o4kDoGxy13OG7IS-gKPnGj1Q1fbunh3rfoYqeSavBe75_vaHTyG3u-lH10JAMev4hyyFUtg=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Fri, 16 Sep 2022 03:32:59 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: attachment;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 15 Sep 2022 03:32:59 GMT
server: fife
content-length: 26182
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9093db0dc0fe83fb6019831c48d94a12
c7483830ff0698b1952d68dc5835fb50d5a30bed
50f81824d32957d8cdb46aa9376b336ea1424aac1a16fe03ebe9a275b09ae746
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9093db0dc0fe83fb6019831c48d94a12
c7483830ff0698b1952d68dc5835fb50d5a30bed
50f81824d32957d8cdb46aa9376b336ea1424aac1a16fe03ebe9a275b09ae746
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh6.ggpht.com/_pt7i0nbIOCY/SWwkSgrv4ZI/AAAAAAAAA3A/jQqZ1l6avts/Chinese-Simplified_thumb%5B1%5D.png?imgmax=800
142.250.74.1200 OK 756 B URL HTTP/2 lh6.ggpht.com/_pt7i0nbIOCY/SWwkSgrv4ZI/AAAAAAAAA3A/jQqZ1l6avts/Chinese-Simplified_thumb%5B1%5D.png?imgmax=800
IP 142.250.74.1:0
File type PNG image data, 22 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 5c94676fae9ff7b9ea614cd9ebcd8e3b
ec82d9f5047e2b9ded7e4ed726acf85a7fc7b25a
ede1648fd98d68820c023be2e92c78008931c860352bedcac8040878f78dc607
GET /_pt7i0nbIOCY/SWwkSgrv4ZI/AAAAAAAAA3A/jQqZ1l6avts/Chinese-Simplified_thumb%5B1%5D.png?imgmax=800 HTTP/1.1
Host: lh6.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="Chinese-Simplified_thumb[1].png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 756
x-xss-protection: 0
date: Thu, 15 Sep 2022 01:36:26 GMT
expires: Wed, 11 May 2022 21:07:03 GMT
cache-control: public, max-age=86400, no-transform
age: 6993
etag: "v370"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6971ad04397ebe0a117d03ae5c1de8c5
5179eab2d14b4c8c52c00fd6bf2953fb98ad5b8f
97a64e5b9bf5e3e347b23e4bbf41aa0fe6ffd379d50b379770f5c7347e6bb248
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh6.ggpht.com/_pt7i0nbiocy/swwjycgenli/aaaaaaaaa1o/7p6s3-tipsa/english_thumb%5b3%5d.png?imgmax=800
142.250.74.1400 Bad Request 1.6 kB URL HTTP/2 lh6.ggpht.com/_pt7i0nbiocy/swwjycgenli/aaaaaaaaa1o/7p6s3-tipsa/english_thumb%5b3%5d.png?imgmax=800
IP 142.250.74.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash fbe36eb2eecf1b90451a3a72701e49d2
ae56ea57c52d1153cec33cef91cf935d2d3af14d
e8f2ded5d74c0ee5f427a20b6715e65bc79ed5c4fc67fb00d89005515c8efe63
GET /_pt7i0nbiocy/swwjycgenli/aaaaaaaaa1o/7p6s3-tipsa/english_thumb%5b3%5d.png?imgmax=800 HTTP/1.1
Host: lh6.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Thu, 15 Sep 2022 03:32:59 GMT
server: fife
content-length: 1555
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9093db0dc0fe83fb6019831c48d94a12
c7483830ff0698b1952d68dc5835fb50d5a30bed
50f81824d32957d8cdb46aa9376b336ea1424aac1a16fe03ebe9a275b09ae746
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sites.google.com/site/paginblogger/numeradas/pagenav.js?attredirects=0
142.250.74.142302 Found 454 B URL HTTP/2 sites.google.com/site/paginblogger/numeradas/pagenav.js?attredirects=0
IP 142.250.74.142:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (415)
Hash dfe017520c0cc7fcc835cbf10b67b9b2
c0c01f1f798efacc71916646f2b3057dfc74933c
70244f55d12f2ca23204f80f50fbdde07f8b8601027e7c4399e6e29c2a97c4d8
GET /site/paginblogger/numeradas/pagenav.js?attredirects=0 HTTP/1.1
Host: sites.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rodrigosopadeletrinha.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
location: https://89edd755-a-62cb3a1a-s-sites.googlegroups.com/site/paginblogger/numeradas/pagenav.js?attachauth=ANoY7cotR00rI53Ir2Oc6JcT5BUt9EI2A5mouPatbnpEtgso94lhrOFTumP_0YGy_Rn4-iR4_kgxuAQ4D4HInFGAbu0ufK0RhSMGaIzZe37Y6TXBwh1bOBdxHgu1ZlvuhFho0viQJmw8biFgwtYfD-zFiC7vsFbIiVDyYUiEVjCzcGrw-K0ASvE8dbuO32u7eXujzQgw5pQ7BWrIa4nytzRdzAqgBlxwgnwJ5GSQ2ofPoJPWhuNOP34%3D&attredirects=0
content-encoding: gzip
date: Thu, 15 Sep 2022 03:32:59 GMT
expires: Thu, 15 Sep 2022 03:32:59 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 454
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16455
Expires: Thu, 15 Sep 2022 08:07:14 GMT
Date: Thu, 15 Sep 2022 03:32:59 GMT
Connection: keep-alive
dl.dropbox.com/u/77633893/data-post.js
162.125.71.15404 Not Found 4.7 kB URL HTTP/2 dl.dropbox.com/u/77633893/data-post.js
IP 162.125.71.15:0
Hash 4b9e00f129b0b10ad2eb983239b30101
70bda990bc4877f79924b73068682bb28fc7afd7
2aa492350e247f09e1fff7847712fcc4bafd54f23246f9cbf032706935802b38
GET /u/77633893/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
date: Thu, 15 Sep 2022 03:32:58 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 875f240c50724c69a65fc8203cf4ea1e
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16455
Expires: Thu, 15 Sep 2022 08:07:14 GMT
Date: Thu, 15 Sep 2022 03:32:59 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc482abf3-9a0f-40ae-8d4b-c95977ab3e5f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc482abf3-9a0f-40ae-8d4b-c95977ab3e5f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ebe7a0235de91cc1bf4cc6baecbf43f5
fb0078b3be78ca41f46c102148b9e801cfacba8e
6b35ef88d4ca58338480a87d0b0143fc4e1885427735d5ea48ba6e99aa882678
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc482abf3-9a0f-40ae-8d4b-c95977ab3e5f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9630
x-amzn-requestid: c48fade7-f2d1-480e-a411-9bfd080b4b92
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXwx8Fe-oAMFtiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fc80c-20c8930c7269503e6195fe72;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 00:00:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: bFdVw0FZgpuFUOM1MQPSvXByye8bqcrEXDc6O3rFwQKgUOvLxoT7Xg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:46:22 GMT
age: 79183
etag: "fb0078b3be78ca41f46c102148b9e801cfacba8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Yanone+Kaffeesatz
142.250.74.10200 OK 973 B URL HTTP/2 fonts.googleapis.com/css?family=Yanone+Kaffeesatz
IP 142.250.74.10:0
Hash 329589a7be4802bad52362a6358ad9f5
a07815f1cc6452b2f3edb6e761d0ba43518f5b2b
9075ec54ee959e3468c8a7ef74209e4727c248cc7f9d4b94b6423abe7e033c68
GET /css?family=Yanone+Kaffeesatz HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Sep 2022 03:32:59 GMT
date: Thu, 15 Sep 2022 03:32:59 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d547c90-3ccc-4c25-a8e5-de1d932a8cfb.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d547c90-3ccc-4c25-a8e5-de1d932a8cfb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aaf675adec05212317877a5f479d11a7
cab4d850cd2bc5b3e1570ae837a58382e6eae5ec
cb4eb5b406f1ec01e3094d0519d8e4e7a469056bb898e2c47d48378e4b2b261d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d547c90-3ccc-4c25-a8e5-de1d932a8cfb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3951
x-amzn-requestid: 65c15365-1bff-4dd2-a651-33683a033e05
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YE9_oHP_oAMF3Fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63184397-148253910e5cd21b0e436b09;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 07:09:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _BTSN2zHd-FiETAJVrQhk9Odsn_M3GGs0nU0QpLrE9Rpin0VQPzy2w==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:19:41 GMT
age: 18798
etag: "cab4d850cd2bc5b3e1570ae837a58382e6eae5ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcede4553-e9f1-4ab1-9d0e-2f0bfae52d09.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcede4553-e9f1-4ab1-9d0e-2f0bfae52d09.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a76383eca28732b4f7847139f12a5cb
6c1ed76ca3c29af41ef4031eaea6b9040465517b
5d205ffc5a3177111f640f270fd0204eef790e531f69299d3de075f9387df966
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcede4553-e9f1-4ab1-9d0e-2f0bfae52d09.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8010
x-amzn-requestid: 498e0a9a-7fd6-4a08-9111-91020cbebdf0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeB59FiWIAMFX9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632249d9-737b49125f659cb64d1de09a;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 21:38:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 00umrLhokJupvMnUqbr6USmX2WBDQfwfpDXAr2QjRhfv48JMN2DlKA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:47:01 GMT
age: 20758
etag: "6c1ed76ca3c29af41ef4031eaea6b9040465517b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52159404-0704-4df5-9f35-e4a1f747570b.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52159404-0704-4df5-9f35-e4a1f747570b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7082899e630002ee0b8c99889b989e0
b17c656ba220024540ab04f8d246cafd017cf728
15ccc20ac18b381beb84ad39f684fceea311243c9497e1d5f512aafe95cae863
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52159404-0704-4df5-9f35-e4a1f747570b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9814
x-amzn-requestid: 9a7523fc-5b9c-449a-b9a4-493f63a1a6fa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUhGnHQFIAMFyOA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e7bc3-26ddc5e62dc268832dc9c24d;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 00:22:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yYYSriRLwpogCFmP3v3Mqg9iuJVrrrSm2IZIFsHpA9Na1OQ6b4W1rA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:45:16 GMT
age: 20863
etag: "b17c656ba220024540ab04f8d246cafd017cf728"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F657cccbe-0328-47ca-9cb6-848236500e87.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F657cccbe-0328-47ca-9cb6-848236500e87.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 892e3a49b60f2ce79b26cb31cc3a2b5b
43b1f37e0a1893cdedec3bcb40ebb92155fa8ec2
bbb6eb180ce75debb068d66e77f97741af530039b2008e726b0daf69d0207fd3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F657cccbe-0328-47ca-9cb6-848236500e87.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4058
x-amzn-requestid: 6fb11d89-afcb-4dd5-8212-7eb9287abff8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeB7aGTgIAMF8Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632249e2-281221601c4edaa4105d5ba1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: zs3rUsawBcees2SlKVA9JpysVLcNFnqoItNCVUdjPG1qjQr2BYefRA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:45:06 GMT
age: 20873
etag: "43b1f37e0a1893cdedec3bcb40ebb92155fa8ec2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4833535b1650b0ac875704023b650e66
96ab8cd8e14350f730d26731f3445710324e24e2
d2b5a51e39a4890ba56e819d4d5d1d57d4d3cfc50dde42efdf23b8e9be17d1c7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86bf6a5e-a3e5-479d-a052-fa843c45a3d9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9400
x-amzn-requestid: 8cf35176-18a1-427b-870c-bdae465060c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYM18E-iIAMFcmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ff4f2-427bc0ff6593e71e25b91589;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 03:11:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZVnPAYUOBCRUYD3wEx79lIMjBJCKyVB9CmnTqMJIaFPbQGPoHwB73w==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:37 GMT
age: 25882
etag: "96ab8cd8e14350f730d26731f3445710324e24e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5d6fd8c996d878bb8f21cee8307750d8
2867ac350f82283294c04982113d36560f605f1a
e7e265e17cd3cebbcef1545cd9b9aef54852a1d1306c1ded93f834b6d8052f7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 39aa25d8411997d98f9093c19b0ccbca
3cb31e92d707cd561897042ed1a09de5a79e7108
f1b7b71241b580ec34281f5addc49d716eac9ecc46a3217e646c76e6dc8d4578
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bloggercomment.com/allowComments.js
45.152.44.151302 Found 683 B URL HTTP/2 bloggercomment.com/allowComments.js
IP 45.152.44.151:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
Analyzer Verdict Alert fortinet Malware
GET /allowComments.js HTTP/1.1
Host: bloggercomment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html
content-length: 683
date: Thu, 15 Sep 2022 03:32:59 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://fontpis.blogspot.com/
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5d6fd8c996d878bb8f21cee8307750d8
2867ac350f82283294c04982113d36560f605f1a
e7e265e17cd3cebbcef1545cd9b9aef54852a1d1306c1ded93f834b6d8052f7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 39aa25d8411997d98f9093c19b0ccbca
3cb31e92d707cd561897042ed1a09de5a79e7108
f1b7b71241b580ec34281f5addc49d716eac9ecc46a3217e646c76e6dc8d4578
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:32:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 12:31:58 GMT
expires: Sun, 10 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 399662
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:33:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-zCuLl3qI-P8/URZ4md6vTfI/AAAAAAAAAeg/uezZy2WVJtU/s1600/Sem+t%C3%ADtulo+1.bmp
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 3.bp.blogspot.com/-zCuLl3qI-P8/URZ4md6vTfI/AAAAAAAAAeg/uezZy2WVJtU/s1600/Sem+t%C3%ADtulo+1.bmp
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 89x47, components 3\012- data
Hash ecf00a80180a0c3c9f4803f54fbfeaad
96ae936dbc47d2d2b5c194666ad3dfebd46b8796
9d25d1087d586483904ad19194ba5d4d78dcb2c3f3ca662dc2a8a005130050fe
GET /-zCuLl3qI-P8/URZ4md6vTfI/AAAAAAAAAeg/uezZy2WVJtU/s1600/Sem+t%C3%ADtulo+1.bmp HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1e8"
Expires: Fri, 16 Sep 2022 03:33:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Sem t_tulo 1.jpg";filename*=UTF-8''Sem%20t%C3%ADtulo%201.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 15 Sep 2022 03:33:00 GMT
Server: fife
Content-Length: 2025
X-XSS-Protection: 0
dl.dropbox.com/u/73202541/blogger.js
162.125.71.15404 Not Found 36 kB URL HTTP/2 dl.dropbox.com/u/73202541/blogger.js
