links.letter.juretro.com/c/sUu/bCT/CZvgtk_1abqxYduJX-AvPy/F/jYk/F/9db978e9
91.199.51.171302 Found 229 B URL HTTP/1.1 links.letter.juretro.com/c/sUu/bCT/CZvgtk_1abqxYduJX-AvPy/F/jYk/F/9db978e9
IP 91.199.51.171:0
ASN #47544 IQ PL Sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 5a13b13fedd1f20707ca316e8d29da5a
bd3b9718af83f42ce86633552ede21ec33a01c6d
697b6c9de5f15b9f84b23decb1fcd42124d3df83b7f9edd423d715884277dbc6
GET /c/sUu/bCT/CZvgtk_1abqxYduJX-AvPy/F/jYk/F/9db978e9 HTTP/1.1
Host: links.letter.juretro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://www.juretro.com/collections/outerwear-50077/?utm_campaign=20230203&utm_medium=mkt&utm_source=EDM
Set-Cookie: TEMP_DATA=e2636d05-87b2-47e2-8c50-5a1385160857; path=/
esg1=sUu/bCT/CZvgtk_1abqxYduJX-AvPy/F/jYk/F/dd04ad02; path=/
Date: Fri, 03 Feb 2023 18:48:05 GMT
Content-Length: 229
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13764
Expires: Fri, 03 Feb 2023 22:37:29 GMT
Date: Fri, 03 Feb 2023 18:48:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15004
Expires: Fri, 03 Feb 2023 22:58:09 GMT
Date: Fri, 03 Feb 2023 18:48:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 18:36:11 GMT
content-type: application/json
age: 714
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6418
Expires: Fri, 03 Feb 2023 20:35:03 GMT
Date: Fri, 03 Feb 2023 18:48:05 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DYrTDqfX/msHzgfILjMxLeKYPlkICh41MjUtkLRM7xprnkhlhpOwBrJgqaNw7ffujRehls8j3Js=
x-amz-request-id: 8PJF7PV3W9Y2EHRC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 17:52:30 GMT
age: 3335
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 18:48:05 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 38d7b3fc2861094eeb9309eb16220fdb
770f0dde5d195d98412a9b0b27f57fdbd9915d7b
4bd8ad7cda79b869c470e861593732d659348ef236921231328aed1e1a8b8d44
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:05 GMT
Server: ECS (amb/6B95)
Content-Length: 279
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 18:07:19 GMT
age: 2447
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9d54c656cd7ac42283b44bc4fc7197ca
9c35fb1b4ed39ffcab9ee5e55738b45ca4b92f50
196930d202138d29dbd1399f7d23174bfe5952489643144012a767d9b93e5d64
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 457
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:06 GMT
Last-Modified: Fri, 03 Feb 2023 18:40:29 GMT
Server: ECS (amb/6B7A)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9d54c656cd7ac42283b44bc4fc7197ca
9c35fb1b4ed39ffcab9ee5e55738b45ca4b92f50
196930d202138d29dbd1399f7d23174bfe5952489643144012a767d9b93e5d64
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 457
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:06 GMT
Last-Modified: Fri, 03 Feb 2023 18:40:29 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9d54c656cd7ac42283b44bc4fc7197ca
9c35fb1b4ed39ffcab9ee5e55738b45ca4b92f50
196930d202138d29dbd1399f7d23174bfe5952489643144012a767d9b93e5d64
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 457
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:06 GMT
Last-Modified: Fri, 03 Feb 2023 18:40:29 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9d54c656cd7ac42283b44bc4fc7197ca
9c35fb1b4ed39ffcab9ee5e55738b45ca4b92f50
196930d202138d29dbd1399f7d23174bfe5952489643144012a767d9b93e5d64
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3395
Cache-Control: max-age=149609
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:06 GMT
Etag: "63dcef0c-1d7"
Expires: Sun, 05 Feb 2023 12:21:35 GMT
Last-Modified: Fri, 03 Feb 2023 11:25:00 GMT
Server: ECS (amb/6BAC)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13488
Expires: Fri, 03 Feb 2023 22:32:54 GMT
Date: Fri, 03 Feb 2023 18:48:06 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 85cc6b2d1246c598e6c3e2d6e7be475d
d91c3e0bbb1e3eebe57cb90438525cb0ee375581
10233b5e7c8d9e4075d1855643ddb97797753b45891f0c46fab50737303a1b04
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1980
Cache-Control: max-age=135610
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:06 GMT
Etag: "63dcbde4-117"
Expires: Sun, 05 Feb 2023 08:28:16 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:16 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9d54c656cd7ac42283b44bc4fc7197ca
9c35fb1b4ed39ffcab9ee5e55738b45ca4b92f50
196930d202138d29dbd1399f7d23174bfe5952489643144012a767d9b93e5d64
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3395
Cache-Control: max-age=149609
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:06 GMT
Etag: "63dcef0c-1d7"
Expires: Sun, 05 Feb 2023 12:21:35 GMT
Last-Modified: Fri, 03 Feb 2023 11:25:00 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash dcd24c1e2608c898c773dc0111abe0a0
8236127f4dff61add0a73bbb45c50166aa68ebab
e6710626d21fb587f3d88913eef1db464b07a4903ed1397a4a9bd68d9171123d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-141228038-1
172.217.21.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-141228038-1
IP 172.217.21.168:0
File type ASCII text, with very long lines (1759)
Hash 8d9b84736d444673ee3f161b8bc3e4d7
c5acd1d4adfbb653c5be15c9f8066a098861d553
ca772f9a7160613c8c2aabfa86b0618baed3cc61054b9aca57b7fff2c7577e29
GET /gtag/js?id=UA-141228038-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Feb 2023 18:48:06 GMT
expires: Fri, 03 Feb 2023 18:48:06 GMT
cache-control: private, max-age=900
last-modified: Fri, 03 Feb 2023 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43913
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 85cc6b2d1246c598e6c3e2d6e7be475d
d91c3e0bbb1e3eebe57cb90438525cb0ee375581
10233b5e7c8d9e4075d1855643ddb97797753b45891f0c46fab50737303a1b04
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1980
Cache-Control: max-age=135610
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:06 GMT
Etag: "63dcbde4-117"
Expires: Sun, 05 Feb 2023 08:28:16 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:16 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
apis.google.com/js/platform.js
216.58.207.238200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 216.58.207.238:0
File type ASCII text, with very long lines (1429)
Hash 2354fa28c58e16af89e7da6224aeca93
6bd3430a81730ed77c5d53f5406ddb40306ecabd
dc35ae752b7be035bd3a3bd4ae205e41afce5fa8f88e1bfe0e9524610df10f3b
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Fri, 03 Feb 2023 18:48:06 GMT
expires: Fri, 03 Feb 2023 18:48:06 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "03884666a30c671f"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9d54c656cd7ac42283b44bc4fc7197ca
9c35fb1b4ed39ffcab9ee5e55738b45ca4b92f50
196930d202138d29dbd1399f7d23174bfe5952489643144012a767d9b93e5d64
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:06 GMT
Etag: "63dcef0c-1d7"
Server: ECS (amb/6B8A)
Content-Length: 471
ups.aopcdn.com/s1454/common/18631/1189u4bb02c9c1d5145618264c48f3c3c15ec.png
104.18.188.11200 OK 3.5 kB URL HTTP/2 ups.aopcdn.com/s1454/common/18631/1189u4bb02c9c1d5145618264c48f3c3c15ec.png
IP 104.18.188.11:0
File type PNG image data, 446 x 200, 8-bit colormap, interlaced\012- data
Hash 82da5cd8ee1cdb4916bd110bf63bbd60
34c53717266eec4b8cf8aed46ab2b494ec920219
628b85c2bd5a42f2c86e3fda2fc3c77f8b6f9d7d9fe11254eea6419d2c202306
GET /s1454/common/18631/1189u4bb02c9c1d5145618264c48f3c3c15ec.png HTTP/1.1
Host: ups.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:06 GMT
content-type: image/png
content-length: 3479
cf-bgj: imgq:100,h2pri
cf-polished: origSize=10578, status=vary_header_present
content-md5: mzb3oUU5vCXm+SUqUOBfcw==
etag: "9B36F7A14539BC25E6F9252A50E05F73"
last-modified: Mon, 04 Jan 2021 09:23:06 GMT
vary: Origin, Accept-Encoding
x-oss-hash-crc64ecma: 940179212328634443
x-oss-object-type: Normal
x-oss-request-id: 63DCDC66F488A53836B0005D
x-oss-server-time: 1
x-oss-storage-class: Standard
cf-cache-status: HIT
expires: Mon, 06 Mar 2023 18:48:06 GMT
cache-control: public, max-age=2678400
accept-ranges: bytes
server: cloudflare
cf-ray: 793d56c09f010b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.163.74.93101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.74.93:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IQeETGz5o33g8cnYVMWMng==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zYK80cGfA9sdS61YC+KhjpbkFE0=
ups.aopcdn.com/s1454/common/19361/78u722f92f365584b83a7945506016837de.png?x-oss-process=image/format,webp/interlace,1/quality,q_80
104.18.188.11200 OK 8.4 kB URL HTTP/2 ups.aopcdn.com/s1454/common/19361/78u722f92f365584b83a7945506016837de.png?x-oss-process=image/format,webp/interlace,1/quality,q_80
IP 104.18.188.11:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x48, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d8a0de8457b5ebbe228c14e48b4e5ac4
5392caf7eeea050f2039cb804fe8f134dbca5d4c
a73e263745a99889bc3d0abd79c8b2912cc80e6e4fb16e26e219e6745d93d927
GET /s1454/common/19361/78u722f92f365584b83a7945506016837de.png?x-oss-process=image/format,webp/interlace,1/quality,q_80 HTTP/1.1
Host: ups.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:06 GMT
content-type: image/webp
content-length: 8442
x-oss-request-id: 63DD56E624A34D34374E2C4D
vary: Origin, Accept-Encoding
etag: "30E7AC7C49FEC79CB9118B5792D85BED"
last-modified: Wed, 04 Jan 2023 02:34:46 GMT
x-oss-object-type: Normal
x-oss-storage-class: Standard
x-oss-server-time: 44
x-oss-hash-crc64ecma: 9499836262249181014
cf-cache-status: MISS
expires: Mon, 06 Mar 2023 18:48:06 GMT
cache-control: public, max-age=2678400
accept-ranges: bytes
server: cloudflare
cf-ray: 793d56c09efd0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
wzstatic1.streamoptim.com/stream-subscribe.js
54.230.111.77200 OK 384 kB URL HTTP/2 wzstatic1.streamoptim.com/stream-subscribe.js
IP 54.230.111.77:0
Size 384 kB (383590 bytes)
Hash 5b5e96fc4a5e9542ab605b757e4a1f96
9180864d3e9d930ebf602fff847b79c33c01c549
a078ebaf997b460556b82f7fb477e298e8086ff587782dacca59836e40e7bbf2
GET /stream-subscribe.js HTTP/1.1
Host: wzstatic1.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Fri, 03 Feb 2023 06:56:59 GMT
last-modified: Mon, 09 Jan 2023 02:40:17 GMT
service-worker-allowed: /
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7KCbDGKsLV_PGhsT-MpFqWZclQQIyi-gnhIeVcS10xXxM7D4jiWHkQ==
age: 42667
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.juretro.com/static/common/fonts/common_icon_font/iconfont.woff2
104.17.227.33200 OK 828 B URL HTTP/2 www.juretro.com/static/common/fonts/common_icon_font/iconfont.woff2
IP 104.17.227.33:0
