r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4493
Expires: Sat, 03 Dec 2022 13:18:03 GMT
Date: Sat, 03 Dec 2022 12:03:10 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 67e9370f1bf3e4946a01f346eeae8966
aaab391d1134302d718de7a0d5edbedf884633e6
27a8654fb14db88d4b2bb3b45c1b197fc498cd94143d4a68687742fa48a41358
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3072
Cache-Control: max-age=170354
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:10 GMT
Etag: "638b2570-1d7"
Expires: Mon, 05 Dec 2022 11:22:24 GMT
Last-Modified: Sat, 03 Dec 2022 10:31:12 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 11:19:59 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2592
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3165
Expires: Sat, 03 Dec 2022 12:55:56 GMT
Date: Sat, 03 Dec 2022 12:03:11 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: V8/iwujQiA8B9uz9WnVvB+Uq//sdec6TkqcA/QkibdOsYYngZ3imkSzMCVzIw4VWO6XdAfh+gWo=
x-amz-request-id: 64J6D2K2VNHAEHE2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 11:46:33 GMT
age: 998
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
personalizationmall.boats/1129sen-orna1143
162.0.235.186301 Moved Permanently 707 B URL HTTP/1.1 personalizationmall.boats/1129sen-orna1143
IP 162.0.235.186:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET /1129sen-orna1143 HTTP/1.1
Host: personalizationmall.boats
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sat, 03 Dec 2022 12:03:10 GMT
server: LiteSpeed
location: https://personalizationmall.boats/1129sen-orna1143
x-turbo-charged-by: LiteSpeed
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 12:03:11 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 11:11:17 GMT
cache-control: public,max-age=3600
age: 3114
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 01678c2554a4904e40c1c7f7cd69783d
e192d52c4a2b28d34a3218a810e3de1fb35edad8
7a7b2e3858ab34cb42b3de3ec0f86d8bffee6d833d5f8012a46c668a945be671
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 12:03:11 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Dec 2022 01:27:29 GMT
Expires: Sat, 10 Dec 2022 01:27:28 GMT
Etag: "e192d52c4a2b28d34a3218a810e3de1fb35edad8"
Cache-Control: max-age=566056,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773c285cbace0afe-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3066
Cache-Control: max-age=165286
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:11 GMT
Etag: "638b11ab-1d7"
Expires: Mon, 05 Dec 2022 09:57:57 GMT
Last-Modified: Sat, 03 Dec 2022 09:06:51 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.163.38.240101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.38.240:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: V4/zrG/iL5Bmy1o0dPf+dg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 500CPy71JZe7+BZzX4xlERQucEw=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9582
Expires: Sat, 03 Dec 2022 14:42:55 GMT
Date: Sat, 03 Dec 2022 12:03:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9582
Expires: Sat, 03 Dec 2022 14:42:55 GMT
Date: Sat, 03 Dec 2022 12:03:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9582
Expires: Sat, 03 Dec 2022 14:42:55 GMT
Date: Sat, 03 Dec 2022 12:03:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9582
Expires: Sat, 03 Dec 2022 14:42:55 GMT
Date: Sat, 03 Dec 2022 12:03:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57219d7e-330b-4d3f-a472-55cd262c7dc1.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57219d7e-330b-4d3f-a472-55cd262c7dc1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbee75c6c314655f738b57b828bef016
bb36d39c7adf764e8a7dcf7f91125001623975b4
fd40949b9711db01be746d1723f78c2bb04d356063c6249b8b5ae1470532367a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57219d7e-330b-4d3f-a472-55cd262c7dc1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10877
x-amzn-requestid: bebc4f7f-7349-4973-99f5-d6c3b8a27072
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1G2uIAMFryg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-0637a1a946db78074bc19dc3;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wtaahzdJXnHSYwqIlHyqFy-LsdPl1Nh-CThm-x57bU3dUEgrfB1Gvw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:37:47 GMT
age: 51926
etag: "bb36d39c7adf764e8a7dcf7f91125001623975b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F474ccac4-fb8f-4a01-8195-4840a857fbe7.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F474ccac4-fb8f-4a01-8195-4840a857fbe7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65bcc96d51cd1a45dd61a4dddef0b529
5ebd592fe35d0479855700baf8525a621d2eec2e
11bfdb9b2f9730e35596e636b0f75e819a70edef0488e671ac82d1bf53e56868
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F474ccac4-fb8f-4a01-8195-4840a857fbe7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8159
x-amzn-requestid: ed2fb67a-2113-4240-978e-e7c978a3ca3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgVH1KIAMFjOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-0c4966b87f844ec3624e9dae;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Wr-PIQraWVuOxXMhTjxXFixZHXCsoxLS-nd-ySjScKj0-h_JJ47kDg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:35:40 GMT
age: 52053
etag: "5ebd592fe35d0479855700baf8525a621d2eec2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45182367fd4f8b6dd234eef1022acdb1
d4b3052021ff3ad1dc4134fa25eb12a98e7c17da
a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9715
x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZO2HQKIAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QkVKyYm9UwlF5FEeli9UsRAQwEi3-c3bMR-QSJxIKRQe7WWT76dGQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:37:54 GMT
age: 51919
etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 06:00:50 GMT
age: 21743
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XvG2dAUeB914GQ1qJwQRHovAtra8OSjG-CsXeR8UOBq5r8qVjEbPBQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:39:04 GMT
age: 48249
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1e74254b3fdce7d6b84a71a7aff43789
65c8b4abf957f9b54d99d0f78559e639adb29efb
f278c3cc6734da7188862a8c651c803e7ac1fda82234e191761453cb1359d3ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5354
x-amzn-requestid: 3d58ffea-3433-4c5c-a60b-17f6de3a33e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cSsnvG44oAMFfyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638427ca-63b375f04189b7ce7d84cd5d;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 03:15:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GBhAilKMKo9RvIzqzF9V4jTZbvpa2rPZeoy6Jy8fMc1-JO078OAYzQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:53:40 GMT
age: 22173
etag: "65c8b4abf957f9b54d99d0f78559e639adb29efb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
personalizationmall.boats/1129sen-orna1143
162.0.235.186302 Found 0 B URL HTTP/2 personalizationmall.boats/1129sen-orna1143
IP 162.0.235.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /1129sen-orna1143 HTTP/1.1
Host: personalizationmall.boats
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
set-cookie: prli_click_1889=1129sen-orna1143; expires=Mon, 02-Jan-2023 12:03:13 GMT; Max-Age=2592000; path=/; secure