IP 162.125.71.15:0
Hash eedfebc19175be324fcf7d7a25aaac64
99a5d52b886446f802d230ded866d18cc4f04f95
a109b788a5db1ecb0c9899efde61dee220f57dc85d0a55ca4109416717667040
GET /u/73202541/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
date: Thu, 15 Sep 2022 03:32:59 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 7c8fcb4bd5604780ae294f6af5e84595
X-Firefox-Spdy: h2
dl.dropbox.com/u/93265919/efeitoimagens/data-post.js
162.125.71.15404 Not Found 5.1 kB URL HTTP/2 dl.dropbox.com/u/93265919/efeitoimagens/data-post.js
IP 162.125.71.15:0
Hash cafacec6cae90f43114a1c31981ae96f
41654fdb84418891ae5621685995292323bf261e
b8f119e6d9730e1423609f28959ac20d77f772b51604a8a2960a94f0d07d2b82
GET /u/93265919/efeitoimagens/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
date: Thu, 15 Sep 2022 03:32:59 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: db32d7be979f4d56ac4efc157f342c11
X-Firefox-Spdy: h2
dl.dropbox.com/u/93265919/efeitoimagens/data-post.js
162.125.71.15404 Not Found 105 kB URL HTTP/2 dl.dropbox.com/u/93265919/efeitoimagens/data-post.js
IP 162.125.71.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23665)
Size 105 kB (104932 bytes)
Hash f037b930d3cc55775a86d1dee970cb39
bc9f9326334ca6712375148c9f2f48b3f3173431
6915d824714eb53ff6bc392e40af4b71e5f2a5ea5e650fa28d44161fa361573f
GET /u/93265919/efeitoimagens/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Thu, 15 Sep 2022 03:33:00 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: e0df89f14e9a43139037b5d46c18f88d
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.34302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Thu, 15 Sep 2022 03:33:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
89edd755-a-62cb3a1a-s-sites.googlegroups.com/site/paginblogger/numeradas/pagenav.js?attachauth=ANoY7cotR00rI53Ir2Oc6JcT5BUt9EI2A5mouPatbnpEtgso94lhrOFTumP_0YGy_Rn4-iR4_kgxuAQ4D4HInFGAbu0ufK0RhSMGaIzZe37Y6TXBwh1bOBdxHgu1ZlvuhFho0viQJmw8biFgwtYfD-zFiC7vsFbIiVDyYUiEVjCzcGrw-K0ASvE8dbuO32u7eXujzQgw5pQ7BWrIa4nytzRdzAqgBlxwgnwJ5GSQ2ofPoJPWhuNOP34%3D&attredirects=0
142.251.1.137200 OK 7.6 kB URL HTTP/2 89edd755-a-62cb3a1a-s-sites.googlegroups.com/site/paginblogger/numeradas/pagenav.js?attachauth=ANoY7cotR00rI53Ir2Oc6JcT5BUt9EI2A5mouPatbnpEtgso94lhrOFTumP_0YGy_Rn4-iR4_kgxuAQ4D4HInFGAbu0ufK0RhSMGaIzZe37Y6TXBwh1bOBdxHgu1ZlvuhFho0viQJmw8biFgwtYfD-zFiC7vsFbIiVDyYUiEVjCzcGrw-K0ASvE8dbuO32u7eXujzQgw5pQ7BWrIa4nytzRdzAqgBlxwgnwJ5GSQ2ofPoJPWhuNOP34%3D&attredirects=0
IP 142.251.1.137:0
Hash 3b123c396befec11502f500ab82baf86
6cc9bf4c016228fc82eddf1bf6c74206a647d69a
a8f9d48c24be8001382d859eb804aceda8dd14162cf152eadc4a7541b9300f9f
GET /site/paginblogger/numeradas/pagenav.js?attachauth=ANoY7cotR00rI53Ir2Oc6JcT5BUt9EI2A5mouPatbnpEtgso94lhrOFTumP_0YGy_Rn4-iR4_kgxuAQ4D4HInFGAbu0ufK0RhSMGaIzZe37Y6TXBwh1bOBdxHgu1ZlvuhFho0viQJmw8biFgwtYfD-zFiC7vsFbIiVDyYUiEVjCzcGrw-K0ASvE8dbuO32u7eXujzQgw5pQ7BWrIa4nytzRdzAqgBlxwgnwJ5GSQ2ofPoJPWhuNOP34%3D&attredirects=0 HTTP/1.1
Host: 89edd755-a-62cb3a1a-s-sites.googlegroups.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rodrigosopadeletrinha.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 15 Sep 2022 03:32:59 GMT
last-modified: Sat, 04 Jul 2020 03:07:51 GMT
etag: "1593832071665"
content-disposition: attachment; filename="pagenav.js"
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.doubleclick.net/instream/ad_status.js
216.58.207.230200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 216.58.207.230:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 03:29:23 GMT
expires: Thu, 15 Sep 2022 03:44:23 GMT
cache-control: public, max-age=900
age: 217
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha3iginaK9VdUR2mMYq1j0Jrne6L3qVMmvWg_1y8BDtpwHvWxCMKLheSbmvgswds_rbvPW70wAWHBX7ghV7f2eRrV5Cbp5oSHSgTj66SaTfg4bSARxiqu-edZk1qgQ=s0-d
142.250.74.33200 OK 205 B URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha3iginaK9VdUR2mMYq1j0Jrne6L3qVMmvWg_1y8BDtpwHvWxCMKLheSbmvgswds_rbvPW70wAWHBX7ghV7f2eRrV5Cbp5oSHSgTj66SaTfg4bSARxiqu-edZk1qgQ=s0-d
IP 142.250.74.33:0
File type GIF image data, version 89a, 51 x 20\012- data
Hash a934dde1a1fff9453cec3391ab400340
815c7af74610f6fc64391cb4b078b565c6f99495
7b6b5870c8e94c8ccd982b581c51cdea41217a545d40e98b1499aaa5ea0bee7a
GET /blogger_img_proxy/ANbyha3iginaK9VdUR2mMYq1j0Jrne6L3qVMmvWg_1y8BDtpwHvWxCMKLheSbmvgswds_rbvPW70wAWHBX7ghV7f2eRrV5Cbp5oSHSgTj66SaTfg4bSARxiqu-edZk1qgQ=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Fri, 16 Sep 2022 03:33:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: attachment;filename="unnamed.gif"
content-type: image/gif
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 15 Sep 2022 03:33:00 GMT
server: fife
content-length: 205
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c51675fd352c7db13261c905bfaa8342
85ac07e4592d413c55c204d4e52118be5bdd39cb
ffcbfefcb252a9ed446122906b75c29ca2aa64460ddbd912542d12bc68be9fd5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:33:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
23.38.200.123200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Thu, 15 Sep 2022 03:33:00 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
dl.dropbox.com/u/77633893/data-post.js
162.125.71.15404 Not Found 4.2 kB URL HTTP/2 dl.dropbox.com/u/77633893/data-post.js
IP 162.125.71.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (23665)
Hash f897700409fd949b941309bead7a1b19
a6ae129d45c1e6ddf8d9e13313b1c397f38bd68b
e14a578dd2c6e9401f219764ab9647febd521bc497c84a019747bfceb9699b62
GET /u/77633893/data-post.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Thu, 15 Sep 2022 03:32:59 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: d4433d339bc043e4bbd71473f20a1eb2
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
216.58.207.206200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 216.58.207.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 1560
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Thu, 15 Sep 2022 03:33:00 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+423; expires=Sat, 14-Sep-2024 03:33:00 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Thu, 15 Sep 2022 03:33:00 GMT
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.202200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 15 Sep 2022 03:33:00 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.202200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.202:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 4ea91fe86410b27da843c2098e521e08
97abc804a9b8313b65f8ec421be8741a856dfa90
ae3a16938b707f8bb3591e630cf39227ee0e62421e44f5f7d23475975429d3f0
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 15 Sep 2022 03:33:00 GMT
server: ESF
cache-control: private
content-length: 30858
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5c5d3d907a3f1200abaf8498135f7196
7bcc003762243409d8d94a0afd8ba7712a08e4fa
96524e2083d0bd0052309077ec068010a30b490d7470bfe432af50765c30d051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:33:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=rodrigosopadeletrinha.blogspot.com&callback=_gfp_s_&client=ca-pub-4589626230246050
172.217.21.162200 OK 201 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=rodrigosopadeletrinha.blogspot.com&callback=_gfp_s_&client=ca-pub-4589626230246050
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash c970f8a0d86e68c9a44e208d8b0f6e52
513e8b72b9fd465fcadc53ed3e170ada7322121a
f78709a61e5facb16110885d16176f134b3c6b80848713538f35c91d691cc2b8
GET /gampad/cookie.js?domain=rodrigosopadeletrinha.blogspot.com&callback=_gfp_s_&client=ca-pub-4589626230246050 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 15 Sep 2022 03:33:01 GMT
server: cafe
cache-control: private
content-length: 201
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=rodrigosopadeletrinha.blogspot.com
216.58.211.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=rodrigosopadeletrinha.blogspot.com
IP 216.58.211.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=rodrigosopadeletrinha.blogspot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 15 Sep 2022 03:33:01 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ed97a4b82680caefc4ffdebf786e12fc
a638a68f346844709bac57a92bf3d2c28043165e
b81ed44963f5d8b54c62e7fe18db301d3c8eeaf8fbbfb099270562156e12fdc9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:33:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/plugins/likebox.php?href=http%3A%2F%2Fwww.facebook.com%2Frodrigosopadeletrinha.blogspot.com.br&width=292&height=400&show_faces=true&colorscheme=light&stream=false&border_color&header=true
31.13.72.36200 OK 13 kB URL HTTP/2 www.facebook.com/plugins/likebox.php?href=http%3A%2F%2Fwww.facebook.com%2Frodrigosopadeletrinha.blogspot.com.br&width=292&height=400&show_faces=true&colorscheme=light&stream=false&border_color&header=true
IP 31.13.72.36:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (18476)
Hash 6b5ab64be32291c8d24bd271ad7c54b0
2675b2ffc43ea344a2241ca2352cbca1f7fab5ae
0ea4d015424c198594f4d18f875cb9aadf5cdce504c80962b66573a15be3d927
GET /plugins/likebox.php?href=http%3A%2F%2Fwww.facebook.com%2Frodrigosopadeletrinha.blogspot.com.br&width=292&height=400&show_faces=true&colorscheme=light&stream=false&border_color&header=true HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: mp4j4yPisZPSPBNLJx2ocJai85jvEbyqQLSZ5GpMmz5XntNZlus8vv8Id0iRv9GgLiobYxYF1QJmjdF/xVW6Jg==
date: Thu, 15 Sep 2022 03:33:00 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5c5d3d907a3f1200abaf8498135f7196
7bcc003762243409d8d94a0afd8ba7712a08e4fa
96524e2083d0bd0052309077ec068010a30b490d7470bfe432af50765c30d051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:33:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
142.250.74.164200 OK 670 B URL HTTP/2 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP 142.250.74.164:0
File type ASCII text, with very long lines (1034), with no line terminators
Hash 24fb827545f0df82ba9ce873507284b7
9b19dbdd1f7e262643f5c8937bd71b8b4bbf51e9
8c9289a263ad355d61c55a414ea621a8019e6355e2532825d03d39e0e59292b0
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 15 Sep 2022 03:33:01 GMT
date: Thu, 15 Sep 2022 03:33:01 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 670
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=rodrigosopadeletrinha.blogspot.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=rodrigosopadeletrinha.blogspot.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=rodrigosopadeletrinha.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 15 Sep 2022 03:33:01 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 08 Sep 2023 16:41:06 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: F/Ks6L/ODrGWpooL/ydi60V2ddMBtGP2Q6SkRGsN0DyBdQzqhFy78deSITTx40Qox5sSGo1JLYKucRRUBb7stQ==
priority: u=3,i
content-length: 827
x-fb-trip-id: 1904183273
date: Thu, 15 Sep 2022 03:33:01 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 23 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (41977)
Hash 3ce46348c6edab150e0c6f8ce7cd0a0d
6aea70ed9afc6f514f89c0bca5a99f04c331bc24
8ac7aadd7e52746a466b2721699b1430ab4360c52d4c73dab9f51a849b73857d
GET /rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 12 Sep 2023 23:02:20 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: PORjSMbtqxUODG+M580KDQ==
x-fb-debug: c9WgxwMo1Tm7JYJ0k0D3kh5OeoMMfpih6iLgRLiW5n8k4nSpSt3vH+U7r35xtlYCCbKXd9QBFZElotMgsTwZaw==
priority: u=3,i
content-length: 23301
x-fb-trip-id: 1904183273
date: Thu, 15 Sep 2022 03:33:01 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (1984)
Hash 16f083b23b565db9d2f20d1ad75933c1
6d74ad139c96b1e3fc9d541419788b5b4893ec9a
36b909cd9132a8996a1bbb221d05217c31506a6951bb408deeea6aa612dc4200
GET /rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 12 Sep 2023 21:51:17 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FvCDsjtWXbnS8g0a11kzwQ==
x-fb-debug: iBRuZTPxDWMf/lz/3vX3eBuqQdaQ3XZm/NeAYywJuNG7CCrYj4DSuPLoCweovZjJChdnFVSgbVhJEggjdF7hvw==
content-length: 1657
x-fb-trip-id: 1904183273
date: Thu, 15 Sep 2022 03:33:01 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yy/l/0,cross/Hn2ofr8Wyub.css?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 5.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yy/l/0,cross/Hn2ofr8Wyub.css?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4093)
Hash 72b4d2c007df44c1e8ff843850d80bdc
80dfa41cd653a83484ce8e0b6a218f786bc737d3
b685f11f0274547d6ec9bd99a53da93f59601bb6d2c805befb9cdddc996c6c7b
GET /rsrc.php/v3/yy/l/0,cross/Hn2ofr8Wyub.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 15 Sep 2023 01:45:51 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: crTSwAffRMHo/4Q4UNgL3A==
x-fb-debug: 0KToeXen4iKH7at0EvMZAdBCudp5ZyA1ivtK/9Y098kFvgc0lmedA4donGNhcgNXBKYS1QYEA50YE3esgk2agg==
priority: u=3,i
content-length: 5129
x-fb-trip-id: 1904183273
date: Thu, 15 Sep 2022 03:33:01 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (18501)
Hash e712b0060a23b6c5ede3b67e0bb8639e
faf1f8ee5d679c27fb0fd418f63cf7d851344d26
0efe6b239b3fb45de4071c337078b2b43696cdccdf01024f527af941701239fd
GET /rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 06 Sep 2023 21:44:47 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 5xKwBgojtsXt47Z+C7hjng==
x-fb-debug: 43Vr6oEQ0M8c8YowjOVC7tAp6n1bN1BsMkcIKG7b/KgT2eOoSVVjbOxRijrM7dNBMWRzl0uHHCCQuV6LZwc9Uw==
content-length: 90711
x-fb-trip-id: 1904183273
date: Thu, 15 Sep 2022 03:33:01 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (5261)
Hash 6059f2908fc78af36d89f372311116ef
431905421a858f26f5624203b0ecae7b6d8c6c42
33ba2a807c3a7a85d489d24e1a843c4361a791492fdbe68e471d2064155467f0
GET /rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 13 Sep 2023 21:23:32 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: YFnykI/HivNtifNyMREW7w==