File type Web Open Font Format (Version 2), TrueType, length 828, version 1.0\012- data
Hash a8634ede0d2d6fe0f5515b74ee93fc27
fa0c7f8129004593e9c7a8e48533217ac61eb3ee
f033126038d8811bd0aa7a82e4f756ab7991e58f87917e8db39a44ec3e7c0f74
GET /static/common/fonts/common_icon_font/iconfont.woff2 HTTP/1.1
Host: www.juretro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.juretro.com/collections/outerwear-50077/?utm_campaign=20230203&utm_medium=mkt&utm_source=EDM
Connection: keep-alive
Cookie: locale=en; ccy=USD; _opbd=EDM|mkt|20230203|||||a30808cd896b1e9082fb3fdc6cd15bde; _opu=op_719fc27b8e79b08d_186189b72f2_2ae4; _opud=op_620e0f2aa8543802_186189b72f2_b32c; _odevice=892481604; utm_source=EDM; utm_medium=mkt; utm_campaign=20230203; utm_term=; utm_adset=; utm_content=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:07 GMT
content-type: application/octet-stream;charset=UTF-8
content-length: 828
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-max-age: 259200
access-control-allow-headers: X-Requested-With,X_Requested_With,Content-Type
x-server-ip: 172.20.103.234
x-request-id: 525cbf9a8d6543fab0892d3f0575643e
last-modified: Fri, 03 Feb 2023 00:56:04 GMT
cf-cache-status: REVALIDATED
expires: Fri, 03 Feb 2023 22:48:07 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793d56c31b961bfe-OSL
X-Firefox-Spdy: h2
sources.aopcdn.com/cloud/opShop/script/cart-progress-870d7ff2c0.js
104.18.188.11200 OK 2.3 kB URL HTTP/2 sources.aopcdn.com/cloud/opShop/script/cart-progress-870d7ff2c0.js
IP 104.18.188.11:0
File type Unicode text, UTF-8 text, with very long lines (6634), with no line terminators
Hash 9d8013d160bc22bfbfe0124653bfe454
76f6ee469e8dd5ca43e976b5252db7cdfc1c92df
1de09df5be204068969b7609b1a996c02a605198190e23a43586a1342c053ae0
GET /cloud/opShop/script/cart-progress-870d7ff2c0.js HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:06 GMT
content-type: application/javascript
cache-control: public, max-age=2678400
cf-bgj: minify
content-md5: YHIVto2yzpdw8v51w/AcCw==
last-modified: Fri, 13 Jan 2023 03:44:48 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 10498003901656960275
x-oss-object-type: Normal
x-oss-request-id: 63C112CE719F7731324AE90C
x-oss-server-time: 26
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 1347632
expires: Mon, 06 Mar 2023 18:48:06 GMT
server: cloudflare
cf-ray: 793d56c09ef50b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Arial|Raleway|Castoro|Didact+Gothic|Roboto|Roboto+Condensed|PT+Sans+Narrow|Libre+Franklin|Futura|Lora|Open+Sans|EB+Garamond|Montserrat
142.250.74.106200 OK 17 kB URL HTTP/2 fonts.googleapis.com/css?family=Arial|Raleway|Castoro|Didact+Gothic|Roboto|Roboto+Condensed|PT+Sans+Narrow|Libre+Franklin|Futura|Lora|Open+Sans|EB+Garamond|Montserrat
IP 142.250.74.106:0
Hash 775504a3ce15d9867a8d82798c8f9a4d
c155c34de082108ce7d6c3b37db284bd36428167
e233565c01bfb47563406da18c049fed52d71c4a2c04bfcd5b5962e72a7aeba4
GET /css?family=Arial|Raleway|Castoro|Didact+Gothic|Roboto|Roboto+Condensed|PT+Sans+Narrow|Libre+Franklin|Futura|Lora|Open+Sans|EB+Garamond|Montserrat HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Feb 2023 18:48:07 GMT
date: Fri, 03 Feb 2023 18:48:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sources.aopcdn.com/cloud/opShop/script/index-741be2b968.js
104.18.188.11200 OK 103 kB URL HTTP/2 sources.aopcdn.com/cloud/opShop/script/index-741be2b968.js
IP 104.18.188.11:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size 103 kB (102841 bytes)
Hash 206810919f40189a7bbf76e86d22a374
e6b593c4532e0740c1de20800836050663c7d95f
694ca8911c15cba2d5a612f9ebcd775cd2b1c482c396552310482205b5974f76
GET /cloud/opShop/script/index-741be2b968.js HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:06 GMT
content-type: application/javascript
cache-control: public, max-age=2678400
cf-bgj: minify
cf-polished: origSize=108237
content-md5: dBviuWgedN7RCMBLoERO2w==
last-modified: Fri, 13 Jan 2023 03:44:48 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 11558538337145633522
x-oss-object-type: Normal
x-oss-request-id: 63C112CE91795F3834B88B3A
x-oss-server-time: 11
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 1347632
expires: Mon, 06 Mar 2023 18:48:06 GMT
server: cloudflare
cf-ray: 793d56c0bf1e0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11126
Expires: Fri, 03 Feb 2023 21:53:33 GMT
Date: Fri, 03 Feb 2023 18:48:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11126
Expires: Fri, 03 Feb 2023 21:53:33 GMT
Date: Fri, 03 Feb 2023 18:48:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11126
Expires: Fri, 03 Feb 2023 21:53:33 GMT
Date: Fri, 03 Feb 2023 18:48:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11126
Expires: Fri, 03 Feb 2023 21:53:33 GMT
Date: Fri, 03 Feb 2023 18:48:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11126
Expires: Fri, 03 Feb 2023 21:53:33 GMT
Date: Fri, 03 Feb 2023 18:48:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F999ec9b9-96eb-4927-a0d5-3e4a89cca4ad.png
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F999ec9b9-96eb-4927-a0d5-3e4a89cca4ad.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24261df857fd20898ed41615ff44efd2
5ebaae7786e95f6daf7e837ce741f96611a64335
b947696fced12e35736691fb27c5cc4ddb28e4b4781cfbb69b8b4011b84aca5b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F999ec9b9-96eb-4927-a0d5-3e4a89cca4ad.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10971
x-amzn-requestid: 87d6a618-4ddf-4e40-aaeb-f6e38c274c23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: feH0jHisoAMFgpg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d58683-2de413f446505ec44ab2a390;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 20:33:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VpgiTDC8Uyvv5rCHOxGUgIREsLddYA7POpvU5eJSO3_K3zm7Hp3AOg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:43:06 GMT
age: 75901
etag: "5ebaae7786e95f6daf7e837ce741f96611a64335"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 114e345e134986d7451148fcea31b29d
541e878afee68c8802bb52b0cbbe5a5a0a185392
5030244d4babd1023166f39c935029d789a91ba90aa3a44c6f4c88ddc947b678
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8211
x-amzn-requestid: 6a1fd567-b34d-4787-aa05-5b7db3fc51c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fflRBHU4IAMFnsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61c06-2d1ec3206d2ebeb4780a84b4;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:11:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lUloQ6xaRWpnvMRh7kFvFIWhFotmILLZHfD_YK01RmrQ2vmYKVh46w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 03:08:32 GMT
age: 56375
etag: "541e878afee68c8802bb52b0cbbe5a5a0a185392"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 75606
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b7r7phj8i49RMSuWufxF1L34K9udWa0mJ4dY12izM9ofwAuCFBGEZQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 75606
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4041f3b5316bc84c9e6d88ddbc85b89
4978a4a20836b6f5d863d331bcedad782b7b4ac6
549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5641
x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzpHsXoAMFsuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:57:49 GMT
age: 75018
etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3490571dd2de0a747987b9a0e18cccc8
18e9f8f160d3515f1cb31fc7538ac762a6cab344
1c071d7f3b288b29254500f94f19c0db0633c6aa90812f2e92c4f64992f5221a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10796
x-amzn-requestid: 5c9b1a83-c99a-44b9-9a90-5edd7ef1e225
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi0XKG93oAMFtsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76760-01bf754d6c725c3275c02a1b;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 06:44:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XTZJAn0LMAfFtaQ2bN8z58cCsUT5GzxDMnHVB_iw9E_NskHQ-BgbRQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:19:26 GMT
age: 84437
etag: "18e9f8f160d3515f1cb31fc7538ac762a6cab344"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-NXPQZDP9SK>m=45je3210&_p=2094879655&cid=350503968.1675450120&ul=en-us&sr=1280x1024&uaW=1&_s=1&uid=&sid=1675450119&sct=1&seg=0&dl=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&dt=&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-NXPQZDP9SK>m=45je3210&_p=2094879655&cid=350503968.1675450120&ul=en-us&sr=1280x1024&uaW=1&_s=1&uid=&sid=1675450119&sct=1&seg=0&dl=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&dt=&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-NXPQZDP9SK>m=45je3210&_p=2094879655&cid=350503968.1675450120&ul=en-us&sr=1280x1024&uaW=1&_s=1&uid=&sid=1675450119&sct=1&seg=0&dl=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&dt=&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.juretro.com
date: Fri, 03 Feb 2023 18:48:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2085
Cache-Control: max-age=135711
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:08 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 08:29:59 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
d2q8lslmdp9f7.cloudfront.net/library/20220511/100329_566893/NFEQ8UN4fXQMF7csM4wx4gHMfSPdBjBz.gif
143.204.42.187200 OK 24 kB URL HTTP/2 d2q8lslmdp9f7.cloudfront.net/library/20220511/100329_566893/NFEQ8UN4fXQMF7csM4wx4gHMfSPdBjBz.gif
IP 143.204.42.187:0
File type GIF image data, version 89a, 500 x 500\012- data
Hash d3ce2e38c392e900614327cccc26e10b
6a967092995824dfde8e48cd490e9fe358548ff9
5a9353f38ac257034c16b735a9c398d8582b006dc12ed2b72535dcb95346b05f
GET /library/20220511/100329_566893/NFEQ8UN4fXQMF7csM4wx4gHMfSPdBjBz.gif HTTP/1.1
Host: d2q8lslmdp9f7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 23805
date: Fri, 03 Feb 2023 09:29:23 GMT
x-amz-replication-status: COMPLETED
last-modified: Wed, 11 May 2022 02:03:30 GMT
etag: "d3ce2e38c392e900614327cccc26e10b"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GdigqiL9WLD0gR7ZQwFeG7G8JgFxoW605wp-sNm58FcMBFB4-HJXSg==
age: 33526
X-Firefox-Spdy: h2
assets.pinterest.com/js/pinit.js
2.18.172.195200 OK 203 B URL HTTP/2 assets.pinterest.com/js/pinit.js
IP 2.18.172.195:0
File type ASCII text, with very long lines (361), with no line terminators
Hash 62d32c28f14783b94192cd8d35bc010d
78c1ba11e104bbd01a07225d0f8c41d7712094d4
e823b68f75484d37c74ebb652e2a5b183a1b65c43f1592985e519a8cabc44b2e
GET /js/pinit.js HTTP/1.1
Host: assets.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "62d32c28f14783b94192cd8d35bc010d"
content-encoding: br
accept-ranges: bytes