prli_visitor=638b3b01257ec; expires=Sun, 03-Dec-2023 12:03:13 GMT; Max-Age=31536000; path=/; secure
cache-control: no-cache, no-store, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Mon, 07 Jul 1777 07:07:07 GMT
x-redirect-powered-by: Pretty Link Pro 3.2.7 http://prettylink.com
x-redirect-by: WordPress
location: https://senprints.com/rd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments?spsid=10899&utm_s=manulk&product=porcelain-ornament---circle&utm_source=teespring.cfd&utm_campaign=3029a_Sen-Orna-03&utm_medium=10-30-2022&utm_doma=teespring.cfd&utm_date=10-30-2022
x-litespeed-cache-control: no-cache
content-type: text/html; charset=UTF-8
content-length: 0
date: Sat, 03 Dec 2022 12:03:13 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2bd959e78abfd2fbc8c60fb82ed486df
6c909ada740cbcf145c87bbda3632efff085667d
66140cdc4d6ddde47ed3bee1c50ed4ca4277a20dbb525f4db87a796d5af52f44
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "66140CDC4D6DDDE47ED3BEE1C50ED4CA4277A20DBB525F4DB87A796D5AF52F44"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20520
Expires: Sat, 03 Dec 2022 17:45:13 GMT
Date: Sat, 03 Dec 2022 12:03:13 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2bd959e78abfd2fbc8c60fb82ed486df
6c909ada740cbcf145c87bbda3632efff085667d
66140cdc4d6ddde47ed3bee1c50ed4ca4277a20dbb525f4db87a796d5af52f44
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "66140CDC4D6DDDE47ED3BEE1C50ED4CA4277A20DBB525F4DB87A796D5AF52F44"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20520
Expires: Sat, 03 Dec 2022 17:45:13 GMT
Date: Sat, 03 Dec 2022 12:03:13 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6d6d9b006f59edc73a952f473b659b53
397e5e747f9ed96b15e06b739e5060e0589e2868
f0eb7fb43e7fcd76170723d4d5c211b1a8648f7ab67a109c224147bd8a0f7653
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "F0EB7FB43E7FCD76170723D4D5C211B1A8648F7AB67A109C224147BD8A0F7653"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2225
Expires: Sat, 03 Dec 2022 12:40:18 GMT
Date: Sat, 03 Dec 2022 12:03:13 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6d6d9b006f59edc73a952f473b659b53
397e5e747f9ed96b15e06b739e5060e0589e2868
f0eb7fb43e7fcd76170723d4d5c211b1a8648f7ab67a109c224147bd8a0f7653
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "F0EB7FB43E7FCD76170723D4D5C211B1A8648F7AB67A109C224147BD8A0F7653"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2225
Expires: Sat, 03 Dec 2022 12:40:18 GMT
Date: Sat, 03 Dec 2022 12:03:13 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6d6d9b006f59edc73a952f473b659b53
397e5e747f9ed96b15e06b739e5060e0589e2868
f0eb7fb43e7fcd76170723d4d5c211b1a8648f7ab67a109c224147bd8a0f7653
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "F0EB7FB43E7FCD76170723D4D5C211B1A8648F7AB67A109C224147BD8A0F7653"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2225
Expires: Sat, 03 Dec 2022 12:40:18 GMT
Date: Sat, 03 Dec 2022 12:03:13 GMT
Connection: keep-alive
cdnjs1.com/css/themes/default/font.css
188.114.96.1200 OK 1.2 kB URL HTTP/2 cdnjs1.com/css/themes/default/font.css
IP 188.114.96.1:0
Hash fd43a062352f9939904c02e53b45b2ae
c195a962785e71b55a764f58fcb661083920f9f9
44d45496a83731b201826d6e5cb4278d38066cdc5c899fca65405a9f1b060a5b
GET /css/themes/default/font.css HTTP/1.1
Host: cdnjs1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdnjs1.com/css/themes/default/index.css?v=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:13 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=259200
last-modified: Thu, 17 Nov 2022 20:22:59 GMT
etag: W/"79ea-184874248b8"
vary: Accept-Encoding
cf-cache-status: HIT
age: 1132009
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=53riiM5zikhNdnkl2%2FVSJvRyOj2Jb%2BIDB8PBI20AZzj17WcUB%2FTOrnszmBJiVMtNekikEvETcBcIkyNk0naK14Jt97i9Fcu8BJH%2BdiVK3MKVTt69wYPZZOTJ4PQp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773c286b2e5cb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://senprints.com
Connection: keep-alive
Referer: https://cdnjs1.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 06:30:11 GMT
expires: Sat, 02 Dec 2023 06:30:11 GMT
cache-control: public, max-age=31536000
age: 106382
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 4.4 kB IP 142.250.74.131:0
File type gzip compressed data, from Unix\012- data
Hash ed193fbb966d1df3c13c975b2e6bb51d
b9373c18aa1bda3b5837dd97a971b0e8c298b3ae
06e6da94b6e5f6af56569a51bd42b2d470473cca103962701c64f042deba0c16
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js
142.250.74.168200 OK 38 kB URL HTTP/2 www.googletagmanager.com/gtag/js
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 062cfb05faeeb22a8e01b1c401a1663b
7a0feb10cc28f968892ca58ef966a975ccf4d321
ef1e902a93f9a6b1c35602adf7f2bdb0a1666d628ec70430e27b1d6445ee03ab
GET /gtag/js HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 03 Dec 2022 12:03:13 GMT
expires: Sat, 03 Dec 2022 12:03:13 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 37490
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 60eecf25bb810bc171acf9f0fe69b278
47ef033b47920852c9cf6fe95fdc3d8a20edf7b9
d3c5d0b8ec408a45978c5c4fdaf313ac9bf9116b6a28ef424c48985f62532b90
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "D3C5D0B8EC408A45978C5C4FDAF313AC9BF9116B6A28EF424C48985F62532B90"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3798
Expires: Sat, 03 Dec 2022 13:06:31 GMT
Date: Sat, 03 Dec 2022 12:03:13 GMT
Connection: keep-alive
cdnjs1.com/css/themes/default/customItem.css
188.114.96.1200 OK 9.2 kB URL HTTP/2 cdnjs1.com/css/themes/default/customItem.css
IP 188.114.96.1:0
Hash 071731e8de9daff1767a1360ee9ae0d6
b0ee89845cf84d75a791ca54050db326aec251c0
74e4baa22ab844a39575fb0299ccda47eca7224d9255a9dae6263b697e082f38
GET /css/themes/default/customItem.css HTTP/1.1
Host: cdnjs1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdnjs1.com/css/themes/default/index.css?v=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:13 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=259200
last-modified: Sat, 26 Nov 2022 07:46:42 GMT
etag: W/"a81-184b2e71ed0"
vary: Accept-Encoding
cf-cache-status: HIT
age: 186381
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8QWa4i9UNKaR9NzSYP3RdS5T%2FsdZ8D5uk%2FZbMYoimfZW74ZnBRIZgSNvkZCZHyhTgSA8Cfp%2FRVdJLgQ06rah2%2BNtHw%2F%2FMVW43fjNfjavRvKD9BIN6kGlLvkMlQcA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773c286b2e59b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img.cloudimgs.net/rx/512x512/s2/s/1/55112ad47d44c138.png
104.26.9.88200 OK 85 kB URL HTTP/2 img.cloudimgs.net/rx/512x512/s2/s/1/55112ad47d44c138.png
IP 104.26.9.88:0
File type PNG image data, 512 x 395, 8-bit/color RGB, non-interlaced\012- data
Hash 154ea5fb443c98032a0005bb35146d77
53abea307cc6c91af5ba668b7d4e0c0b25b8977e
cd92a723a3fb6348823102b42c9d14184613b4b26b09c392f26362bc7b610e83
GET /rx/512x512/s2/s/1/55112ad47d44c138.png HTTP/1.1
Host: img.cloudimgs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:14 GMT
content-type: image/png
content-length: 85092
cache-control: public, max-age=8640000
cf-bgj: imgq:85,h2pri
cf-polished: origSize=160099
access-control-allow-origin: *
expires: Fri, 19 Aug 2022 02:58:05 GMT
ref: senprints.com
server-location: Sing
x-imageproxy-cache: HIT
x-powered-by: Render-Image-Server
