ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2775
Cache-Control: max-age=109768
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:47:59 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 11:17:27 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
184.51.252.176200 OK 503 B IP 184.51.252.176:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5633
Expires: Fri, 02 Dec 2022 06:21:52 GMT
Date: Fri, 02 Dec 2022 04:47:59 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 04:19:50 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1689
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
184.51.252.176200 OK 503 B IP 184.51.252.176:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7486
Expires: Fri, 02 Dec 2022 06:52:45 GMT
Date: Fri, 02 Dec 2022 04:47:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: v7G9bgWjjvg8bdYp8PREWpk/GcsaDSU8SMQUyOqIyUM3bVJud5hx+JQTEwxCuJKq5g97DUWxDtE=
x-amz-request-id: G2JAVE96MCZ88DW7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 04:46:34 GMT
age: 85
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 04:47:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
best-proxylist.blogspot.mx/2013_02_27_archive.html
172.217.21.161302 Moved Temporarily 202 B URL HTTP/1.1 best-proxylist.blogspot.mx/2013_02_27_archive.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 3fd5c47d08b24be9d66dac140e50561c
76a8cbf6c32f73a18052e60c5b26706efea4384a
86650c374835ed63400b417d91713fd072aeb4b00c66179fa8536cac88fef492
Analyzer Verdict Alert fortinet Malware
GET /2013_02_27_archive.html HTTP/1.1
Host: best-proxylist.blogspot.mx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://best-proxylist.blogspot.com/2013_02_27_archive.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 04:47:59 GMT
Expires: Fri, 02 Dec 2022 04:47:59 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 202
Server: GSE
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 04:08:57 GMT
cache-control: public,max-age=3600
age: 2343
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2766
Cache-Control: max-age=104695
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:00 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:52:55 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.165.41.15101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.41.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dli3W1NwsNHSn3k6sOjDZg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5KkhkVNA9BKLujbVC7Jn2rtovqE=
pagead2.googlesyndication.com/pagead/show_ads.js
142.250.74.162200 OK 36 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (3577)
Hash 8370cbaca62d11e3e508e6d57ed7e718
5f798fefeb0fdb223828111783968e0faf4894e6
a6880acfe9add094dfe0fce1f32f3b5a9ac2b32b1bd7a8b75ffefe2b1e3a23ed
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://best-proxylist.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 04:48:01 GMT
Expires: Fri, 02 Dec 2022 04:48:01 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 1870728659742758671
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36160
X-XSS-Protection: 0
best-proxylist.blogspot.com/2013_02_27_archive.html
172.217.21.161200 OK 46 kB URL HTTP/1.1 best-proxylist.blogspot.com/2013_02_27_archive.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4919)
Hash 91e0e80913c79c33fef1a50151993031
93d5140a623c575fb732ac8e78d7c4c09ef4de3e
d61691da58e2d33bafd0d16242d1fa82a6ff228fd66e2f4341d95368a74d42fc
Analyzer Verdict Alert fortinet Malware
GET /2013_02_27_archive.html HTTP/1.1
Host: best-proxylist.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Fri, 02 Dec 2022 04:48:01 GMT
Date: Fri, 02 Dec 2022 04:48:01 GMT
Cache-Control: private, max-age=0
Last-Modified: Sun, 27 Nov 2022 11:12:58 GMT
ETag: W/"3f55650ad5de9d30b77f25c2af989863e35e69749f6ded0381b079aec994b9d1"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 46299
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 24450ed842495fb2f4ba69e1fac2d4d2
c7e7c8aa0308094c71d663a21bd9e689aeccc952
0dddf87df6f1821f08503310345aa465e0b63a4f130073e734e27e04780c4baa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 267cc9d2fc0834e7dcc67cfd154a203e
c0730812ceab79d0708b847d7a62a7aba6d5e81d
1cdf3b1ad9cc8e3409a19df88fbc91053cf0823ca482f4e48edc074e13ff9435
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://best-proxylist.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:01:43 GMT
expires: Wed, 29 Nov 2023 14:01:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/css
age: 225978
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
best-proxylist.blogspot.com/js/cookienotice.js
172.217.21.161200 OK 2.0 kB URL HTTP/1.1 best-proxylist.blogspot.com/js/cookienotice.js
IP 172.217.21.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: best-proxylist.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://best-proxylist.blogspot.com/2013_02_27_archive.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 01:38:58 GMT
Expires: Wed, 07 Dec 2022 01:38:58 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 18:54:36 GMT
Content-Type: text/javascript
Age: 184143
resources.blogblog.com/img/icon18_email.gif
216.58.207.233200 OK 164 B URL HTTP/2 resources.blogblog.com/img/icon18_email.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 18 x 13\012- data
Hash 36b9f993db1b953f3b9b08040aaf9af4
18248661b307586dc291fd2dff4bb59cf7579475
1258cbe1e2900ec3df11a83a6bb6008d7a833f783a6df80b0d5d45a052ac1466
GET /img/icon18_email.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://best-proxylist.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 164
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:19:21 GMT
expires: Tue, 06 Dec 2022 14:19:21 GMT
cache-control: public, max-age=604800
last-modified: Tue, 29 Nov 2022 01:54:20 GMT
content-type: image/gif
age: 224920
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://best-proxylist.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Fri, 02 Dec 2022 04:48:01 GMT
expires: Fri, 02 Dec 2022 04:48:01 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2342155703-widgets.js
216.58.207.233200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://best-proxylist.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 05:43:29 GMT
expires: Wed, 29 Nov 2023 05:43:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/javascript
age: 255872
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 267cc9d2fc0834e7dcc67cfd154a203e
c0730812ceab79d0708b847d7a62a7aba6d5e81d
1cdf3b1ad9cc8e3409a19df88fbc91053cf0823ca482f4e48edc074e13ff9435
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 267cc9d2fc0834e7dcc67cfd154a203e
c0730812ceab79d0708b847d7a62a7aba6d5e81d
1cdf3b1ad9cc8e3409a19df88fbc91053cf0823ca482f4e48edc074e13ff9435
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.162200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.162:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://best-proxylist.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 09:28:37 GMT
Expires: Thu, 15 Dec 2022 09:28:37 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 69564
r3.o.lencr.org/
184.51.252.176200 OK 503 B IP 184.51.252.176:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13147
Expires: Fri, 02 Dec 2022 08:27:08 GMT
Date: Fri, 02 Dec 2022 04:48:01 GMT
Connection: keep-alive
r3.o.lencr.org/
184.51.252.176200 OK 503 B IP 184.51.252.176:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13147
Expires: Fri, 02 Dec 2022 08:27:08 GMT
Date: Fri, 02 Dec 2022 04:48:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:15:42 GMT
age: 77539
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:47 GMT
age: 25994