content-type: application/javascript; charset=utf-8
content-length: 203
cache-control: max-age=261
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
216.239.36.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.36.178:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 03 Feb 2023 17:44:08 GMT
expires: Fri, 03 Feb 2023 19:44:08 GMT
cache-control: public, max-age=7200
age: 3840
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 8ocxWx3tknG0qtDFmP9lnrcYt79XltUcHvk8UWOq9xG2gWFwXuZlrPl2FTRTOS1AvBo5IIY01TR6QKivNdrg6g==
content-length: 27843
x-fb-trip-id: 2074150462
date: Fri, 03 Feb 2023 18:48:08 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/bat.js
204.79.197.200200 OK 12 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 30033773AF284E5DAC76B9A7E7778EDB Ref B: OSL30EDGE0516 Ref C: 2023-02-03T18:48:08Z
date: Fri, 03 Feb 2023 18:48:08 GMT
X-Firefox-Spdy: h2
assets.pinterest.com/js/pinit_main.js?0.8406396097298594
2.18.172.195200 OK 19 kB URL HTTP/2 assets.pinterest.com/js/pinit_main.js?0.8406396097298594
IP 2.18.172.195:0
File type Unicode text, UTF-8 text, with very long lines (32016)
Hash 3725764cf05d1a0938de73d398772331
abdc742d760ca9c8f28c8d44ca9796d9ad6c0bc7
f8c41f2f59fc9e9d088bc9002eef583c3cf256b4cd371619b18107b4abd92812
GET /js/pinit_main.js?0.8406396097298594 HTTP/1.1
Host: assets.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "3725764cf05d1a0938de73d398772331"
content-encoding: br
accept-ranges: bytes
content-type: application/javascript; charset=utf-8
content-length: 18679
cache-control: max-age=185
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash fa0c6366604a4ab6c96d6532635e67ea
40240decb8717829947e1a3d17bf892cb39e3dfd
75f25a761713dc012639b4221fa6f2306f9c01a2324b4c89e1d0cfe070da8e51
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4455
Cache-Control: max-age=89486
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:08 GMT
Etag: "63dc000f-13a"
Expires: Sat, 04 Feb 2023 19:39:34 GMT
Last-Modified: Thu, 02 Feb 2023 18:25:19 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1710
Cache-Control: max-age=135336
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:08 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 08:23:44 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
googleads.g.doubleclick.net/pagead/viewthroughconversion/750327233/?random=1675450119517&cv=11&fst=1675450119517&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&auid=117018448.1675450120&data=event%3Dgtag.config&rfmt=3&fmt=4
216.58.207.226200 OK 917 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/750327233/?random=1675450119517&cv=11&fst=1675450119517&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&auid=117018448.1675450120&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 216.58.207.226:0
File type ASCII text, with very long lines (1971), with no line terminators
Hash 7910afee81fe551ebeb57583f9028656
0a41637f91cfc1f224e94ca23faebc81c74526ab
56aa1ddf2c15d60ebe830bdeb067099c68cc2631aa8e3cce7c82d805acc33c9d
GET /pagead/viewthroughconversion/750327233/?random=1675450119517&cv=11&fst=1675450119517&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&auid=117018448.1675450120&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 18:48:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 917
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 03-Feb-2023 19:03:08 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.pinimg.com/ct/core.js
2.18.172.195200 OK 1.1 kB IP 2.18.172.195:0
File type ASCII text, with very long lines (1146), with no line terminators
Hash e86e91ccaebee6bf004dc862956ef25c
167e7e73d1ad23302eef48e7074e5182deaa7999
fdf85d7c2572c064d848fd3ee3be8d0c0aa6bb5afb9e39dbcf52c41a0147c7e7
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "e86e91ccaebee6bf004dc862956ef25c"
cache-control: max-age=7200
accept-ranges: bytes
content-type: application/javascript
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=25140549&Ver=2&mid=975e2a3e-dde1-4674-b520-fcf8c3e53319&sid=60311be0a3f311ed9c29ef67a42defa1&vid=603122d0a3f311ed9efa3d43dba29c42&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&kw=%20&p=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&r=<=1741&evt=pageLoad&sv=1&rn=517046
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=25140549&Ver=2&mid=975e2a3e-dde1-4674-b520-fcf8c3e53319&sid=60311be0a3f311ed9c29ef67a42defa1&vid=603122d0a3f311ed9efa3d43dba29c42&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&kw=%20&p=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&r=<=1741&evt=pageLoad&sv=1&rn=517046
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=25140549&Ver=2&mid=975e2a3e-dde1-4674-b520-fcf8c3e53319&sid=60311be0a3f311ed9c29ef67a42defa1&vid=603122d0a3f311ed9efa3d43dba29c42&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&kw=%20&p=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&r=<=1741&evt=pageLoad&sv=1&rn=517046 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=1DFF99A6D94262C02FE28B0BD8B7635D; domain=.bing.com; expires=Wed, 28-Feb-2024 18:48:08 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: EAC9B983519842A392AD2365C88194FD Ref B: OSL30EDGE0516 Ref C: 2023-02-03T18:48:08Z
date: Fri, 03 Feb 2023 18:48:08 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 4cf0ccf2909be74efd7a89dbe4228ffb
b4993da334b48312584d116a3de4be4cd71962cf
e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/750327233/?random=1675450119517&cv=11&fst=1675447200000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1630053688&rmt_tld=0&ipr=y
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/750327233/?random=1675450119517&cv=11&fst=1675447200000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1630053688&rmt_tld=0&ipr=y
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/750327233/?random=1675450119517&cv=11&fst=1675447200000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1630053688&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 18:48:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/750327233/?random=1675450119517&cv=11&fst=1675447200000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1630053688&rmt_tld=1&ipr=y
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/750327233/?random=1675450119517&cv=11&fst=1675447200000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1630053688&rmt_tld=1&ipr=y
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/750327233/?random=1675450119517&cv=11&fst=1675447200000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1630053688&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 18:48:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bat.bing.com/p/action/25140549.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/25140549.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/25140549.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8F773A15200944B89814BED418895D1A Ref B: OSL30EDGE0516 Ref C: 2023-02-03T18:48:08Z
date: Fri, 03 Feb 2023 18:48:08 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-141228038-1&cid=350503968.1675450120&jid=1166371659&gjid=1109553585&_gid=484505530.1675450120&_u=4CDAAUAKAAAAACAAI~&z=564242639
64.233.165.157200 OK 110 kB URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-141228038-1&cid=350503968.1675450120&jid=1166371659&gjid=1109553585&_gid=484505530.1675450120&_u=4CDAAUAKAAAAACAAI~&z=564242639
IP 64.233.165.157:0
File type gzip compressed data, from Unix\012- data
Size 110 kB (110262 bytes)
Hash 42d7664da99c655e85a45f618336200d
c25f4241cdb56db64386803101277b65cc6fadb7
6abbfef034ff36d80402358e161a6ea3632fca33873090725181b642f976f710
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-141228038-1&cid=350503968.1675450120&jid=1166371659&gjid=1109553585&_gid=484505530.1675450120&_u=4CDAAUAKAAAAACAAI~&z=564242639 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.juretro.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 03 Feb 2023 18:48:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash a066fb1e4ce413ebe177c2531a594cc3
49a39c4ee5c1e5d7e07ab17d703262c495b217d1
464f12dd3b739f5fe9f4875253f7567c660988f10950704b5cf145037599f3f6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3457
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:08 GMT
Last-Modified: Fri, 03 Feb 2023 17:50:31 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 313
ct.pinterest.com/user/?event=pagevisit&tid=2612547234711&cb=1675450120640&dep=5%2CEVENT_TAGS_ABSENT
23.38.200.197200 OK 372 B URL HTTP/2 ct.pinterest.com/user/?event=pagevisit&tid=2612547234711&cb=1675450120640&dep=5%2CEVENT_TAGS_ABSENT
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash cb60b4bb9f692e0eccd37330432c3c88
0f850c1d37f97ea20375d7b0b3f56f80f46f7a83
68ef92e043c30a34094e4359ce99370aef1153692f0bd6fe82e0e65120978043
GET /user/?event=pagevisit&tid=2612547234711&cb=1675450120640&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU5EZzBPRGxrTXpJdFpESXlNeTAwTUdNMkxXRTFOelF0TVdWak56RXhNamszT0RNMA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.juretro.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 372
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 3734475676653987
date: Fri, 03 Feb 2023 18:48:08 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675450088.95440e40
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=pagevisit&tid=2612771844502&cb=1675450120639&dep=5%2CEVENT_TAGS_ABSENT
23.38.200.197200 OK 372 B URL HTTP/2 ct.pinterest.com/user/?event=pagevisit&tid=2612771844502&cb=1675450120639&dep=5%2CEVENT_TAGS_ABSENT
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash cb60b4bb9f692e0eccd37330432c3c88
0f850c1d37f97ea20375d7b0b3f56f80f46f7a83
68ef92e043c30a34094e4359ce99370aef1153692f0bd6fe82e0e65120978043
GET /user/?event=pagevisit&tid=2612771844502&cb=1675450120639&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU4yVTRaVEpqTVdFdFpERmlOQzAwTXpkbExXSXdZVFV0WkRkbVlURmlaREV4TUdObQ
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.juretro.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 372
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 6873386415111302
date: Fri, 03 Feb 2023 18:48:08 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675450088.95440e98
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2612771844502&pd=%7B%7D&cb=1675450120638&dep=2%2CPAGE_LOAD
23.38.200.197200 OK 372 B URL HTTP/2 ct.pinterest.com/user/?tid=2612771844502&pd=%7B%7D&cb=1675450120638&dep=2%2CPAGE_LOAD
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash cb60b4bb9f692e0eccd37330432c3c88