last-modified: Thu, 18 Aug 2022 02:58:05 GMT
cf-cache-status: HIT
age: 1347324
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m4Yz07DsuYKI3dh2MnWZMp%2Fjnsw8HgRugHn6Fy3gwLRgBfgAu1rAajpfzDGzHw8k0QStyuWrFIpE%2Fg8drHodBYnXtmeoKJe8fj3Th85rbqWwmB2sns6XaSDT2cstIdfPBHp2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773c286ce814b4eb-OSL
X-Firefox-Spdy: h2
img.cloudimgs.net/rx/32x32/s2/s/1/55112ad47d44c138.png
104.26.9.88200 OK 1.7 kB URL HTTP/2 img.cloudimgs.net/rx/32x32/s2/s/1/55112ad47d44c138.png
IP 104.26.9.88:0
File type PNG image data, 32 x 25, 8-bit/color RGB, non-interlaced\012- data
Hash 4a514948eea824d9cc5866a9ebb2d1ec
5e6e89d54eabe9d9882f10f64d85348ed4d958a7
2a515526001f9a33ea8d4a93e9d85bda3bda195008d2d4d88424881f3169ca60
GET /rx/32x32/s2/s/1/55112ad47d44c138.png HTTP/1.1
Host: img.cloudimgs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:14 GMT
content-type: image/png
content-length: 1710
cache-control: public, max-age=8640000
cf-bgj: imgq:85,h2pri
cf-polished: origSize=2112
access-control-allow-origin: *
expires: Sat, 26 Nov 2022 07:35:37 GMT
ref: no-referer
server-location: Sing
x-imageproxy-cache: HIT
x-powered-by: Render-Image-Server
last-modified: Fri, 25 Nov 2022 07:35:37 GMT
cf-cache-status: HIT
age: 265574
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AU4W8XvdFMFJ4KabRcPPBMqUfsIVfbz7YeR6nesfedRelK85OjF%2FykY5t6hqNQVXz19iiqVak0HnDi%2FarLcfcO7Gay%2FFWL3vIy13HrjUbAQGgxaSaVBXtFuqpDOUA8FbQlXD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773c286ce816b4eb-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 933bd2bc7dd004d74961dfc0878c1d22
8a4f50edb54fea8ffa604f5ca593345341ce15a1
252363badd64d5ec8ad9eb56af41e44bb094d8c80646dd228e90dba5e56c87b8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3675
Cache-Control: max-age=147184
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:14 GMT
Etag: "638ac897-1d7"
Expires: Mon, 05 Dec 2022 04:56:18 GMT
Last-Modified: Sat, 03 Dec 2022 03:55:03 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: TfFi0FWechV6WcmFKz2paPHLEavfdPOiLk7lMSggpFWZLo8Ddc9JjsZ5+d9zX7jB++ZfXCjLHfvMSmgWhEHg3A==
content-length: 27340
x-fb-trip-id: 1904183273
date: Sat, 03 Dec 2022 12:03:14 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.dwin1.com/19038.js
143.204.55.42200 OK 11 kB IP 143.204.55.42:0
Hash 3e652c11169ddc1ecd11a4b364b15b2b
9da553e9321cc17e2984df44d27a7fc482268258
fa806d6ca750a4ab03e7a9d2bf2ff78c908225228a48e842aa4da5c8752baeb4
GET /19038.js HTTP/1.1
Host: www.dwin1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
x-amz-replication-status: COMPLETED
last-modified: Thu, 01 Dec 2022 11:20:19 GMT
x-amz-version-id: TLcB1RVnbk3T9H7niy0kVEFJCc2celMR
server: AmazonS3
content-encoding: gzip
date: Sat, 03 Dec 2022 11:53:39 GMT
cache-control: max-age=600, s-maxage=600
etag: W/"4e89cb39b157c6c509587a36accf3d00"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xCOLzNt-5GsA9OFbms6qoSuV7x4WUqq3XUbM388aDR8te4qRZOs3xw==
age: 576
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 933bd2bc7dd004d74961dfc0878c1d22
8a4f50edb54fea8ffa604f5ca593345341ce15a1
252363badd64d5ec8ad9eb56af41e44bb094d8c80646dd228e90dba5e56c87b8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3675
Cache-Control: max-age=147184
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:14 GMT
Etag: "638ac897-1d7"
Expires: Mon, 05 Dec 2022 04:56:18 GMT
Last-Modified: Sat, 03 Dec 2022 03:55:03 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1de72233ac65f8bb63c582d84995b794
db3c88868061958c179ff072bc2ab7c79c3f83df
7e0a0b0d9d0a0b48ba182428159fdfec68a60990c6b4914e289e701287b863c8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4202
Cache-Control: max-age=140867
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:14 GMT
Etag: "638aaddb-1d7"
Expires: Mon, 05 Dec 2022 03:11:01 GMT
Last-Modified: Sat, 03 Dec 2022 02:00:59 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 08ca0238100c906a665f21b1caa97f47
3f605891faeafb51a36cecd25d331bcc450d34e9
35dac74d71c723f7a8e7585174fad51a0115e4a294a2c0d80b63026e25825618
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/10872721988/?random=1670068992186&cv=11&fst=1670068992186&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fsenprints.com%2Frd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments%3Fspsid%3D10899%26utm_s%3Dmanulk%26product%3Dporcelain-ornament---circle%26utm_source%3Dteespring.cfd%26utm_campaign%3D3029a_Sen-Orna-03%26utm_medium%3D10-30-2022%26utm_doma%3Dteespring.cfd%26utm_date%3D10-30-2022&tiba=RD%20Christmas%20Snowman%20Family%20Ornament%2C%20Christmas%20Family%20Ornament%2C%20Snowman%20Ornaments%20%7C%20SenPrints&auid=1814135358.1670068992&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.130200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10872721988/?random=1670068992186&cv=11&fst=1670068992186&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fsenprints.com%2Frd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments%3Fspsid%3D10899%26utm_s%3Dmanulk%26product%3Dporcelain-ornament---circle%26utm_source%3Dteespring.cfd%26utm_campaign%3D3029a_Sen-Orna-03%26utm_medium%3D10-30-2022%26utm_doma%3Dteespring.cfd%26utm_date%3D10-30-2022&tiba=RD%20Christmas%20Snowman%20Family%20Ornament%2C%20Christmas%20Family%20Ornament%2C%20Snowman%20Ornaments%20%7C%20SenPrints&auid=1814135358.1670068992&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (2631), with no line terminators
Hash 24e37f10f4211d9fe9b5c747558fa789
4c616ea5ddd3af660b48651dc10cc68acc24e7ed
5c4a802fa82ab225d087ada115c3c6529742c9700ef312f2e688c6956688c2a7
GET /pagead/viewthroughconversion/10872721988/?random=1670068992186&cv=11&fst=1670068992186&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fsenprints.com%2Frd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments%3Fspsid%3D10899%26utm_s%3Dmanulk%26product%3Dporcelain-ornament---circle%26utm_source%3Dteespring.cfd%26utm_campaign%3D3029a_Sen-Orna-03%26utm_medium%3D10-30-2022%26utm_doma%3Dteespring.cfd%26utm_date%3D10-30-2022&tiba=RD%20Christmas%20Snowman%20Family%20Ornament%2C%20Christmas%20Family%20Ornament%2C%20Snowman%20Ornaments%20%7C%20SenPrints&auid=1814135358.1670068992&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 12:03:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1049
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 03-Dec-2022 12:18:14 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 08ca0238100c906a665f21b1caa97f47
3f605891faeafb51a36cecd25d331bcc450d34e9
35dac74d71c723f7a8e7585174fad51a0115e4a294a2c0d80b63026e25825618
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d177680f261fa0b5bf3d5ae3ed69af85
96cdc11262db0a9531fe0cd00e908f3e824c89b3
08eac8282cf4566d382816edac93db8581b65dc2898fc7ea80d7424224ed29ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1377c2956f6d4d989e6fafbe01600b49
7a550dd67e42a8f1ba1468646af02691d0580345
4e0206cd8e1112cdefa7f974876461a968bbcbbf016b1b1c2e3af77346507886