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe82fdd03-be1f-4def-adb8-61eefd79def6.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe82fdd03-be1f-4def-adb8-61eefd79def6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e65083422468e512aa73eb68f20b2ec
73884daab5e71e4917637b3679c0bb5a1f0447de
f0d97bb9e3f01bbdbe91ba1f9b6ea0f649c66192383c51fe5c7ca9ac2a38ebdb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe82fdd03-be1f-4def-adb8-61eefd79def6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9719
x-amzn-requestid: c4ba3502-e191-40fa-8ae0-71dc6f733db4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPjhHE8woAMFyKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382e606-70ab0e5523c91e5420efec78;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 04:22:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oBn917CDV6DjSs9TAL2iBU0Rn8_f8ny1rAVXrbI9KML2P7pxusbdjA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 03:43:01 GMT
age: 3900
etag: "73884daab5e71e4917637b3679c0bb5a1f0447de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd78aa69439c995167f32b8a41a1f4f6
d07d6145182f312f3ed86ecf96b4ffa175416fa0
3b08cf3fad31ee0cf3ee25abc2484fb4283543865a42dfc568b14f9856fd3bb5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7722
x-amzn-requestid: 8d7c4800-6c06-43ed-afa1-94840d42f591
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGy2Gr1IAMFWeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e78-429ae3135d47e3b020c4c7a1;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z8thSamrCRejcAcQEGAp4WpSMzMEvstuZtVpKAjiCH4dyJyf1yihBA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:50:11 GMT
age: 25070
etag: "d07d6145182f312f3ed86ecf96b4ffa175416fa0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd8ad22c2eb1eb91c76970fa449f1bc4
0de97f3a4964038222bd751e043e413113e6db9d
668f805815aede3bc04f8564bd6aefd56029362bb0aa8a794673eb78ab2d4643
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4834
x-amzn-requestid: 63a0b8b5-5cb3-4a1f-aa46-47c84abe726f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQrjEeAIAMF3sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7e3-0032799009f893ba79f314db;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bBj-TXtavCuORZ9qBoZeVj-GXeRljAeW-98HY7lTk5_VRSKF4_07VQ==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 04:22:38 GMT
age: 1523
etag: "0de97f3a4964038222bd751e043e413113e6db9d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F474ccac4-fb8f-4a01-8195-4840a857fbe7.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F474ccac4-fb8f-4a01-8195-4840a857fbe7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65bcc96d51cd1a45dd61a4dddef0b529
5ebd592fe35d0479855700baf8525a621d2eec2e
11bfdb9b2f9730e35596e636b0f75e819a70edef0488e671ac82d1bf53e56868
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F474ccac4-fb8f-4a01-8195-4840a857fbe7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8159
x-amzn-requestid: ed2fb67a-2113-4240-978e-e7c978a3ca3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgVH1KIAMFjOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-0c4966b87f844ec3624e9dae;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ilP6IS-DUqN7rKZB9m8EX900E5Edscm8DkK0SMKPkJqvyCJ7M1kZoA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:51 GMT
age: 25150
etag: "5ebd592fe35d0479855700baf8525a621d2eec2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211150101/show_ads_impl_with_ama_fy2021.js?client=pub-8116085563943069&plah=best-proxylist.blogspot.com
142.250.74.162200 OK 119 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211150101/show_ads_impl_with_ama_fy2021.js?client=pub-8116085563943069&plah=best-proxylist.blogspot.com
IP 142.250.74.162:0
File type ASCII text, with very long lines (6148)
Size 119 kB (119179 bytes)
Hash 1a4a3a5f6ed7a2e2eb0f9f0069dc166f
aed87edafdf7f19cc7b6e56ae082c97f114a59b8
8717ea18c205bf84b0e439f1fde4e82e6ed5403a03c1ac03185c9176fe5964ef
GET /pagead/managed/js/adsense/m202211150101/show_ads_impl_with_ama_fy2021.js?client=pub-8116085563943069&plah=best-proxylist.blogspot.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://best-proxylist.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 02 Dec 2022 04:48:01 GMT
expires: Fri, 02 Dec 2022 04:48:01 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 15788294276496911739
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119179
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/ga.js
216.239.36.178200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP 216.239.36.178:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://best-proxylist.blogspot.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Fri, 02 Dec 2022 03:06:02 GMT
Expires: Fri, 02 Dec 2022 05:06:02 GMT
Cache-Control: public, max-age=7200
Age: 6120
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a9bdfccd1df3e323e28d92aea1077409
4625fbbbbb614755a86dabddfaf40e99b3934ba6
8020fb77bd7e1b8cc3e2fed030e59d004e720c61162046fc93285c1ca07c0e66
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=best-proxylist.blogspot.com&callback=_gfp_s_&client=ca-pub-8116085563943069&gpid_exp=1
216.58.207.226200 OK 252 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=best-proxylist.blogspot.com&callback=_gfp_s_&client=ca-pub-8116085563943069&gpid_exp=1
IP 216.58.207.226:0
File type ASCII text, with very long lines (391), with no line terminators
Hash c4b37dcabd5488a67527ed931995b02d
b534b79cdcb267490e8593e4231cee0e6b564490
9074ec826ffe3014df5ad3c3fce01cbeff3e1e0ee6d0cabfbe827dd47d23fd4d
GET /gampad/cookie.js?domain=best-proxylist.blogspot.com&callback=_gfp_s_&client=ca-pub-8116085563943069&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://best-proxylist.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 02 Dec 2022 04:48:02 GMT
server: cafe
cache-control: private
content-length: 252
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=best-proxylist.blogspot.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=best-proxylist.blogspot.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=best-proxylist.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://best-proxylist.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 02 Dec 2022 04:48:02 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1887357504&utmhn=best-proxylist.blogspot.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Anonymizer%20%7C%20Proxy%20List%20%7C%20Free%20HTTPS%3A%2027%20%D1%84%D0%B5%D0%B2%D1%80.%202013%20%D0%B3.&utmhid=1356716139&utmr=-&utmp=%2F2013_02_27_archive.html&utmht=1669956480455&utmac=UA-915775-25&utmcc=__utma%3D48685877.1137202624.1669956480.1669956480.1669956480.1%3B%2B__utmz%3D48685877.1669956480.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=170984534&utmredir=1&utmu=DAAAAAAAAAAAAAAAAAAAAAAE~
216.239.36.178200 OK 35 B URL HTTP/1.1 www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1887357504&utmhn=best-proxylist.blogspot.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Anonymizer%20%7C%20Proxy%20List%20%7C%20Free%20HTTPS%3A%2027%20%D1%84%D0%B5%D0%B2%D1%80.%202013%20%D0%B3.&utmhid=1356716139&utmr=-&utmp=%2F2013_02_27_archive.html&utmht=1669956480455&utmac=UA-915775-25&utmcc=__utma%3D48685877.1137202624.1669956480.1669956480.1669956480.1%3B%2B__utmz%3D48685877.1669956480.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=170984534&utmredir=1&utmu=DAAAAAAAAAAAAAAAAAAAAAAE~