0f850c1d37f97ea20375d7b0b3f56f80f46f7a83
68ef92e043c30a34094e4359ce99370aef1153692f0bd6fe82e0e65120978043
GET /user/?tid=2612771844502&pd=%7B%7D&cb=1675450120638&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPVpXUTRNVEEwTlRFdFl6TTFPQzAwTVRkbExUZzBPVFl0WWpFMU0yVmxOMlptWkdVMg
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.juretro.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 372
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 1566928132294399
date: Fri, 03 Feb 2023 18:48:08 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675450088.95440eaf
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
cdn9.forter.com/vchk2/v1/2cbe5d9c68427a736922e14f18f802bfa2e0970c29d91060b9ef650cb891961cac7f4bc9661352e7d9f84edca475
143.204.55.68200 OK 14 kB URL HTTP/2 cdn9.forter.com/vchk2/v1/2cbe5d9c68427a736922e14f18f802bfa2e0970c29d91060b9ef650cb891961cac7f4bc9661352e7d9f84edca475
IP 143.204.55.68:0
File type gzip compressed data, from Unix\012- data
Hash 9099255c1f7af44bd17ae8937f8d830d
1a832c06089ed9bb9e1e77c894da61d28cef15e3
a5d10e92e59535734a1be69a33f7d2562591c78a95b965bcddc0cf49cb2195c7
GET /vchk2/v1/2cbe5d9c68427a736922e14f18f802bfa2e0970c29d91060b9ef650cb891961cac7f4bc9661352e7d9f84edca475 HTTP/1.1
Host: cdn9.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: eyJyIjowLjE4NzY2NzQzMDg3MjE2OTg2LCJ1IjoiYjE3N2Q4ZjhkNmNlNGY0MGJjOTc3YWY1MTk0YzdlZDgiLCJzIjoiMmUzYjYxODA1N2ExIn0=
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Referer: https://www.juretro.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:08 GMT
access-control-allow-origin: *
timing-allow-origin: *
cache-control: private, s-maxage=0, proxy-revalidate
strict-transport-security: max-age=86400; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xpJrdLmWCbBxqVQ7ZWDgHoHWVhCAMxPLl4JcHcTKwIAgHjqpp-m7RQ==
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2612771844502&pd=%7B%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675450120640
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2612771844502&pd=%7B%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675450120640
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2612771844502&pd=%7B%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675450120640 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 4
referrer-policy: origin
x-pinterest-rid: 1702151172987979
date: Fri, 03 Feb 2023 18:48:08 GMT
akamai-grn: 0.274f2417.1675450088.95440f18
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 8602f3483627681e198ec06f8f53eed7
ea3630c6a4466f2385dcb6dcfd18307f4fa0de72
31d7c84235658a98181ddf2d7b73a336acaf2bd58e6947515fb6793d72bb03e1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 77
Cache-Control: max-age=154176
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:08 GMT
Etag: "63dd0ddb-138"
Expires: Sun, 05 Feb 2023 13:37:44 GMT
Last-Modified: Fri, 03 Feb 2023 13:36:27 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:08 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=H1xgm180M0RITmhlJTJCZkMwOUJGQlhaMUN2czRiR0hZN0JYcW1CUVlSJTJCaTM1UkdaJTJCUWh3VzU1ZWlBQVRZcVdEQTVpdjFU; expires=Wed, 28 Feb 2024 18:48:08 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 243386
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?event=pagevisit&tid=2612547234711&cb=1675450120897&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=pagevisit&tid=2612547234711&cb=1675450120897&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=pagevisit&tid=2612547234711&cb=1675450120897&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1335961067374250
date: Fri, 03 Feb 2023 18:48:08 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZTbDJraXZQdnFJeTRCdnJHSUEzd2NNZUJWaWFoNHlFVGtpODdidCthVGNZeTdYeWYxK1hwRjdua3p1V1JxNWx0aWtBSHNuMENoWGs1dU1Zb3RWV0FTZi9WWU9aelIrYm5kcEswNng2Y1RFZz0mWWFTTmdrZEZCdm82VmhjUlYvWkRlL251YmdVPQ=="; Expires=Sat, 03 Feb 2024 18:48:08 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1675450088.954414bb
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1558980394299812&ev=PageView&dl=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&rl=&if=false&ts=1675450120910&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675450120909.329218591&it=1675450120448&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1558980394299812&ev=PageView&dl=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&rl=&if=false&ts=1675450120910&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675450120909.329218591&it=1675450120448&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1558980394299812&ev=PageView&dl=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&rl=&if=false&ts=1675450120910&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675450120909.329218591&it=1675450120448&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 03 Feb 2023 18:48:08 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=208921711168498&ev=PageView&dl=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&rl=&if=false&ts=1675450120912&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675450120909.329218591&it=1675450120448&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=208921711168498&ev=PageView&dl=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&rl=&if=false&ts=1675450120912&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675450120909.329218591&it=1675450120448&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=208921711168498&ev=PageView&dl=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM&rl=&if=false&ts=1675450120912&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675450120909.329218591&it=1675450120448&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 03 Feb 2023 18:48:08 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 5dfa21f8ce56c91a0c67c55831571dea
ad9d3cc818ab39bc1fe96b76a080a75534b4e7fc
72f14d1cb9b14526ae15d26c0998c852299987397075fda52aa8c65052d5604b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1890
Cache-Control: max-age=122921
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:08 GMT
Etag: "63dc8caf-139"
Expires: Sun, 05 Feb 2023 04:56:49 GMT
Last-Modified: Fri, 03 Feb 2023 04:25:19 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 5dfa21f8ce56c91a0c67c55831571dea
ad9d3cc818ab39bc1fe96b76a080a75534b4e7fc
72f14d1cb9b14526ae15d26c0998c852299987397075fda52aa8c65052d5604b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1897
Cache-Control: max-age=122928
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:08 GMT
Etag: "63dc8caf-139"
Expires: Sun, 05 Feb 2023 04:56:56 GMT
Last-Modified: Fri, 03 Feb 2023 04:25:19 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 313
ct.pinterest.com/v3/?event=pagevisit&tid=2612771844502&cb=1675450120920&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=pagevisit&tid=2612771844502&cb=1675450120920&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=pagevisit&tid=2612771844502&cb=1675450120920&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1631037185439337
date: Fri, 03 Feb 2023 18:48:08 GMT
set-cookie: _pinterest_ct_ua="TWc9PSYwR3FnZEJIRTA1VHpnMHlYdUYvS1UwK0JhTU1JVVFYQzlGYktJQkNOalJ1Sk8yRDFtU3cvQjVuYitKTVdTeUpVcWVDM2xBTzRQOERJbFFYM1pWZVFlM0xDWjQxVk9zbTV3U2dqRUpwWXY5OD0mZjJENkFHZkYyQ1piSzNPdGNxOFUxcFpjQUlRPQ=="; Expires=Sat, 03 Feb 2024 18:48:08 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1675450088.95441662
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/ct.html
23.38.200.197200 OK 323 B IP 23.38.200.197:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 4006614774613470
date: Fri, 03 Feb 2023 18:48:09 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675450088.954419c0
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7249f3063c5cc97019b81bdc916c06c3
0de6910dda1611b6ea0c6076a4fb327c270776e7
1ec97333fc0ff62959d279c267ed14ca106b225d58047160802c492b99309a2d
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1198
Cache-Control: max-age=91235
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:09 GMT
Etag: "63dc139e-1d7"
Expires: Sat, 04 Feb 2023 20:08:44 GMT
Last-Modified: Thu, 02 Feb 2023 19:48:46 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
gum.criteo.com/sid/json?origin=onetag&domain=juretro.com&sn=FirefoxSyncframe&so=0&topUrl=www.juretro.com&info=jFd9C180M0RITmhlJTJCZkMwOUJGQlhaMUN2czRiR0hZN0JYcW1CUVlSJTJCaTM1UkdaJTJCZFVSeXkxeFJmZFpQV3F5dXU0OEElMkY&idsd=1211117390,2083553578&cw=1&lsw=1
178.250.0.157200 OK 4.6 kB URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=juretro.com&sn=FirefoxSyncframe&so=0&topUrl=www.juretro.com&info=jFd9C180M0RITmhlJTJCZkMwOUJGQlhaMUN2czRiR0hZN0JYcW1CUVlSJTJCaTM1UkdaJTJCZFVSeXkxeFJmZFpQV3F5dXU0OEElMkY&idsd=1211117390,2083553578&cw=1&lsw=1
IP 178.250.0.157:0
Hash 32c025cad38c10b3865374302da8f9d6
ae742b3dbfbcd6663628f22c5d10d2be12e864a1
e4c1dcc0c70ca93ee123f0c83103c2658b500a7156ea818c1740eb6921ad034e
GET /sid/json?origin=onetag&domain=juretro.com&sn=FirefoxSyncframe&so=0&topUrl=www.juretro.com&info=jFd9C180M0RITmhlJTJCZkMwOUJGQlhaMUN2czRiR0hZN0JYcW1CUVlSJTJCaTM1UkdaJTJCZFVSeXkxeFJmZFpQV3F5dXU0OEElMkY&idsd=1211117390,2083553578&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=www.juretro.com&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:08 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1356535
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
matching.ivitrack.com/sync?realm=criteo&uid=k-b3TLy45VwspIH3dDTuaRBEaovXzcy9EnEbdw4A
34.117.157.22200 OK 42 B URL HTTP/2 matching.ivitrack.com/sync?realm=criteo&uid=k-b3TLy45VwspIH3dDTuaRBEaovXzcy9EnEbdw4A
IP 34.117.157.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /sync?realm=criteo&uid=k-b3TLy45VwspIH3dDTuaRBEaovXzcy9EnEbdw4A HTTP/1.1
Host: matching.ivitrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
date: Fri, 03 Feb 2023 18:48:08 GMT
content-type: image/gif
content-length: 42
cache-control: public, max-age=86400
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: tag-manager.programmatic.svc.cluster.local:3000/*
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 78407ac1cb64f8eedeb697574509b417
2e2667c7cd3a397de8a75342fb51d4bbc2a53028
d8274c6af50031fb7a5c1ac7b69df880dc0c0024734469aba9f4558a42d850bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8274C6AF50031FB7A5C1AC7B69DF880DC0C0024734469ABA9F4558A42D850BB"
Last-Modified: Fri, 03 Feb 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3971
Expires: Fri, 03 Feb 2023 19:54:20 GMT
Date: Fri, 03 Feb 2023 18:48:09 GMT
Connection: keep-alive