x-fb-debug: mZKePhMMdAYuiW6z+4CPZo2tEmKKS28lAmwT6Oy3QOfmq1DwRsipUqmnjRRknglOU1itNEmy9PwhTTZuq48a8w==
priority: u=3,i
content-length: 12179
x-fb-trip-id: 1904183273
date: Thu, 15 Sep 2022 03:33:01 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yK/r/j_wNZYbaldW.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yK/r/j_wNZYbaldW.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type C source, ASCII text, with very long lines (7299)
Hash 15240c752b29af21dfc4c5b38d7bd37a
8324e81ecdb9a4775ef4aabbadf833b408aededb
068517058d35fd5c402189f4e68f13d1d2a2a1b39b2bf973b10a83362826099e
GET /rsrc.php/v3/yK/r/j_wNZYbaldW.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 13 Sep 2023 18:26:44 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FSQMdSspryHfxMWzjXvTeg==
x-fb-debug: eAoh2Gipqqu/NXCNthNCZXWzAwlIrw0gKHNlTU7aJdgE0DA4wk6vIwRvmdUFoufV4ZGt6+rMc2EF9XpeHZiKYg==
content-length: 15877
x-fb-trip-id: 1904183273
date: Thu, 15 Sep 2022 03:33:01 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
z.moatads.com/addthismoatframe568911941483/moatframe.js
23.38.201.146200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP 23.38.201.146:0
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=53846
date: Thu, 15 Sep 2022 03:33:01 GMT
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
142.250.74.163200 OK 88 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (18609)
Hash 489c544f2c19cbd24306f4ee809454fc
cd63ada89b45519e16560d6b29c41e8a3c389110
284cbad8094df85012351f44bc123507e35ccdbdbc041ce7f328c7da5eb1d039
GET /recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157166
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 17:23:20 GMT
expires: Wed, 13 Sep 2023 17:23:20 GMT
cache-control: public, max-age=31536000
age: 122981
last-modified: Tue, 06 Sep 2022 00:04:24 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
m.addthis.com/live/red_lojson/300lo.json?si=63229cdd37878f66&bkl=0&bl=1&pdt=1852&sid=63229cdd37878f66&pub=xa-4f36a5b644607a31&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=rodrigosopadeletrinha.blogspot.com&fp=2012%2F11%2Flei-da-copa.html&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1663212766070&jsl=129&uvs=63229cdddc855905000&skipb=1&callback=addthis.cbs.jsonp__186516732138775950
23.38.200.123200 OK 90 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=63229cdd37878f66&bkl=0&bl=1&pdt=1852&sid=63229cdd37878f66&pub=xa-4f36a5b644607a31&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=rodrigosopadeletrinha.blogspot.com&fp=2012%2F11%2Flei-da-copa.html&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1663212766070&jsl=129&uvs=63229cdddc855905000&skipb=1&callback=addthis.cbs.jsonp__186516732138775950
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash af7c3148ec53fe15620c3687daad059c
35273e4da9858b73639a82adcc17b666b10da84b
16a3b092e235cdd7b91a974fb8ab47489453898a020e54e9233eb618fcbe829e
GET /live/red_lojson/300lo.json?si=63229cdd37878f66&bkl=0&bl=1&pdt=1852&sid=63229cdd37878f66&pub=xa-4f36a5b644607a31&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=rodrigosopadeletrinha.blogspot.com&fp=2012%2F11%2Flei-da-copa.html&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1663212766070&jsl=129&uvs=63229cdddc855905000&skipb=1&callback=addthis.cbs.jsonp__186516732138775950 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 90
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Thu, 15 Sep 2022 03:33:01 GMT
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yw/r/UXtr_j2Fwe-.png
31.13.72.12200 OK 573 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yw/r/UXtr_j2Fwe-.png
IP 31.13.72.12:0
File type PNG image data, 13 x 39, 8-bit colormap, non-interlaced\012- data
Hash d3b686ff6004b431d5019e4b51a8cc0d
34ec288bdcad2eada81c75960439bf60b95eb285
96e3e8dfde6b1042514824bac1b44282d4a76bac028f2d767f6534dce2cf3db0
GET /rsrc.php/v3/yw/r/UXtr_j2Fwe-.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.xx.fbcdn.net/rsrc.php/v3/yy/l/0,cross/Hn2ofr8Wyub.css?_nc_x=Ij3Wp8lg5Kz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: 07aG/2AEtDHVAZ5LUajMDQ==
expires: Thu, 14 Sep 2023 01:52:58 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: 49qGl5XPCSNzV1glXipRq3pjLUnoJuE58AOt4ZWdWZ7lQg72C2HmSTe//XBUsA68UuVgGNkr5ZYbUniN6yAF5Q==
priority: u=3,i
content-length: 573
x-fb-trip-id: 1904183273
date: Thu, 15 Sep 2022 03:33:01 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz
31.13.72.12200 OK 7.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz
IP 31.13.72.12:0
File type ASCII text, with very long lines (4061)
Hash d1ba68f146b01f4aef60d79aadb926ea
c6b4703c25d07fd2363e5d67d11e4846d9979b26
abbff04acf96f39a3121ed97505b5a23cbeee9057dd7040c58c4e423c899805d
GET /rsrc.php/v3/yV/r/oDVETVg4GJv.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 02 Sep 2023 10:34:01 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 0bpo8UawH0rvYNearbkm6g==
x-fb-debug: 86y3i3sy9jjDaSwZdKwWDNfT0jhSZgIC/wO/r6UsDn/zT5AA7hVmL+J1eWzgzylntf4RiG+L/nvUQSjPsoquGQ==
priority: u=3,i
content-length: 7236
x-fb-trip-id: 1904183273
date: Thu, 15 Sep 2022 03:33:01 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
v1.addthisedge.com/live/boost/xa-4f36a5b644607a31/_ate.track.config_resp
23.38.200.123200 OK 47 B URL HTTP/2 v1.addthisedge.com/live/boost/xa-4f36a5b644607a31/_ate.track.config_resp
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash 24c668b115f75423506f2ea21d1b49c2
14f956ddb2d9e8b072cd5f605c3f39526490b391
b542daef470a9730029174f975ce3ce236b3e58bf9183b11956acce994b13a16
GET /live/boost/xa-4f36a5b644607a31/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-disposition: attachment; filename=1.txt
content-encoding: gzip
content-length: 47
cache-control: public, max-age=60, s-maxage=86400
date: Thu, 15 Sep 2022 03:33:01 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
widgets.amung.us/small/00/60.png
172.67.8.141200 OK 325 B URL HTTP/2 widgets.amung.us/small/00/60.png
IP 172.67.8.141:0
File type PNG image data, 80 x 15, 8-bit colormap, non-interlaced\012- data
Hash 1c12d2468bd8642565997b719eeb7ad6
d150a4430b185817c657e20032fac788f0398c1b
f60d38cac93cc1acdb90724bdcf42d9f9a02a20fd1229c4b6a3dc0fad90ff893
GET /small/00/60.png HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rodrigosopadeletrinha.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 03:33:01 GMT
content-type: image/png
content-length: 325
last-modified: Sun, 13 Jun 2010 09:48:29 GMT
etag: "4c14a96d-145"
expires: Thu, 08 Sep 2022 23:42:28 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 618633
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ae4c6d3e87b51d-OSL
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
93.184.220.66200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 0ccf02d52b75b85c65aa5460aa24aebf
50d1a19cb9ebbd6d42173ce2d963ea4df29e8e5a
d13778acf057777bad23fd020088463d65d2b7baff042cd4529d27faa46daf38
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 855
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Thu, 15 Sep 2022 03:33:01 GMT
Etag: "f116c7e6b28e2aebeb60ade5bdc8e2b4+gzip"
Last-Modified: Wed, 31 Aug 2022 20:41:50 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F709)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29220
whos.amung.us/swidget/megalink10
172.67.8.141307 Temporary Redirect 1.4 kB URL HTTP/2 whos.amung.us/swidget/megalink10
IP 172.67.8.141:0
File type gzip compressed data, max compression\012- data
Hash 80cd5cb3c635786273462df0f5f46e1a
419d5c86598430982672063ef04bb4966c94b9e8
f7f4c535ed4b9713150261c1c37ad1c2a883d08aef0ed2d6ce38736dd28d7301
GET /swidget/megalink10 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
date: Thu, 15 Sep 2022 03:33:01 GMT
content-type: text/html; charset=UTF-8
location: https://widgets.amung.us/small/00/60.png
cache-control: no-cache, no-store, must-revalidate
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74ae4c6c1decb51d-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 377139fa706b038c106d663d1c7c402a
7337cfac49077bc4fd74b2e4a405d4391176f585
9aa6fb206804f92cadb70ef6a3cf1b0d0b117be62166923c98b25c8a9c66bb3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:33:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 377139fa706b038c106d663d1c7c402a
7337cfac49077bc4fd74b2e4a405d4391176f585
9aa6fb206804f92cadb70ef6a3cf1b0d0b117be62166923c98b25c8a9c66bb3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:33:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Frodrigosopadeletrinha.blogspot.com
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Frodrigosopadeletrinha.blogspot.com
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash aa228863765c3263e12f1d7c71015518
619739a12e0f16eab26a43a913b35779edea57a6
cf9a241903646ee9b88b76da2bb3e11d16f36246f7bbc53bbe2c98466e5ea12a
GET /widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Frodrigosopadeletrinha.blogspot.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1234190
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Thu, 15 Sep 2022 03:33:01 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 31 Aug 2022 20:40:57 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F706)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 4cb5a5133e8a3ec6a2041774752be2d2
b924e3ccbb9f25b12a290f44e7c969aa46377249
99de86eaf818c5771fd4bbb6ad6407ed5b3398d75da092b80e2a9774d9d2326f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5638
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:33:01 GMT
Last-Modified: Thu, 15 Sep 2022 01:59:03 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 4cb5a5133e8a3ec6a2041774752be2d2
b924e3ccbb9f25b12a290f44e7c969aa46377249
99de86eaf818c5771fd4bbb6ad6407ed5b3398d75da092b80e2a9774d9d2326f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2590
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:33:01 GMT
Last-Modified: Thu, 15 Sep 2022 02:49:51 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 4cb5a5133e8a3ec6a2041774752be2d2
b924e3ccbb9f25b12a290f44e7c969aa46377249
99de86eaf818c5771fd4bbb6ad6407ed5b3398d75da092b80e2a9774d9d2326f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5638
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:33:01 GMT
Last-Modified: Thu, 15 Sep 2022 01:59:03 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash f18a8fcd2bcaf75ae8504b8a85b74a3c
b41fc61af9cb007ab7a362948288747bab18d07d
ac65cfee563af1c61356d4308b9e5e18fc286aa423501c3dd21e409e1315bca5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6351
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:33:02 GMT
Last-Modified: Thu, 15 Sep 2022 01:47:12 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash f18a8fcd2bcaf75ae8504b8a85b74a3c
b41fc61af9cb007ab7a362948288747bab18d07d
ac65cfee563af1c61356d4308b9e5e18fc286aa423501c3dd21e409e1315bca5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5897
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:33:02 GMT
Last-Modified: Thu, 15 Sep 2022 01:54:45 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 004ba7bdec5da9f9595b5d5d6d705635
9d8d52399395be7f6c38bfbe678d6cfbf29b28d6
5cbb8c29965d28c33c2088ca3d486df5b8b8d17231b795aba42a4db1f9980f4e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3577
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:33:02 GMT
Last-Modified: Thu, 15 Sep 2022 02:33:25 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 313
ads.eu.criteo.com/delivery/r/afr.php?z=YyKc7QAFix4CO8CBAASKKzKSyOAPIba5DvdE0w&u=%7CqB2rCzOPoo9jMIudZ3DmPd0LvDl9nxeKLN%2FTg7MiGc4%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNTJmLEv97WHnUtKOrKYxIg_Yv4RnZRq4P_PySyhhQairi-eDLwKj_T8TTURxZD_b4cpeXLIOd145A8G_TAYmM7telpITaDxwjf-s-QtwtG7uTGOM97Jdpvm2NukU48g87Buf79ROX9JlXw6mCHDhFqejNNeKHZKwFK9bqqGcphddNynAkFNZ6uCJIbBQla5lFbPBDOBxuSXQHGgNrel2KKqsl3dU6ksrL11z6MgVxVdA4uQxE7Th5Cum8blmF-Fcqy-XBO2YZPZYBm1avLACOLgul0CYJs-3z5r4vx5TOzouZJqFFCuYVK-cKFEJQIqTPWxmLuP-neg1OF0KyFP37gzBGfAFPfvzM_gGwXEoGAjKVyZComxtSBg6Ke6kQDF6zirt_XZ4gcqAo4o8g3vKcN-mFxpycSNDQr5jdnfWGIpj9OoQPqDx-BeVHNevgOxVqbOT6Y8F84wIINQP00bnYLIZNEBkPVLhBBPf_TbVCCkEVjxbHbyxwAh7gzLfoZSvpiBBGQfOXRhKlI9T_i-sE_A&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC_xX17ZwiY56WFoGB78EPq5SSkA_JntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTQ1ODk2MjYyMzAyNDYwNTCgAdW20uoDyAEJqQJAVLvAm76wPqgDAaoEswJP0BXwfIdWhFST4bbd2R9c8CY-X9AUCCW3IIWRWWiJSSzjz6Xpt7KSWUWM7QL_cSsCddlzZ3ojyIk2gXovYiHT2tq5D1tk1qd6TE9ovgpukojQFLNlq-zeH6XrNjNQBcyPu4GGBZod80VBtgLH-N_T_pdvhstjuizEzsxJJzUcqU6Vh6Du3oa1gkNd7iawgeENnN01Ri6SCrP5t2fY87vrbmDCVOrgCH9m0vu_E9POAo3GdhXpS22YWO_9eJwGC3YBcOvDhwO1j0atIPyle75vMuYktuyyKkI702BsvUG5vo6Ft8V3yTLbdxJRTI6gF6kPyY69ww7r3_6e5AyUxJRdUnaZ0pSPmyA7JsfDht055z-vvVGmvhj_Y7r90PuULwA6XyXa8-MX9pfXQqz-rgD7IioagAbxuP6E6ra1t4QBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_304sRbfeRO76nQV_kwwIwigMvc_g%26client%3Dca-pub-4589626230246050%26adurl%3D
178.250.2.65200 OK 60 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=YyKc7QAFix4CO8CBAASKKzKSyOAPIba5DvdE0w&u=%7CqB2rCzOPoo9jMIudZ3DmPd0LvDl9nxeKLN%2FTg7MiGc4%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNTJmLEv97WHnUtKOrKYxIg_Yv4RnZRq4P_PySyhhQairi-eDLwKj_T8TTURxZD_b4cpeXLIOd145A8G_TAYmM7telpITaDxwjf-s-QtwtG7uTGOM97Jdpvm2NukU48g87Buf79ROX9JlXw6mCHDhFqejNNeKHZKwFK9bqqGcphddNynAkFNZ6uCJIbBQla5lFbPBDOBxuSXQHGgNrel2KKqsl3dU6ksrL11z6MgVxVdA4uQxE7Th5Cum8blmF-Fcqy-XBO2YZPZYBm1avLACOLgul0CYJs-3z5r4vx5TOzouZJqFFCuYVK-cKFEJQIqTPWxmLuP-neg1OF0KyFP37gzBGfAFPfvzM_gGwXEoGAjKVyZComxtSBg6Ke6kQDF6zirt_XZ4gcqAo4o8g3vKcN-mFxpycSNDQr5jdnfWGIpj9OoQPqDx-BeVHNevgOxVqbOT6Y8F84wIINQP00bnYLIZNEBkPVLhBBPf_TbVCCkEVjxbHbyxwAh7gzLfoZSvpiBBGQfOXRhKlI9T_i-sE_A&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC_xX17ZwiY56WFoGB78EPq5SSkA_JntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTQ1ODk2MjYyMzAyNDYwNTCgAdW20uoDyAEJqQJAVLvAm76wPqgDAaoEswJP0BXwfIdWhFST4bbd2R9c8CY-X9AUCCW3IIWRWWiJSSzjz6Xpt7KSWUWM7QL_cSsCddlzZ3ojyIk2gXovYiHT2tq5D1tk1qd6TE9ovgpukojQFLNlq-zeH6XrNjNQBcyPu4GGBZod80VBtgLH-N_T_pdvhstjuizEzsxJJzUcqU6Vh6Du3oa1gkNd7iawgeENnN01Ri6SCrP5t2fY87vrbmDCVOrgCH9m0vu_E9POAo3GdhXpS22YWO_9eJwGC3YBcOvDhwO1j0atIPyle75vMuYktuyyKkI702BsvUG5vo6Ft8V3yTLbdxJRTI6gF6kPyY69ww7r3_6e5AyUxJRdUnaZ0pSPmyA7JsfDht055z-vvVGmvhj_Y7r90PuULwA6XyXa8-MX9pfXQqz-rgD7IioagAbxuP6E6ra1t4QBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_304sRbfeRO76nQV_kwwIwigMvc_g%26client%3Dca-pub-4589626230246050%26adurl%3D