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/10872721988/?random=1670068992186&cv=11&fst=1670068800000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsenprints.com%2Frd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments%3Fspsid%3D10899%26utm_s%3Dmanulk%26product%3Dporcelain-ornament---circle%26utm_source%3Dteespring.cfd%26utm_campaign%3D3029a_Sen-Orna-03%26utm_medium%3D10-30-2022%26utm_doma%3Dteespring.cfd%26utm_date%3D10-30-2022&tiba=RD%20Christmas%20Snowman%20Family%20Ornament%2C%20Christmas%20Family%20Ornament%2C%20Snowman%20Ornaments%20%7C%20SenPrints&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1410065836&rmt_tld=1&ipr=y
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/10872721988/?random=1670068992186&cv=11&fst=1670068800000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsenprints.com%2Frd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments%3Fspsid%3D10899%26utm_s%3Dmanulk%26product%3Dporcelain-ornament---circle%26utm_source%3Dteespring.cfd%26utm_campaign%3D3029a_Sen-Orna-03%26utm_medium%3D10-30-2022%26utm_doma%3Dteespring.cfd%26utm_date%3D10-30-2022&tiba=RD%20Christmas%20Snowman%20Family%20Ornament%2C%20Christmas%20Family%20Ornament%2C%20Snowman%20Ornaments%20%7C%20SenPrints&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1410065836&rmt_tld=1&ipr=y
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10872721988/?random=1670068992186&cv=11&fst=1670068800000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsenprints.com%2Frd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments%3Fspsid%3D10899%26utm_s%3Dmanulk%26product%3Dporcelain-ornament---circle%26utm_source%3Dteespring.cfd%26utm_campaign%3D3029a_Sen-Orna-03%26utm_medium%3D10-30-2022%26utm_doma%3Dteespring.cfd%26utm_date%3D10-30-2022&tiba=RD%20Christmas%20Snowman%20Family%20Ornament%2C%20Christmas%20Family%20Ornament%2C%20Snowman%20Ornaments%20%7C%20SenPrints&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1410065836&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 12:03:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/10872721988/?random=1670068992186&cv=11&fst=1670068800000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsenprints.com%2Frd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments%3Fspsid%3D10899%26utm_s%3Dmanulk%26product%3Dporcelain-ornament---circle%26utm_source%3Dteespring.cfd%26utm_campaign%3D3029a_Sen-Orna-03%26utm_medium%3D10-30-2022%26utm_doma%3Dteespring.cfd%26utm_date%3D10-30-2022&tiba=RD%20Christmas%20Snowman%20Family%20Ornament%2C%20Christmas%20Family%20Ornament%2C%20Snowman%20Ornaments%20%7C%20SenPrints&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1410065836&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/10872721988/?random=1670068992186&cv=11&fst=1670068800000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsenprints.com%2Frd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments%3Fspsid%3D10899%26utm_s%3Dmanulk%26product%3Dporcelain-ornament---circle%26utm_source%3Dteespring.cfd%26utm_campaign%3D3029a_Sen-Orna-03%26utm_medium%3D10-30-2022%26utm_doma%3Dteespring.cfd%26utm_date%3D10-30-2022&tiba=RD%20Christmas%20Snowman%20Family%20Ornament%2C%20Christmas%20Family%20Ornament%2C%20Snowman%20Ornaments%20%7C%20SenPrints&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1410065836&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10872721988/?random=1670068992186&cv=11&fst=1670068800000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fsenprints.com%2Frd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments%3Fspsid%3D10899%26utm_s%3Dmanulk%26product%3Dporcelain-ornament---circle%26utm_source%3Dteespring.cfd%26utm_campaign%3D3029a_Sen-Orna-03%26utm_medium%3D10-30-2022%26utm_doma%3Dteespring.cfd%26utm_date%3D10-30-2022&tiba=RD%20Christmas%20Snowman%20Family%20Ornament%2C%20Christmas%20Family%20Ornament%2C%20Snowman%20Ornaments%20%7C%20SenPrints&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1410065836&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 12:03:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d177680f261fa0b5bf3d5ae3ed69af85
96cdc11262db0a9531fe0cd00e908f3e824c89b3
08eac8282cf4566d382816edac93db8581b65dc2898fc7ea80d7424224ed29ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ct.pinterest.com/user/?tid=2612698204220&cb=1670068992197&dep=2%2CPAGE_LOAD
151.101.128.84200 OK 373 B URL HTTP/2 ct.pinterest.com/user/?tid=2612698204220&cb=1670068992197&dep=2%2CPAGE_LOAD
IP 151.101.128.84:0
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash 7c95bf1e7580e7dfa7f4f5c10b0addd9
a1e3954cd6a0d4a5fc0a6c344d91e6c24504722b
1f8cb83a1e4eedc470a6d0c6acc5f5ff13fa65639378a8a14d5db82e288b2e17
GET /user/?tid=2612698204220&cb=1670068992197&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://senprints.com
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVpHWXpZekE1TldJdE5HRmlOQzAwT0dGakxUbGlOemd0Tm1NMFl6STVabVJoTlRKaA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://senprints.com
content-type: application/json; charset=utf-8
content-encoding: gzip
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 6027050861084182
date: Sat, 03 Dec 2022 12:03:14 GMT
x-cdn: fastly
content-length: 373
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2612698204220&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fsenprints.com%2Frd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments%3Fspsid%3D10899%26utm_s%3Dmanulk%26product%3Dporcelain-ornament---circle%26utm_source%3Dteespring.cfd%26utm_campaign%3D3029a_Sen-Orna-03%26utm_medium%3D10-30-2022%26utm_doma%3Dteespring.cfd%26utm_date%3D10-30-2022%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%229a94ee76%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1670068992200
151.101.128.84200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2612698204220&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fsenprints.com%2Frd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments%3Fspsid%3D10899%26utm_s%3Dmanulk%26product%3Dporcelain-ornament---circle%26utm_source%3Dteespring.cfd%26utm_campaign%3D3029a_Sen-Orna-03%26utm_medium%3D10-30-2022%26utm_doma%3Dteespring.cfd%26utm_date%3D10-30-2022%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%229a94ee76%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1670068992200
IP 151.101.128.84:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2612698204220&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fsenprints.com%2Frd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments%3Fspsid%3D10899%26utm_s%3Dmanulk%26product%3Dporcelain-ornament---circle%26utm_source%3Dteespring.cfd%26utm_campaign%3D3029a_Sen-Orna-03%26utm_medium%3D10-30-2022%26utm_doma%3Dteespring.cfd%26utm_date%3D10-30-2022%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%229a94ee76%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1670068992200 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1214746230833269
date: Sat, 03 Dec 2022 12:03:14 GMT
x-cdn: fastly
content-length: 35
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1f3a4f3edea56419c58836a0c80d5cea
1558a7ad0acc0c09cdf39ec92030f7ee5736e595