b177d8f8d6ce4f40bc977af5194c7ed8-2e3b618057a1.cdn.forter.com/prop.json
54.158.164.13200 OK 2 B URL HTTP/1.1 b177d8f8d6ce4f40bc977af5194c7ed8-2e3b618057a1.cdn.forter.com/prop.json
IP 54.158.164.13:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /prop.json HTTP/1.1
Host: b177d8f8d6ce4f40bc977af5194c7ed8-2e3b618057a1.cdn.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 18:48:09 GMT
Server: Apache
Last-Modified: Mon, 26 Dec 2022 12:08:35 GMT
ETag: "2-5f0b9fead36a8"
Accept-Ranges: bytes
Content-Length: 2
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Access-Control-Allow-Origin: https://www.juretro.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Access-Control-Allow-Headers: origin, x-requested-with, content-type, x-csrf-token
Access-Control-Allow-Methods: PUT, GET, POST, DELETE, OPTIONS
Connection: close
Content-Type: application/json
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash eb892a30ccf7c1a154b1345dc3094e22
13152fe85bd211b9254fefa54453e060b4a7e654
20de281b92b2ec8d1a53ad197ce84161c61adbcac1ec3b9e2f53f6e8ce5947e7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 18:48:09 GMT
Last-Modified: Fri, 03 Feb 2023 18:34:08 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DaxWYTPVmI5cubTkVg4U2MdrUvVF7SvKs89HZ78fvfuaeYdzgo77Lg==
Age: 841
log.pinterest.com/?type=pidget&guid=vCsJAy6Ck3YJ&tv=2021110201&event=init&sub=www&button_count=0&follow_count=0&pin_count=0&profile_count=0&board_count=0§ion_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F&viaSrc=canonical
151.101.0.84200 OK 0 B URL HTTP/2 log.pinterest.com/?type=pidget&guid=vCsJAy6Ck3YJ&tv=2021110201&event=init&sub=www&button_count=0&follow_count=0&pin_count=0&profile_count=0&board_count=0§ion_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F&viaSrc=canonical
IP 151.101.0.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?type=pidget&guid=vCsJAy6Ck3YJ&tv=2021110201&event=init&sub=www&button_count=0&follow_count=0&pin_count=0&profile_count=0&board_count=0§ion_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F&viaSrc=canonical HTTP/1.1
Host: log.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-envoy-upstream-service-time: 2
server: envoy
x-pinterest-rid: 8215364953585779
accept-ranges: bytes
date: Fri, 03 Feb 2023 18:48:09 GMT
via: 1.1 varnish
x-served-by: cache-bma1624-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675450089.458208,VS0,VE42
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
content-length: 0
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
178.250.0.157302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 03 Feb 2023 18:48:08 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 723720
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-meZIaY5VwspIH3dDTuaRBEaovXyqNFO6eOYqlA&google_cm&google_hm=ay1tZVpJYVk1VndzcElIM2REVHVhUkJFYW92WHlxTkZPNmVPWXFsQQ
142.250.74.162302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-meZIaY5VwspIH3dDTuaRBEaovXyqNFO6eOYqlA&google_cm&google_hm=ay1tZVpJYVk1VndzcElIM2REVHVhUkJFYW92WHlxTkZPNmVPWXFsQQ
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 331c92a7965b7043fbcaf714a4bb7a44
532eedda3e413a695d894d90f0a8a97ee1815a2e
190b0945503b9cff2f9fc2fafa647c7f32edfce913e8252c0bc3fc0fb17c5a1c
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-meZIaY5VwspIH3dDTuaRBEaovXyqNFO6eOYqlA&google_cm&google_hm=ay1tZVpJYVk1VndzcElIM2REVHVhUkJFYW92WHlxTkZPNmVPWXFsQQ HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-meZIaY5VwspIH3dDTuaRBEaovXyqNFO6eOYqlA&google_cm=&google_hm=ay1tZVpJYVk1VndzcElIM2REVHVhUkJFYW92WHlxTkZPNmVPWXFsQQ&google_tc=
date: Fri, 03 Feb 2023 18:48:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 03-Feb-2023 19:03:09 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-9XDw-Y5VwspIH3dDTuaRBEaovXxf_GD5WQqKXg
23.38.200.22200 OK 237 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-9XDw-Y5VwspIH3dDTuaRBEaovXxf_GD5WQqKXg
IP 23.38.200.22:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 74378edf31ef26cd97c236ad08d05fa3
fdd52cdbf193d1dfd1031978667689f3414b49ed
11cb2c0e70f91c6a0326cf4a4f9fa1b177c14efba6b56bf7535624b9c7bce990
GET /cksync.php?cs=3&type=crt&ovsid=k-9XDw-Y5VwspIH3dDTuaRBEaovXxf_GD5WQqKXg HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 237
content-type: image/gif
set-cookie: visitor-id=3184516893580264000V10; Expires=Sat, 03 Feb 2024 18:48:09 GMT; domain=.media.net; Path=/;
data-c-ts=1675450089;Expires=Sun, 05 Mar 2023 18:48:09 GMT;path=/;domain=.media.net;
data-c=k-9XDw-Y5VwspIH3dDTuaRBEaovXxf_GD5WQqKXg~~3;Expires=Sun, 05 Mar 2023 18:48:09 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Fri, 03 Feb 2023 18:48:09 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 03 Feb 2023 18:48:09 GMT
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
185.89.210.180307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP 185.89.210.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 03 Feb 2023 18:48:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: eaafecbd-4967-4120-bf6c-d29d8a66f2c9
Set-Cookie: uuid2=2287264673410136259; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 04-May-2023 18:48:09 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 958.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
criteo-sync.teads.tv/um?eid=80&uid=k-EfK6po5VwspIH3dDTuaRBEaovXwcwES9QuWKPQ
23.195.255.234200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-EfK6po5VwspIH3dDTuaRBEaovXwcwES9QuWKPQ
IP 23.195.255.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-EfK6po5VwspIH3dDTuaRBEaovXwcwES9QuWKPQ HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Fri, 03 Feb 2023 18:48:09 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 03 Feb 2023 18:48:09 GMT
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-meZIaY5VwspIH3dDTuaRBEaovXyqNFO6eOYqlA&google_cm=&google_hm=ay1tZVpJYVk1VndzcElIM2REVHVhUkJFYW92WHlxTkZPNmVPWXFsQQ&google_tc=
142.250.74.162302 Found 332 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-meZIaY5VwspIH3dDTuaRBEaovXyqNFO6eOYqlA&google_cm=&google_hm=ay1tZVpJYVk1VndzcElIM2REVHVhUkJFYW92WHlxTkZPNmVPWXFsQQ&google_tc=
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 0e52ec2d7dbc649856647e9c36e223d8
1fad7ae93c88f5a757fcfb4b6317cc795b2d700c
dbf17d0e443d224e7718a9291392bc9b4f2783f9ab6168367378c6cf49f8d704
GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-meZIaY5VwspIH3dDTuaRBEaovXyqNFO6eOYqlA&google_cm=&google_hm=ay1tZVpJYVk1VndzcElIM2REVHVhUkJFYW92WHlxTkZPNmVPWXFsQQ&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-meZIaY5VwspIH3dDTuaRBEaovXyqNFO6eOYqlA&google_error=3
date: Fri, 03 Feb 2023 18:48:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4815d6c9dac8985229fceea388fadc0f
6b0cbd1759b89f68ef46a41e45db7bda5886ee84
dc2946fb1cd23ccdcac42e0d68740942849df5cd45857a47b2168d563a790afb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1980
Cache-Control: max-age=111110
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:09 GMT
Etag: "63dc5e33-1d7"
Expires: Sun, 05 Feb 2023 01:39:59 GMT
Last-Modified: Fri, 03 Feb 2023 01:06:59 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
sources.aopcdn.com/cloud/common/i7eo-cdb7a0aad4.js
104.18.188.11200 OK 13 kB URL HTTP/2 sources.aopcdn.com/cloud/common/i7eo-cdb7a0aad4.js
IP 104.18.188.11:0
File type Unicode text, UTF-8 text, with very long lines (33130), with no line terminators
Hash ccc5a8b3b7071afd8c4f8ec2a182b0d8
8d906d523f095c9c068be6aa89485cc8ba01f0d1
1c28ea99d1c713fad972a0bee1c63533f612df8924a957878f8c2c5be38acbbd
GET /cloud/common/i7eo-cdb7a0aad4.js HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:06 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=33459
content-md5: zbegqtQougeXwv2gd2lgfQ==
last-modified: Mon, 15 Mar 2021 02:34:42 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 2318280625526166053
x-oss-object-type: Normal
x-oss-request-id: 618CA546719F77373628703A
x-oss-server-time: 52
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 1539942
expires: Mon, 06 Mar 2023 18:48:06 GMT
cache-control: public, max-age=2678400
server: cloudflare
cf-ray: 793d56c0bf2a0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 5d4268e85c85b72f64e9d1ac0d11f4ff
2cafe158bc3c73d37e86d6c04a33ccbfe09954cd
b0dc22daf18a31b6872fd375c47eeb133d745b6967b6880a668b8ff5d203681e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 768
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:09 GMT
Last-Modified: Fri, 03 Feb 2023 18:35:21 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 313
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
185.89.210.180302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP 185.89.210.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Fri, 03 Feb 2023 18:48:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: ce51c09b-1b76-4f5d-96a2-12cc8352568d
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 958.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1e1146948f490a748beaac4981ab51d7
ba008a826eb4225c82aec548d6ceef5c40cc62b3
44ad619c0479eb5e1831e54986a44bde9249a62b4b80ba920a6280fae4b1f72d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2641
Cache-Control: max-age=161419
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:09 GMT
Etag: "63dd2023-1d7"
Expires: Sun, 05 Feb 2023 15:38:28 GMT
Last-Modified: Fri, 03 Feb 2023 14:54:27 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 4ac3064c7508ad9b4025691320b35ab7
0d59935826565b8415bb91bfd1abaf475fd6018a
3e788ef15349387b0942b996b3a83630b6675ce02e6e2ea06c283cd508972726
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 18:48:09 GMT
Last-Modified: Fri, 03 Feb 2023 17:01:32 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JlRL3t-KfygOISx_p9vZ9YSdbLudMp9gvnopS4aYeTxcXQ6JBS560A==
Age: 6397
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 4291f36d87cbc582595b9f77ee3337b0
1bf5e33732b50bff90b3bf409ecf9f899ddeded9
28cd633dac85b939099cef2cb984ae989481e805b1b2d9394060ae212c1ce364
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4772
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:09 GMT
Last-Modified: Fri, 03 Feb 2023 17:28:38 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 278
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-VgzBNY5VwspIH3dDTuaRBEaovXz1RFQM27mC_Q
185.86.139.113200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-VgzBNY5VwspIH3dDTuaRBEaovXz1RFQM27mC_Q