IP 178.250.2.65:0
Hash d80eac32fc44b2918c6c8400d06d75d2
b72c981f28c83cb01cf4e3354eed00e5936df4ea
cd1aa14b890933620389c257463026e370b92157dabbf2c11f0572d8aa74d82e
GET /delivery/r/afr.php?z=YyKc7QAFix4CO8CBAASKKzKSyOAPIba5DvdE0w&u=%7CqB2rCzOPoo9jMIudZ3DmPd0LvDl9nxeKLN%2FTg7MiGc4%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNTJmLEv97WHnUtKOrKYxIg_Yv4RnZRq4P_PySyhhQairi-eDLwKj_T8TTURxZD_b4cpeXLIOd145A8G_TAYmM7telpITaDxwjf-s-QtwtG7uTGOM97Jdpvm2NukU48g87Buf79ROX9JlXw6mCHDhFqejNNeKHZKwFK9bqqGcphddNynAkFNZ6uCJIbBQla5lFbPBDOBxuSXQHGgNrel2KKqsl3dU6ksrL11z6MgVxVdA4uQxE7Th5Cum8blmF-Fcqy-XBO2YZPZYBm1avLACOLgul0CYJs-3z5r4vx5TOzouZJqFFCuYVK-cKFEJQIqTPWxmLuP-neg1OF0KyFP37gzBGfAFPfvzM_gGwXEoGAjKVyZComxtSBg6Ke6kQDF6zirt_XZ4gcqAo4o8g3vKcN-mFxpycSNDQr5jdnfWGIpj9OoQPqDx-BeVHNevgOxVqbOT6Y8F84wIINQP00bnYLIZNEBkPVLhBBPf_TbVCCkEVjxbHbyxwAh7gzLfoZSvpiBBGQfOXRhKlI9T_i-sE_A&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC_xX17ZwiY56WFoGB78EPq5SSkA_JntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTQ1ODk2MjYyMzAyNDYwNTCgAdW20uoDyAEJqQJAVLvAm76wPqgDAaoEswJP0BXwfIdWhFST4bbd2R9c8CY-X9AUCCW3IIWRWWiJSSzjz6Xpt7KSWUWM7QL_cSsCddlzZ3ojyIk2gXovYiHT2tq5D1tk1qd6TE9ovgpukojQFLNlq-zeH6XrNjNQBcyPu4GGBZod80VBtgLH-N_T_pdvhstjuizEzsxJJzUcqU6Vh6Du3oa1gkNd7iawgeENnN01Ri6SCrP5t2fY87vrbmDCVOrgCH9m0vu_E9POAo3GdhXpS22YWO_9eJwGC3YBcOvDhwO1j0atIPyle75vMuYktuyyKkI702BsvUG5vo6Ft8V3yTLbdxJRTI6gF6kPyY69ww7r3_6e5AyUxJRdUnaZ0pSPmyA7JsfDht055z-vvVGmvhj_Y7r90PuULwA6XyXa8-MX9pfXQqz-rgD7IioagAbxuP6E6ra1t4QBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_304sRbfeRO76nQV_kwwIwigMvc_g%26client%3Dca-pub-4589626230246050%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 03:33:01 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=yN4e3TywMdw9qXuhh_s8hLImpCO4u-1rpg7eoU0xryQMLHQ4Mq0H0_ekvU2uT4GfVyq-DVqKuDIsYSoVoyyK_eqvf4bjrJP94RwAJucg1uuxP-8YIDV-_ygEMWxPsDX1BUaxPjqDoIxsaGdMwYfAm69MoIdH7JxpTmb3SFhWzE3wGHsexx9Ob0sCsEBX9Uj0Fhvj0wYj_nmBNQINEIGxSM1pZZHZ7-IW2NCbByCJ4rMQyX-UozYDYj9WombaPP4hryXxAg"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 113033069
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 00:48:31 GMT
expires: Sat, 09 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 528271
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kMCRE7OzWawC2ASdg2ICAgAAACHdre2ebpXuEOycImOzbcT9loKXvBgLFgASAAA&wp=YyKc7QAGOkkCO8OzAAcJHrZVuK9Gi9cBQZDumg
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kMCRE7OzWawC2ASdg2ICAgAAACHdre2ebpXuEOycImOzbcT9loKXvBgLFgASAAA&wp=YyKc7QAGOkkCO8OzAAcJHrZVuK9Gi9cBQZDumg
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kMCRE7OzWawC2ASdg2ICAgAAACHdre2ebpXuEOycImOzbcT9loKXvBgLFgASAAA&wp=YyKc7QAGOkkCO8OzAAcJHrZVuK9Gi9cBQZDumg HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 291449
date: Thu, 15 Sep 2022 03:33:01 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kLTUDrOzWawC2ASdg2ICAgAAAH_wxcjTGDPBEO2cImPdwPQdSgb67txLBAASAAA&wp=YyKc7QAGQFQCO8zsAAPwrSuMGbafe_MKrBwQeQ
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kLTUDrOzWawC2ASdg2ICAgAAAH_wxcjTGDPBEO2cImPdwPQdSgb67txLBAASAAA&wp=YyKc7QAGQFQCO8zsAAPwrSuMGbafe_MKrBwQeQ
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kLTUDrOzWawC2ASdg2ICAgAAAH_wxcjTGDPBEO2cImPdwPQdSgb67txLBAASAAA&wp=YyKc7QAGQFQCO8zsAAPwrSuMGbafe_MKrBwQeQ HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 306025
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kLTUDrOzWawC2ASdg2ICAgAAAJ7pL3BYvEyiEO2cImN1bZNoPCOpV-ZgGQASAAA&wp=YyKc7QAGIU0KmoCTAA-lN-nENKDr7RGvTeh6uw
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kLTUDrOzWawC2ASdg2ICAgAAAJ7pL3BYvEyiEO2cImN1bZNoPCOpV-ZgGQASAAA&wp=YyKc7QAGIU0KmoCTAA-lN-nENKDr7RGvTeh6uw
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kLTUDrOzWawC2ASdg2ICAgAAAJ7pL3BYvEyiEO2cImN1bZNoPCOpV-ZgGQASAAA&wp=YyKc7QAGIU0KmoCTAA-lN-nENKDr7RGvTeh6uw HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 293325
date: Thu, 15 Sep 2022 03:33:01 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
104.17.25.14200 OK 4.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (2171)
Hash 44c72b9bddfecacc9114e84d685dd085
38f3ff57b9b64a38fc2153eb30564b7fc1c86349
c82afd4f2d89288b4b79244f0c24264810b11326670710ac8e28e7bfc87c7991
GET /ajax/libs/webfont/1.6.28/webfontloader.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 03:33:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 4420
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04030-30d9"
last-modified: Mon, 04 May 2020 16:17:52 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 1846877
expires: Tue, 05 Sep 2023 03:33:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9QrpLOLL8aKNSHOred1frRBSRhl%2BLRB2bZPKDpX%2BQRgIW5yqpjdNzYPZnudhk0Hv99iYkh3vqRKs16E8uDuvcaYi3KX44os7HH0v0I3l4ooUw6F6s99zjENLuRaDySLuK5IpM1AV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74ae4c714afc1bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash edaa5542509347ba6dffb530f1859a55
29a819a101817d9257db34a06d5b4df1a27ff604
95f58ad06e063f952354ed7fa679e63e6d82f9d436668512af7345a045e24db2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4225
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:33:02 GMT
Last-Modified: Thu, 15 Sep 2022 02:22:37 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 313
static.criteo.net/design/dt/4ef456fb9fb14ec5a2da96fe450c24b3_homepagebaukasten-bold.woff
178.250.0.130200 OK 20 kB URL HTTP/2 static.criteo.net/design/dt/4ef456fb9fb14ec5a2da96fe450c24b3_homepagebaukasten-bold.woff
IP 178.250.0.130:0
File type Web Open Font Format, CFF, length 19492, version 1.0\012- data
Hash fe16408343054418c53b45c76a1892f2
b2f898a889e2164ba7bb7d6676b5a294eb97817b
3b42d14795d22866ea7e9bd3b4259fa75e510bcbbf7ab1861acb9ce2290128f2
GET /design/dt/4ef456fb9fb14ec5a2da96fe450c24b3_homepagebaukasten-bold.woff HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 03:33:02 GMT
content-type: text/plain; charset=UTF-8
content-length: 19492
last-modified: Mon, 06 Jul 2020 12:29:00 GMT
etag: "5f03190c-4c24"
expires: Sun, 10 Sep 2023 03:33:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 319027b805e4395449d76299e8f321c9
b206fa12e4ed6b7aea8911d498dded8fd5743cf2
860b34dbd76e3be31d51d6c82d4d4b0200df4ad541c86eeaa05aa840c39ba207
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4800
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:33:02 GMT
Last-Modified: Thu, 15 Sep 2022 02:13:02 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 313
static.criteo.net/flash/icon/close_button.svg
178.250.0.130200 OK 308 B URL HTTP/2 static.criteo.net/flash/icon/close_button.svg
IP 178.250.0.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 1bfe2e290ec4440da74a2e2c249eae2b
0b888a3f9e27d1554f2e21d51e7a1c223d00dbd4
8ec89605fe3d580e9539c7b858e8f69ba4e26fe06377ebe04585397de23a7395
GET /flash/icon/close_button.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 03:33:02 GMT
content-type: image/svg+xml
content-length: 308
last-modified: Fri, 14 Feb 2020 13:51:32 GMT
etag: "5e46a5e4-134"
expires: Sun, 10 Sep 2023 03:33:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=351e86083df5b49f719fc75677050e0fe9218658
104.244.42.200200 OK 315 B URL HTTP/2 syndication.twitter.com/settings?session_id=351e86083df5b49f719fc75677050e0fe9218658
IP 104.244.42.200:0
File type JSON data\012- , ASCII text, with very long lines (724), with no line terminators
Hash 337895171bedda99072b721c70846968
b4d7f3bd6ecef71c0733dc21723344cb94e6a45f
798f4be409e38ca283cc33755def17dfabcaeae8b90b252bda96b5eea19e4eaa
GET /settings?session_id=351e86083df5b49f719fc75677050e0fe9218658 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 03:33:02 GMT
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Thu, 15 Sep 2022 03:33:02 GMT
content-length: 315
content-encoding: gzip
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 104
x-connection-hash: 5a1ef1bb299274c1c771d75683dfb6b4cab202373467286297db86b4368797f4
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/back_button2.svg
178.250.0.130200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP 178.250.0.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 03:33:02 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Sun, 10 Sep 2023 03:33:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 421e63d49228261981fec8393a382ac0
e7d5cb9e1db22ba0583b30d98eb75f7a9dbd00f7
c1f381214c2448a4d9b03709eb1e00a9023308eaec22e84c4e5bbef39f885ca2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1796
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:33:02 GMT
Last-Modified: Thu, 15 Sep 2022 03:03:06 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 313
ads.eu.criteo.com/delivery/r/afr.php?z=YyKc7QAGQFQCO8zsAAPwrSuMGbafe_MKrBwQeQ&u=%7CqB2rCzOPoo8guAwvajHeOZNUeUko2B4rlmNmoKhOLG8%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNTJmLEv97WHnUtKOrKYxIg_Yv4RnZRq4P_PySyhhQairi-eDLwKj_TysXVTFEb4Cdq77diCkEEqVDTnocRZwyYgpoiQsvzAyUPsolrvWi5vAcyK8S8BmGdBoUOsbtxdfB-LVhid3nFT8zdwc0kZsdduvAN8DLoPHlB59RKhRKuojV0HdiprAw1Wk8SgBww5aXETRI6tAcbHxZjbdJcNiMvTcKnXjWyrDakHXL0c7jl5pPMDqEZij30-L4ifJnbkNShP2UXgQYUt-rb6BWYMlrG5Xn_sQ2j2ZNQr7APqgjpE-xx8RCx9Eg-WH9gjQex8_hIMa3tISzyRtl_T60gF2igTFROuJCnyP-0IEPNL8WfAgjUfIqctpoy3_XIdwn4d08CbrzP8QYfsDalcmyDZWMy8rFaJFaUKsfXpLhsJd5BVdSGy-GUmXwdKUdZUgl8FGsgarXgsTmK4ikSEFfQWFNOl16y2B0Twj5BzP29vIgs-JaLCWUcMRmYPucvPeTWU_lS_of8JgiMMg_JAiuJ75WGAfs-6SdTn1e&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCMOOF7ZwiY9SAGeyZ78EPreGPmALJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTQ1ODk2MjYyMzAyNDYwNTCgAdW20uoDyAEJqQJAVLvAm76wPqgDAaoEswJP0H2MsaQc0B8DvpJ96VZMZsMc5By8FhTo_9edF08ya-gzvRnkJllAxuSNUWZGI0KMe7cMJvLab_tW7OK2me8XMLflqu5nHzrnWb89hwHE9PMbABunvxQRidu0jl377RMFvgo1dbWf0s9KqgiANeJBev0PnkQi1UH0Lj8bQkWckenwdwCb_ZhaV2F4NU_HGSdwoJqUA-tO2Ay261xRYVL26ihTrJIquWTyLd3ePtLRN4qAMZ45ZoNeZo5_idQfSnaeNK6rOkySnT0CE4bckDDsEOlWBDP0wni4-hw5DP4VI4fiXqpYiLWM2ujW5vPOOIJdHGdDrsq-cj2PF8ugXlXWB9-j3RWEKNcPUX_LBFdUoUSroZp6pqJox-z7hfpAzjB9qw72fwJso1Ll5DrB_JNcVIObgAbxuP6E6ra1t4QBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_24Gx5B0S0rMhpMTXcbTuizrUwJBA%26client%3Dca-pub-4589626230246050%26adurl%3D
178.250.2.65200 OK 64 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=YyKc7QAGQFQCO8zsAAPwrSuMGbafe_MKrBwQeQ&u=%7CqB2rCzOPoo8guAwvajHeOZNUeUko2B4rlmNmoKhOLG8%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNTJmLEv97WHnUtKOrKYxIg_Yv4RnZRq4P_PySyhhQairi-eDLwKj_TysXVTFEb4Cdq77diCkEEqVDTnocRZwyYgpoiQsvzAyUPsolrvWi5vAcyK8S8BmGdBoUOsbtxdfB-LVhid3nFT8zdwc0kZsdduvAN8DLoPHlB59RKhRKuojV0HdiprAw1Wk8SgBww5aXETRI6tAcbHxZjbdJcNiMvTcKnXjWyrDakHXL0c7jl5pPMDqEZij30-L4ifJnbkNShP2UXgQYUt-rb6BWYMlrG5Xn_sQ2j2ZNQr7APqgjpE-xx8RCx9Eg-WH9gjQex8_hIMa3tISzyRtl_T60gF2igTFROuJCnyP-0IEPNL8WfAgjUfIqctpoy3_XIdwn4d08CbrzP8QYfsDalcmyDZWMy8rFaJFaUKsfXpLhsJd5BVdSGy-GUmXwdKUdZUgl8FGsgarXgsTmK4ikSEFfQWFNOl16y2B0Twj5BzP29vIgs-JaLCWUcMRmYPucvPeTWU_lS_of8JgiMMg_JAiuJ75WGAfs-6SdTn1e&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCMOOF7ZwiY9SAGeyZ78EPreGPmALJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTQ1ODk2MjYyMzAyNDYwNTCgAdW20uoDyAEJqQJAVLvAm76wPqgDAaoEswJP0H2MsaQc0B8DvpJ96VZMZsMc5By8FhTo_9edF08ya-gzvRnkJllAxuSNUWZGI0KMe7cMJvLab_tW7OK2me8XMLflqu5nHzrnWb89hwHE9PMbABunvxQRidu0jl377RMFvgo1dbWf0s9KqgiANeJBev0PnkQi1UH0Lj8bQkWckenwdwCb_ZhaV2F4NU_HGSdwoJqUA-tO2Ay261xRYVL26ihTrJIquWTyLd3ePtLRN4qAMZ45ZoNeZo5_idQfSnaeNK6rOkySnT0CE4bckDDsEOlWBDP0wni4-hw5DP4VI4fiXqpYiLWM2ujW5vPOOIJdHGdDrsq-cj2PF8ugXlXWB9-j3RWEKNcPUX_LBFdUoUSroZp6pqJox-z7hfpAzjB9qw72fwJso1Ll5DrB_JNcVIObgAbxuP6E6ra1t4QBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_24Gx5B0S0rMhpMTXcbTuizrUwJBA%26client%3Dca-pub-4589626230246050%26adurl%3D
IP 178.250.2.65:0
Hash fdbbac701ab4860ba6a3ce0ea54dce59
d269c472c97c44d2e73679830f58a6de8c55a6e0
cc45340e78c24876e7181b85dee917b854b536d17eac17f465c32c920f84b26a
GET /delivery/r/afr.php?z=YyKc7QAGQFQCO8zsAAPwrSuMGbafe_MKrBwQeQ&u=%7CqB2rCzOPoo8guAwvajHeOZNUeUko2B4rlmNmoKhOLG8%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNTJmLEv97WHnUtKOrKYxIg_Yv4RnZRq4P_PySyhhQairi-eDLwKj_TysXVTFEb4Cdq77diCkEEqVDTnocRZwyYgpoiQsvzAyUPsolrvWi5vAcyK8S8BmGdBoUOsbtxdfB-LVhid3nFT8zdwc0kZsdduvAN8DLoPHlB59RKhRKuojV0HdiprAw1Wk8SgBww5aXETRI6tAcbHxZjbdJcNiMvTcKnXjWyrDakHXL0c7jl5pPMDqEZij30-L4ifJnbkNShP2UXgQYUt-rb6BWYMlrG5Xn_sQ2j2ZNQr7APqgjpE-xx8RCx9Eg-WH9gjQex8_hIMa3tISzyRtl_T60gF2igTFROuJCnyP-0IEPNL8WfAgjUfIqctpoy3_XIdwn4d08CbrzP8QYfsDalcmyDZWMy8rFaJFaUKsfXpLhsJd5BVdSGy-GUmXwdKUdZUgl8FGsgarXgsTmK4ikSEFfQWFNOl16y2B0Twj5BzP29vIgs-JaLCWUcMRmYPucvPeTWU_lS_of8JgiMMg_JAiuJ75WGAfs-6SdTn1e&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCMOOF7ZwiY9SAGeyZ78EPreGPmALJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTQ1ODk2MjYyMzAyNDYwNTCgAdW20uoDyAEJqQJAVLvAm76wPqgDAaoEswJP0H2MsaQc0B8DvpJ96VZMZsMc5By8FhTo_9edF08ya-gzvRnkJllAxuSNUWZGI0KMe7cMJvLab_tW7OK2me8XMLflqu5nHzrnWb89hwHE9PMbABunvxQRidu0jl377RMFvgo1dbWf0s9KqgiANeJBev0PnkQi1UH0Lj8bQkWckenwdwCb_ZhaV2F4NU_HGSdwoJqUA-tO2Ay261xRYVL26ihTrJIquWTyLd3ePtLRN4qAMZ45ZoNeZo5_idQfSnaeNK6rOkySnT0CE4bckDDsEOlWBDP0wni4-hw5DP4VI4fiXqpYiLWM2ujW5vPOOIJdHGdDrsq-cj2PF8ugXlXWB9-j3RWEKNcPUX_LBFdUoUSroZp6pqJox-z7hfpAzjB9qw72fwJso1Ll5DrB_JNcVIObgAbxuP6E6ra1t4QBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_24Gx5B0S0rMhpMTXcbTuizrUwJBA%26client%3Dca-pub-4589626230246050%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 03:33:01 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=c7sNjTywMdw9qXuhQYN9ZcUTNDxQMsxpB8d4PVq9ywL3jdKljqHM-3OZt_kvRqYYfnJM7i9dXrEAzhhfGU_SiCnm1sPcjz7h56Fj5iboG_SGowsBWDuMmHHCoaoyPH9y-4RE-hrDq5DO0hOC2NLHCNxe-kmv4IwHu5QnunFYCecuwmnjtccE3ZCr1rshFmcf7yAshOjBL3Axq6hNNRm87oIEfGmFlHo3-iBmtbO-Jzt1tdbZt930vl69YeBKb4vtUwgtmw"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 109583392