70aeda0cb136ac1add86931a338558b9f302576cd65537575d232fda623fe2f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-P4FDJXH4PL>m=2oebu0&_p=714573234&cid=1540518272.1670068992&ul=en-us&sr=1280x1024&_s=1&sid=1670068992&sct=1&seg=0&dl=https%3A%2F%2Fsenprints.com%2Frd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments%3Fspsid%3D10899%26utm_s%3Dmanulk%26product%3Dporcelain-ornament---circle%26utm_source%3Dteespring.cfd%26utm_campaign%3D3029a_Sen-Orna-03%26utm_medium%3D10-30-2022%26utm_doma%3Dteespring.cfd%26utm_date%3D10-30-2022&dt=RD%20Christmas%20Snowman%20Family%20Ornament%2C%20Christmas%20Family%20Ornament%2C%20Snowman%20Ornaments%20%7C%20SenPrints&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-P4FDJXH4PL>m=2oebu0&_p=714573234&cid=1540518272.1670068992&ul=en-us&sr=1280x1024&_s=1&sid=1670068992&sct=1&seg=0&dl=https%3A%2F%2Fsenprints.com%2Frd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments%3Fspsid%3D10899%26utm_s%3Dmanulk%26product%3Dporcelain-ornament---circle%26utm_source%3Dteespring.cfd%26utm_campaign%3D3029a_Sen-Orna-03%26utm_medium%3D10-30-2022%26utm_doma%3Dteespring.cfd%26utm_date%3D10-30-2022&dt=RD%20Christmas%20Snowman%20Family%20Ornament%2C%20Christmas%20Family%20Ornament%2C%20Snowman%20Ornaments%20%7C%20SenPrints&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-P4FDJXH4PL>m=2oebu0&_p=714573234&cid=1540518272.1670068992&ul=en-us&sr=1280x1024&_s=1&sid=1670068992&sct=1&seg=0&dl=https%3A%2F%2Fsenprints.com%2Frd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments%3Fspsid%3D10899%26utm_s%3Dmanulk%26product%3Dporcelain-ornament---circle%26utm_source%3Dteespring.cfd%26utm_campaign%3D3029a_Sen-Orna-03%26utm_medium%3D10-30-2022%26utm_doma%3Dteespring.cfd%26utm_date%3D10-30-2022&dt=RD%20Christmas%20Snowman%20Family%20Ornament%2C%20Christmas%20Family%20Ornament%2C%20Snowman%20Ornaments%20%7C%20SenPrints&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://senprints.com
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://senprints.com
date: Sat, 03 Dec 2022 12:03:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash efe1c4b61e04e1371183e965b4aab2c0
980b623358d555a3956c3f2ac6461cdccbc31ffa
ad60a578c2d45de6a18d8b122e3f96fc67048d5c4d68f8b86599c4b09412a4b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1655
Cache-Control: max-age=100128
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:15 GMT
Etag: "638a18ac-117"
Expires: Sun, 04 Dec 2022 15:52:03 GMT
Last-Modified: Fri, 02 Dec 2022 15:24:28 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
img.cloudimgs.net/rx/1000x1250,q_90,ofmt_webp/s4/l_p:3159191:31836d6484ef3153/fl_cutter,fl_layer_apply/u_p:3159191:c8b80b269ed36989/co_rgb:FFFFFF,e_colorize:100/fl_layer_apply/l_p:3159191:7d077ca229d0a3cf/fl_layer_apply/u_p:3159191:8068350df596b018/fl_layer_apply/c_thumb,w_1280/f_jpg/v1/p/6032298/59ae3b166beba6e0d269759d41344ef6?_a=AACkGGX
104.26.9.88200 OK 74 kB URL HTTP/2 img.cloudimgs.net/rx/1000x1250,q_90,ofmt_webp/s4/l_p:3159191:31836d6484ef3153/fl_cutter,fl_layer_apply/u_p:3159191:c8b80b269ed36989/co_rgb:FFFFFF,e_colorize:100/fl_layer_apply/l_p:3159191:7d077ca229d0a3cf/fl_layer_apply/u_p:3159191:8068350df596b018/fl_layer_apply/c_thumb,w_1280/f_jpg/v1/p/6032298/59ae3b166beba6e0d269759d41344ef6?_a=AACkGGX
IP 104.26.9.88:0
Hash ca602d352ab9862fa5f7b56814eff5b5
57094109a70cffb3322e2988c3dad8aaa0b87f28
70306597197102b14b65c725a60c9630cdf6cc4bf1e3b1a993da4b050ee49e09
GET /rx/1000x1250,q_90,ofmt_webp/s4/l_p:3159191:31836d6484ef3153/fl_cutter,fl_layer_apply/u_p:3159191:c8b80b269ed36989/co_rgb:FFFFFF,e_colorize:100/fl_layer_apply/l_p:3159191:7d077ca229d0a3cf/fl_layer_apply/u_p:3159191:8068350df596b018/fl_layer_apply/c_thumb,w_1280/f_jpg/v1/p/6032298/59ae3b166beba6e0d269759d41344ef6?_a=AACkGGX HTTP/1.1
Host: img.cloudimgs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:16 GMT
content-type: image/webp
content-length: 73102
x-powered-by: Render-Image-Server
ref: senprints.com
expires: Wed, 30 Nov 2022 03:51:58 GMT
cache-control: public, max-age=8640000
x-imageproxy-cache: HIT
access-control-allow-origin: *
server-location: Sing
last-modified: Tue, 29 Nov 2022 03:51:58 GMT
cf-cache-status: HIT
age: 94830
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a8jXWbiHFX%2BHPaWy6DJ12Vqc9kknQ8SFFdzMqatYM1uxa%2BHDnGLs06CJF1sL%2BlHCTG882Ko6uE828cgyZ2DPn6ytX1ad%2FVtzcmyGSskjLa6TMirkyQNVvhdnD%2FUrZsv7kcKK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773c28794d8eb4eb-OSL
X-Firefox-Spdy: h2
ct.pinterest.com/ct.html
151.101.128.84200 OK 323 B IP 151.101.128.84:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 1440226946343829
date: Sat, 03 Dec 2022 12:03:16 GMT
x-cdn: fastly
content-length: 323
X-Firefox-Spdy: h2
img.cloudimgs.net/rx/160x200,c_1,q_90,ofmt_webp/s4/l_p:3159191:c78d1e36cd4d5fd6/fl_cutter,fl_layer_apply/u_p:3159191:dd1fa2ac89daae5c/co_rgb:FFFFFF,e_colorize:100/fl_layer_apply/l_p:3159191:e30725a434764967/fl_layer_apply/u_p:3159191:b4f9bc8eafe92548/fl_layer_apply/c_thumb,w_1280/f_jpg/v1/p/6032298/177e3f2cc024297adb95ac71967e9fb9?_a=AACkGGX
104.26.9.88200 OK 9.8 kB URL HTTP/2 img.cloudimgs.net/rx/160x200,c_1,q_90,ofmt_webp/s4/l_p:3159191:c78d1e36cd4d5fd6/fl_cutter,fl_layer_apply/u_p:3159191:dd1fa2ac89daae5c/co_rgb:FFFFFF,e_colorize:100/fl_layer_apply/l_p:3159191:e30725a434764967/fl_layer_apply/u_p:3159191:b4f9bc8eafe92548/fl_layer_apply/c_thumb,w_1280/f_jpg/v1/p/6032298/177e3f2cc024297adb95ac71967e9fb9?_a=AACkGGX
IP 104.26.9.88:0
Hash 34069fe7afdd2000af9923e626bd161f
f125aba497c0911a47f73f56a3eced9d8db4cf35
87dbd1fcc8f712bb3dbe8428c4a90ecbe2357c0e20cf18cbce51ad92ad3e3470
GET /rx/160x200,c_1,q_90,ofmt_webp/s4/l_p:3159191:c78d1e36cd4d5fd6/fl_cutter,fl_layer_apply/u_p:3159191:dd1fa2ac89daae5c/co_rgb:FFFFFF,e_colorize:100/fl_layer_apply/l_p:3159191:e30725a434764967/fl_layer_apply/u_p:3159191:b4f9bc8eafe92548/fl_layer_apply/c_thumb,w_1280/f_jpg/v1/p/6032298/177e3f2cc024297adb95ac71967e9fb9?_a=AACkGGX HTTP/1.1
Host: img.cloudimgs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:16 GMT
content-type: image/webp
content-length: 8362
x-powered-by: Render-Image-Server
ref: senprints.com
expires: Fri, 02 Dec 2022 20:40:44 GMT
cache-control: public, max-age=2678400
x-imageproxy-cache: HIT
access-control-allow-origin: *
server-location: Sing
last-modified: Thu, 01 Dec 2022 20:40:44 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ReLXLrQh3Ung6i16l7I3jxMw8t96gqA%2FpFv5mAy1wHaoDmx%2FzsgEWWPcmmV1d9cg3Nq9oHsdDWatZMi5iYhCm99srUuF2mX44Uu7BBGYsOfqWfHvPOA09Hai4LjMNFi1ixRO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773c28794d80b4eb-OSL
X-Firefox-Spdy: h2
cloudflare.com/cdn-cgi/trace
104.16.132.229200 OK 9.3 kB URL HTTP/2 cloudflare.com/cdn-cgi/trace
IP 104.16.132.229:0
Hash 5e33c4ae5cb624409ac826aad278df87
39c2d6398affc4838484d2c5cabc2b9f2821abf0
f1c6fd0af833f11bc56f0332b6e4c57459221980026bdfa0a7a11978b1ad5bb8
GET /cdn-cgi/trace HTTP/1.1
Host: cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://senprints.com/
Origin: https://senprints.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:15 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 773c287519acb518-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
img.cloudimgs.net/rx/160x200,c_1,q_90,ofmt_webp/s4/l_p:3159191:4e78d5ed891f99f7/fl_cutter,fl_layer_apply/u_p:3159191:4ad63f99f3d4942f/co_rgb:FFFFFF,e_colorize:100/fl_layer_apply/l_p:3159191:56d2b7bafc29107d/fl_layer_apply/u_p:3159191:9229029dfa4f8859/fl_layer_apply/c_thumb,w_1280/f_jpg/v1/p/6032298/933a418be1e323ec15afff8908d5a049?_a=AACkGGX