IP 185.86.139.113:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-VgzBNY5VwspIH3dDTuaRBEaovXz1RFQM27mC_Q HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Fri, 03 Feb 2023 18:48:09 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=6070455971414739021; expires=Sun, 03 Mar 2024 18:48:09 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 03 Mar 2024 18:48:09 GMT; domain=smartadserver.com; path=/
csync=79:k-VgzBNY5VwspIH3dDTuaRBEaovXz1RFQM27mC_Q; expires=Sat, 03 Feb 2024 18:48:09 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
cm.adform.net/pixel?adform_pid=15&adform_pc=k-9qIZOo5VwspIH3dDTuaRBEaovXy8bMxxnYWG4Q
37.157.3.30200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-9qIZOo5VwspIH3dDTuaRBEaovXy8bMxxnYWG4Q
IP 37.157.3.30:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-9qIZOo5VwspIH3dDTuaRBEaovXy8bMxxnYWG4Q HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 18:48:09 GMT
content-type: image/gif
content-length: 43
last-modified: Fri, 07 Feb 2020 08:03:24 GMT
etag: "5e3d19cc-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7d70c748b9288211c05eab1f436670ee
91fefada5e7642002e08a1443dc8829f883279bd
8c91d5490eb51f272bc017a0c025995cf1243ba3dc2ba9a5fd58aad4d35ccec9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5034
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:09 GMT
Last-Modified: Fri, 03 Feb 2023 17:24:16 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8e4b7b47ed75e9e975adc9fc304e3219
0b4f8dacc8685161103a352dd4221f69aa111626
852df028f28349db72a347eb3627f3f102c4e4dd6418cbdba6b94e44092ab43f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5515
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:09 GMT
Last-Modified: Fri, 03 Feb 2023 17:16:14 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-Gl_F645VwspIH3dDTuaRBEaovXyY1g-VEqFGQw
35.157.147.59302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-Gl_F645VwspIH3dDTuaRBEaovXyY1g-VEqFGQw
IP 35.157.147.59:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-Gl_F645VwspIH3dDTuaRBEaovXyY1g-VEqFGQw HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 18:48:09 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-Gl_F645VwspIH3dDTuaRBEaovXyY1g-VEqFGQw
set-cookie: tuuid=06b175ec-f509-4803-9874-0a6655178a36; Expires=Thu, 04 May 2023 18:48:09 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1675450089; Expires=Thu, 04 May 2023 18:48:09 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 37c26fb09f8a09fdc910d20b97d6f079
5d7848dc1152b81bf53c10fee9e26e20a01b0f02
740e3d2348357db713554ff75471d18ad9d2a2e810f71b3bab61984b026295fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "740E3D2348357DB713554FF75471D18AD9D2A2E810F71B3BAB61984B026295FD"
Last-Modified: Thu, 02 Feb 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14882
Expires: Fri, 03 Feb 2023 22:56:11 GMT
Date: Fri, 03 Feb 2023 18:48:09 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 6b20ab09bdee94b615d6fac70c587fe1
a9993f72a38f0c477b3d89c4956520b88db4cc61
82e37abea1bfe340439674e683154c0eeb7397d0460524e609508e52ac35ef1b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 18:48:09 GMT
Last-Modified: Fri, 03 Feb 2023 17:33:38 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HOBd0Y1odM5U2EXQ4XpuzRk7Dazu1QW7mdzh3mPRzLkWhT0Z8EfjuQ==
Age: 4471
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash acc6e0e956622e0edcd2ac459c12fe91
01ce4a761ffe6d45e2fbeee435681722824da8a1
21333a80669f45aee8b5b226202317f0857d8022f1f485ecc2692c380b69aad7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=127682
Date: Fri, 03 Feb 2023 18:48:09 GMT
Etag: "63dc94fb-1d7"
Expires: Sun, 05 Feb 2023 06:16:11 GMT
Last-Modified: Fri, 03 Feb 2023 05:00:43 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PL1tBDhmHd3TlXtdwjwtwlZ0SCONWRhL3HmGqFKypfk3ASJ2eA5cJA==
Age: 4528
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-K6DaRY5VwspIH3dDTuaRBEaovXxB5ZMFfC6xuA
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-K6DaRY5VwspIH3dDTuaRBEaovXxB5ZMFfC6xuA
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-K6DaRY5VwspIH3dDTuaRBEaovXxB5ZMFfC6xuA HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 18:48:09 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-K6DaRY5VwspIH3dDTuaRBEaovXxB5ZMFfC6xuA&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBOlW3WMCEH8i8sdyGRI5YO5Q9IM0yoQFEgEBAQGo3mPnYwAAAAAA_eMAAA&S=AQAAArRGrNBegIwymrAKko8VAFE; Expires=Sun, 4 Feb 2024 00:48:09 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash da3beb9cdc6505327a8aa019852b0553
31096ce2624631fbbabb0a9692beb6aaeb6f2a30
2d3d3e32082cf7785814aec2d4c33eb2b25530590c69ccfbc4e2247aca46c71c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4871
Cache-Control: max-age=144569
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:09 GMT
Etag: "63dcd59b-1d7"
Expires: Sun, 05 Feb 2023 10:57:38 GMT
Last-Modified: Fri, 03 Feb 2023 09:36:27 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-KLWP4I5VwspIH3dDTuaRBEaovXx9Os8tnONpcw
104.18.33.19302 Found 0 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-KLWP4I5VwspIH3dDTuaRBEaovXx9Os8tnONpcw
IP 104.18.33.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-KLWP4I5VwspIH3dDTuaRBEaovXx9Os8tnONpcw HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 18:48:09 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-KLWP4I5VwspIH3dDTuaRBEaovXx9Os8tnONpcw&C=1
cf-ray: 793d56d539f0b4f3-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y91W6eLdqhj7jZtoeh8rHwAA; Path=/; Domain=casalemedia.com; Expires=Sat, 03 Feb 2024 18:48:09 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=695; Path=/; Domain=casalemedia.com; Expires=Thu, 04 May 2023 18:48:09 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=695; Path=/; Domain=casalemedia.com; Expires=Thu, 04 May 2023 18:48:09 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UG50xie63%2Fkz2%2FCQPMhXEOHRgErjQ%2BZw2t8wJgWRjNmFrOkOXDrPKn9wm5x4XJFj3ppLjy59QUVKCxAulN4rV%2FaztGgsmKEcLuZeKwyW8fQrTXbgPvjuK3B7xH1MRS9rj62u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
id5-sync.com/s/966/9.gif?puid=k-WGgpvY5VwspIH3dDTuaRBEaovXw1oUG6tBL14A
162.19.138.120200 43 B URL HTTP/1.1 id5-sync.com/s/966/9.gif?puid=k-WGgpvY5VwspIH3dDTuaRBEaovXw1oUG6tBL14A
IP 162.19.138.120:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /s/966/9.gif?puid=k-WGgpvY5VwspIH3dDTuaRBEaovXw1oUG6tBL14A HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Fri, 03-Feb-2023 18:53:09 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Fri, 03-Feb-2023 18:53:09 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Fri, 03-Feb-2023 18:53:09 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Fri, 03-Feb-2023 18:53:09 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Fri, 03-Feb-2023 18:53:09 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Fri, 03-Feb-2023 18:53:09 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Fri, 03 Feb 2023 18:48:09 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
eb2.3lift.com/xuid?mid=2711&xuid=k-089u-o5VwspIH3dDTuaRBEaovXwlpJ5x1lnU3A&dongle=013b
13.248.245.213200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-089u-o5VwspIH3dDTuaRBEaovXwlpJ5x1lnU3A&dongle=013b
IP 13.248.245.213:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-089u-o5VwspIH3dDTuaRBEaovXwlpJ5x1lnU3A&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:09 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-Gl_F645VwspIH3dDTuaRBEaovXyY1g-VEqFGQw
35.157.147.59200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-Gl_F645VwspIH3dDTuaRBEaovXyY1g-VEqFGQw
IP 35.157.147.59:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-Gl_F645VwspIH3dDTuaRBEaovXyY1g-VEqFGQw HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:09 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
dpm.demdex.net/ibs:dpid=28645&dpuuid=
34.251.134.200302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP 34.251.134.200:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v045-06cd512cb.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=56149582505874727102688459444092225978; Max-Age=15552000; Expires=Wed, 02 Aug 2023 18:48:09 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: pwjw84c3Q60=
Content-Length: 0
Connection: keep-alive
ad.yieldlab.net/m?dt_id=8664&ext_id=k-AvIcN45VwspIH3dDTuaRBEaovXzsWifPOeFq2A
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-AvIcN45VwspIH3dDTuaRBEaovXzsWifPOeFq2A
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-AvIcN45VwspIH3dDTuaRBEaovXzsWifPOeFq2A HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Thu, 02 Feb 2023 18:48:09 GMT
Date: Fri, 03 Feb 2023 18:48:09 GMT
Connection: keep-alive
Set-Cookie: id=4637e3e9-5a7b-4e21-b4d7-2bf6c28bd339; Path=/; Domain=prod.svc.y6b.de; Expires=Sat, 03-Feb-2024 18:48:09 GMT; Max-Age=31536000; Secure; SameSite=None
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-9GqwRY5VwspIH3dDTuaRBEaovXyjNhWSzG55GQ
3.125.215.124204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-9GqwRY5VwspIH3dDTuaRBEaovXyjNhWSzG55GQ
IP 3.125.215.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-9GqwRY5VwspIH3dDTuaRBEaovXyjNhWSzG55GQ HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 18:48:09 GMT
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-K6DaRY5VwspIH3dDTuaRBEaovXxB5ZMFfC6xuA&verify=true
18.156.0.31204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-K6DaRY5VwspIH3dDTuaRBEaovXxB5ZMFfC6xuA&verify=true
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-K6DaRY5VwspIH3dDTuaRBEaovXxB5ZMFfC6xuA&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 18:48:09 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBOlW3WMCEMXUrpPWAqZc47U93hzj178FEgEBAQGo3mPnYwAAAAAA_eMAAA&S=AQAAAlsvCEuqIPAmHal9n8qROdA; Expires=Sun, 4 Feb 2024 00:48:09 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7a37d5f14346f4c2d32067a67ed9cbf2
9364052ccda00fe675fe8cc3f2f244161f2a2f69
c0f55cbfc7ce76856115b4557edefe0c45f2b2979ed89b39fd92d185fddb8682
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 18:48:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 13:56:49 GMT
Expires: Tue, 07 Feb 2023 13:56:48 GMT
Etag: "9364052ccda00fe675fe8cc3f2f244161f2a2f69"
Cache-Control: max-age=327518,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793d56d47ac80b31-OSL
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-dHAxPo5VwspIH3dDTuaRBEaovXweNmJRarJXiA
185.64.189.110200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-dHAxPo5VwspIH3dDTuaRBEaovXweNmJRarJXiA