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 421e63d49228261981fec8393a382ac0
e7d5cb9e1db22ba0583b30d98eb75f7a9dbd00f7
c1f381214c2448a4d9b03709eb1e00a9023308eaec22e84c4e5bbef39f885ca2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1796
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 03:33:02 GMT
Last-Modified: Thu, 15 Sep 2022 03:03:06 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 313
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Ff%2F5%2F3%2F9%2Ff53926056c731744407d0c2ea4efb6516458d2a9_Na_strone_Web.PNG%3Fcb%3D202237&v=3&w=800&s=wpb4PvoQNAo9RwagZusfnanj&b=400
178.250.0.139200 OK 19 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Ff%2F5%2F3%2F9%2Ff53926056c731744407d0c2ea4efb6516458d2a9_Na_strone_Web.PNG%3Fcb%3D202237&v=3&w=800&s=wpb4PvoQNAo9RwagZusfnanj&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 87d9be192e6da81048167d3f96ae52bc
fe2e22bc38c59b3abb1f634a3c640ce8c2def623
6f9e12b233159dc6d87234ce7ea9614bf350ecc283d40aafa866a5c813d66088
GET /img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Ff%2F5%2F3%2F9%2Ff53926056c731744407d0c2ea4efb6516458d2a9_Na_strone_Web.PNG%3Fcb%3D202237&v=3&w=800&s=wpb4PvoQNAo9RwagZusfnanj&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31291029
expires: Tue, 12 Sep 2023 07:30:12 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 18802
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F9%2F0%2Fc%2Fe%2F90ceadc1b3577a9033f13094af3d8dfe91ead4b0_2_PIA_118389_0_10.png%3Fcb%3D202237&v=3&w=800&s=5HISMxZws7UJwzUO-4HLtsrx&b=400
178.250.0.139200 OK 34 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F9%2F0%2Fc%2Fe%2F90ceadc1b3577a9033f13094af3d8dfe91ead4b0_2_PIA_118389_0_10.png%3Fcb%3D202237&v=3&w=800&s=5HISMxZws7UJwzUO-4HLtsrx&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0394ecd5a0035027e74e1baa6ef8b162
9389841bd4d6bf55dada380b98b14d40edf21b11
bac1cc16282cf4fa9ecf70968cbe96760ebe4ccfd075a2bc9738573a349b092f
GET /img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F9%2F0%2Fc%2Fe%2F90ceadc1b3577a9033f13094af3d8dfe91ead4b0_2_PIA_118389_0_10.png%3Fcb%3D202237&v=3&w=800&s=5HISMxZws7UJwzUO-4HLtsrx&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31291008
expires: Tue, 12 Sep 2023 07:29:51 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 34536
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F2%2F1%2F7%2Fd%2F217dca3f1b051967148d3faead781e5fb923fe33_1_2SE10001000L_lut162018.png%3Fcb%3D202237&v=3&w=800&s=KB4sQ-G80OLyox1s99NReLcB&b=400
178.250.0.139200 OK 22 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F2%2F1%2F7%2Fd%2F217dca3f1b051967148d3faead781e5fb923fe33_1_2SE10001000L_lut162018.png%3Fcb%3D202237&v=3&w=800&s=KB4sQ-G80OLyox1s99NReLcB&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash b2976956cb80f23e8fe75b52d5b56187
db9f3f2109d8b06fc83e1d3f89110735ebfceaa4
76672edf118d58133ea492f01064662149b122d04b7f2aede69896540c71f794
GET /img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F2%2F1%2F7%2Fd%2F217dca3f1b051967148d3faead781e5fb923fe33_1_2SE10001000L_lut162018.png%3Fcb%3D202237&v=3&w=800&s=KB4sQ-G80OLyox1s99NReLcB&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31291416
expires: Tue, 12 Sep 2023 07:36:39 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 22144
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F4%2Fe%2F7%2F6%2F4e76ce33798e61f48f462b6fe87ba0d742365842_3_PIA_109440_0_110_copy_1.png%3Fcb%3D202237&v=3&w=800&s=nLzJ_KbJLDXGuGq7X6v8sXri&b=400
178.250.0.139200 OK 21 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F4%2Fe%2F7%2F6%2F4e76ce33798e61f48f462b6fe87ba0d742365842_3_PIA_109440_0_110_copy_1.png%3Fcb%3D202237&v=3&w=800&s=nLzJ_KbJLDXGuGq7X6v8sXri&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f0ce70bdc33e172a8016a236e7bd6a24
d3c5b7cb404fffcf4e525e9ae04b0c91ea83cf13
e4367b2f0da648295ee60c195351563f8574bc4633b47939cb178eab1701a94e
GET /img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F4%2Fe%2F7%2F6%2F4e76ce33798e61f48f462b6fe87ba0d742365842_3_PIA_109440_0_110_copy_1.png%3Fcb%3D202237&v=3&w=800&s=nLzJ_KbJLDXGuGq7X6v8sXri&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31290974
expires: Tue, 12 Sep 2023 07:29:17 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 21006
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=104&m=0&partner=26192&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F26191%2F161101%2Fc671e3b446504cceaddfb1b262872e63_logo_horizontal_dark.png&v=3&w=596&s=UqcJrbANSVUSakLj8by_TnLa
178.250.0.139200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=104&m=0&partner=26192&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F26191%2F161101%2Fc671e3b446504cceaddfb1b262872e63_logo_horizontal_dark.png&v=3&w=596&s=UqcJrbANSVUSakLj8by_TnLa
IP 178.250.0.139:0
File type PNG image data, 424 x 104, 8-bit/color RGBA, non-interlaced\012- data
Hash 02bc358ca69f3c3358e036afd5fc1d42
454ee34765108b70560576bb8ead9cd2557987be
8a1ab4c99e776f3af5dc6bb0fa39d75f02f1e4bdd7aa03703740802c561554dd
GET /img/img?h=104&m=0&partner=26192&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F26191%2F161101%2Fc671e3b446504cceaddfb1b262872e63_logo_horizontal_dark.png&v=3&w=596&s=UqcJrbANSVUSakLj8by_TnLa HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30686055
expires: Tue, 05 Sep 2023 07:27:18 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 11023
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F0%2F0%2F4%2F3%2F0043c9c563b2d293efac1f2f6b7c86180899c44e_2_SN_BM306_3_RED_sty112018.png%3Fcb%3D202237&v=3&w=800&s=ZBi0iwXMqW_P02S8WAHStUBm&b=400
178.250.0.139200 OK 21 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F0%2F0%2F4%2F3%2F0043c9c563b2d293efac1f2f6b7c86180899c44e_2_SN_BM306_3_RED_sty112018.png%3Fcb%3D202237&v=3&w=800&s=ZBi0iwXMqW_P02S8WAHStUBm&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4e578d10394bf464bf0212c01fe0b829
a75d0fc9106db8905d7eac02696420e7adf7586b
03c5a0032619260631f4edcafe324f885349aaa079055f2801cc8096c1aa849e
GET /img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F0%2F0%2F4%2F3%2F0043c9c563b2d293efac1f2f6b7c86180899c44e_2_SN_BM306_3_RED_sty112018.png%3Fcb%3D202237&v=3&w=800&s=ZBi0iwXMqW_P02S8WAHStUBm&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31291267
expires: Tue, 12 Sep 2023 07:34:09 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 21252
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fc%2F4%2F3%2F9%2Fc4397c95c4f194a8111c11d2f6d435916b156add_2_PIA_155695_0_10.png%3Fcb%3D202237&v=3&w=800&s=frL1FFU3S-3NIL7sbECtaj9b&b=400
178.250.0.139200 OK 27 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fc%2F4%2F3%2F9%2Fc4397c95c4f194a8111c11d2f6d435916b156add_2_PIA_155695_0_10.png%3Fcb%3D202237&v=3&w=800&s=frL1FFU3S-3NIL7sbECtaj9b&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 5d77609b9661dbb78325827b8f51a781
1ffc5c9a3a3d58b770f6da448090119249649985
5bfe2353780199286bc1bd5e55d5c3ee070352225dfd85734bf071b14d02c5cf
GET /img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fc%2F4%2F3%2F9%2Fc4397c95c4f194a8111c11d2f6d435916b156add_2_PIA_155695_0_10.png%3Fcb%3D202237&v=3&w=800&s=frL1FFU3S-3NIL7sbECtaj9b&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31291185
expires: Tue, 12 Sep 2023 07:32:47 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 27132
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fd%2Fb%2F5%2F1%2Fdb5173c715bb238035c1b5dc490afbf88ce48bdf_3_PIA_178624_0_13_1.png%3Fcb%3D202237&v=3&w=800&s=QXRLJZQKUAbppN77eNwFrmKJ&b=400
178.250.0.139200 OK 19 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fd%2Fb%2F5%2F1%2Fdb5173c715bb238035c1b5dc490afbf88ce48bdf_3_PIA_178624_0_13_1.png%3Fcb%3D202237&v=3&w=800&s=QXRLJZQKUAbppN77eNwFrmKJ&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6643f40aeccaf015e206ce9d9b353568
a843a44bfc26a2d715b64c76396d99c3775fc3e0
1086649400312954876e780446d8688b95436e87222a19dc75757f377d0054f3
GET /img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fd%2Fb%2F5%2F1%2Fdb5173c715bb238035c1b5dc490afbf88ce48bdf_3_PIA_178624_0_13_1.png%3Fcb%3D202237&v=3&w=800&s=QXRLJZQKUAbppN77eNwFrmKJ&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31291008
expires: Tue, 12 Sep 2023 07:29:51 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 18866
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F5%2Fc%2F9%2F2%2F5c92add54054357b331ed427379ccf318adff306_2_PW_MK_NTP30N__sie_27_2018_2_1.png%3Fcb%3D202237&v=3&w=800&s=rcpFW7-uz_XCiX-GyoGAxT5A&b=400
178.250.0.139200 OK 21 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F5%2Fc%2F9%2F2%2F5c92add54054357b331ed427379ccf318adff306_2_PW_MK_NTP30N__sie_27_2018_2_1.png%3Fcb%3D202237&v=3&w=800&s=rcpFW7-uz_XCiX-GyoGAxT5A&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f42b931d66fd40989c9c4e06cdd0828d
f519f0c296c7be0e07f574064daeaf554ef37270
844de7a71bebddec7ccaf5fc16eb1fa9222290de0dc54d4d110f3e8c81c735d4
GET /img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F5%2Fc%2F9%2F2%2F5c92add54054357b331ed427379ccf318adff306_2_PW_MK_NTP30N__sie_27_2018_2_1.png%3Fcb%3D202237&v=3&w=800&s=rcpFW7-uz_XCiX-GyoGAxT5A&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31290978
expires: Tue, 12 Sep 2023 07:29:21 GMT
date: Thu, 15 Sep 2022 03:33:01 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 21376
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F8%2F9%2Fc%2Ff%2F89cf3c20530f7cc4e3bc24c1741d21c1aa715186_2_SN_BM306_3_BLUE_sty112018_1.png%3Fcb%3D202237&v=3&w=800&s=zN4v6x2o2O_1atSOXljLNLIK&b=400
178.250.0.139200 OK 25 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F8%2F9%2Fc%2Ff%2F89cf3c20530f7cc4e3bc24c1741d21c1aa715186_2_SN_BM306_3_BLUE_sty112018_1.png%3Fcb%3D202237&v=3&w=800&s=zN4v6x2o2O_1atSOXljLNLIK&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 63b160f52d3801aa297099dd96b26d8e
7654a5ca78ed5b96f907f994b671f6f262ef868e
f48c7cf5f4576285143848289490e8fbfcfcd1bdd83e63c7a58d423fd0fa2e7b
GET /img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F8%2F9%2Fc%2Ff%2F89cf3c20530f7cc4e3bc24c1741d21c1aa715186_2_SN_BM306_3_BLUE_sty112018_1.png%3Fcb%3D202237&v=3&w=800&s=zN4v6x2o2O_1atSOXljLNLIK&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31291458
expires: Tue, 12 Sep 2023 07:37:21 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 24786
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fc%2Fa%2Fb%2F2%2Fcab2d4560c3a3be78396c66e1f825eb0566e44d1_3_3108_2_lis302017_4_1.png%3Fcb%3D202237&v=3&w=800&s=WJN1vhUZtf-97dC-vEMC1Gry&b=400
178.250.0.139200 OK 18 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fc%2Fa%2Fb%2F2%2Fcab2d4560c3a3be78396c66e1f825eb0566e44d1_3_3108_2_lis302017_4_1.png%3Fcb%3D202237&v=3&w=800&s=WJN1vhUZtf-97dC-vEMC1Gry&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f53a5e5343c8dbbfdc5594144f69290d
f999b1bd62aa76dc21d55bfb4082235986c967f5
dbc775c122b686bcea7908b959636b574f30161cfec8db1976d5127807504e87
GET /img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fc%2Fa%2Fb%2F2%2Fcab2d4560c3a3be78396c66e1f825eb0566e44d1_3_3108_2_lis302017_4_1.png%3Fcb%3D202237&v=3&w=800&s=WJN1vhUZtf-97dC-vEMC1Gry&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31292314
expires: Tue, 12 Sep 2023 07:51:37 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 18364
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F3%2Fb%2F1%2F1%2F3b11429a60e4f7bf40b80181a394815f5a15599a_2_PIA_210334_0_10.png%3Fcb%3D202237&v=3&w=800&s=y5Q9SMYZsUjhiw0bNpI3as11&b=400
178.250.0.139200 OK 18 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F3%2Fb%2F1%2F1%2F3b11429a60e4f7bf40b80181a394815f5a15599a_2_PIA_210334_0_10.png%3Fcb%3D202237&v=3&w=800&s=y5Q9SMYZsUjhiw0bNpI3as11&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f8b8c4ee842dfa0ba29c396bc7f4cd24
593283143692c796e8a7e1708c2b9230abc8eaba
c7ca589e9a4f96d51a203c7e86b9033599360f029bcabe615b94e886995ecbc5
GET /img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F3%2Fb%2F1%2F1%2F3b11429a60e4f7bf40b80181a394815f5a15599a_2_PIA_210334_0_10.png%3Fcb%3D202237&v=3&w=800&s=y5Q9SMYZsUjhiw0bNpI3as11&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31291151
expires: Tue, 12 Sep 2023 07:32:14 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 18114
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F2%2F4%2F1%2F3%2F24130d0c6a03698c4f0fca813d2e77a89df269f2_3_9393_8_lis282017.png%3Fcb%3D202237&v=3&w=800&s=5X_npQx_uyx6bQXDYToXjj2o&b=400
178.250.0.139200 OK 20 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F2%2F4%2F1%2F3%2F24130d0c6a03698c4f0fca813d2e77a89df269f2_3_9393_8_lis282017.png%3Fcb%3D202237&v=3&w=800&s=5X_npQx_uyx6bQXDYToXjj2o&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3abab53733688f74d576d7d6e3796e86
bc36d85eee856432a847e8963586adfc6b2b1fe0
e6bb4842c5fbcae1137e698f6d83db40ddea599b84b485ec555bbefe414a8e03
GET /img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F2%2F4%2F1%2F3%2F24130d0c6a03698c4f0fca813d2e77a89df269f2_3_9393_8_lis282017.png%3Fcb%3D202237&v=3&w=800&s=5X_npQx_uyx6bQXDYToXjj2o&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31294770
expires: Tue, 12 Sep 2023 08:32:33 GMT
date: Thu, 15 Sep 2022 03:33:01 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 20296