104.26.9.88200 OK 7.7 kB URL HTTP/2 img.cloudimgs.net/rx/160x200,c_1,q_90,ofmt_webp/s4/l_p:3159191:4e78d5ed891f99f7/fl_cutter,fl_layer_apply/u_p:3159191:4ad63f99f3d4942f/co_rgb:FFFFFF,e_colorize:100/fl_layer_apply/l_p:3159191:56d2b7bafc29107d/fl_layer_apply/u_p:3159191:9229029dfa4f8859/fl_layer_apply/c_thumb,w_1280/f_jpg/v1/p/6032298/933a418be1e323ec15afff8908d5a049?_a=AACkGGX
IP 104.26.9.88:0
Hash be2137ef29fdda98e0ca9d81c60acb0b
3cf6703202b8a382ab22fa3652b50492af1c2e84
6c3a7cbc20a7e23239cbae879cb0cdf1acfba02798a98d9be7313969148de40e
GET /rx/160x200,c_1,q_90,ofmt_webp/s4/l_p:3159191:4e78d5ed891f99f7/fl_cutter,fl_layer_apply/u_p:3159191:4ad63f99f3d4942f/co_rgb:FFFFFF,e_colorize:100/fl_layer_apply/l_p:3159191:56d2b7bafc29107d/fl_layer_apply/u_p:3159191:9229029dfa4f8859/fl_layer_apply/c_thumb,w_1280/f_jpg/v1/p/6032298/933a418be1e323ec15afff8908d5a049?_a=AACkGGX HTTP/1.1
Host: img.cloudimgs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:16 GMT
content-type: image/webp
content-length: 6652
x-powered-by: Render-Image-Server
ref: senprints.com
expires: Wed, 30 Nov 2022 03:51:58 GMT
cache-control: public, max-age=2678400
x-imageproxy-cache: HIT
access-control-allow-origin: *
server-location: Sing
last-modified: Tue, 29 Nov 2022 03:51:58 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5mV7dHX%2B1llMAo%2F9qIJ2fIhn5S6zJs%2FsJinkbuSWJ6GhZfADXN5V3RDaSpRXfCbYZjUQJxv38NdQQLrjXI6whTti1VLMYpVvrfGIixmVjilYVoFEs2D6%2FcxvJxbMjg7uVtWH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773c28794d88b4eb-OSL
X-Firefox-Spdy: h2
img.cloudimgs.net/rx/1000x1250,q_90,ofmt_webp/s4/l_p:3159191:c78d1e36cd4d5fd6/fl_cutter,fl_layer_apply/u_p:3159191:dd1fa2ac89daae5c/co_rgb:FFFFFF,e_colorize:100/fl_layer_apply/l_p:3159191:e30725a434764967/fl_layer_apply/u_p:3159191:b4f9bc8eafe92548/fl_layer_apply/c_thumb,w_1280/f_jpg/v1/p/6032298/177e3f2cc024297adb95ac71967e9fb9?_a=AACkGGX
104.26.9.88200 OK 129 kB URL HTTP/2 img.cloudimgs.net/rx/1000x1250,q_90,ofmt_webp/s4/l_p:3159191:c78d1e36cd4d5fd6/fl_cutter,fl_layer_apply/u_p:3159191:dd1fa2ac89daae5c/co_rgb:FFFFFF,e_colorize:100/fl_layer_apply/l_p:3159191:e30725a434764967/fl_layer_apply/u_p:3159191:b4f9bc8eafe92548/fl_layer_apply/c_thumb,w_1280/f_jpg/v1/p/6032298/177e3f2cc024297adb95ac71967e9fb9?_a=AACkGGX
IP 104.26.9.88:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 129 kB (128690 bytes)
Hash 5e5b14a0e0621251341ccdbab995105b
e73b17493cc702a207b79f6e77ed216dfe944981
00090aefd2878fc5f01cc5aacdcdff9d2205c0014c0d9bf9d2408eab17ccd68b
GET /rx/1000x1250,q_90,ofmt_webp/s4/l_p:3159191:c78d1e36cd4d5fd6/fl_cutter,fl_layer_apply/u_p:3159191:dd1fa2ac89daae5c/co_rgb:FFFFFF,e_colorize:100/fl_layer_apply/l_p:3159191:e30725a434764967/fl_layer_apply/u_p:3159191:b4f9bc8eafe92548/fl_layer_apply/c_thumb,w_1280/f_jpg/v1/p/6032298/177e3f2cc024297adb95ac71967e9fb9?_a=AACkGGX HTTP/1.1
Host: img.cloudimgs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:16 GMT
content-type: image/webp
content-length: 128690
x-powered-by: Render-Image-Server
ref: senprints.com
expires: Wed, 30 Nov 2022 03:51:58 GMT
cache-control: public, max-age=8640000
x-imageproxy-cache: HIT
access-control-allow-origin: *
server-location: Sing
last-modified: Tue, 29 Nov 2022 03:51:58 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dzl%2F9N9M894f9EHDVYI%2BQX7Re57IcnBx%2F94H3u2tlE%2BW%2FXM%2FvElLzr%2FB%2BoEBAV7f1oisOi83o1QdpDY19zyXXWauC5XL2IOcMbstij47C%2BnsONLrBb%2BG3aaLjxVb1IgOxv87"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773c28795d97b4eb-OSL
X-Firefox-Spdy: h2
img.cloudimgs.net/rx/1000x1250,q_90,ofmt_webp/s4/l_p:3159191:4e78d5ed891f99f7/fl_cutter,fl_layer_apply/u_p:3159191:4ad63f99f3d4942f/co_rgb:FFFFFF,e_colorize:100/fl_layer_apply/l_p:3159191:56d2b7bafc29107d/fl_layer_apply/u_p:3159191:9229029dfa4f8859/fl_layer_apply/c_thumb,w_1280/f_jpg/v1/p/6032298/933a418be1e323ec15afff8908d5a049?_a=AACkGGX
104.26.9.88200 OK 83 kB URL HTTP/2 img.cloudimgs.net/rx/1000x1250,q_90,ofmt_webp/s4/l_p:3159191:4e78d5ed891f99f7/fl_cutter,fl_layer_apply/u_p:3159191:4ad63f99f3d4942f/co_rgb:FFFFFF,e_colorize:100/fl_layer_apply/l_p:3159191:56d2b7bafc29107d/fl_layer_apply/u_p:3159191:9229029dfa4f8859/fl_layer_apply/c_thumb,w_1280/f_jpg/v1/p/6032298/933a418be1e323ec15afff8908d5a049?_a=AACkGGX
IP 104.26.9.88:0
File type Applesoft BASIC program data, first line number 6\012- data
Hash 62e49503bac27f0ae93339f392420212
0e8a7f846efa3360b28b5e87e89008ae95042495
3ec7aa4fcba5e32f32eb40d230a3a1c4ea2b8af92a7a0e1e2f2d023dcdb4d0a7
GET /rx/1000x1250,q_90,ofmt_webp/s4/l_p:3159191:4e78d5ed891f99f7/fl_cutter,fl_layer_apply/u_p:3159191:4ad63f99f3d4942f/co_rgb:FFFFFF,e_colorize:100/fl_layer_apply/l_p:3159191:56d2b7bafc29107d/fl_layer_apply/u_p:3159191:9229029dfa4f8859/fl_layer_apply/c_thumb,w_1280/f_jpg/v1/p/6032298/933a418be1e323ec15afff8908d5a049?_a=AACkGGX HTTP/1.1
Host: img.cloudimgs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:16 GMT
content-type: image/webp
content-length: 82116
x-powered-by: Render-Image-Server
ref: senprints.com
expires: Wed, 30 Nov 2022 03:51:58 GMT
cache-control: public, max-age=8640000
x-imageproxy-cache: HIT
access-control-allow-origin: *
server-location: Sing
last-modified: Tue, 29 Nov 2022 03:51:58 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6wkPA%2FyksbHHYnRoGjlVDMNmggMghyGa11MLt3eJIYSgfjbj0jp67iC2IZlcjSpeSARi2Ltfjam%2FQ3Ak518hJSB8uhgjIwHytvAewyzRgxstBCadzLGjkBVFifml3EAj%2BblM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773c28794d8cb4eb-OSL
X-Firefox-Spdy: h2
img.cloudimgs.net/rx/900,q_90,ofmt_webp/s2/p/3159191/af70fd867c46abf6.png
104.26.9.88200 OK 186 kB URL HTTP/2 img.cloudimgs.net/rx/900,q_90,ofmt_webp/s2/p/3159191/af70fd867c46abf6.png
IP 104.26.9.88:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 186 kB (185498 bytes)
Hash 91bf0312234e979b3ec457fa5657a526
78f876d9cfd3058cfa8c83c95af0f9a6dc638ae1
31c1a95a3afbaf76b15fbcc54f424b007a70d797e96d2270e8e2963a15f748af
GET /rx/900,q_90,ofmt_webp/s2/p/3159191/af70fd867c46abf6.png HTTP/1.1
Host: img.cloudimgs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:17 GMT
content-type: image/webp
content-length: 185498
x-powered-by: Render-Image-Server
ref: senprints.com
expires: Wed, 16 Nov 2022 18:39:25 GMT
cache-control: public, max-age=8640000
x-imageproxy-cache: HIT
access-control-allow-origin: *
server-location: Sing
last-modified: Tue, 15 Nov 2022 18:39:25 GMT
cf-cache-status: HIT
age: 345898
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8urjZSyI3KKRq0xsKPRA%2FS5HSqxVAryCsvdh%2BIvX%2FQK9fIauUxrHDs00MZe5exMUgxsqClh8J2MHmllFCU0naqByQKhfkbLt7qz%2FIa72S11B8jb3AF%2FPl97EE0KzODxYfuQb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773c287f4be1b4eb-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 1d01c48aceb0aa610a1769d1398e403d
7c5e8e14bc685af339a979ceef6c2942994bd86e
925a72d059b45264690446d0e004cf1a96d4be10dbf614ad51113af07e82404a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3294
Cache-Control: max-age=86307
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:17 GMT
Etag: "6389dc4a-139"
Expires: Sun, 04 Dec 2022 12:01:44 GMT
Last-Modified: Fri, 02 Dec 2022 11:06:50 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 313