IP 185.64.189.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-dHAxPo5VwspIH3dDTuaRBEaovXweNmJRarJXiA HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 18:48:08 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-dHAxPo5VwspIH3dDTuaRBEaovXweNmJRarJXiA&KRTB&23144-uid:k-dHAxPo5VwspIH3dDTuaRBEaovXweNmJRarJXiA&KRTB&23286-uid:k-dHAxPo5VwspIH3dDTuaRBEaovXweNmJRarJXiA&KRTB&23287-uid:k-dHAxPo5VwspIH3dDTuaRBEaovXweNmJRarJXiA; domain=pubmatic.com; secure; expires=Sun, 05-Mar-2023 18:48:08 GMT; path=/
PugT=1675450088; domain=pubmatic.com; secure; expires=Sun, 05-Mar-2023 18:48:08 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-KLWP4I5VwspIH3dDTuaRBEaovXx9Os8tnONpcw&C=1
104.18.33.19200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-KLWP4I5VwspIH3dDTuaRBEaovXx9Os8tnONpcw&C=1
IP 104.18.33.19:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-KLWP4I5VwspIH3dDTuaRBEaovXx9Os8tnONpcw&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:09 GMT
content-type: image/gif
content-length: 43
cf-ray: 793d56d59a88b4f3-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8TrAB%2B1LcqwncWXY8LnrEsIJQZfP%2BeAqqwMTBdwTbKktbVs%2BlbrA1OMmJk2sGqLsVXHCM6%2FMVMEstS60cBzNzGFQs4K0%2Bq6zS1k8moscjw2i%2BDrtRsx%2FA99DmTrcvz%2FFgjdt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 4291f36d87cbc582595b9f77ee3337b0
1bf5e33732b50bff90b3bf409ecf9f899ddeded9
28cd633dac85b939099cef2cb984ae989481e805b1b2d9394060ae212c1ce364
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5261
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:09 GMT
Last-Modified: Fri, 03 Feb 2023 17:20:28 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 278
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
34.251.134.200200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP 34.251.134.200:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v045-0327f6936.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: iUVxm6LORFc=
Content-Length: 59
Connection: keep-alive
gum.criteo.com/syncframe?topUrl=www.juretro.com&origin=onetag
178.250.0.157200 OK 5.1 kB URL HTTP/2 gum.criteo.com/syncframe?topUrl=www.juretro.com&origin=onetag
IP 178.250.0.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash b977449a61219e69fec2b30d5aca94b0
097ccde1a488e894120ba3bd2262e81bc28d1db8
44b350f993cd08cc43dd809981647d5c4734de81a0fb0c4931e867bdfe97682b
GET /syncframe?topUrl=www.juretro.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:08 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
uid=1769e911-d474-412b-9748-925f3d2ae496; expires=Wed, 28 Feb 2024 18:48:08 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 533118
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sync.outbrain.com/cookie-sync?p=criteo&uid=k-ucNjxY5VwspIH3dDTuaRBEaovXxFwuAbOtNDPw
64.202.112.223200 OK 408 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-ucNjxY5VwspIH3dDTuaRBEaovXxFwuAbOtNDPw
IP 64.202.112.223:0
File type JSON data\012- , ASCII text, with very long lines (408), with no line terminators
Hash f5e8ba17a27272e9373f1b72d96a956e
f7f9eef52c2d795b1f188c893d382c87a6c50a50
3ee607d4860d05c6743a989864d280191837110eae9aa4a362a6bb242f0d2294
GET /cookie-sync?p=criteo&uid=k-ucNjxY5VwspIH3dDTuaRBEaovXxFwuAbOtNDPw HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 18:48:09 GMT
Content-Type: application/json
Content-Length: 408
Cache-Control: no-cache
X-TraceId: f9a226fc2c5364919bc1055981600c81
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
178.250.0.157302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 03 Feb 2023 18:48:09 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 814354
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 82362ba59cdeacf9f11dae5d7c687803
39811b931d9d9e1f0c1fd97032c92acf103fa633
8db1e4ba4cdc6b308111a9f180387bf38584c15b6d42157c0514da7ba57b40ae
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 03 Feb 2023 18:48:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 02 Feb 2023 21:30:43 GMT
Expires: Fri, 03 Feb 2023 21:30:43 GMT
ETag: "39811b931d9d9e1f0c1fd97032c92acf103fa633"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-DOI6fY5VwspIH3dDTuaRBEaovXx6WS7Foq0Blg&expires=30
3.64.156.82200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-DOI6fY5VwspIH3dDTuaRBEaovXx6WS7Foq0Blg&expires=30
IP 3.64.156.82:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-DOI6fY5VwspIH3dDTuaRBEaovXx6WS7Foq0Blg&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:09 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash c53cf3cbd09b706d09e3a667acfa5dc3
ff16de5562bc9f457985bcaeabdf836976186beb
18bf4d3715dc89fd8a1447c8902e38af15f8318a9a15d775257651bed074dacb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=148727
Date: Fri, 03 Feb 2023 18:48:09 GMT
Etag: "63dcf782-1d7"
Expires: Sun, 05 Feb 2023 12:06:56 GMT
Last-Modified: Fri, 03 Feb 2023 12:01:06 GMT
Server: ECS (bsa/EB13)
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ftnjlThhcKiIc7GqjZoo7qSt7zjaJlTSSyi2SQ80skOVUMYiVed3Sw==
Age: 351
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 8b2f632e5e27c54148b9856d2091c940
8e4d26ae2e955bec5030f1dc7e0b704f433ee0d2
7f59f3e6f5ab3186a919e3fe79edc5115c33aabc1720480a4f69ddcd2730887b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=171706
Date: Fri, 03 Feb 2023 18:48:09 GMT
Etag: "63dd40ae-1d7"
Expires: Sun, 05 Feb 2023 18:29:55 GMT
Last-Modified: Fri, 03 Feb 2023 17:13:18 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ugbyfk7FQ_cGkJOBvt8cBs7jCoegSxpEQu7eIaIUpAinVpUA0z9FFg==
Age: 4597
e1.emxdgt.com/put?d=d53&uid=k-6IRClo5VwspIH3dDTuaRBEaovXwD9AoDydrkbyQsdM5i2RLD
18.158.8.202204 No Content 0 B URL HTTP/2 e1.emxdgt.com/put?d=d53&uid=k-6IRClo5VwspIH3dDTuaRBEaovXwD9AoDydrkbyQsdM5i2RLD
IP 18.158.8.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /put?d=d53&uid=k-6IRClo5VwspIH3dDTuaRBEaovXwD9AoDydrkbyQsdM5i2RLD HTTP/1.1
Host: e1.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html
date: Fri, 03 Feb 2023 18:48:08 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4a7a8b974724310f7ae84caf23caa1cb
05ed54af50a0ae5b18294590b56b3de980e73c08
cf947c42522a4406ba62cad6e23967316f25179ed52caa141e731fab3a61a8f1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 18:48:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 03:11:55 GMT
Expires: Wed, 08 Feb 2023 03:11:54 GMT
Etag: "05ed54af50a0ae5b18294590b56b3de980e73c08"
Cache-Control: max-age=375224,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793d56d55a21b4f3-OSL
sync-criteo.ads.yieldmo.com/sync?id=k-4aLT245VwspIH3dDTuaRBEaovXyB2g6gFhsfYg&pn_id=criteo&ext=1
63.35.101.179200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-4aLT245VwspIH3dDTuaRBEaovXyB2g6gFhsfYg&pn_id=criteo&ext=1
IP 63.35.101.179:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-4aLT245VwspIH3dDTuaRBEaovXyB2g6gFhsfYg&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:09 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=gc0071767442f8508b4c%7C1675450089997%7C0%7C; Domain=.yieldmo.com; Expires=Sat, 03-Feb-2024 18:48:09 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-4aLT245VwspIH3dDTuaRBEaovXyB2g6gFhsfYg; Domain=ads.yieldmo.com; Expires=Sat, 03-Feb-2024 18:48:09 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-2c9lvY5VwspIH3dDTuaRBEaovXxNmAT8NG6ExA
185.255.84.153200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-2c9lvY5VwspIH3dDTuaRBEaovXxNmAT8NG6ExA
IP 185.255.84.153:0
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-2c9lvY5VwspIH3dDTuaRBEaovXxNmAT8NG6ExA HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=06596ea2cddba5964c803679e6ea79d1; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Fri, 03 Feb 2023 18:48:09 GMT
content-length: 49
x-envoy-upstream-service-time: 5
server: ayl-lb-fra02
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2e35ae35443324fda5de73cecb2d07b6
abd0e4de87491215c875edc8c56b2b25b5c35267
7b59280a23f39564b98beebbfd2508b30a57d59cd8b53940d80a087a3cbba374
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6079
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:10 GMT
Last-Modified: Fri, 03 Feb 2023 17:06:51 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
46.137.154.53204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP 46.137.154.53:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 18:48:10 GMT
set-cookie: _kuid_=PW6MRLp8; Expires=Wed, 02-Aug-23 18:48:10 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n008-dub-prod.krxd.net
x-request-time: D=31 t=1675450090
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
178.250.0.157302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 03 Feb 2023 18:48:09 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 309213
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 85f536ce6dbb9697147ce51b2db46436
9e686afb2256514fc5a4e40aa749bc301fcb9760
ce4e3772db4696d9daf098ab330c6c7b3f1e7f841d8d5ff546624608789b2d62
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3416
Cache-Control: max-age=159311
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 18:48:10 GMT
Etag: "63dd14e1-1d7"
Expires: Sun, 05 Feb 2023 15:03:21 GMT
Last-Modified: Fri, 03 Feb 2023 14:06:25 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
cdn0.forter.com/2e3b618057a1/b177d8f8d6ce4f40bc977af5194c7ed8/prop.json?_=1675450122015
54.243.108.33200 OK 20 B URL HTTP/1.1 cdn0.forter.com/2e3b618057a1/b177d8f8d6ce4f40bc977af5194c7ed8/prop.json?_=1675450122015
IP 54.243.108.33:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5820854f62a6eb3d38ba7ba0d1b3ea75
639df0b84fe699b4a290a713fd6b9a94bd4deb95
912d0c07da7bdb22cdae025b96da26d01523aaab7362edb28544e3949deb369d
GET /2e3b618057a1/b177d8f8d6ce4f40bc977af5194c7ed8/prop.json?_=1675450122015 HTTP/1.1
Host: cdn0.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: https://www.juretro.com
Vary: Origin
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cache-Control: no-cache
Expires: -1
Pragma: no-cache
Content-Type: application/json
Connection: keep-alive
Date: Fri, 03 Feb 2023 18:48:10 GMT
Transfer-Encoding: chunked
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash f73ac116290b21c837960206464864cf
32b15a96517199406c5624785bb8a43381256436
9d8bac4342219cca98d42e61071c3c614e7670d8f08d11b05d9e80c1454f24df
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "9D8BAC4342219CCA98D42E61071C3C614E7670D8F08D11B05D9E80C1454F24DF"
Last-Modified: Fri, 03 Feb 2023 08:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3126
Expires: Fri, 03 Feb 2023 19:40:16 GMT
Date: Fri, 03 Feb 2023 18:48:10 GMT
Connection: keep-alive
criteo-partners.tremorhub.com/sync?UICR=k-ogkioo5VwspIH3dDTuaRBEaovXy_rcfs-o54qQ
52.3.101.55200 OK 78 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-ogkioo5VwspIH3dDTuaRBEaovXy_rcfs-o54qQ