IP 216.239.36.178:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1887357504&utmhn=best-proxylist.blogspot.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Anonymizer%20%7C%20Proxy%20List%20%7C%20Free%20HTTPS%3A%2027%20%D1%84%D0%B5%D0%B2%D1%80.%202013%20%D0%B3.&utmhid=1356716139&utmr=-&utmp=%2F2013_02_27_archive.html&utmht=1669956480455&utmac=UA-915775-25&utmcc=__utma%3D48685877.1137202624.1669956480.1669956480.1669956480.1%3B%2B__utmz%3D48685877.1669956480.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=170984534&utmredir=1&utmu=DAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://best-proxylist.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Date: Fri, 02 Dec 2022 04:48:02 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
adservice.google.com/adsid/integrator.js?domain=best-proxylist.blogspot.com
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=best-proxylist.blogspot.com
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=best-proxylist.blogspot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://best-proxylist.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 02 Dec 2022 04:48:02 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a9bdfccd1df3e323e28d92aea1077409
4625fbbbbb614755a86dabddfaf40e99b3934ba6
8020fb77bd7e1b8cc3e2fed030e59d004e720c61162046fc93285c1ca07c0e66
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-8116085563943069&output=html&h=600&adk=2676577121&adf=3745148778&w=160&lmt=1669547578&ad_type=text_image&format=160x600_as&color_bg=FFFFFF&color_border=FFFFFF&color_link=336699&color_text=333333&color_url=336699&url=http%3A%2F%2Fbest-proxylist.blogspot.com%2F2013_02_27_archive.html&host=pub-1556223355139109&h_ch=00000&alternate_ad_url=http%3A%2F%2Fwww.blogger.com%2Fimg%2Fblogger_ad160x600.html&wgl=1&dt=1669956480302&bpp=9&bdt=551&idt=116&shv=r20221110&mjsv=m202211150101&ptt=5&saldr=sa&abxe=1&prev_fmts=728x90_as&correlator=5771012173785&pv_h_ch=00000&frm=20&pv=1&ga_vid=1137202624.1669956480&ga_sid=1669956480&ga_hid=1356716139&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=882&ady=144&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C42531706%2C44767167%2C44770880&oid=2&pvsid=3747276890170117&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=3&uci=a!3&fsb=1&xpc=bt9dztHyAI&p=http%3A//best-proxylist.blogspot.com&dtd=229
142.250.74.66200 OK 9.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-8116085563943069&output=html&h=600&adk=2676577121&adf=3745148778&w=160&lmt=1669547578&ad_type=text_image&format=160x600_as&color_bg=FFFFFF&color_border=FFFFFF&color_link=336699&color_text=333333&color_url=336699&url=http%3A%2F%2Fbest-proxylist.blogspot.com%2F2013_02_27_archive.html&host=pub-1556223355139109&h_ch=00000&alternate_ad_url=http%3A%2F%2Fwww.blogger.com%2Fimg%2Fblogger_ad160x600.html&wgl=1&dt=1669956480302&bpp=9&bdt=551&idt=116&shv=r20221110&mjsv=m202211150101&ptt=5&saldr=sa&abxe=1&prev_fmts=728x90_as&correlator=5771012173785&pv_h_ch=00000&frm=20&pv=1&ga_vid=1137202624.1669956480&ga_sid=1669956480&ga_hid=1356716139&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=882&ady=144&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C42531706%2C44767167%2C44770880&oid=2&pvsid=3747276890170117&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=3&uci=a!3&fsb=1&xpc=bt9dztHyAI&p=http%3A//best-proxylist.blogspot.com&dtd=229
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (21450), with no line terminators
Hash c60f9e1733b568c65c8691cf62588da4
a199265ca0ad5f8dc8deaa2282d9fd09ee80bc01
18e9774d25a66685547e01b09fc7319cc957eb56718bacb4fefbf5dfa12b69b3
GET /pagead/ads?client=ca-pub-8116085563943069&output=html&h=600&adk=2676577121&adf=3745148778&w=160&lmt=1669547578&ad_type=text_image&format=160x600_as&color_bg=FFFFFF&color_border=FFFFFF&color_link=336699&color_text=333333&color_url=336699&url=http%3A%2F%2Fbest-proxylist.blogspot.com%2F2013_02_27_archive.html&host=pub-1556223355139109&h_ch=00000&alternate_ad_url=http%3A%2F%2Fwww.blogger.com%2Fimg%2Fblogger_ad160x600.html&wgl=1&dt=1669956480302&bpp=9&bdt=551&idt=116&shv=r20221110&mjsv=m202211150101&ptt=5&saldr=sa&abxe=1&prev_fmts=728x90_as&correlator=5771012173785&pv_h_ch=00000&frm=20&pv=1&ga_vid=1137202624.1669956480&ga_sid=1669956480&ga_hid=1356716139&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=882&ady=144&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C42531706%2C44767167%2C44770880&oid=2&pvsid=3747276890170117&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=3&uci=a!3&fsb=1&xpc=bt9dztHyAI&p=http%3A//best-proxylist.blogspot.com&dtd=229 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://best-proxylist.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Fri, 02 Dec 2022 04:48:02 GMT
server: cafe
content-length: 9441
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Dec-2022 05:03:02 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 02 Dec 2022 04:48:02 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-8116085563943069&output=html&h=90&adk=173538299&adf=1374884920&w=728&lmt=1669547578&ad_type=text_image&format=728x90_as&color_bg=FFFFFF&color_border=FFFFFF&color_link=336699&color_text=333333&color_url=999999&url=http%3A%2F%2Fbest-proxylist.blogspot.com%2F2013_02_27_archive.html&host=pub-1556223355139109&h_ch=00000&wgl=1&dt=1669956480302&bpp=40&bdt=550&idt=92&shv=r20221110&mjsv=m202211150101&ptt=5&saldr=sa&abxe=1&correlator=5771012173785&frm=20&pv=2&ga_vid=1137202624.1669956480&ga_sid=1669956480&ga_hid=1356716139&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=39&ady=144&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C42531706%2C44767167%2C44770880&oid=2&pvsid=3747276890170117&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=Jg7rJ2odrL&p=http%3A//best-proxylist.blogspot.com&dtd=221
142.250.74.66200 OK 9.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-8116085563943069&output=html&h=90&adk=173538299&adf=1374884920&w=728&lmt=1669547578&ad_type=text_image&format=728x90_as&color_bg=FFFFFF&color_border=FFFFFF&color_link=336699&color_text=333333&color_url=999999&url=http%3A%2F%2Fbest-proxylist.blogspot.com%2F2013_02_27_archive.html&host=pub-1556223355139109&h_ch=00000&wgl=1&dt=1669956480302&bpp=40&bdt=550&idt=92&shv=r20221110&mjsv=m202211150101&ptt=5&saldr=sa&abxe=1&correlator=5771012173785&frm=20&pv=2&ga_vid=1137202624.1669956480&ga_sid=1669956480&ga_hid=1356716139&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=39&ady=144&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C42531706%2C44767167%2C44770880&oid=2&pvsid=3747276890170117&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=Jg7rJ2odrL&p=http%3A//best-proxylist.blogspot.com&dtd=221
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (21398), with no line terminators
Hash 8fa4bcc9f43c16bce0fd2293b42c0900
253f605ff9f8665bc8abf53cf4a124b6b08d6ace
444a23f3cd728ded9a03a52e9e5aa93a309fde531cb28f61d3bcb5f8546a5bd9
GET /pagead/ads?client=ca-pub-8116085563943069&output=html&h=90&adk=173538299&adf=1374884920&w=728&lmt=1669547578&ad_type=text_image&format=728x90_as&color_bg=FFFFFF&color_border=FFFFFF&color_link=336699&color_text=333333&color_url=999999&url=http%3A%2F%2Fbest-proxylist.blogspot.com%2F2013_02_27_archive.html&host=pub-1556223355139109&h_ch=00000&wgl=1&dt=1669956480302&bpp=40&bdt=550&idt=92&shv=r20221110&mjsv=m202211150101&ptt=5&saldr=sa&abxe=1&correlator=5771012173785&frm=20&pv=2&ga_vid=1137202624.1669956480&ga_sid=1669956480&ga_hid=1356716139&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=39&ady=144&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C42531706%2C44767167%2C44770880&oid=2&pvsid=3747276890170117&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=Jg7rJ2odrL&p=http%3A//best-proxylist.blogspot.com&dtd=221 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://best-proxylist.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Fri, 02 Dec 2022 04:48:02 GMT