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F9%2Ff%2Ff%2F3%2F9ff3aad50e7845397ccabbdee3456ba96184697c_2_PIA_191752_0_10.png%3Fcb%3D202237&v=3&w=800&s=UlhggBIM8xsDnSuKayz5hW8b&b=400
178.250.0.139200 OK 22 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F9%2Ff%2Ff%2F3%2F9ff3aad50e7845397ccabbdee3456ba96184697c_2_PIA_191752_0_10.png%3Fcb%3D202237&v=3&w=800&s=UlhggBIM8xsDnSuKayz5hW8b&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9ad2118274454951f99c263f5719f149
4cae066315855343af18885ed87a8418d9856a3b
c9bd6f4aacdd2479b494a4c95a0e0a81849861a057fd2ed27cbec2867c6eb1b7
GET /img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F9%2Ff%2Ff%2F3%2F9ff3aad50e7845397ccabbdee3456ba96184697c_2_PIA_191752_0_10.png%3Fcb%3D202237&v=3&w=800&s=UlhggBIM8xsDnSuKayz5hW8b&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31291175
expires: Tue, 12 Sep 2023 07:32:38 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 22416
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F2%2F0%2Fc%2Fb%2F20cb08ba1f4b426cc08fb98b136c80e3584554d4_RT_U_Nov182016_1.PNG%3Fcb%3D202237&v=3&w=800&s=qJBXREODqT2-b4IHpAqU1mlc&b=400
178.250.0.139200 OK 26 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F2%2F0%2Fc%2Fb%2F20cb08ba1f4b426cc08fb98b136c80e3584554d4_RT_U_Nov182016_1.PNG%3Fcb%3D202237&v=3&w=800&s=qJBXREODqT2-b4IHpAqU1mlc&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3d24c0995fff548d499241f5069a3812
fb2599703f705e055bdc721b9ee90aa08691d7a3
bd8ec15425eb8e6dd43168c33cbc95932cfbd31d7a66ef8e850970b5a97eb036
GET /img/img?c=3&cq=256&h=800&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F2%2F0%2Fc%2Fb%2F20cb08ba1f4b426cc08fb98b136c80e3584554d4_RT_U_Nov182016_1.PNG%3Fcb%3D202237&v=3&w=800&s=qJBXREODqT2-b4IHpAqU1mlc&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31291172
expires: Tue, 12 Sep 2023 07:32:35 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 25902
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F0%2Fe%2F0%2Ff%2F0e0ff71827b61ad5536e6ee70cb7edccae44b6c7_2_PIA_210323_0_10.png%3Fcb%3D202237&v=3&w=400&s=wemNWiKe1CQ32h9rTFu4bWD1&b=400
178.250.0.139200 OK 18 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F0%2Fe%2F0%2Ff%2F0e0ff71827b61ad5536e6ee70cb7edccae44b6c7_2_PIA_210323_0_10.png%3Fcb%3D202237&v=3&w=400&s=wemNWiKe1CQ32h9rTFu4bWD1&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash c648ae525b209ab296c101e51d20e6eb
1ecc4b6bb6e1b9e997f776284ccc29ec58a12ef5
94f485db40e435bcf8a2ff7cd8796aafa3228c500b6863f2401d0bd5176742de
GET /img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F0%2Fe%2F0%2Ff%2F0e0ff71827b61ad5536e6ee70cb7edccae44b6c7_2_PIA_210323_0_10.png%3Fcb%3D202237&v=3&w=400&s=wemNWiKe1CQ32h9rTFu4bWD1&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31291286
expires: Tue, 12 Sep 2023 07:34:29 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 17526
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=76&m=0&partner=26192&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F26191%2F161101%2Fc671e3b446504cceaddfb1b262872e63_logo_horizontal_dark.png&v=3&w=496&s=x8OURa8XKNA6bW6e5M3MSs1y
178.250.0.139200 OK 8.0 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=76&m=0&partner=26192&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F26191%2F161101%2Fc671e3b446504cceaddfb1b262872e63_logo_horizontal_dark.png&v=3&w=496&s=x8OURa8XKNA6bW6e5M3MSs1y
IP 178.250.0.139:0
File type PNG image data, 310 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash 055e2f3b0b1168a2116cbf20367a9536
21d65ff0174d356cdc952c7f1b35766aa1d18efd
1620ef757a7c527461a1d8b8eb54d51e340ef729d20e988ee2b3aaa35cf9f380
GET /img/img?h=76&m=0&partner=26192&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F26191%2F161101%2Fc671e3b446504cceaddfb1b262872e63_logo_horizontal_dark.png&v=3&w=496&s=x8OURa8XKNA6bW6e5M3MSs1y HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30686055
expires: Tue, 05 Sep 2023 07:27:18 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7984
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fe%2F8%2F9%2F8%2Fe898b5fab81b1c3d7df3c9a12e4665b8877f934a_2_PIA_179616_0_10.png%3Fcb%3D202237&v=3&w=400&s=JPBh-adxwgySS3CwslaZcGWY&b=400
178.250.0.139200 OK 32 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fe%2F8%2F9%2F8%2Fe898b5fab81b1c3d7df3c9a12e4665b8877f934a_2_PIA_179616_0_10.png%3Fcb%3D202237&v=3&w=400&s=JPBh-adxwgySS3CwslaZcGWY&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 58c45f9c9c94ced066372df9ed6b8096
0facfcdcf480c9e7739b4b6f430e6c9d35c2081d
de03afdb283ea1670af34c5a43ed6a84783b389fe7bb510ffeb5167f918db940
GET /img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fe%2F8%2F9%2F8%2Fe898b5fab81b1c3d7df3c9a12e4665b8877f934a_2_PIA_179616_0_10.png%3Fcb%3D202237&v=3&w=400&s=JPBh-adxwgySS3CwslaZcGWY&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31291216
expires: Tue, 12 Sep 2023 07:33:19 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 31812
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Ff%2F5%2F3%2F9%2Ff53926056c731744407d0c2ea4efb6516458d2a9_Na_strone_Web.PNG%3Fcb%3D202237&v=3&w=400&s=nr_o516f3XC03jokHrmz3fVJ&b=400
178.250.0.139200 OK 19 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Ff%2F5%2F3%2F9%2Ff53926056c731744407d0c2ea4efb6516458d2a9_Na_strone_Web.PNG%3Fcb%3D202237&v=3&w=400&s=nr_o516f3XC03jokHrmz3fVJ&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 87d9be192e6da81048167d3f96ae52bc
fe2e22bc38c59b3abb1f634a3c640ce8c2def623
6f9e12b233159dc6d87234ce7ea9614bf350ecc283d40aafa866a5c813d66088
GET /img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Ff%2F5%2F3%2F9%2Ff53926056c731744407d0c2ea4efb6516458d2a9_Na_strone_Web.PNG%3Fcb%3D202237&v=3&w=400&s=nr_o516f3XC03jokHrmz3fVJ&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31291029
expires: Tue, 12 Sep 2023 07:30:12 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 18802
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F9%2F0%2Fc%2Fe%2F90ceadc1b3577a9033f13094af3d8dfe91ead4b0_2_PIA_118389_0_10.png%3Fcb%3D202237&v=3&w=400&s=EcuWoZeQ4o6D5DIjOk91KkJh&b=400
178.250.0.139200 OK 34 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F9%2F0%2Fc%2Fe%2F90ceadc1b3577a9033f13094af3d8dfe91ead4b0_2_PIA_118389_0_10.png%3Fcb%3D202237&v=3&w=400&s=EcuWoZeQ4o6D5DIjOk91KkJh&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0394ecd5a0035027e74e1baa6ef8b162
9389841bd4d6bf55dada380b98b14d40edf21b11
bac1cc16282cf4fa9ecf70968cbe96760ebe4ccfd075a2bc9738573a349b092f
GET /img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F9%2F0%2Fc%2Fe%2F90ceadc1b3577a9033f13094af3d8dfe91ead4b0_2_PIA_118389_0_10.png%3Fcb%3D202237&v=3&w=400&s=EcuWoZeQ4o6D5DIjOk91KkJh&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31291008
expires: Tue, 12 Sep 2023 07:29:51 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 34536
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=FPQa6_GmlTcJ7C5QPzGxms_Kfbuc7a4jCcpuhIQPL7zO03n3lj9Vmit68FGysQIHbE6VPlkdTw75Gb7AOhW-TZYIhMCiBNIQOOa4geeFuD1JCb147hgAhUmIbrwpA8KeJOv3G7qevC38CECptzqcDh88AVbyihkSKHDA5DUb6_uwbE_gPjflEHqeHrXkUkAdt8ZfNnNgen1Ff579GR3baLW8vfTq41cQZubWfyAqou3b_AS72-iCh4GKWF_OYjymVKTB64B4bSlQnjA9Dqxp762xAtRLF2TqQdS-q4LpP-tVBpt5TaQB__A4Wj59Go-Do16b_O4jHK2V60w6-wLhNKlzmLNzKWy918XDTAfQhSsQPZsx0zaRTHLzriLhWZ3pm5fNjIpasHwmvkkMQBhY4yeuKbS1Mpr0A2WhXUXHdqnhKWxW
178.250.2.148200 OK 21 kB URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=FPQa6_GmlTcJ7C5QPzGxms_Kfbuc7a4jCcpuhIQPL7zO03n3lj9Vmit68FGysQIHbE6VPlkdTw75Gb7AOhW-TZYIhMCiBNIQOOa4geeFuD1JCb147hgAhUmIbrwpA8KeJOv3G7qevC38CECptzqcDh88AVbyihkSKHDA5DUb6_uwbE_gPjflEHqeHrXkUkAdt8ZfNnNgen1Ff579GR3baLW8vfTq41cQZubWfyAqou3b_AS72-iCh4GKWF_OYjymVKTB64B4bSlQnjA9Dqxp762xAtRLF2TqQdS-q4LpP-tVBpt5TaQB__A4Wj59Go-Do16b_O4jHK2V60w6-wLhNKlzmLNzKWy918XDTAfQhSsQPZsx0zaRTHLzriLhWZ3pm5fNjIpasHwmvkkMQBhY4yeuKbS1Mpr0A2WhXUXHdqnhKWxW
IP 178.250.2.148:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 664fb4c83fb9b3b13da36e2993cf2e98
d82feb94bc586f6f9b66e619413af4f4eda5c634
b67c7717a512a2c1556ee2949531c7f32117f987bd74009981e0f874335c8a65
GET /delivery/lg.php?cppv=3&cpp=FPQa6_GmlTcJ7C5QPzGxms_Kfbuc7a4jCcpuhIQPL7zO03n3lj9Vmit68FGysQIHbE6VPlkdTw75Gb7AOhW-TZYIhMCiBNIQOOa4geeFuD1JCb147hgAhUmIbrwpA8KeJOv3G7qevC38CECptzqcDh88AVbyihkSKHDA5DUb6_uwbE_gPjflEHqeHrXkUkAdt8ZfNnNgen1Ff579GR3baLW8vfTq41cQZubWfyAqou3b_AS72-iCh4GKWF_OYjymVKTB64B4bSlQnjA9Dqxp762xAtRLF2TqQdS-q4LpP-tVBpt5TaQB__A4Wj59Go-Do16b_O4jHK2V60w6-wLhNKlzmLNzKWy918XDTAfQhSsQPZsx0zaRTHLzriLhWZ3pm5fNjIpasHwmvkkMQBhY4yeuKbS1Mpr0A2WhXUXHdqnhKWxW HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 03:33:02 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 1708165
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F5%2Fc%2F9%2F2%2F5c92add54054357b331ed427379ccf318adff306_2_PW_MK_NTP30N__sie_27_2018_2_1.png%3Fcb%3D202237&v=3&w=400&s=vdmZ3UDlTEDj3LxZib1CPryu&b=400
178.250.0.139200 OK 21 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F5%2Fc%2F9%2F2%2F5c92add54054357b331ed427379ccf318adff306_2_PW_MK_NTP30N__sie_27_2018_2_1.png%3Fcb%3D202237&v=3&w=400&s=vdmZ3UDlTEDj3LxZib1CPryu&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash f42b931d66fd40989c9c4e06cdd0828d
f519f0c296c7be0e07f574064daeaf554ef37270
844de7a71bebddec7ccaf5fc16eb1fa9222290de0dc54d4d110f3e8c81c735d4
GET /img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F5%2Fc%2F9%2F2%2F5c92add54054357b331ed427379ccf318adff306_2_PW_MK_NTP30N__sie_27_2018_2_1.png%3Fcb%3D202237&v=3&w=400&s=vdmZ3UDlTEDj3LxZib1CPryu&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31290978
expires: Tue, 12 Sep 2023 07:29:21 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 21376
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=XGG9FjBk8LEGuWAiOQPSK_37FvKwqq8rvOKKG34ugmOaxM0eRr43BDN2qSS7x_OOBwzyv30NRrK4PM6Xvi24hkUw7aqArvW9EA1VvvW9d88YqHH0-lmBwNRhNIOlWqlXOzleSrH0_zFSwaSR2qOxe94JJwQUEEpsoqNWW1y070nl9ReMzlbcxsQ9vki1upVkUJLJ_c1ctvpwh0CgxL9JRkwMKvuqm62Nnqsq0NE9xEr28g4-7Gf0Xc27j7BiDOUsbLtDFTGSLGvLByNhXgHFxc1-WUzVBf9GiGHFo61lmURx6kjFWl9YzNq2Pv8AOR5BYyPu4ywo_1nrgoOZGBs14J_MScp8e0gUQCCwYq_UIlZKHZUrm63gjqk-8wekuiL5IjI8ICn9JXmrnFibj9Q2JiyG4JPSZibOJhe2lF76thudUj96
178.250.2.148200 OK 43 B URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=XGG9FjBk8LEGuWAiOQPSK_37FvKwqq8rvOKKG34ugmOaxM0eRr43BDN2qSS7x_OOBwzyv30NRrK4PM6Xvi24hkUw7aqArvW9EA1VvvW9d88YqHH0-lmBwNRhNIOlWqlXOzleSrH0_zFSwaSR2qOxe94JJwQUEEpsoqNWW1y070nl9ReMzlbcxsQ9vki1upVkUJLJ_c1ctvpwh0CgxL9JRkwMKvuqm62Nnqsq0NE9xEr28g4-7Gf0Xc27j7BiDOUsbLtDFTGSLGvLByNhXgHFxc1-WUzVBf9GiGHFo61lmURx6kjFWl9YzNq2Pv8AOR5BYyPu4ywo_1nrgoOZGBs14J_MScp8e0gUQCCwYq_UIlZKHZUrm63gjqk-8wekuiL5IjI8ICn9JXmrnFibj9Q2JiyG4JPSZibOJhe2lF76thudUj96
IP 178.250.2.148:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /delivery/lg.php?cppv=3&cpp=XGG9FjBk8LEGuWAiOQPSK_37FvKwqq8rvOKKG34ugmOaxM0eRr43BDN2qSS7x_OOBwzyv30NRrK4PM6Xvi24hkUw7aqArvW9EA1VvvW9d88YqHH0-lmBwNRhNIOlWqlXOzleSrH0_zFSwaSR2qOxe94JJwQUEEpsoqNWW1y070nl9ReMzlbcxsQ9vki1upVkUJLJ_c1ctvpwh0CgxL9JRkwMKvuqm62Nnqsq0NE9xEr28g4-7Gf0Xc27j7BiDOUsbLtDFTGSLGvLByNhXgHFxc1-WUzVBf9GiGHFo61lmURx6kjFWl9YzNq2Pv8AOR5BYyPu4ywo_1nrgoOZGBs14J_MScp8e0gUQCCwYq_UIlZKHZUrm63gjqk-8wekuiL5IjI8ICn9JXmrnFibj9Q2JiyG4JPSZibOJhe2lF76thudUj96 HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 03:33:02 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 1771338
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8720286955871_m_en_hd_1.jpg%3Ft%3D1659004016%3Fcb%3D2022091414&v=3&w=800&s=aew4JrvG-g3lFYWKVEHtI8Td&b=400
178.250.0.139200 OK 18 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8720286955871_m_en_hd_1.jpg%3Ft%3D1659004016%3Fcb%3D2022091414&v=3&w=800&s=aew4JrvG-g3lFYWKVEHtI8Td&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 27349b559e50ed63b738580485df0d24
279903bb1760d0a3351f91e9de5f4055e5bc1c15
5cfcb388ddb45b3bf0e91c3c63089190915add0efeae1ee795b4c1f6666ca38d
GET /img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8720286955871_m_en_hd_1.jpg%3Ft%3D1659004016%3Fcb%3D2022091414&v=3&w=800&s=aew4JrvG-g3lFYWKVEHtI8Td&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31488551
expires: Thu, 14 Sep 2023 14:22:15 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 17716
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=104&m=0&partner=28905&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F28905%2F171205%2F17b2ff9bd8004bd5ba9313c574dbec88_no-artboard-21vidaxl-logo-1200x1200.png&v=3&w=596&s=i9NrkHm0pxtoSvGGnYRtPi6F
178.250.0.139200 OK 31 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=104&m=0&partner=28905&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F28905%2F171205%2F17b2ff9bd8004bd5ba9313c574dbec88_no-artboard-21vidaxl-logo-1200x1200.png&v=3&w=596&s=i9NrkHm0pxtoSvGGnYRtPi6F
IP 178.250.0.139:0
File type PNG image data, 282 x 104, 8-bit/color RGBA, non-interlaced\012- data
Hash 33955dea35624ff4162039ab6c59049c
417eb461d2a7de61cdfe7ff397ee3300e30dedbb
0134365aa91dee454d9b356f80d2bf645cbd896c2ce65eb6c00aad3529a8f894
GET /img/img?h=104&m=0&partner=28905&q=80&r=0&u=http%3A%2F%2Fstatic.nl.eu.criteo.net%2Fdesign%2Fdt%2F28905%2F171205%2F17b2ff9bd8004bd5ba9313c574dbec88_no-artboard-21vidaxl-logo-1200x1200.png&v=3&w=596&s=i9NrkHm0pxtoSvGGnYRtPi6F HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30778244
expires: Wed, 06 Sep 2023 09:03:47 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 30567
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8718475584919_m_en_hd_1.jpg%3Ft%3D1649667666%3Fcb%3D2022091414&v=3&w=800&s=hEmhHlATe40GapqUfvQ3UBi0&b=400
178.250.0.139200 OK 32 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8718475584919_m_en_hd_1.jpg%3Ft%3D1649667666%3Fcb%3D2022091414&v=3&w=800&s=hEmhHlATe40GapqUfvQ3UBi0&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fb4285874f775154a91354246f02f0fd
606a199ef1816d46d6beeac5e357897642de5299