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 85d4658f8256d503f0d0714d06d19de5
36527ce9b1365b06e9d43cc0aa82b7d62a40e006
42fa4cdd38f7b8a1be496cd7a9c29c4c26b242b6e58b2b9e3bafe5343b1aa308
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=148911
Date: Sat, 03 Dec 2022 12:03:17 GMT
Etag: "638ad691-1d7"
Expires: Mon, 05 Dec 2022 05:25:08 GMT
Last-Modified: Sat, 03 Dec 2022 04:54:41 GMT
Server: ECS (nyb/1D04)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: PZ_oCTNJAv9po1r9R3AxGSt6U5HFMgKIBxbN7HJwPolmpgEuYKR_2A==
Age: 1827
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 85d4658f8256d503f0d0714d06d19de5
36527ce9b1365b06e9d43cc0aa82b7d62a40e006
42fa4cdd38f7b8a1be496cd7a9c29c4c26b242b6e58b2b9e3bafe5343b1aa308
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 03 Dec 2022 12:03:17 GMT
Last-Modified: Sat, 03 Dec 2022 11:33:21 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GMbp2UQGYKe-VRF1nGghxMIxlt4i3UIMTdkmBJxe-fDeCaYmj7aVSA==
Age: 1796
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash ea3d8fb16cfb8d3abf79bcd96048cd94
fe5de8bf7cc10ee75c747dd6e18616161ef2fc81
a91b38575d80c30d9c5e87ee9b2e6f42e261cdab08e3180d4baf904dcfca5f51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3201
Cache-Control: max-age=168659
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:18 GMT
Etag: "638b1e58-13a"
Expires: Mon, 05 Dec 2022 10:54:17 GMT
Last-Modified: Sat, 03 Dec 2022 10:00:56 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash ea3d8fb16cfb8d3abf79bcd96048cd94
fe5de8bf7cc10ee75c747dd6e18616161ef2fc81
a91b38575d80c30d9c5e87ee9b2e6f42e261cdab08e3180d4baf904dcfca5f51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3201
Cache-Control: max-age=168659
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:18 GMT
Etag: "638b1e58-13a"
Expires: Mon, 05 Dec 2022 10:54:17 GMT
Last-Modified: Sat, 03 Dec 2022 10:00:56 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 603 B IP 93.184.220.29:0
Hash 25a254f3fd1e86bd2dc1ca4de7717ddb
778db4d291ccfcc57de1cb0451939325cdddf7f1
c977f4d9260dda140ca6eba2f3914d66e6bd40473726c6bdaaf3def72c8de410
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2963
Cache-Control: max-age=109761
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 12:03:18 GMT
Etag: "638a3934-139"
Expires: Sun, 04 Dec 2022 18:32:39 GMT
Last-Modified: Fri, 02 Dec 2022 17:43:16 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 313
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:18 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=QUNvSF80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3o1UEwzVE9IOVJnQWlWV2FkNmFESHltWjZnbUR0NFVzZmRhaXl5UzA2Q2k; expires=Thu, 28 Dec 2023 12:03:18 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 243289
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
nlogs.cloudimgs.net/nbz
104.26.8.88204 No Content 0 B IP 104.26.8.88:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /nbz HTTP/1.1
Host: nlogs.cloudimgs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: PUT
Access-Control-Request-Headers: content-type
Referer: https://senprints.com/
Origin: https://senprints.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 03 Dec 2022 12:03:18 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RouGaCMggI7%2FzCznjNFrdo1DqWoi4tcHIyCJHRmQKtoTZ4THMPcf44kvzksmTMrXJaywwkkc6%2BxUM1OoNhX%2BCb9jhQDiCO56wi0UtKAsY5tLdYf5gBywhbeeYflTuU93Wd9SFX4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773c28879892b4ed-OSL
X-Firefox-Spdy: h2
nlogs.cloudimgs.net/nbz
104.26.8.88200 OK 17 B IP 104.26.8.88:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c0a4229f65148628b26e451304ddac68
50855475058d6ab5f50fd9a4d3aa24c8431ba52f
06e5f7e2d702e0110271dd33c198e1f312a785bcf41ca4fbed2fa6d67722dc03
PUT /nbz HTTP/1.1
Host: nlogs.cloudimgs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://senprints.com/
Content-Type: application/json
Origin: https://senprints.com
Content-Length: 988
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:19 GMT
content-type: application/json; charset=utf-8
content-length: 17
x-powered-by: Express
access-control-allow-origin: *
etag: W/"11-UIVUdQWNarX1D9mk06okyEMbpS8"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eZdpL%2BOwZf1Bj%2B2cLfKBhEurABfpjEkOKg35sRPmLcJSRXFeVgBk%2FCqPKRSPc9EMlB3pp20Hgla9eyWT6GzN6Jp6YrrsrsCTcoKRXpAfjeG4IUtqczEfRUcpIvs99ZUbrNDmZ5g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773c288b2c8ab4ed-OSL
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 146 B IP 178.250.0.157:0
Hash efa15f223da2e86b6c1cb0107934af58
5b36a83c353b43a31d4b9af8fb108d8212648966
0e9b2586fa21679cda15f87f8a4aa70d8f321bf2f96dc73ce6e13e06f8a8fc3c
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=QUNvSF80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3o1UEwzVE9IOVJnQWlWV2FkNmFESHltWjZnbUR0NFVzZmRhaXl5UzA2Q2k
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:18 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=ztqcJV80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3o1UEwzVE9IOVJnQWlWV2FkNmFESHhiSEp5YyUyQlpTcnBzb1ZCTzBVb1B3Zg; expires=Thu, 28 Dec 2023 12:03:18 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 340905
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
senasia.s3-ap-southeast-1.amazonaws.com/u/102713/9193afa0c03dd626.otf
3.5.151.177200 OK 228 kB URL HTTP/1.1 senasia.s3-ap-southeast-1.amazonaws.com/u/102713/9193afa0c03dd626.otf
IP 3.5.151.177:0
Size 228 kB (228284 bytes)
Hash 422ffcccb19087349d7c4882e1230ad9
91858006260c0e33e0e28c1bcc4ffb8169c39a4c
b20b5852ce9028473b1b037a56828d5a85fc78281b7cfffd04226b13d49cf65e
GET /u/102713/9193afa0c03dd626.otf HTTP/1.1
Host: senasia.s3-ap-southeast-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://senprints.com
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: h0ZmhDyVTerrXykg+atX43mthW85hf/KRJaVYkLAv1RFBoGWqajrXp8LaHWJ4L0qspmwzeifF6ZQr6hMoCaGbw==
x-amz-request-id: YYH835PQWNFCT2WC
Date: Sat, 03 Dec 2022 12:03:19 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, PUT, HEAD
Access-Control-Expose-Headers: ETag
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Tue, 23 Nov 2021 09:51:53 GMT
ETag: "9193afa0c03dd626a7453f6cb8f197b6"
Accept-Ranges: bytes
Content-Type: font/otf
Server: AmazonS3
Content-Length: 227528
cdnjs1.com/_nuxt/e255b3a.js
188.114.96.1200 OK 0 B URL HTTP/2 cdnjs1.com/_nuxt/e255b3a.js
IP 188.114.96.1:0
GET /_nuxt/e255b3a.js HTTP/1.1
Host: cdnjs1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:13 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Fri, 02 Dec 2022 09:27:42 GMT
etag: W/"5ddd-184d229beb0"
vary: Accept-Encoding
cf-cache-status: HIT
age: 95523
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zoOm7NDJYxdwidFY4T4mjinwaX%2BHf2AvuOc9wm8tn1TBLjx4IASM9lT0OVLCXqMQvHOcls%2Fr0s8n8UkxMOcVeC7weMPT%2FBsq9QjsuX15mJAduZMEsAD2eKYxG3WL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773c286b0e2fb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs1.com/css/themes/default/index.css?v=1
188.114.96.1200 OK 0 B URL HTTP/2 cdnjs1.com/css/themes/default/index.css?v=1
IP 188.114.96.1:0
GET /css/themes/default/index.css?v=1 HTTP/1.1
Host: cdnjs1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:13 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=259200