server: cafe
content-length: 9413
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Dec-2022 05:03:02 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 02 Dec 2022 04:48:02 GMT
cache-control: private
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f4b80b9fdd50e1a97c434f592efe9e5f
9f8ef6f699f6a349edf46c73ed4023d706027201
ed2e81c384d6b31b0e0ed2169df1bb332e92bb8c5885eedb13f7a4270b8abec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f4b80b9fdd50e1a97c434f592efe9e5f
9f8ef6f699f6a349edf46c73ed4023d706027201
ed2e81c384d6b31b0e0ed2169df1bb332e92bb8c5885eedb13f7a4270b8abec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js
172.217.21.161200 OK 7.5 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js
IP 172.217.21.161:0
File type ASCII text, with very long lines (1540)
Hash d22e40b1bc4f1b0f1727b96a0f32f7dd
57030c5040f0013120cca1e77fe38af35d4610e0
6f6d3797f9b19ffcd2f416a7566a58cf70fd4fb0ab17dec03fa5b690c6939494
GET /pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7458
x-xss-protection: 0
date: Thu, 01 Dec 2022 15:59:33 GMT
expires: Thu, 15 Dec 2022 15:59:33 GMT
cache-control: public, max-age=1209600
age: 46109
etag: 16870613375306414947
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/window_focus_fy2021.js
172.217.21.161200 OK 1.2 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/window_focus_fy2021.js
IP 172.217.21.161:0
File type ASCII text, with very long lines (1054)
Hash 169edf919beed1ee17c8a752ef12132e
b7fbae15ed7789984ee59618845b914aae37bf3e
2bcf9aebfd80a2558d54f39de59542c3df52610616fb2e4380d9f3d976cc13fc
GET /pagead/js/r20221110/r20110914/client/window_focus_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1236
x-xss-protection: 0
date: Thu, 01 Dec 2022 15:03:35 GMT
expires: Thu, 15 Dec 2022 15:03:35 GMT
cache-control: public, max-age=1209600
etag: 15004572836499977866
content-type: text/javascript; charset=UTF-8
age: 49467
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e53bb8387ca9b101ed40339e2578e229
3d1fd0f30606271d144d87f3d40020f5e69b91e7
c66ddb124d99935fff477ff1d0b03ee4bd33a916e66a374635a12330ae49d159
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2211
Cache-Control: max-age=154927
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:02 GMT
Etag: "6389350e-139"
Expires: Sat, 03 Dec 2022 23:50:09 GMT
Last-Modified: Thu, 01 Dec 2022 23:13:18 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 784a61684d44b40a8fd20ed1372aa526
551692fea3cae6d013d73e9654144f08f733b8ae
469b6455c9b61098fc998c773d8e18208d7501c03b10727f176718c386509bd2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2399
Cache-Control: max-age=120532
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:02 GMT
Etag: "6388adf7-138"
Expires: Sat, 03 Dec 2022 14:16:54 GMT
Last-Modified: Thu, 01 Dec 2022 13:36:55 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 62312b68850d002d64ac008aecf73dec
ef9a55ada7d8934bdb2e146b0ca8b389eca373fb
6f5da1a3fa5cdab84ab6efc3b9dd0dcf7532851bc7648c8c9a8ebc73a5e6c8d1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2241
Cache-Control: max-age=97355
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:02 GMT
Etag: "6388540c-13a"
Expires: Sat, 03 Dec 2022 07:50:37 GMT
Last-Modified: Thu, 01 Dec 2022 07:13:16 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 314
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPTpDbOzWdgFWp2DYgICAAAASv5VHY2HERUQgYOJY752XRhurqWFnfuJABIAAA&wp=Y4mDggADnHUFkUpEAAQsN4kt_2l5waFosJm72A
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kPTpDbOzWdgFWp2DYgICAAAASv5VHY2HERUQgYOJY752XRhurqWFnfuJABIAAA&wp=Y4mDggADnHUFkUpEAAQsN4kt_2l5waFosJm72A
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kPTpDbOzWdgFWp2DYgICAAAASv5VHY2HERUQgYOJY752XRhurqWFnfuJABIAAA&wp=Y4mDggADnHUFkUpEAAQsN4kt_2l5waFosJm72A HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 186519
date: Fri, 02 Dec 2022 04:48:02 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 71cfb0d515178ddb8f4ff5a3c4d7f95a
35dff6eed87807a50f6f2cbdca6015d8419551be
c88dfa7b36b0b6eb14aab6d3d8c06020c7d281b3bffec17303946778e99b6e52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2699
Cache-Control: max-age=150016
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:02 GMT
Etag: "63891ff7-139"
Expires: Sat, 03 Dec 2022 22:28:18 GMT
Last-Modified: Thu, 01 Dec 2022 21:43:19 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 313
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kPTpDbOzWaAB2ASdg2ICAgAAAEr-VR2NhxEVEIKDiWMK_3reBoP-BS9dpQASAAA&wp=Y4mDggADtD8Kso0KAAAf6hPmQpQCddfkcL1ltA
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kPTpDbOzWaAB2ASdg2ICAgAAAEr-VR2NhxEVEIKDiWMK_3reBoP-BS9dpQASAAA&wp=Y4mDggADtD8Kso0KAAAf6hPmQpQCddfkcL1ltA
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kPTpDbOzWaAB2ASdg2ICAgAAAEr-VR2NhxEVEIKDiWMK_3reBoP-BS9dpQASAAA&wp=Y4mDggADtD8Kso0KAAAf6hPmQpQCddfkcL1ltA HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 224009
date: Fri, 02 Dec 2022 04:48:02 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 71cfb0d515178ddb8f4ff5a3c4d7f95a
35dff6eed87807a50f6f2cbdca6015d8419551be
c88dfa7b36b0b6eb14aab6d3d8c06020c7d281b3bffec17303946778e99b6e52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2699
Cache-Control: max-age=150016
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:02 GMT
Etag: "63891ff7-139"
Expires: Sat, 03 Dec 2022 22:28:18 GMT
Last-Modified: Thu, 01 Dec 2022 21:43:19 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 313
static.criteo.net/flash/icon/close_button.svg
178.250.0.130200 OK 308 B URL HTTP/2 static.criteo.net/flash/icon/close_button.svg
IP 178.250.0.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 1bfe2e290ec4440da74a2e2c249eae2b
0b888a3f9e27d1554f2e21d51e7a1c223d00dbd4
8ec89605fe3d580e9539c7b858e8f69ba4e26fe06377ebe04585397de23a7395
GET /flash/icon/close_button.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 04:48:02 GMT
content-type: image/svg+xml
content-length: 308
last-modified: Fri, 14 Feb 2020 13:51:32 GMT
etag: "5e46a5e4-134"
expires: Mon, 27 Nov 2023 04:48:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/animejs/animejs.js
178.250.0.130200 OK 6.0 kB URL HTTP/2 static.criteo.net/animejs/animejs.js
IP 178.250.0.130:0
Hash 049d2c7f19e2f8ea828373e12a59c558
b22e456624ddfc0dc32125b164e46845ffe29ffb
e0140c8e84a145e8cd50b28378116c5d530b3df8617aaffe260f038357f9e1a9
GET /animejs/animejs.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 04:48:02 GMT
content-type: text/javascript
last-modified: Tue, 26 Mar 2019 17:44:11 GMT
etag: W/"5c9a64eb-3181"
expires: Mon, 27 Nov 2023 04:48:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/back_button2.svg
178.250.0.130200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP 178.250.0.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 04:48:02 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Mon, 27 Nov 2023 04:48:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 600a0b46f63ff46b0ab01cefb789d46b
e3c4ea4a38efdfe8637bbbdf77a21ffb6508ec7f
7a5355d9c1a3d3abfa4231c164a55570c6723383203547627fa05b094f15384e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2622
Cache-Control: max-age=113564
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:02 GMT
Etag: "638891e0-13a"
Expires: Sat, 03 Dec 2022 12:20:46 GMT
Last-Modified: Thu, 01 Dec 2022 11:37:04 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 314
best-proxylist.blogspot.com/favicon.ico
172.217.21.161200 OK 412 B URL HTTP/1.1 best-proxylist.blogspot.com/favicon.ico
IP 172.217.21.161:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: best-proxylist.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://best-proxylist.blogspot.com/2013_02_27_archive.html