61d0ce58a33d0896e0fc6d5cfb96acffd45966027268293234066d8af68daeb2
GET /img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8718475584919_m_en_hd_1.jpg%3Ft%3D1649667666%3Fcb%3D2022091414&v=3&w=800&s=hEmhHlATe40GapqUfvQ3UBi0&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31484702
expires: Thu, 14 Sep 2023 13:18:05 GMT
date: Thu, 15 Sep 2022 03:33:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 32266
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8718475712879_a_en_hd_1.jpg%3Ft%3D1650165578%3Fcb%3D2022091414&v=3&w=800&s=ds6QpYzWWMKP_4-rqeHNahS8&b=400
178.250.0.139200 OK 9.4 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8718475712879_a_en_hd_1.jpg%3Ft%3D1650165578%3Fcb%3D2022091414&v=3&w=800&s=ds6QpYzWWMKP_4-rqeHNahS8&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x196, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e46fd956f91e9db424872b6597128df6
559638e20ac1f52d784ca73467881b1224f6e2b2
fbfb7275a0235369c054328bf7e333f0e944169e204e316c04e5b1723fb508bd
GET /img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8718475712879_a_en_hd_1.jpg%3Ft%3D1650165578%3Fcb%3D2022091414&v=3&w=800&s=ds6QpYzWWMKP_4-rqeHNahS8&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31484770
expires: Thu, 14 Sep 2023 13:19:13 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 9392
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F4251182710690_m_en_hd_1.jpg%3Ft%3D1651051116%3Fcb%3D2022091414&v=3&w=800&s=WW646FzhXzVQe4jBX8k4Iru4&b=400
178.250.0.139200 OK 18 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F4251182710690_m_en_hd_1.jpg%3Ft%3D1651051116%3Fcb%3D2022091414&v=3&w=800&s=WW646FzhXzVQe4jBX8k4Iru4&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8bb199088fcd55153f1ff77786ae85bd
44ceca1e259cf99a37af42a7b2f6192225385718
2c41212485063299ed33f5ced0eff69b49809243ceee0b2834ae3e41f0e7c5c5
GET /img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F4251182710690_m_en_hd_1.jpg%3Ft%3D1651051116%3Fcb%3D2022091414&v=3&w=800&s=WW646FzhXzVQe4jBX8k4Iru4&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31484786
expires: Thu, 14 Sep 2023 13:19:30 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 18054
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8718591256325_a_en_hd_1.jpg%3Ft%3D1649238375%3Fcb%3D2022091414&v=3&w=800&s=gwQVg0bMuefBkQ6BKE7ZKVnn&b=400
178.250.0.139200 OK 6.7 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8718591256325_a_en_hd_1.jpg%3Ft%3D1649238375%3Fcb%3D2022091414&v=3&w=800&s=gwQVg0bMuefBkQ6BKE7ZKVnn&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x309, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 344cfaed3ec6c78e692657bd689aa3d6
337f6a4ef8a313575054cab88ba82ef6ffe298fd
52a0f1b053f8e47d1dbbdd402dc7b5d135b1052c2f83c63ffc09ae407cc31733
GET /img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8718591256325_a_en_hd_1.jpg%3Ft%3D1649238375%3Fcb%3D2022091414&v=3&w=800&s=gwQVg0bMuefBkQ6BKE7ZKVnn&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31484691
expires: Thu, 14 Sep 2023 13:17:55 GMT
date: Thu, 15 Sep 2022 03:33:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6666
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8712013722214_a_en_hd_1.jpg%3Ft%3D1652248342%3Fcb%3D2022091414&v=3&w=800&s=418zS3OLKgobfTr1YnvD1YRn&b=400
178.250.0.139200 OK 4.5 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8712013722214_a_en_hd_1.jpg%3Ft%3D1652248342%3Fcb%3D2022091414&v=3&w=800&s=418zS3OLKgobfTr1YnvD1YRn&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x296, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 78c0f96f37f8790290fd19e4e9521200
9af68c30a8bc687c6bec05ff0d0525aea12bce9f
be4c75b661ccd41dae3200d608753121c3aaf0b3ea0e506e8161451071164c88
GET /img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8712013722214_a_en_hd_1.jpg%3Ft%3D1652248342%3Fcb%3D2022091414&v=3&w=800&s=418zS3OLKgobfTr1YnvD1YRn&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31484664
expires: Thu, 14 Sep 2023 13:17:27 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 4526
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8720286668603_a_en_hd_1.jpg%3Ft%3D1649414201%3Fcb%3D2022091414&v=3&w=800&s=X33thmaVgtOX1LccP0yLFjM9&b=400
178.250.0.139200 OK 7.4 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8720286668603_a_en_hd_1.jpg%3Ft%3D1649414201%3Fcb%3D2022091414&v=3&w=800&s=X33thmaVgtOX1LccP0yLFjM9&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x305, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9c76a436901b2697c51f464a61ce9a7b
b8a905c0063dab8b72a6f0354ee4c413975ed2da
8bc5dc8bb9bf8cf1e540e566ff13eb62a54201deeeaa5480a73ef22c35037e12
GET /img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8720286668603_a_en_hd_1.jpg%3Ft%3D1649414201%3Fcb%3D2022091414&v=3&w=800&s=X33thmaVgtOX1LccP0yLFjM9&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31484663
expires: Thu, 14 Sep 2023 13:17:26 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7436
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8718475504979_a_en_hd_1.jpg%3Ft%3D1649227503%3Fcb%3D2022091414&v=3&w=800&s=34EYyczK6yYn3yyguYcKgxi_&b=400
178.250.0.139200 OK 7.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8718475504979_a_en_hd_1.jpg%3Ft%3D1649227503%3Fcb%3D2022091414&v=3&w=800&s=34EYyczK6yYn3yyguYcKgxi_&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x313, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4b3d85e8b5370dc639df82446ebb703c
4ea446beafb35f147a472b981283ea46f88ab138
fda976f5159b52c2a0c41ba153108efa5d9eeb0bc07f6e73c4f03c475b79568a
GET /img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8718475504979_a_en_hd_1.jpg%3Ft%3D1649227503%3Fcb%3D2022091414&v=3&w=800&s=34EYyczK6yYn3yyguYcKgxi_&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31484702
expires: Thu, 14 Sep 2023 13:18:05 GMT
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7342
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8711338502617_a_en_hd_1.jpg%3Ft%3D1649478454%3Fcb%3D2022091414&v=3&w=800&s=8uPGWtJn61YY5hF8QoLPNpeM&b=400
178.250.0.139200 OK 30 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8711338502617_a_en_hd_1.jpg%3Ft%3D1649478454%3Fcb%3D2022091414&v=3&w=800&s=8uPGWtJn61YY5hF8QoLPNpeM&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b0dd819aa6ba49ace1ca7e6a6e2c5a98
e8f7e761f1ac91daee9dd9d96e544a7a84510299
f52948b3d1ba524d70bd6720b691b450b12b2700c6d27a50c45ca4f24b4e54e6
GET /img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8711338502617_a_en_hd_1.jpg%3Ft%3D1649478454%3Fcb%3D2022091414&v=3&w=800&s=8uPGWtJn61YY5hF8QoLPNpeM&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31485096
expires: Thu, 14 Sep 2023 13:24:40 GMT
date: Thu, 15 Sep 2022 03:33:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 29958
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8718475726067_a_en_hd_1.jpg%3Ft%3D1649395616%3Fcb%3D2022091414&v=3&w=800&s=7eNELu1u7D_3DVmcr17YymOB&b=400
178.250.0.139200 OK 12 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8718475726067_a_en_hd_1.jpg%3Ft%3D1649395616%3Fcb%3D2022091414&v=3&w=800&s=7eNELu1u7D_3DVmcr17YymOB&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x275, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 712c0aebfb26120a859e4c9a58f9a18c
e7f2e52528f3aa2747af13dd0bd50060ed40e58c
d9542241e5511f1d34e776bbf6130d8a18416f708f7b7cf3cbf9bd901f02b47f
GET /img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8718475726067_a_en_hd_1.jpg%3Ft%3D1649395616%3Fcb%3D2022091414&v=3&w=800&s=7eNELu1u7D_3DVmcr17YymOB&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31484680
expires: Thu, 14 Sep 2023 13:17:43 GMT
date: Thu, 15 Sep 2022 03:33:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 12084
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8719883590646_a_en_hd_1.jpg%3Ft%3D1649401426%3Fcb%3D2022091414&v=3&w=800&s=N81K8sEZtgksIl8veGObZUaT&b=400
178.250.0.139200 OK 15 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8719883590646_a_en_hd_1.jpg%3Ft%3D1649401426%3Fcb%3D2022091414&v=3&w=800&s=N81K8sEZtgksIl8veGObZUaT&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 249x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7c5810d2bf412f9a640dbd5a6359ae4f
ba353a2ad2a03bd1bc1168cabb561081e1205703
e5b7bc53fd94713837586cb56758d1951a97eec16fd453f5658007e1b4c9bc4a
GET /img/img?c=3&cq=256&h=800&m=0&partner=28905&q=80&r=0&u=https%3A%2F%2Fvdxl.im%2F8719883590646_a_en_hd_1.jpg%3Ft%3D1649401426%3Fcb%3D2022091414&v=3&w=800&s=N81K8sEZtgksIl8veGObZUaT&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31484765
expires: Thu, 14 Sep 2023 13:19:09 GMT
date: Thu, 15 Sep 2022 03:33:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 15386
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy.svg
178.250.0.130200 OK 9.9 kB URL HTTP/2 static.criteo.net/flash/icon/privacy.svg
IP 178.250.0.130:0
Hash e7b59e56f6d1715087626701eaffc5c2
e189f6148234d457939b7b73e0166c00c8345bdd
51d28df18a9e5027c0f714078127862f5fa253e65dcf19dac8aef1eadfb1fa8f
GET /flash/icon/privacy.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 03:33:02 GMT
content-type: image/svg+xml
last-modified: Wed, 19 Feb 2020 10:57:21 GMT
etag: W/"5e4d1491-646"
expires: Sun, 10 Sep 2023 03:33:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=c7sNjTywMdw9qXuhQYN9ZcUTNDxQMsxpB8d4PVq9ywL3jdKljqHM-3OZt_kvRqYYfnJM7i9dXrEAzhhfGU_SiCnm1sPcjz7h56Fj5iboG_SGowsBWDuMmHHCoaoyPH9y-4RE-hrDq5DO0hOC2NLHCNxe-kmv4IwHu5QnunFYCecuwmnjtccE3ZCr1rshFmcf7yAshOjBL3Axq6hNNRm87oIEfGmFlHo3-iBmtbO-Jzt1tdbZt930vl69YeBKb4vtUwgtmw&sds=2&rev=82759&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=c7sNjTywMdw9qXuhQYN9ZcUTNDxQMsxpB8d4PVq9ywL3jdKljqHM-3OZt_kvRqYYfnJM7i9dXrEAzhhfGU_SiCnm1sPcjz7h56Fj5iboG_SGowsBWDuMmHHCoaoyPH9y-4RE-hrDq5DO0hOC2NLHCNxe-kmv4IwHu5QnunFYCecuwmnjtccE3ZCr1rshFmcf7yAshOjBL3Axq6hNNRm87oIEfGmFlHo3-iBmtbO-Jzt1tdbZt930vl69YeBKb4vtUwgtmw&sds=2&rev=82759&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=c7sNjTywMdw9qXuhQYN9ZcUTNDxQMsxpB8d4PVq9ywL3jdKljqHM-3OZt_kvRqYYfnJM7i9dXrEAzhhfGU_SiCnm1sPcjz7h56Fj5iboG_SGowsBWDuMmHHCoaoyPH9y-4RE-hrDq5DO0hOC2NLHCNxe-kmv4IwHu5QnunFYCecuwmnjtccE3ZCr1rshFmcf7yAshOjBL3Axq6hNNRm87oIEfGmFlHo3-iBmtbO-Jzt1tdbZt930vl69YeBKb4vtUwgtmw&sds=2&rev=82759&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 36
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 03:33:03 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 16:40:18 GMT
expires: Fri, 08 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 557565
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
142.250.74.163200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 22:18:58 GMT
expires: Tue, 12 Sep 2023 22:18:58 GMT
cache-control: public, max-age=31536000
age: 191645
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=yN4e3TywMdw9qXuhh_s8hLImpCO4u-1rpg7eoU0xryQMLHQ4Mq0H0_ekvU2uT4GfVyq-DVqKuDIsYSoVoyyK_eqvf4bjrJP94RwAJucg1uuxP-8YIDV-_ygEMWxPsDX1BUaxPjqDoIxsaGdMwYfAm69MoIdH7JxpTmb3SFhWzE3wGHsexx9Ob0sCsEBX9Uj0Fhvj0wYj_nmBNQINEIGxSM1pZZHZ7-IW2NCbByCJ4rMQyX-UozYDYj9WombaPP4hryXxAg&sds=2&rev=82759&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=yN4e3TywMdw9qXuhh_s8hLImpCO4u-1rpg7eoU0xryQMLHQ4Mq0H0_ekvU2uT4GfVyq-DVqKuDIsYSoVoyyK_eqvf4bjrJP94RwAJucg1uuxP-8YIDV-_ygEMWxPsDX1BUaxPjqDoIxsaGdMwYfAm69MoIdH7JxpTmb3SFhWzE3wGHsexx9Ob0sCsEBX9Uj0Fhvj0wYj_nmBNQINEIGxSM1pZZHZ7-IW2NCbByCJ4rMQyX-UozYDYj9WombaPP4hryXxAg&sds=2&rev=82759&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=yN4e3TywMdw9qXuhh_s8hLImpCO4u-1rpg7eoU0xryQMLHQ4Mq0H0_ekvU2uT4GfVyq-DVqKuDIsYSoVoyyK_eqvf4bjrJP94RwAJucg1uuxP-8YIDV-_ygEMWxPsDX1BUaxPjqDoIxsaGdMwYfAm69MoIdH7JxpTmb3SFhWzE3wGHsexx9Ob0sCsEBX9Uj0Fhvj0wYj_nmBNQINEIGxSM1pZZHZ7-IW2NCbByCJ4rMQyX-UozYDYj9WombaPP4hryXxAg&sds=2&rev=82759&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 36
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 03:33:02 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 28735
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 28735
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=rodrigosopadeletrinha.blogspot.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=rodrigosopadeletrinha.blogspot.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=rodrigosopadeletrinha.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 15 Sep 2022 03:33:03 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=GuLsCzywMdw9qXuhuufIW9RituYyDYUczaM9IyDJQZA5-1JUzRc58Q7IRnqrTfCAzoWGOF5Dh6qe9N6UPsKU9qL1so6Z6EKF-QOTakvmQUVmZq2DYr5F1JgTiOwtvFk_vcwr5ASl6-bHzxINQg5PMDJwFxgw36-IvGBUudR3q8_x8uvXxMFOBB1ZwPjVagD1ONHeY9V4NMftxnaraG40rLvnun9mesi_KEZYxkknwVgNLPkxjAVUI0oEoF7pxeQ6Zp4iDQ&sds=2&rev=82759&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=GuLsCzywMdw9qXuhuufIW9RituYyDYUczaM9IyDJQZA5-1JUzRc58Q7IRnqrTfCAzoWGOF5Dh6qe9N6UPsKU9qL1so6Z6EKF-QOTakvmQUVmZq2DYr5F1JgTiOwtvFk_vcwr5ASl6-bHzxINQg5PMDJwFxgw36-IvGBUudR3q8_x8uvXxMFOBB1ZwPjVagD1ONHeY9V4NMftxnaraG40rLvnun9mesi_KEZYxkknwVgNLPkxjAVUI0oEoF7pxeQ6Zp4iDQ&sds=2&rev=82759&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=GuLsCzywMdw9qXuhuufIW9RituYyDYUczaM9IyDJQZA5-1JUzRc58Q7IRnqrTfCAzoWGOF5Dh6qe9N6UPsKU9qL1so6Z6EKF-QOTakvmQUVmZq2DYr5F1JgTiOwtvFk_vcwr5ASl6-bHzxINQg5PMDJwFxgw36-IvGBUudR3q8_x8uvXxMFOBB1ZwPjVagD1ONHeY9V4NMftxnaraG40rLvnun9mesi_KEZYxkknwVgNLPkxjAVUI0oEoF7pxeQ6Zp4iDQ&sds=2&rev=82759&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 36
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 03:33:03 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
platform.twitter.com/js/button.c6c95b9789db97ea1e9742d215fff751.js
93.184.220.66200 OK 2.4 kB URL HTTP/1.1 platform.twitter.com/js/button.c6c95b9789db97ea1e9742d215fff751.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (7017), with no line terminators
Hash 4f1f60563bf717e97c0a9d0ea41656bd