last-modified: Thu, 17 Nov 2022 20:22:59 GMT
etag: W/"67c-184874248b8"
vary: Accept-Encoding
cf-cache-status: HIT
age: 1132010
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HdKFnPow2kBVAriEps4u2oH%2BSzFp%2FXDPnnP%2BKsrLy9YrfhbLeWWVSnrLo%2F2zKy7dYdmhITDP2FdBPrPuLfVcQUuDKE3sLGpyXlGvwAVI56dsnJWa9eeILh7EUmg5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773c286b1e32b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs1.com/_nuxt/46cd359.js
188.114.96.1200 OK 0 B URL HTTP/2 cdnjs1.com/_nuxt/46cd359.js
IP 188.114.96.1:0
GET /_nuxt/46cd359.js HTTP/1.1
Host: cdnjs1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:13 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Fri, 02 Dec 2022 09:27:42 GMT
etag: W/"d42d-184d229beb0"
vary: Accept-Encoding
cf-cache-status: HIT
age: 95523
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gEHzz4xTT6v41l577w%2BtagoTwCICvousV93w4gZFuyu7eM%2B3Cjelm900RvVENQMnQkGPywEiFHuaWFia2l9G7kpmhpQMG2O53%2BBWufwkoShiQ20TIWr18CTQVZsI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773c286b1e3eb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dynamic.criteo.com/js/ld/ld.js?a=99326
178.250.0.147200 OK 0 B URL HTTP/2 dynamic.criteo.com/js/ld/ld.js?a=99326
IP 178.250.0.147:0
GET /js/ld/ld.js?a=99326 HTTP/1.1
Host: dynamic.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:17 GMT
content-type: application/javascript; charset=utf-8
server: Kestrel
cache-control: public,max-age=10800
content-encoding: br
vary: Origin, Accept-Encoding
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=senprints.com&origin=onetag
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?topUrl=senprints.com&origin=onetag
IP 178.250.0.157:0
GET /syncframe?topUrl=senprints.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:17 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=34088431-5286-43ca-9ec8-4bea0dc55878; expires=Thu, 28 Dec 2023 12:03:17 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 778028
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
cdnjs1.com/_nuxt/9ba9522.js
188.114.96.1200 OK 0 B URL HTTP/2 cdnjs1.com/_nuxt/9ba9522.js
IP 188.114.96.1:0
GET /_nuxt/9ba9522.js HTTP/1.1
Host: cdnjs1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:13 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Fri, 02 Dec 2022 09:27:42 GMT
etag: W/"da38-184d229beb0"
vary: Accept-Encoding
cf-cache-status: HIT
age: 95523
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=njCGAzeJCroyv3qt4ZhZs1tA304ait0qdOvSgXS%2FfkXu3gXp0TR%2BARu1wsVIgaH0sy8OQfZR1e%2BT%2F07V2lMbda1X%2BStmpV%2Fa6GD3a7Gl9zhp99BNHKaO3693vm%2FJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773c286b1e45b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs1.com/_nuxt/34cd074.js
188.114.96.1200 OK 0 B URL HTTP/2 cdnjs1.com/_nuxt/34cd074.js
IP 188.114.96.1:0
GET /_nuxt/34cd074.js HTTP/1.1
Host: cdnjs1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:13 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Fri, 02 Dec 2022 10:08:19 GMT
etag: W/"6a074-184d24eee38"
vary: Accept-Encoding
cf-cache-status: HIT
age: 93121
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JceG0nByStHGZQCUwTRb9HARJ3r5WEbnDm%2BnQwZFGa1dtOm%2BMnKDGFSpnTEZJyeKGs%2FHpjk0bKSkoLa5Azl7oZNh14YSq28sJRD4hrfcHBqEw35J44uQlZBrfSpP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773c286b1e3bb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs1.com/_nuxt/57e8b18.js
188.114.96.1200 OK 0 B URL HTTP/2 cdnjs1.com/_nuxt/57e8b18.js
IP 188.114.96.1:0
GET /_nuxt/57e8b18.js HTTP/1.1
Host: cdnjs1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:13 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Fri, 02 Dec 2022 09:27:42 GMT
etag: W/"21f614-184d229beb0"
vary: Accept-Encoding
cf-cache-status: HIT
age: 95523
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YYQV7j7PUq0rtV%2Fm0yljuWYeDd3NrbGxuezLq0pEViiQkE6I7EnvGoDvIp6zeQyFQ%2Bb%2BsrsLs4OegVI3q%2BCYrmx1WNCM%2BS5rdC3%2ByXz1pEuhkBAzFhtGvCqiLvNS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773c286b1e34b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
185.235.84.58200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.58:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:17 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 137713
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
senprints.com/rd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments?spsid=10899&utm_s=manulk&product=porcelain-ornament---circle&utm_source=teespring.cfd&utm_campaign=3029a_Sen-Orna-03&utm_medium=10-30-2022&utm_doma=teespring.cfd&utm_date=10-30-2022
104.22.12.111200 OK 0 B URL HTTP/2 senprints.com/rd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments?spsid=10899&utm_s=manulk&product=porcelain-ornament---circle&utm_source=teespring.cfd&utm_campaign=3029a_Sen-Orna-03&utm_medium=10-30-2022&utm_doma=teespring.cfd&utm_date=10-30-2022
IP 104.22.12.111:0
GET /rd-christmas-snowman-family-ornament-christmas-family-ornament-snowman-ornaments?spsid=10899&utm_s=manulk&product=porcelain-ornament---circle&utm_source=teespring.cfd&utm_campaign=3029a_Sen-Orna-03&utm_medium=10-30-2022&utm_doma=teespring.cfd&utm_date=10-30-2022 HTTP/1.1
Host: senprints.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:13 GMT
content-type: text/html
last-modified: Fri, 02 Dec 2022 10:15:14 GMT
vary: Accept-Encoding
x-ip-a-1: 192.168.247.64
sp-cache-status: HIT
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 773c28688aec1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs1.com/_nuxt/b2be7db.js
188.114.96.1200 OK 0 B URL HTTP/2 cdnjs1.com/_nuxt/b2be7db.js
IP 188.114.96.1:0
GET /_nuxt/b2be7db.js HTTP/1.1
Host: cdnjs1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:13 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Fri, 02 Dec 2022 09:27:42 GMT
etag: W/"b62-184d229beb0"
vary: Accept-Encoding
cf-cache-status: HIT
age: 95523
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7D4JDfsuvEDYRLlAKaHZBSk%2FMqZiV5EFz269V9I7%2FjLLqtLxBaR%2FaakvmDy7fqFE%2Fujd9OpQO5XqFb1rUYr8tTlTXlBzFMdzfLf4z0GUkUZ%2FEPrdDVknNOwKfukP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773c286b0e27b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs1.com/_nuxt/cab6bd9.js
188.114.96.1200 OK 0 B URL HTTP/2 cdnjs1.com/_nuxt/cab6bd9.js
IP 188.114.96.1:0
GET /_nuxt/cab6bd9.js HTTP/1.1
Host: cdnjs1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://senprints.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:13 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Fri, 02 Dec 2022 09:27:42 GMT
etag: W/"48715-184d229beb0"
vary: Accept-Encoding
cf-cache-status: HIT
age: 95523
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CMTHGgvbr8YrZNgTOmWyHoMmCRheJeBxBDa%2FBp34I8%2Fq0VSOyueOW0w7HYmT4QdV3xFWVSRxNYsD0V%2Fn04kkw5vbd1nCeAZsX0NHwu0SYqNcWDm3H85rRK2bbKLQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773c286b1e49b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.39200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.39:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 12:03:17 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 80611
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2