Cookie: __utma=48685877.1137202624.1669956480.1669956480.1669956480.1; __utmb=48685877.1.10.1669956480; __utmc=48685877; __utmz=48685877.1669956480.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Fri, 02 Dec 2022 04:48:02 GMT
Date: Fri, 02 Dec 2022 04:48:02 GMT
Cache-Control: private, max-age=86400
Last-Modified: Sun, 27 Nov 2022 11:12:58 GMT
ETag: W/"3f55650ad5de9d30b77f25c2af989863e35e69749f6ded0381b079aec994b9d1"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_complete_set_1.jpg&v=3&w=400&s=ttnksdPIV_9FTy3o3Q485f3r&b=400
178.250.0.139200 OK 13 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_complete_set_1.jpg&v=3&w=400&s=ttnksdPIV_9FTy3o3Q485f3r&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 390x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash eecc4b2e106e52cc18195d87fde04306
7f863035d9a2f5a47106679fc0e63c9c49de7a30
6308a0453b6c0a229aff85e92e226176ee87fc3bdc3626ed07b5b336e8d82f15
GET /img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Major_S530_V2__Straight__53_cm__216_W__Ref_50%2Fpurelux_major_unlimited_complete_set_1.jpg&v=3&w=400&s=ttnksdPIV_9FTy3o3Q485f3r&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=626
expires: Fri, 02 Dec 2022 04:58:29 GMT
date: Fri, 02 Dec 2022 04:48:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 13208
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FOlight_Baton_3_Black%2Folight_baton3_1.jpg&v=3&w=400&s=uyHCUjFs6BzE-ObiIYtRVxqd&b=400
178.250.0.139200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FOlight_Baton_3_Black%2Folight_baton3_1.jpg&v=3&w=400&s=uyHCUjFs6BzE-ObiIYtRVxqd&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x215, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a8c54ae76cb59ff01aa7db465e05573f
904693dd7924a11b52841bc98295618881ad6b43
166e8af8adca384f1ee68949bb463e69545efa4ae7e8b7361f884500b1ce9e06
GET /img/img?c=3&cq=256&h=400&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FOlight_Baton_3_Black%2Folight_baton3_1.jpg&v=3&w=400&s=uyHCUjFs6BzE-ObiIYtRVxqd&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 04:48:02 GMT
date: Fri, 02 Dec 2022 04:48:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 11438
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=176&m=0&partner=54197&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F53339%2F180905%2F5137ccbcd8d14251b15403c6b23109e9_logo2.jpg&v=3&w=256&s=JFy84q0SfXknevwQUWVGID4x
178.250.0.139200 OK 4.1 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=176&m=0&partner=54197&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F53339%2F180905%2F5137ccbcd8d14251b15403c6b23109e9_logo2.jpg&v=3&w=256&s=JFy84q0SfXknevwQUWVGID4x
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 168x176, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5f732256bb701b8f5d5db18faf890f6a
18617ac7c94a55a3c7ee960b71059272dd4e679c
e5139067c9565414d1eba815baa9fd0467ce3aa16b82e8130c1dde0ec138d859
GET /img/img?h=176&m=0&partner=54197&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F53339%2F180905%2F5137ccbcd8d14251b15403c6b23109e9_logo2.jpg&v=3&w=256&s=JFy84q0SfXknevwQUWVGID4x HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=29307774
expires: Mon, 06 Nov 2023 09:50:57 GMT
date: Fri, 02 Dec 2022 04:48:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 4124
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy_small.svg
178.250.0.130200 OK 4.2 kB URL HTTP/2 static.criteo.net/flash/icon/privacy_small.svg
IP 178.250.0.130:0
Hash 6ed8677fb3ad4b4367e815c59345fb3c
004d74f303619fe0600bac10d3f8a9166d36da37
2633630e150c5eae06f09af2af99845f8b9b0f8e8c446cd58251fabd344bc7f3
GET /flash/icon/privacy_small.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 04:48:02 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:30:28 GMT
etag: W/"5e42ba84-6aa"
expires: Mon, 27 Nov 2023 04:48:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=beiWXZJQosmtLdw2GZ5AHCqbDWi0oflri63pF1dIb2E4Ln3rcNMWnj0tOwnIGEew5ohJqxJs822WeMu-LCqYj9Zj8zVTGto4gVUWFL30Q0xb7VawIxvtKlG0TVvb4NcXllFZxbei-GG_UD32vn7bamYna1aZaWG5CDWXzVoXXYlO7yQ7hk-xAD2N3Yi3kG1c8dZ3e9Fx-DfvPOQzqf_XJ-xV56Dq0kD9fQah4P9A659YRQUpqP1zXZhzkfswox4IABGbwNdhxt-Zxf0aONlYMZoVgQzO7Z9BJk5lg9WjT055AbRvaPqOyMJJvy8KOtGPCZDYxaHLvwD9JPPsYv9D9dPQwRf-yKtJ3SYerQLZRSJK4tj6vu8lGQAfKRrOCqXCKXUxXlKoggJ3iB8AAvzgmIK7CvRqAUv8fvbtx9naJaWOLGq5umHL7hAU4K9xc84d2hT62Q
178.250.0.160200 OK 17 kB URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=beiWXZJQosmtLdw2GZ5AHCqbDWi0oflri63pF1dIb2E4Ln3rcNMWnj0tOwnIGEew5ohJqxJs822WeMu-LCqYj9Zj8zVTGto4gVUWFL30Q0xb7VawIxvtKlG0TVvb4NcXllFZxbei-GG_UD32vn7bamYna1aZaWG5CDWXzVoXXYlO7yQ7hk-xAD2N3Yi3kG1c8dZ3e9Fx-DfvPOQzqf_XJ-xV56Dq0kD9fQah4P9A659YRQUpqP1zXZhzkfswox4IABGbwNdhxt-Zxf0aONlYMZoVgQzO7Z9BJk5lg9WjT055AbRvaPqOyMJJvy8KOtGPCZDYxaHLvwD9JPPsYv9D9dPQwRf-yKtJ3SYerQLZRSJK4tj6vu8lGQAfKRrOCqXCKXUxXlKoggJ3iB8AAvzgmIK7CvRqAUv8fvbtx9naJaWOLGq5umHL7hAU4K9xc84d2hT62Q
IP 178.250.0.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 261c941a41948e71d68fd3056f567fc6
35ea876f160be8f209c0169a453578bba1085e8f
98c087d09e5f4c0bbd66b2d17ce0c2a2edfa54f8d68d6a81c473de4558198e57
GET /delivery/lg.php?cppv=3&cpp=beiWXZJQosmtLdw2GZ5AHCqbDWi0oflri63pF1dIb2E4Ln3rcNMWnj0tOwnIGEew5ohJqxJs822WeMu-LCqYj9Zj8zVTGto4gVUWFL30Q0xb7VawIxvtKlG0TVvb4NcXllFZxbei-GG_UD32vn7bamYna1aZaWG5CDWXzVoXXYlO7yQ7hk-xAD2N3Yi3kG1c8dZ3e9Fx-DfvPOQzqf_XJ-xV56Dq0kD9fQah4P9A659YRQUpqP1zXZhzkfswox4IABGbwNdhxt-Zxf0aONlYMZoVgQzO7Z9BJk5lg9WjT055AbRvaPqOyMJJvy8KOtGPCZDYxaHLvwD9JPPsYv9D9dPQwRf-yKtJ3SYerQLZRSJK4tj6vu8lGQAfKRrOCqXCKXUxXlKoggJ3iB8AAvzgmIK7CvRqAUv8fvbtx9naJaWOLGq5umHL7hAU4K9xc84d2hT62Q HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:48:02 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3023310
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Black_XSlim_C520%2Fpurelux_black_xslim_c520_set_1_1.jpg&v=3&w=800&s=6Mt8DDR6YYEqcLfJn7cs9JlG&b=400
178.250.0.139200 OK 13 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Black_XSlim_C520%2Fpurelux_black_xslim_c520_set_1_1.jpg&v=3&w=800&s=6Mt8DDR6YYEqcLfJn7cs9JlG&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x327, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9e5224585739a368e646538ca153738e
6fded7f9f92f8f7bb90eba52188952c238c8b974
618356c80458b2a4d4fdf884de50a5b45cf2c88ecc0d189948dbb85a32e6a0b3
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Black_XSlim_C520%2Fpurelux_black_xslim_c520_set_1_1.jpg&v=3&w=800&s=6Mt8DDR6YYEqcLfJn7cs9JlG&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=366
expires: Fri, 02 Dec 2022 04:54:09 GMT
date: Fri, 02 Dec 2022 04:48:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 12962
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Black_9120__Round__23_cm__120W__Ref_45%2Fpurelux_9120_2pcs.jpg&v=3&w=800&s=nUIZzR8JcmIv9pnBkhCC-Lp-&b=400
178.250.0.139200 OK 14 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Black_9120__Round__23_cm__120W__Ref_45%2Fpurelux_9120_2pcs.jpg&v=3&w=800&s=nUIZzR8JcmIv9pnBkhCC-Lp-&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x237, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bb8478edb6b0e81b10ececacf2803c10
637eb1e8a1a7f67c41d086c74874e6f4c2173805
620896e5216d1d64eb9ca9c4edfca0804553152e50e7fbb829cdcd7f540856c8
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Black_9120__Round__23_cm__120W__Ref_45%2Fpurelux_9120_2pcs.jpg&v=3&w=800&s=nUIZzR8JcmIv9pnBkhCC-Lp-&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 04:48:02 GMT
date: Fri, 02 Dec 2022 04:48:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 14118