e81bc1de4809ad69c612311ef322d10920f565c9
76b3c3593522fdfb24ca4b06087d457bad98ae873958f032deea5151ad8762ca
GET /js/button.c6c95b9789db97ea1e9742d215fff751.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1234190
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Thu, 15 Sep 2022 03:33:04 GMT
Etag: "3b5d132d3d3780b86a6d19d169faef45+gzip"
Last-Modified: Wed, 31 Aug 2022 20:40:49 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F706)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2361
platform.twitter.com/widgets/tweet_button.c4bdc17e77719578b594d5555bee90db.en.html
93.184.220.66200 OK 14 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.c4bdc17e77719578b594d5555bee90db.en.html
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32033)
Hash a3a527d0a0daa14605d5020968a1aa8e
632cc0481704d98c9e63aa597d4632b8040ad1de
bcfd903642a1f9cde4b2ad8f4397aa8abb3cb7c423e04f485de5c6207dccb2bb
GET /widgets/tweet_button.c4bdc17e77719578b594d5555bee90db.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1234191
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Thu, 15 Sep 2022 03:33:04 GMT
Etag: "6408b1570a7587a221e1976192be413c+gzip"
Last-Modified: Wed, 31 Aug 2022 20:40:55 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F706)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13752
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Frodrigosopadeletrinha.blogspot.com%2F2012%2F11%2Flei-da-copa.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663212769774%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=351e86083df5b49f719fc75677050e0fe9218658
104.244.42.200200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Frodrigosopadeletrinha.blogspot.com%2F2012%2F11%2Flei-da-copa.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663212769774%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=351e86083df5b49f719fc75677050e0fe9218658
IP 104.244.42.200:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Frodrigosopadeletrinha.blogspot.com%2F2012%2F11%2Flei-da-copa.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663212769774%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=351e86083df5b49f719fc75677050e0fe9218658 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Sep 2022 03:33:03 GMT
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Thu, 15 Sep 2022 03:33:04 GMT
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 111
x-connection-hash: 5a1ef1bb299274c1c771d75683dfb6b4cab202373467286297db86b4368797f4
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.202200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 15 Sep 2022 03:33:05 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.202200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.202:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0c4878e717d5681f3b8f5fc65d4e3d23
cf90b82fb85c17eab50e0d394b4205e80a7e878a
4095d899ea5e51cfbe80c99c92b57a3ecb8a11c0579cbf22e4fd53fee97272c0
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1340
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 15 Sep 2022 03:33:05 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.criteo.net/animejs/animejs.js
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/animejs/animejs.js
IP 178.250.0.130:0
GET /animejs/animejs.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 03:33:02 GMT
content-type: text/javascript
last-modified: Tue, 26 Mar 2019 17:44:11 GMT
etag: W/"5c9a64eb-3181"
expires: Sun, 10 Sep 2023 03:33:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/adchoices_en.svg
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/adchoices_en.svg
IP 178.250.0.130:0
GET /flash/icon/adchoices_en.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 03:33:02 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:27:58 GMT
etag: W/"5e42b9ee-759"
expires: Sun, 10 Sep 2023 03:33:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
dl.dropbox.com/u/93265919/efeitoimagens/blogger.js
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/93265919/efeitoimagens/blogger.js
IP 162.125.71.15:0
GET /u/93265919/efeitoimagens/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Thu, 15 Sep 2022 03:32:59 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: 83c93502bcd842c88cfa8bbd44f9e39c
X-Firefox-Spdy: h2
link.megalink.xyz/ad1/824c1c656a4967fb956c9e545f85fe90e9cbe832?1=&2=&3=&4=&5=&utm_campaign=push_subs_04_07_2020_0000&cid=
173.236.118.99200 OK 0 B URL HTTP/2 link.megalink.xyz/ad1/824c1c656a4967fb956c9e545f85fe90e9cbe832?1=&2=&3=&4=&5=&utm_campaign=push_subs_04_07_2020_0000&cid=
IP 173.236.118.99:0
GET /ad1/824c1c656a4967fb956c9e545f85fe90e9cbe832?1=&2=&3=&4=&5=&utm_campaign=push_subs_04_07_2020_0000&cid= HTTP/1.1
Host: link.megalink.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 03:33:01 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
x-powered-by: PHP/8.1.9
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: u=7a8184bd0f429ba0f5f62221cce2565d; expires=Fri, 15-Sep-2023 03:33:01 GMT; Max-Age=31536000; path=/
strict-transport-security: max-age=31536000; includeSubdomains;
content-encoding: gzip
X-Firefox-Spdy: h2
cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=gGn3VPGmlTcJ7C5QPzGxms_KfbsdD3WQtPHIWT9cYAcZ81hR9hU8P6TTis7pZvMIMn-OTUveXsxHkguFWt3UBX_m91FzkGELIWEqlrUdxECXcHKXEIUvg2irc1QSlJix50Lhx3_rUBrqn07CA5qdBJKnhPmMlB2J8rz_B4Od3YAEB-z7RvPG3nzT0UdMlqZmW7Gp6OYSS7vCtyhzOSYA6psIi8Bpu6Sz2oxrpF76AcjX8SwdlbrQhKh9MC5SD2K4gC1fFvtO8lO8K-xnQmK9vBPk8lVoI4z1PrOYdDQVj-VqouJzKOFKbQxg-JGZvJ83WutwoxlwbjPzY0cW3_1Fuwcs8B9tXOkSpDFCVMzTbtMZp2ywBakj0Y12J4NXO2i70YM7NLJEOro0MfK0-0UIs-KQNW8TUNoCcLmtJpC-SDQ44b78jwLwHsaGH49WxRw4G1mDIA
178.250.2.148200 OK 0 B URL HTTP/2 cat.nl.eu.criteo.com/delivery/lg.php?cppv=3&cpp=gGn3VPGmlTcJ7C5QPzGxms_KfbsdD3WQtPHIWT9cYAcZ81hR9hU8P6TTis7pZvMIMn-OTUveXsxHkguFWt3UBX_m91FzkGELIWEqlrUdxECXcHKXEIUvg2irc1QSlJix50Lhx3_rUBrqn07CA5qdBJKnhPmMlB2J8rz_B4Od3YAEB-z7RvPG3nzT0UdMlqZmW7Gp6OYSS7vCtyhzOSYA6psIi8Bpu6Sz2oxrpF76AcjX8SwdlbrQhKh9MC5SD2K4gC1fFvtO8lO8K-xnQmK9vBPk8lVoI4z1PrOYdDQVj-VqouJzKOFKbQxg-JGZvJ83WutwoxlwbjPzY0cW3_1Fuwcs8B9tXOkSpDFCVMzTbtMZp2ywBakj0Y12J4NXO2i70YM7NLJEOro0MfK0-0UIs-KQNW8TUNoCcLmtJpC-SDQ44b78jwLwHsaGH49WxRw4G1mDIA
IP 178.250.2.148:0
GET /delivery/lg.php?cppv=3&cpp=gGn3VPGmlTcJ7C5QPzGxms_KfbsdD3WQtPHIWT9cYAcZ81hR9hU8P6TTis7pZvMIMn-OTUveXsxHkguFWt3UBX_m91FzkGELIWEqlrUdxECXcHKXEIUvg2irc1QSlJix50Lhx3_rUBrqn07CA5qdBJKnhPmMlB2J8rz_B4Od3YAEB-z7RvPG3nzT0UdMlqZmW7Gp6OYSS7vCtyhzOSYA6psIi8Bpu6Sz2oxrpF76AcjX8SwdlbrQhKh9MC5SD2K4gC1fFvtO8lO8K-xnQmK9vBPk8lVoI4z1PrOYdDQVj-VqouJzKOFKbQxg-JGZvJ83WutwoxlwbjPzY0cW3_1Fuwcs8B9tXOkSpDFCVMzTbtMZp2ywBakj0Y12J4NXO2i70YM7NLJEOro0MfK0-0UIs-KQNW8TUNoCcLmtJpC-SDQ44b78jwLwHsaGH49WxRw4G1mDIA HTTP/1.1
Host: cat.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 03:33:01 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2633923
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
fonts.gstatic.com/s/yanonekaffeesatz/v24/3y9I6aknfjLm_3lMKjiMgmUUYBs04aUXNxt9gW2LIfto9tWZd2GK.woff2
142.250.74.163200 OK 0 B URL HTTP/2 fonts.gstatic.com/s/yanonekaffeesatz/v24/3y9I6aknfjLm_3lMKjiMgmUUYBs04aUXNxt9gW2LIfto9tWZd2GK.woff2
IP 142.250.74.163:0
GET /s/yanonekaffeesatz/v24/3y9I6aknfjLm_3lMKjiMgmUUYBs04aUXNxt9gW2LIfto9tWZd2GK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rodrigosopadeletrinha.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 00:16:10 GMT
expires: Thu, 14 Sep 2023 00:16:10 GMT
cache-control: public, max-age=31536000
age: 98209
last-modified: Tue, 23 Aug 2022 18:20:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dl.dropbox.com/u/93265919/efeitoimagens/blogger.js
162.125.71.15404 Not Found 0 B URL HTTP/2 dl.dropbox.com/u/93265919/efeitoimagens/blogger.js
IP 162.125.71.15:0
GET /u/93265919/efeitoimagens/blogger.js HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rodrigosopadeletrinha.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
date: Thu, 15 Sep 2022 03:32:59 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: a6055d55e98a41998c7946ff559eeaa0
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/criteo_logo_2021.svg
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/criteo_logo_2021.svg
IP 178.250.0.130:0
GET /flash/icon/criteo_logo_2021.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 03:33:02 GMT
content-type: image/svg+xml
last-modified: Thu, 27 May 2021 13:21:59 GMT
etag: W/"60af9cf7-891"
expires: Sun, 10 Sep 2023 03:33:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=YyKc7QAGOkkCO8OzAAcJHrZVuK9Gi9cBQZDumg&u=%7CqB2rCzOPoo838inJnVu4Wi8pcwPAAmp3v8baEw7wc1E%3D%7C&c1=TEbw32HdmhkgeNeeAzq5Zto3zNeDvGepN13Fr0UBnbNTYw15f7zsIOVODKEAq-i6qsL6Xc-Nj9WRZo0PCkKDXGV-PKYE_GwT94DVE2Q6swx61kraWDXUqhkpxNK7bu_i1W0RWffrr3yzousD5FTLOXjXIpQJnoAE7W_8C_gXrjWZn-sq9KjsUZs4Sb2fH6sz4m8Dlhvf2X5kaKMyI7seLg6hgVn4VhdXhVAfFO7HAmjMX-56KVo1pc3j2HzYhhzhCWgpp5Pus2utKJkdmbD6Uu0HKi4CSemStL3zG4xATsjaQhYjpmvuvN5rF2cfdoPH8x3TugDFrWdk9Bpg05NRREuZz9_JwPwmlgh2waMIjfDq9OV9s2AKy1aYSM2YAbuquLWJ0FSfErrV8aD0GqajWB4-oGGYHl30nnoDuQ5wkgD6nUlE4pJTAahOETEZHC_rG_Hhayt6Zj715F76IKSQe7bhTpxe4xIaNSqIkVYqjX7S2WERcn_EVp7x_39EpVQhzv4UQCGUL9xCVgiJwFKvILnZ-9tDbpIlmToZ98AxK6CMJIhkkPUp5NwY3qLkiiG1&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCAG0a7ZwiY8n0GLOH78EPnpKc4AnJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTQ1ODk2MjYyMzAyNDYwNTCgAdW20uoDyAEJqQJAVLvAm76wPqgDAaoEswJP0GxCSlYGpZ_tUhm7FMUARi8M9u7mkphVeqUr9GQ6DPhDsS39PQJrWb3wQzyqobdIPk3R2QJcomuogCJr-jb05nJHKWL82Y3IK3JX0scBNluatQE6dbQ-lK_hn0fUARO-ZadyfqFeep1IyeOXCDFj22Bj-LEfoiE7s0e3xKw-f_Yq9BvfAmNep7G99cGOx2KRl8brHSYvUywkNwJ4Y3NwV7pe55zQuDTw9dG7csxp_2cZokBiZBsQCO8skomFnF6Ek1K64-_62w7vXCucvhaDC-Qx_9kpxHlerQ8_5DzLk_3WXCbqu1aUjNCC0pIhuVX-LSxJoHXvlx6EHSVT8Yaw89iVVAYq6PL7zZxpDcRdVmHSkN5NmaoyWsyfizv8dlgmbdO-6cHhmtT_1bnTjVA8YuEdgAbR4tTP0Jzk2tMBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_2isPZcnxabNKsoOiyudVy0JMMeRQ%26client%3Dca-pub-4589626230246050%26adurl%3D
178.250.2.65200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=YyKc7QAGOkkCO8OzAAcJHrZVuK9Gi9cBQZDumg&u=%7CqB2rCzOPoo838inJnVu4Wi8pcwPAAmp3v8baEw7wc1E%3D%7C&c1=TEbw32HdmhkgeNeeAzq5Zto3zNeDvGepN13Fr0UBnbNTYw15f7zsIOVODKEAq-i6qsL6Xc-Nj9WRZo0PCkKDXGV-PKYE_GwT94DVE2Q6swx61kraWDXUqhkpxNK7bu_i1W0RWffrr3yzousD5FTLOXjXIpQJnoAE7W_8C_gXrjWZn-sq9KjsUZs4Sb2fH6sz4m8Dlhvf2X5kaKMyI7seLg6hgVn4VhdXhVAfFO7HAmjMX-56KVo1pc3j2HzYhhzhCWgpp5Pus2utKJkdmbD6Uu0HKi4CSemStL3zG4xATsjaQhYjpmvuvN5rF2cfdoPH8x3TugDFrWdk9Bpg05NRREuZz9_JwPwmlgh2waMIjfDq9OV9s2AKy1aYSM2YAbuquLWJ0FSfErrV8aD0GqajWB4-oGGYHl30nnoDuQ5wkgD6nUlE4pJTAahOETEZHC_rG_Hhayt6Zj715F76IKSQe7bhTpxe4xIaNSqIkVYqjX7S2WERcn_EVp7x_39EpVQhzv4UQCGUL9xCVgiJwFKvILnZ-9tDbpIlmToZ98AxK6CMJIhkkPUp5NwY3qLkiiG1&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCAG0a7ZwiY8n0GLOH78EPnpKc4AnJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTQ1ODk2MjYyMzAyNDYwNTCgAdW20uoDyAEJqQJAVLvAm76wPqgDAaoEswJP0GxCSlYGpZ_tUhm7FMUARi8M9u7mkphVeqUr9GQ6DPhDsS39PQJrWb3wQzyqobdIPk3R2QJcomuogCJr-jb05nJHKWL82Y3IK3JX0scBNluatQE6dbQ-lK_hn0fUARO-ZadyfqFeep1IyeOXCDFj22Bj-LEfoiE7s0e3xKw-f_Yq9BvfAmNep7G99cGOx2KRl8brHSYvUywkNwJ4Y3NwV7pe55zQuDTw9dG7csxp_2cZokBiZBsQCO8skomFnF6Ek1K64-_62w7vXCucvhaDC-Qx_9kpxHlerQ8_5DzLk_3WXCbqu1aUjNCC0pIhuVX-LSxJoHXvlx6EHSVT8Yaw89iVVAYq6PL7zZxpDcRdVmHSkN5NmaoyWsyfizv8dlgmbdO-6cHhmtT_1bnTjVA8YuEdgAbR4tTP0Jzk2tMBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_2isPZcnxabNKsoOiyudVy0JMMeRQ%26client%3Dca-pub-4589626230246050%26adurl%3D
IP 178.250.2.65:0
GET /delivery/r/afr.php?z=YyKc7QAGOkkCO8OzAAcJHrZVuK9Gi9cBQZDumg&u=%7CqB2rCzOPoo838inJnVu4Wi8pcwPAAmp3v8baEw7wc1E%3D%7C&c1=TEbw32HdmhkgeNeeAzq5Zto3zNeDvGepN13Fr0UBnbNTYw15f7zsIOVODKEAq-i6qsL6Xc-Nj9WRZo0PCkKDXGV-PKYE_GwT94DVE2Q6swx61kraWDXUqhkpxNK7bu_i1W0RWffrr3yzousD5FTLOXjXIpQJnoAE7W_8C_gXrjWZn-sq9KjsUZs4Sb2fH6sz4m8Dlhvf2X5kaKMyI7seLg6hgVn4VhdXhVAfFO7HAmjMX-56KVo1pc3j2HzYhhzhCWgpp5Pus2utKJkdmbD6Uu0HKi4CSemStL3zG4xATsjaQhYjpmvuvN5rF2cfdoPH8x3TugDFrWdk9Bpg05NRREuZz9_JwPwmlgh2waMIjfDq9OV9s2AKy1aYSM2YAbuquLWJ0FSfErrV8aD0GqajWB4-oGGYHl30nnoDuQ5wkgD6nUlE4pJTAahOETEZHC_rG_Hhayt6Zj715F76IKSQe7bhTpxe4xIaNSqIkVYqjX7S2WERcn_EVp7x_39EpVQhzv4UQCGUL9xCVgiJwFKvILnZ-9tDbpIlmToZ98AxK6CMJIhkkPUp5NwY3qLkiiG1&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCAG0a7ZwiY8n0GLOH78EPnpKc4AnJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTQ1ODk2MjYyMzAyNDYwNTCgAdW20uoDyAEJqQJAVLvAm76wPqgDAaoEswJP0GxCSlYGpZ_tUhm7FMUARi8M9u7mkphVeqUr9GQ6DPhDsS39PQJrWb3wQzyqobdIPk3R2QJcomuogCJr-jb05nJHKWL82Y3IK3JX0scBNluatQE6dbQ-lK_hn0fUARO-ZadyfqFeep1IyeOXCDFj22Bj-LEfoiE7s0e3xKw-f_Yq9BvfAmNep7G99cGOx2KRl8brHSYvUywkNwJ4Y3NwV7pe55zQuDTw9dG7csxp_2cZokBiZBsQCO8skomFnF6Ek1K64-_62w7vXCucvhaDC-Qx_9kpxHlerQ8_5DzLk_3WXCbqu1aUjNCC0pIhuVX-LSxJoHXvlx6EHSVT8Yaw89iVVAYq6PL7zZxpDcRdVmHSkN5NmaoyWsyfizv8dlgmbdO-6cHhmtT_1bnTjVA8YuEdgAbR4tTP0Jzk2tMBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_2isPZcnxabNKsoOiyudVy0JMMeRQ%26client%3Dca-pub-4589626230246050%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Sep 2022 03:33:01 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=GuLsCzywMdw9qXuhuufIW9RituYyDYUczaM9IyDJQZA5-1JUzRc58Q7IRnqrTfCAzoWGOF5Dh6qe9N6UPsKU9qL1so6Z6EKF-QOTakvmQUVmZq2DYr5F1JgTiOwtvFk_vcwr5ASl6-bHzxINQg5PMDJwFxgw36-IvGBUudR3q8_x8uvXxMFOBB1ZwPjVagD1ONHeY9V4NMftxnaraG40rLvnun9mesi_KEZYxkknwVgNLPkxjAVUI0oEoF7pxeQ6Zp4iDQ"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 147770769
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy_small.svg
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/privacy_small.svg
IP 178.250.0.130:0
GET /flash/icon/privacy_small.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 03:33:02 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:30:28 GMT
etag: W/"5e42ba84-6aa"
expires: Sun, 10 Sep 2023 03:33:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2