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FOlight_Baton_3_Black%2Folight_baton3_1.jpg&v=3&w=800&s=TvzsKt5J7jtbXNz-nbFjeY-S&b=400
178.250.0.139200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FOlight_Baton_3_Black%2Folight_baton3_1.jpg&v=3&w=800&s=TvzsKt5J7jtbXNz-nbFjeY-S&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x215, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a8c54ae76cb59ff01aa7db465e05573f
904693dd7924a11b52841bc98295618881ad6b43
166e8af8adca384f1ee68949bb463e69545efa4ae7e8b7361f884500b1ce9e06
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fproducts%2FOlight_Baton_3_Black%2Folight_baton3_1.jpg&v=3&w=800&s=TvzsKt5J7jtbXNz-nbFjeY-S&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 04:48:02 GMT
date: Fri, 02 Dec 2022 04:48:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 11438
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Q990__Square__25_cm__90_W__Ref_375%2Fpurelux_q990_2_pcs.jpg&v=3&w=800&s=BpFIwGFk_GexMDCXINVd4NNj&b=400
178.250.0.139200 OK 8.2 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Q990__Square__25_cm__90_W__Ref_375%2Fpurelux_q990_2_pcs.jpg&v=3&w=800&s=BpFIwGFk_GexMDCXINVd4NNj&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x164, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b40c88f35f7bff4c7c4408338441a31a
43f59b18505608df29b1c89f016a426272625d8f
06ec0a9642eb175d28d2bb0abeca7d9ac4fd0df023e5595635907919d2a94822
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fi%2Fbundles%2FExtralight_Purelux_Q990__Square__25_cm__90_W__Ref_375%2Fpurelux_q990_2_pcs.jpg&v=3&w=800&s=BpFIwGFk_GexMDCXINVd4NNj&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=962
expires: Fri, 02 Dec 2022 05:04:05 GMT
date: Fri, 02 Dec 2022 04:48:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8172
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Ftaskulamput%2Ftuotekuvat%2FPurelux%2FAAA_2021%2Fpurelux_terrain_black_slim_flood_2_1.jpg&v=3&w=800&s=1LsEBmZTXJljHb90oy3jkpyx&b=400
178.250.0.139200 OK 10 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Ftaskulamput%2Ftuotekuvat%2FPurelux%2FAAA_2021%2Fpurelux_terrain_black_slim_flood_2_1.jpg&v=3&w=800&s=1LsEBmZTXJljHb90oy3jkpyx&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x152, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7da65f289fff36ac8c1b591aecc3cc2d
5a534b345e073aa2af60380f9492ff568a9193df
41a7afb975fe653451492d744ffb6585918bf12323eef196dcfe3f90b8eb2164
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Ftaskulamput%2Ftuotekuvat%2FPurelux%2FAAA_2021%2Fpurelux_terrain_black_slim_flood_2_1.jpg&v=3&w=800&s=1LsEBmZTXJljHb90oy3jkpyx&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=261
expires: Fri, 02 Dec 2022 04:52:24 GMT
date: Fri, 02 Dec 2022 04:48:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10108
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Ftaskulamput%2Ftuotekuvat%2FOlight%2Folight_i1r_130_lm_3.jpg&v=3&w=800&s=lWRG4vxBnMwgDCOQF_gAVDn3&b=400
178.250.0.139200 OK 6.2 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Ftaskulamput%2Ftuotekuvat%2FOlight%2Folight_i1r_130_lm_3.jpg&v=3&w=800&s=lWRG4vxBnMwgDCOQF_gAVDn3&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x365, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 972c733a00c9939933c61f65a9a39e8e
d5b8864161081e987bd9b9522131f3c9cb51ee94
c2491f2951f5a1c0ea3bbf2708d1a411ff6adb686a29de0d1f6159c73bb3fba3
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Ftaskulamput%2Ftuotekuvat%2FOlight%2Folight_i1r_130_lm_3.jpg&v=3&w=800&s=lWRG4vxBnMwgDCOQF_gAVDn3&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=1724
expires: Fri, 02 Dec 2022 05:16:47 GMT
date: Fri, 02 Dec 2022 04:48:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6196
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Ftaskulamput%2Ftuotekuvat%2FLumonite%2Flumonite_headwear_2019_1.jpg&v=3&w=800&s=0kWoT29SKCoIpzO7w0GLnqFR&b=400
178.250.0.139200 OK 8.0 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Ftaskulamput%2Ftuotekuvat%2FLumonite%2Flumonite_headwear_2019_1.jpg&v=3&w=800&s=0kWoT29SKCoIpzO7w0GLnqFR&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 322x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 67fcf3ff000017b5cc9b3c93bbc78a7b
19ed6c3256543066cecb11e5f04d21da22785843
5ba64a731ef3d416575f9c3045c0f5bf92eaec866342d14b64b7ea37d5ab9acd
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Ftaskulamput%2Ftuotekuvat%2FLumonite%2Flumonite_headwear_2019_1.jpg&v=3&w=800&s=0kWoT29SKCoIpzO7w0GLnqFR&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=1296
expires: Fri, 02 Dec 2022 05:09:39 GMT
date: Fri, 02 Dec 2022 04:48:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7964
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=lFDa04aM6u_GuraKLWDLeHi2Zckczmgd2jhzBh62M_3mkWGsK8XOVqlrjloErLlRri-E5tanofIfrwlqVJ80BT_mFLXLNAHcniUCe9OAzVIT6e1qg07YMP8iRJF0JEEBxS36TutTwbMFt_TQ59xAaAfoTImxqtsaGTp4_odFY-FLHZkPuv0n-5yYSZt0aS6HKVg52p5qAYufLh-RQ0oA-m_cMhV7THlSGz7jqpmPudg6YomWpD4wdYUAyiRYBsJxC1gDFw&sds=2&rev=83599&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=lFDa04aM6u_GuraKLWDLeHi2Zckczmgd2jhzBh62M_3mkWGsK8XOVqlrjloErLlRri-E5tanofIfrwlqVJ80BT_mFLXLNAHcniUCe9OAzVIT6e1qg07YMP8iRJF0JEEBxS36TutTwbMFt_TQ59xAaAfoTImxqtsaGTp4_odFY-FLHZkPuv0n-5yYSZt0aS6HKVg52p5qAYufLh-RQ0oA-m_cMhV7THlSGz7jqpmPudg6YomWpD4wdYUAyiRYBsJxC1gDFw&sds=2&rev=83599&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=lFDa04aM6u_GuraKLWDLeHi2Zckczmgd2jhzBh62M_3mkWGsK8XOVqlrjloErLlRri-E5tanofIfrwlqVJ80BT_mFLXLNAHcniUCe9OAzVIT6e1qg07YMP8iRJF0JEEBxS36TutTwbMFt_TQ59xAaAfoTImxqtsaGTp4_odFY-FLHZkPuv0n-5yYSZt0aS6HKVg52p5qAYufLh-RQ0oA-m_cMhV7THlSGz7jqpmPudg6YomWpD4wdYUAyiRYBsJxC1gDFw&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:48:02 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=WhKx1YaM6u_GuraK5MVFtabqnGsyINd-ThP2Li9O2cEahY_bx2A8obsgI2_EMeaTMiECLzaV0RWZWgmYAQFL3vn8cOJq8d5oncZ0T9QV3npSkcSyIZpPGdhX4ZkRmC18yWlDrbuhsdhswx8iDL9A-bYpOStBjQ0WuRBZT56_EnY_ZryqOUNLdO5czeCfFfNYLx9g9v3hti3iwBFRxf2ORp84ec87-gDCviENrTubxr41ASWljWH7_hnONyp4ewIe25yhWT9v0Fm1G9nU&sds=2&rev=83599&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=WhKx1YaM6u_GuraK5MVFtabqnGsyINd-ThP2Li9O2cEahY_bx2A8obsgI2_EMeaTMiECLzaV0RWZWgmYAQFL3vn8cOJq8d5oncZ0T9QV3npSkcSyIZpPGdhX4ZkRmC18yWlDrbuhsdhswx8iDL9A-bYpOStBjQ0WuRBZT56_EnY_ZryqOUNLdO5czeCfFfNYLx9g9v3hti3iwBFRxf2ORp84ec87-gDCviENrTubxr41ASWljWH7_hnONyp4ewIe25yhWT9v0Fm1G9nU&sds=2&rev=83599&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=WhKx1YaM6u_GuraK5MVFtabqnGsyINd-ThP2Li9O2cEahY_bx2A8obsgI2_EMeaTMiECLzaV0RWZWgmYAQFL3vn8cOJq8d5oncZ0T9QV3npSkcSyIZpPGdhX4ZkRmC18yWlDrbuhsdhswx8iDL9A-bYpOStBjQ0WuRBZT56_EnY_ZryqOUNLdO5czeCfFfNYLx9g9v3hti3iwBFRxf2ORp84ec87-gDCviENrTubxr41ASWljWH7_hnONyp4ewIe25yhWT9v0Fm1G9nU&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:48:02 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Fvalostorese%2Fproduktbilder%2FStrands%2Fstrands_visby_1.jpg&v=3&w=800&s=BZmZL2rsyuoP_omSBBWVCLxi&b=400
178.250.0.139200 OK 15 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Fvalostorese%2Fproduktbilder%2FStrands%2Fstrands_visby_1.jpg&v=3&w=800&s=BZmZL2rsyuoP_omSBBWVCLxi&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 378x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 18bb64f393c56a5d9a28f058b97cb2ef
95334399d0422dd9bd1a88e45f65beb65b2f7032
d74f30356fe0a38e57177ae01276e72a019a42f93cbe09a70bd3f09634879e1a
GET /img/img?c=3&cq=256&h=800&m=0&partner=54197&q=80&r=0&u=https%3A%2F%2Fcdn.handshake.fi%2Fimages%2Fvalostorese%2Fproduktbilder%2FStrands%2Fstrands_visby_1.jpg&v=3&w=800&s=BZmZL2rsyuoP_omSBBWVCLxi&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=1799
expires: Fri, 02 Dec 2022 05:18:03 GMT
date: Fri, 02 Dec 2022 04:48:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 14624
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 315873c315af2be891e63f8b421bae65
5277bb0c4fea2b036c6faf28d66395c96166ffd2
3f6657d352a42f8257409f2ed365a3fb928ac3eb74a34a2c74a433290182cc92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.132200 OK 513 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.132:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 20f0e8cf359fdabbc11ce24a63a6f1c0
aa59a6c16d0b7ce1d0d2195a85d1ac99f7c7d681
64734f1077d02d89bc36c2247d4171df8bf1e8df8106b2b8f1cfcf017a07c004
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://best-proxylist.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 02 Dec 2022 04:48:03 GMT
date: Fri, 02 Dec 2022 04:48:03 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-Ve1RX7JYldLy9p79BOa9Cw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 513
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=lFDa04aM6u_GuraKLWDLeHi2Zckczmgd2jhzBh62M_3mkWGsK8XOVqlrjloErLlRri-E5tanofIfrwlqVJ80BT_mFLXLNAHcniUCe9OAzVIT6e1qg07YMP8iRJF0JEEBxS36TutTwbMFt_TQ59xAaAfoTImxqtsaGTp4_odFY-FLHZkPuv0n-5yYSZt0aS6HKVg52p5qAYufLh-RQ0oA-m_cMhV7THlSGz7jqpmPudg6YomWpD4wdYUAyiRYBsJxC1gDFw&sds=2&rev=83599&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=lFDa04aM6u_GuraKLWDLeHi2Zckczmgd2jhzBh62M_3mkWGsK8XOVqlrjloErLlRri-E5tanofIfrwlqVJ80BT_mFLXLNAHcniUCe9OAzVIT6e1qg07YMP8iRJF0JEEBxS36TutTwbMFt_TQ59xAaAfoTImxqtsaGTp4_odFY-FLHZkPuv0n-5yYSZt0aS6HKVg52p5qAYufLh-RQ0oA-m_cMhV7THlSGz7jqpmPudg6YomWpD4wdYUAyiRYBsJxC1gDFw&sds=2&rev=83599&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=lFDa04aM6u_GuraKLWDLeHi2Zckczmgd2jhzBh62M_3mkWGsK8XOVqlrjloErLlRri-E5tanofIfrwlqVJ80BT_mFLXLNAHcniUCe9OAzVIT6e1qg07YMP8iRJF0JEEBxS36TutTwbMFt_TQ59xAaAfoTImxqtsaGTp4_odFY-FLHZkPuv0n-5yYSZt0aS6HKVg52p5qAYufLh-RQ0oA-m_cMhV7THlSGz7jqpmPudg6YomWpD4wdYUAyiRYBsJxC1gDFw&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:48:04 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=WhKx1YaM6u_GuraK5MVFtabqnGsyINd-ThP2Li9O2cEahY_bx2A8obsgI2_EMeaTMiECLzaV0RWZWgmYAQFL3vn8cOJq8d5oncZ0T9QV3npSkcSyIZpPGdhX4ZkRmC18yWlDrbuhsdhswx8iDL9A-bYpOStBjQ0WuRBZT56_EnY_ZryqOUNLdO5czeCfFfNYLx9g9v3hti3iwBFRxf2ORp84ec87-gDCviENrTubxr41ASWljWH7_hnONyp4ewIe25yhWT9v0Fm1G9nU&sds=2&rev=83599&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=WhKx1YaM6u_GuraK5MVFtabqnGsyINd-ThP2Li9O2cEahY_bx2A8obsgI2_EMeaTMiECLzaV0RWZWgmYAQFL3vn8cOJq8d5oncZ0T9QV3npSkcSyIZpPGdhX4ZkRmC18yWlDrbuhsdhswx8iDL9A-bYpOStBjQ0WuRBZT56_EnY_ZryqOUNLdO5czeCfFfNYLx9g9v3hti3iwBFRxf2ORp84ec87-gDCviENrTubxr41ASWljWH7_hnONyp4ewIe25yhWT9v0Fm1G9nU&sds=2&rev=83599&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=WhKx1YaM6u_GuraK5MVFtabqnGsyINd-ThP2Li9O2cEahY_bx2A8obsgI2_EMeaTMiECLzaV0RWZWgmYAQFL3vn8cOJq8d5oncZ0T9QV3npSkcSyIZpPGdhX4ZkRmC18yWlDrbuhsdhswx8iDL9A-bYpOStBjQ0WuRBZT56_EnY_ZryqOUNLdO5czeCfFfNYLx9g9v3hti3iwBFRxf2ORp84ec87-gDCviENrTubxr41ASWljWH7_hnONyp4ewIe25yhWT9v0Fm1G9nU&sds=2&rev=83599&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:48:04 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 0 B IP 142.250.74.131:0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:48:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.criteo.net/flash/icon/criteo_logo_2021.svg
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/criteo_logo_2021.svg
IP 178.250.0.130:0
GET /flash/icon/criteo_logo_2021.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 04:48:02 GMT
content-type: image/svg+xml
last-modified: Thu, 27 May 2021 13:21:59 GMT
etag: W/"60af9cf7-891"
expires: Mon, 27 Nov 2023 04:48:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y4mDggADnHUFkUpEAAQsN4kt_2l5waFosJm72A&u=%7CIhyU9NpgjKfSxBxMtK8x6rxAjlW9c5%2Bwo8ba2T6SL1Y%3D%7C&c1=jWCgqsKSUoV3SMf7iUfSyMCnTpn87UHNsuno7AgpGzm4RCiJiIGT5xwGwpq72AA9qLbjWcoETAWIOiDy1IqkBAo94Tjs4HUU7YUCH0YsYcEKcja7pZr93zD3sl_DGokcfk0OWQIBTBmETBREhD8kPZ2A6ktUu0sFvoO398bxf0uaIgZJ1oi2kwA6wD9qjZYhjKlhtLYJ1H7bHcdBN12q0DnkwawK6iPG4ZKgxk2u6fjXZHqzQRo9Fr6vBD9WC9kpClSP3dsMmzr5OdCK30BciJNEj2zs_KzIKufZDz7e5Ubn7GEe_qycCMLfXTqbh7Q_4SUazRaRP6vZlCCjLtKHs45TB-UwezlnYGy-OSvZPB4LbOIBTfHtQt9PVb9Oit8V45kBo_vmPtLjNqQkW8C90fWwsuOG7ym_YyR7E1irmBO4SvDQDDgvDBhP0AOtoab4I_wI7TtNaaPqIWN6Q77MQ7ccR_1uBTp_UjfQgba2obHJsFFhBMKG0eyQ-5uJiQbdqsGrjI1-NNV9LZX0HNxSmpioPS3rEIkM4yrw4ALdET-1PEvFrQ7oo1z_GdkzjpsE_-yO3TSMJfI&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCPGdAgoOJY_W4DsSUxdwPt9iQoAXJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTgxMTYwODU1NjM5NDMwNjnIAQmpAvEZnkmXp7E-qAMBqgTmAU_QH_t1w6PTfYQO_sz-LP30RZaB6_1jKiadpdZxIP2W746wRF2tcv9O6ylGTjsawCo3RHOB_46ZuUPc6t2UVshma1zzPrUcLTRlTNgF5rvRPEQ0zWurBOVit9BzneC5VazvscJDl_MhojTIcbdOtf-_4YF15q8hpCd-AtdR5bbpYXZg3IXuOE6Q010O7EuVtjFvZkNY9dRbcYYPIpMNPixFkjJ4ZKQOg1_iQWc2LTx6AZpzld_jRb1Rjf0WI9IMbvnFwihauGbi2vXCHXsBiBvM8cUqeeGxXIwBqu1DY3pwAHm1MbujgAaY3LTc-pC4mF2gBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgBAQATICqgI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0mM0ofsi1HjL1Qf89OichcRmle9w%26client%3Dca-pub-8116085563943069%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y4mDggADnHUFkUpEAAQsN4kt_2l5waFosJm72A&u=%7CIhyU9NpgjKfSxBxMtK8x6rxAjlW9c5%2Bwo8ba2T6SL1Y%3D%7C&c1=jWCgqsKSUoV3SMf7iUfSyMCnTpn87UHNsuno7AgpGzm4RCiJiIGT5xwGwpq72AA9qLbjWcoETAWIOiDy1IqkBAo94Tjs4HUU7YUCH0YsYcEKcja7pZr93zD3sl_DGokcfk0OWQIBTBmETBREhD8kPZ2A6ktUu0sFvoO398bxf0uaIgZJ1oi2kwA6wD9qjZYhjKlhtLYJ1H7bHcdBN12q0DnkwawK6iPG4ZKgxk2u6fjXZHqzQRo9Fr6vBD9WC9kpClSP3dsMmzr5OdCK30BciJNEj2zs_KzIKufZDz7e5Ubn7GEe_qycCMLfXTqbh7Q_4SUazRaRP6vZlCCjLtKHs45TB-UwezlnYGy-OSvZPB4LbOIBTfHtQt9PVb9Oit8V45kBo_vmPtLjNqQkW8C90fWwsuOG7ym_YyR7E1irmBO4SvDQDDgvDBhP0AOtoab4I_wI7TtNaaPqIWN6Q77MQ7ccR_1uBTp_UjfQgba2obHJsFFhBMKG0eyQ-5uJiQbdqsGrjI1-NNV9LZX0HNxSmpioPS3rEIkM4yrw4ALdET-1PEvFrQ7oo1z_GdkzjpsE_-yO3TSMJfI&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCPGdAgoOJY_W4DsSUxdwPt9iQoAXJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTgxMTYwODU1NjM5NDMwNjnIAQmpAvEZnkmXp7E-qAMBqgTmAU_QH_t1w6PTfYQO_sz-LP30RZaB6_1jKiadpdZxIP2W746wRF2tcv9O6ylGTjsawCo3RHOB_46ZuUPc6t2UVshma1zzPrUcLTRlTNgF5rvRPEQ0zWurBOVit9BzneC5VazvscJDl_MhojTIcbdOtf-_4YF15q8hpCd-AtdR5bbpYXZg3IXuOE6Q010O7EuVtjFvZkNY9dRbcYYPIpMNPixFkjJ4ZKQOg1_iQWc2LTx6AZpzld_jRb1Rjf0WI9IMbvnFwihauGbi2vXCHXsBiBvM8cUqeeGxXIwBqu1DY3pwAHm1MbujgAaY3LTc-pC4mF2gBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgBAQATICqgI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0mM0ofsi1HjL1Qf89OichcRmle9w%26client%3Dca-pub-8116085563943069%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y4mDggADnHUFkUpEAAQsN4kt_2l5waFosJm72A&u=%7CIhyU9NpgjKfSxBxMtK8x6rxAjlW9c5%2Bwo8ba2T6SL1Y%3D%7C&c1=jWCgqsKSUoV3SMf7iUfSyMCnTpn87UHNsuno7AgpGzm4RCiJiIGT5xwGwpq72AA9qLbjWcoETAWIOiDy1IqkBAo94Tjs4HUU7YUCH0YsYcEKcja7pZr93zD3sl_DGokcfk0OWQIBTBmETBREhD8kPZ2A6ktUu0sFvoO398bxf0uaIgZJ1oi2kwA6wD9qjZYhjKlhtLYJ1H7bHcdBN12q0DnkwawK6iPG4ZKgxk2u6fjXZHqzQRo9Fr6vBD9WC9kpClSP3dsMmzr5OdCK30BciJNEj2zs_KzIKufZDz7e5Ubn7GEe_qycCMLfXTqbh7Q_4SUazRaRP6vZlCCjLtKHs45TB-UwezlnYGy-OSvZPB4LbOIBTfHtQt9PVb9Oit8V45kBo_vmPtLjNqQkW8C90fWwsuOG7ym_YyR7E1irmBO4SvDQDDgvDBhP0AOtoab4I_wI7TtNaaPqIWN6Q77MQ7ccR_1uBTp_UjfQgba2obHJsFFhBMKG0eyQ-5uJiQbdqsGrjI1-NNV9LZX0HNxSmpioPS3rEIkM4yrw4ALdET-1PEvFrQ7oo1z_GdkzjpsE_-yO3TSMJfI&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCPGdAgoOJY_W4DsSUxdwPt9iQoAXJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTgxMTYwODU1NjM5NDMwNjnIAQmpAvEZnkmXp7E-qAMBqgTmAU_QH_t1w6PTfYQO_sz-LP30RZaB6_1jKiadpdZxIP2W746wRF2tcv9O6ylGTjsawCo3RHOB_46ZuUPc6t2UVshma1zzPrUcLTRlTNgF5rvRPEQ0zWurBOVit9BzneC5VazvscJDl_MhojTIcbdOtf-_4YF15q8hpCd-AtdR5bbpYXZg3IXuOE6Q010O7EuVtjFvZkNY9dRbcYYPIpMNPixFkjJ4ZKQOg1_iQWc2LTx6AZpzld_jRb1Rjf0WI9IMbvnFwihauGbi2vXCHXsBiBvM8cUqeeGxXIwBqu1DY3pwAHm1MbujgAaY3LTc-pC4mF2gBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgBAQATICqgI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0mM0ofsi1HjL1Qf89OichcRmle9w%26client%3Dca-pub-8116085563943069%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:48:02 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=lFDa04aM6u_GuraKLWDLeHi2Zckczmgd2jhzBh62M_3mkWGsK8XOVqlrjloErLlRri-E5tanofIfrwlqVJ80BT_mFLXLNAHcniUCe9OAzVIT6e1qg07YMP8iRJF0JEEBxS36TutTwbMFt_TQ59xAaAfoTImxqtsaGTp4_odFY-FLHZkPuv0n-5yYSZt0aS6HKVg52p5qAYufLh-RQ0oA-m_cMhV7THlSGz7jqpmPudg6YomWpD4wdYUAyiRYBsJxC1gDFw"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 56155266
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y4mDggADtD8Kso0KAAAf6hPmQpQCddfkcL1ltA&u=%7CIhyU9NpgjKdOg7Ade6d4cb7nQ0L%2F8zoYqyZSGCNbjao%3D%7C&c1=jWCgqsKSUoV3SMf7iUfSyMCnTpn87UHNWAfGoXO4nLFqnE480YHVHx7mz-K5ZBShqRMT2CMVSfhNClTR7ELzjCGNSlDcuyNr5Jd-qMRh50jSN4tZrspwBQF7dXv84ak2-0BTwKYrLLvGFbEb7PJ2qjB14P4Th9UXQvYtbcZiY78pYS5GFdSAiIx1sycmeudUf5czYnvxNTzSwxrToO4Ed5L-4sl90_ioVYWUob09bwKbIIl5uwb2eJz31ekNEjkQNkZtwDg82V3RrsKT3hCGzvnPiobzuZeMZ7X6OAvD4R2wziXivI17RmPlkB60zmYglN27fWUsiIQMbmztDQ5RhzohnaP3Wbm8X7WQnfZVSuFH721HKSZ4fw46i5y1sCukmn7i5L83qvNEMYT3qmQ2OAQ9Cx69nZ9PJaxVjSEDGMFFCTt7CUqzcLlr71WLy-KY8x0p0QTQ3qDXprz0h6viTx4V0iyVsYs5Pg3oS8y7HXPbQMOUPH42epPM2Zc-zYZYxWHNnOMjnbx1kU1xh--OkRH4L-kmxBE423tBtoBuY1IUkj5d4SoG_fy1t9AisdPTmddlvBaVoZA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCEQjngoOJY7_oDoqaygXqv4DABMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODExNjA4NTU2Mzk0MzA2OcgBCakC8RmeSZensT6oAwGqBOcBT9Dlwj2fehZFtouTGr5wyfpt_5pxO_MIQXbWxcXyX6BbxD_XwsgNWEMeEMyNhGzEB7dNa3jVk0hwDzRsknNEb_5GHcUm1UaSj59ElPzDoPGN1klMGp3V5EbWW9ZlQwO98EYQPNSoT1SrQ3Xqc4CzVyP0oswyliOdLzHN9CxRF3xspoENZROE_pO8-abMRARh31iQUOoei928cRn-rLj_fnPZRKlIomOtf8SwTWeEGFFqZC1dlUi1GYMgCDAwUnhSmoB0vY5mQdgJIcLdUg2T5_iKD4N7E6xz8kEBXPKx38ifObqr-drUgAaY3LTc-pC4mF2gBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgBAQATICqgI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0RGwfbJWKYml1R5zQCoTV84lijow%26client%3Dca-pub-8116085563943069%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y4mDggADtD8Kso0KAAAf6hPmQpQCddfkcL1ltA&u=%7CIhyU9NpgjKdOg7Ade6d4cb7nQ0L%2F8zoYqyZSGCNbjao%3D%7C&c1=jWCgqsKSUoV3SMf7iUfSyMCnTpn87UHNWAfGoXO4nLFqnE480YHVHx7mz-K5ZBShqRMT2CMVSfhNClTR7ELzjCGNSlDcuyNr5Jd-qMRh50jSN4tZrspwBQF7dXv84ak2-0BTwKYrLLvGFbEb7PJ2qjB14P4Th9UXQvYtbcZiY78pYS5GFdSAiIx1sycmeudUf5czYnvxNTzSwxrToO4Ed5L-4sl90_ioVYWUob09bwKbIIl5uwb2eJz31ekNEjkQNkZtwDg82V3RrsKT3hCGzvnPiobzuZeMZ7X6OAvD4R2wziXivI17RmPlkB60zmYglN27fWUsiIQMbmztDQ5RhzohnaP3Wbm8X7WQnfZVSuFH721HKSZ4fw46i5y1sCukmn7i5L83qvNEMYT3qmQ2OAQ9Cx69nZ9PJaxVjSEDGMFFCTt7CUqzcLlr71WLy-KY8x0p0QTQ3qDXprz0h6viTx4V0iyVsYs5Pg3oS8y7HXPbQMOUPH42epPM2Zc-zYZYxWHNnOMjnbx1kU1xh--OkRH4L-kmxBE423tBtoBuY1IUkj5d4SoG_fy1t9AisdPTmddlvBaVoZA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCEQjngoOJY7_oDoqaygXqv4DABMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODExNjA4NTU2Mzk0MzA2OcgBCakC8RmeSZensT6oAwGqBOcBT9Dlwj2fehZFtouTGr5wyfpt_5pxO_MIQXbWxcXyX6BbxD_XwsgNWEMeEMyNhGzEB7dNa3jVk0hwDzRsknNEb_5GHcUm1UaSj59ElPzDoPGN1klMGp3V5EbWW9ZlQwO98EYQPNSoT1SrQ3Xqc4CzVyP0oswyliOdLzHN9CxRF3xspoENZROE_pO8-abMRARh31iQUOoei928cRn-rLj_fnPZRKlIomOtf8SwTWeEGFFqZC1dlUi1GYMgCDAwUnhSmoB0vY5mQdgJIcLdUg2T5_iKD4N7E6xz8kEBXPKx38ifObqr-drUgAaY3LTc-pC4mF2gBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgBAQATICqgI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0RGwfbJWKYml1R5zQCoTV84lijow%26client%3Dca-pub-8116085563943069%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y4mDggADtD8Kso0KAAAf6hPmQpQCddfkcL1ltA&u=%7CIhyU9NpgjKdOg7Ade6d4cb7nQ0L%2F8zoYqyZSGCNbjao%3D%7C&c1=jWCgqsKSUoV3SMf7iUfSyMCnTpn87UHNWAfGoXO4nLFqnE480YHVHx7mz-K5ZBShqRMT2CMVSfhNClTR7ELzjCGNSlDcuyNr5Jd-qMRh50jSN4tZrspwBQF7dXv84ak2-0BTwKYrLLvGFbEb7PJ2qjB14P4Th9UXQvYtbcZiY78pYS5GFdSAiIx1sycmeudUf5czYnvxNTzSwxrToO4Ed5L-4sl90_ioVYWUob09bwKbIIl5uwb2eJz31ekNEjkQNkZtwDg82V3RrsKT3hCGzvnPiobzuZeMZ7X6OAvD4R2wziXivI17RmPlkB60zmYglN27fWUsiIQMbmztDQ5RhzohnaP3Wbm8X7WQnfZVSuFH721HKSZ4fw46i5y1sCukmn7i5L83qvNEMYT3qmQ2OAQ9Cx69nZ9PJaxVjSEDGMFFCTt7CUqzcLlr71WLy-KY8x0p0QTQ3qDXprz0h6viTx4V0iyVsYs5Pg3oS8y7HXPbQMOUPH42epPM2Zc-zYZYxWHNnOMjnbx1kU1xh--OkRH4L-kmxBE423tBtoBuY1IUkj5d4SoG_fy1t9AisdPTmddlvBaVoZA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCEQjngoOJY7_oDoqaygXqv4DABMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODExNjA4NTU2Mzk0MzA2OcgBCakC8RmeSZensT6oAwGqBOcBT9Dlwj2fehZFtouTGr5wyfpt_5pxO_MIQXbWxcXyX6BbxD_XwsgNWEMeEMyNhGzEB7dNa3jVk0hwDzRsknNEb_5GHcUm1UaSj59ElPzDoPGN1klMGp3V5EbWW9ZlQwO98EYQPNSoT1SrQ3Xqc4CzVyP0oswyliOdLzHN9CxRF3xspoENZROE_pO8-abMRARh31iQUOoei928cRn-rLj_fnPZRKlIomOtf8SwTWeEGFFqZC1dlUi1GYMgCDAwUnhSmoB0vY5mQdgJIcLdUg2T5_iKD4N7E6xz8kEBXPKx38ifObqr-drUgAaY3LTc-pC4mF2gBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgBAQATICqgI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0RGwfbJWKYml1R5zQCoTV84lijow%26client%3Dca-pub-8116085563943069%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:48:02 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=WhKx1YaM6u_GuraK5MVFtabqnGsyINd-ThP2Li9O2cEahY_bx2A8obsgI2_EMeaTMiECLzaV0RWZWgmYAQFL3vn8cOJq8d5oncZ0T9QV3npSkcSyIZpPGdhX4ZkRmC18yWlDrbuhsdhswx8iDL9A-bYpOStBjQ0WuRBZT56_EnY_ZryqOUNLdO5czeCfFfNYLx9g9v3hti3iwBFRxf2ORp84ec87-gDCviENrTubxr41ASWljWH7_hnONyp4ewIe25yhWT9v0Fm1G9nU"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 106860650
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=rs9Eukw-4XlJL3WR0YRSmNTRQj8ELyqlC8RF2JPOkoYu3Kv1VHLk1SfOVTErKommAlHHzJU4MIbtAt-MxB_6ROb3HX_qUyN_j8xmNVEuCcTGhiwSte_tCOAnuswDNKboD_j9dSNEbBw2HKcs9S0yw2YZaHS22pgYcR0HG0HB6RIGDdkUzPSxbAgDjNvv4Mc8JRAbwExZWNVTRuTWTgr-6e51A2jGZ38wHm49LtxY5LFDKbZrMME6WRpG9cCkL9lR45uhFvenell7CpYRcGILX1Xl4d5c-Ozyz0_xOkaDaQGEsV0PUaNCvIRGjze4jLrWmPDnGG95Vtm1sUkhQbJL1e6FIgfDpCDIC-fqSY9XNXqzxWtqSk7y6d42G8eOY-ABdOtNNZBIU8I-twAW8q9LIObRCBU5_NG_K-f-kpkOwT2nI8MUl599V9nt_Y6yUq5ZP15GsQ
178.250.0.160200 OK 0 B URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=rs9Eukw-4XlJL3WR0YRSmNTRQj8ELyqlC8RF2JPOkoYu3Kv1VHLk1SfOVTErKommAlHHzJU4MIbtAt-MxB_6ROb3HX_qUyN_j8xmNVEuCcTGhiwSte_tCOAnuswDNKboD_j9dSNEbBw2HKcs9S0yw2YZaHS22pgYcR0HG0HB6RIGDdkUzPSxbAgDjNvv4Mc8JRAbwExZWNVTRuTWTgr-6e51A2jGZ38wHm49LtxY5LFDKbZrMME6WRpG9cCkL9lR45uhFvenell7CpYRcGILX1Xl4d5c-Ozyz0_xOkaDaQGEsV0PUaNCvIRGjze4jLrWmPDnGG95Vtm1sUkhQbJL1e6FIgfDpCDIC-fqSY9XNXqzxWtqSk7y6d42G8eOY-ABdOtNNZBIU8I-twAW8q9LIObRCBU5_NG_K-f-kpkOwT2nI8MUl599V9nt_Y6yUq5ZP15GsQ
IP 178.250.0.160:0
GET /delivery/lg.php?cppv=3&cpp=rs9Eukw-4XlJL3WR0YRSmNTRQj8ELyqlC8RF2JPOkoYu3Kv1VHLk1SfOVTErKommAlHHzJU4MIbtAt-MxB_6ROb3HX_qUyN_j8xmNVEuCcTGhiwSte_tCOAnuswDNKboD_j9dSNEbBw2HKcs9S0yw2YZaHS22pgYcR0HG0HB6RIGDdkUzPSxbAgDjNvv4Mc8JRAbwExZWNVTRuTWTgr-6e51A2jGZ38wHm49LtxY5LFDKbZrMME6WRpG9cCkL9lR45uhFvenell7CpYRcGILX1Xl4d5c-Ozyz0_xOkaDaQGEsV0PUaNCvIRGjze4jLrWmPDnGG95Vtm1sUkhQbJL1e6FIgfDpCDIC-fqSY9XNXqzxWtqSk7y6d42G8eOY-ABdOtNNZBIU8I-twAW8q9LIObRCBU5_NG_K-f-kpkOwT2nI8MUl599V9nt_Y6yUq5ZP15GsQ HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:48:02 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3095280
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy.svg
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/privacy.svg
IP 178.250.0.130:0
GET /flash/icon/privacy.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 04:48:02 GMT
content-type: image/svg+xml
last-modified: Wed, 19 Feb 2020 10:57:21 GMT
etag: W/"5e4d1491-646"
expires: Mon, 27 Nov 2023 04:48:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2