IP 52.3.101.55:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 0bb3d20bb12adc08814abfdc9efc1869
962039116ab1c6b138cad242bc145f13e7d44623
dd17af018ebe8643ee49386f655b135de3d76ff7e45ae46dfe264280b1654970
GET /sync?UICR=k-ogkioo5VwspIH3dDTuaRBEaovXy_rcfs-o54qQ HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:10 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
cdn0.forter.com/2e3b618057a1/b177d8f8d6ce4f40bc977af5194c7ed8/prop.json?_=1675450122562
54.243.108.33200 OK 20 B URL HTTP/1.1 cdn0.forter.com/2e3b618057a1/b177d8f8d6ce4f40bc977af5194c7ed8/prop.json?_=1675450122562
IP 54.243.108.33:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5820854f62a6eb3d38ba7ba0d1b3ea75
639df0b84fe699b4a290a713fd6b9a94bd4deb95
912d0c07da7bdb22cdae025b96da26d01523aaab7362edb28544e3949deb369d
GET /2e3b618057a1/b177d8f8d6ce4f40bc977af5194c7ed8/prop.json?_=1675450122562 HTTP/1.1
Host: cdn0.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: https://www.juretro.com
Vary: Origin
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cache-Control: no-cache
Expires: -1
Pragma: no-cache
Content-Type: application/json
Connection: keep-alive
Date: Fri, 03 Feb 2023 18:48:10 GMT
Transfer-Encoding: chunked
cdn0.forter.com/2e3b618057a1/b177d8f8d6ce4f40bc977af5194c7ed8/prop.json?_=1675450122802
54.243.108.33200 OK 20 B URL HTTP/1.1 cdn0.forter.com/2e3b618057a1/b177d8f8d6ce4f40bc977af5194c7ed8/prop.json?_=1675450122802
IP 54.243.108.33:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5820854f62a6eb3d38ba7ba0d1b3ea75
639df0b84fe699b4a290a713fd6b9a94bd4deb95
912d0c07da7bdb22cdae025b96da26d01523aaab7362edb28544e3949deb369d
GET /2e3b618057a1/b177d8f8d6ce4f40bc977af5194c7ed8/prop.json?_=1675450122802 HTTP/1.1
Host: cdn0.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: https://www.juretro.com
Vary: Origin
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cache-Control: no-cache
Expires: -1
Pragma: no-cache
Content-Type: application/json
Connection: keep-alive
Date: Fri, 03 Feb 2023 18:48:10 GMT
Transfer-Encoding: chunked
cdn0.forter.com/2e3b618057a1/b177d8f8d6ce4f40bc977af5194c7ed8/wpt.json
54.243.108.33204 No Content 0 B URL HTTP/1.1 cdn0.forter.com/2e3b618057a1/b177d8f8d6ce4f40bc977af5194c7ed8/wpt.json
IP 54.243.108.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /2e3b618057a1/b177d8f8d6ce4f40bc977af5194c7ed8/wpt.json HTTP/1.1
Host: cdn0.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.juretro.com/
Origin: https://www.juretro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Vary: Access-Control-Request-Headers
Access-Control-Allow-Headers: content-type
Content-Length: 0
Date: Fri, 03 Feb 2023 18:48:11 GMT
Connection: keep-alive
cdn0.forter.com/2e3b618057a1/b177d8f8d6ce4f40bc977af5194c7ed8/wpt.json
54.243.108.33200 OK 20 B URL HTTP/1.1 cdn0.forter.com/2e3b618057a1/b177d8f8d6ce4f40bc977af5194c7ed8/wpt.json
IP 54.243.108.33:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5820854f62a6eb3d38ba7ba0d1b3ea75
639df0b84fe699b4a290a713fd6b9a94bd4deb95
912d0c07da7bdb22cdae025b96da26d01523aaab7362edb28544e3949deb369d
POST /2e3b618057a1/b177d8f8d6ce4f40bc977af5194c7ed8/wpt.json HTTP/1.1
Host: cdn0.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 29
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: https://www.juretro.com
Vary: Origin
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
Expires: -1
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Content-Length: 20
ETag: W/"14-Y53wuE/mmbSikKcT/WualL1N65U"
Date: Fri, 03 Feb 2023 18:48:11 GMT
Connection: keep-alive
sources.aopcdn.com/cloud/common/forter-2713a96ac9.js
104.18.188.11200 OK 0 B URL HTTP/2 sources.aopcdn.com/cloud/common/forter-2713a96ac9.js
IP 104.18.188.11:0
GET /cloud/common/forter-2713a96ac9.js HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:06 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3936
content-md5: pk3iTA/nf3FlZ/EnE6lqyQ==
last-modified: Wed, 20 Oct 2021 07:24:00 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 14080981734720421440
x-oss-object-type: Normal
x-oss-request-id: 621883FB9979C73930D0DB42
x-oss-server-time: 49
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 1545319
expires: Mon, 06 Mar 2023 18:48:06 GMT
cache-control: public, max-age=2678400
server: cloudflare
cf-ray: 793d56c09efb0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
wzstatic.streamoptim.com/stream/streamUidIframe.html
54.230.111.10200 OK 0 B URL HTTP/2 wzstatic.streamoptim.com/stream/streamUidIframe.html
IP 54.230.111.10:0
GET /stream/streamUidIframe.html HTTP/1.1
Host: wzstatic.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
server: AliyunOSS
x-oss-request-id: 63D9ED5276EC4B3930FA6BB3
last-modified: Wed, 16 Mar 2022 02:35:46 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9570096327103776374
x-oss-storage-class: Standard
content-md5: YOVJYeMCSH0akyM8BK4kiA==
x-oss-server-time: 52
content-encoding: gzip
date: Fri, 03 Feb 2023 04:41:19 GMT
etag: "60E54961E302487D1A93233C04AE2488"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Xmgn-RRoGqMIh74hglmFtyJO0dRgf68A3Cvr_i-iP58_Wgm2oduXVQ==
age: 50833
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
178.250.6.155200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 178.250.6.155:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:08 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 57778
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-bQl0tI5VwspIH3dDTuaRBEaovXxBDL4nYxPvGkCXGRrk7Nxw
54.93.70.97200 OK 0 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-bQl0tI5VwspIH3dDTuaRBEaovXxBDL4nYxPvGkCXGRrk7Nxw
IP 54.93.70.97:0
GET /usersync/push?partner=criteo&partnerId=k-bQl0tI5VwspIH3dDTuaRBEaovXxBDL4nYxPvGkCXGRrk7Nxw HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:09 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%224dc09300-a3f3-11ed-863c-a155dc8612a5%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Fri, 17 Feb 2023 18:48:09 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%224dc09300-a3f3-11ed-863c-a155dc8612a5%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Fri, 17 Feb 2023 18:48:09 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%224dc09300-a3f3-11ed-863c-a155dc8612a5%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Fri, 17 Feb 2023 18:48:09 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%224dc09300-a3f3-11ed-863c-a155dc8612a5%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Fri, 17 Feb 2023 18:48:09 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-bQl0tI5VwspIH3dDTuaRBEaovXxBDL4nYxPvGkCXGRrk7Nxw%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Fri, 17 Feb 2023 18:48:09 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-ViipzY5VwspIH3dDTuaRBEaovXxqPiMWH7hw1g
141.226.228.48200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-ViipzY5VwspIH3dDTuaRBEaovXxqPiMWH7hw1g
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-ViipzY5VwspIH3dDTuaRBEaovXxqPiMWH7hw1g HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 18:48:09 GMT
x-fastly-to-nlb-rtt: 24393
access-control-allow-credentials: true
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
178.250.0.163200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP 178.250.0.163:0
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:09 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 362715
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
wzstatic.streamoptim.com/stream/style/fonts-style.css
54.230.111.10200 OK 0 B URL HTTP/2 wzstatic.streamoptim.com/stream/style/fonts-style.css
IP 54.230.111.10:0
GET /stream/style/fonts-style.css HTTP/1.1
Host: wzstatic.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: AliyunOSS
x-oss-request-id: 63DB5460719F773139411A66
last-modified: Thu, 24 Jun 2021 03:21:47 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 4707530008504402095
x-oss-storage-class: Standard
content-md5: 9h/+Bs66X1XZqOeOfipmdQ==
x-oss-server-time: 1
content-encoding: gzip
date: Fri, 03 Feb 2023 06:13:13 GMT
etag: "F61FFE06CEBA5F55D9A8E78E7E2A6675"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2A3k3mvYfdKa0hMAxaJ43PDY48K4RbYTAmEc0EKpkCWZe_js3iwWtQ==
age: 45318
X-Firefox-Spdy: h2
sources.aopcdn.com/cloud/opShop/pc/css/vendor-0c8e7ad1a3.css
104.18.188.11200 OK 0 B URL HTTP/2 sources.aopcdn.com/cloud/opShop/pc/css/vendor-0c8e7ad1a3.css
IP 104.18.188.11:0
GET /cloud/opShop/pc/css/vendor-0c8e7ad1a3.css HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:06 GMT
content-type: text/css
cache-control: public, max-age=2678400
cf-bgj: minify
cf-polished: origSize=423112
content-md5: VPqDbTNRldU8La1RyC+Lzw==
last-modified: Fri, 06 Jan 2023 06:25:00 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 1024714085614593747
x-oss-object-type: Normal
x-oss-request-id: 63BF95039979C73230353232
x-oss-server-time: 44
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 1434427
expires: Mon, 06 Mar 2023 18:48:06 GMT
server: cloudflare
cf-ray: 793d56c09f030b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.207200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.207:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:08 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 76962
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sources.aopcdn.com/cloud/common/i7eo-e584e8f58f.css
104.18.188.11200 OK 0 B URL HTTP/2 sources.aopcdn.com/cloud/common/i7eo-e584e8f58f.css
IP 104.18.188.11:0
GET /cloud/common/i7eo-e584e8f58f.css HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:06 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=7062
content-md5: 5YTo9Y/FlMR4LsqNO0LW9w==
last-modified: Fri, 12 Mar 2021 08:16:28 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 16128361567144840044
x-oss-object-type: Normal
x-oss-request-id: 60519D1612A71A31317823C7
x-oss-server-time: 28
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 651992
expires: Mon, 06 Mar 2023 18:48:06 GMT
cache-control: public, max-age=2678400
server: cloudflare
cf-ray: 793d56c0af100b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sources.aopcdn.com/cloud/opShop/script/vendor-4d83fc9c1d.js
104.18.188.11200 OK 0 B URL HTTP/2 sources.aopcdn.com/cloud/opShop/script/vendor-4d83fc9c1d.js
IP 104.18.188.11:0
GET /cloud/opShop/script/vendor-4d83fc9c1d.js HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:06 GMT
content-type: application/javascript
cache-control: public, max-age=2678400
cf-bgj: minify
cf-polished: origSize=732487
content-md5: TYP8nB3PwQ9erkL9mZCgCw==
last-modified: Tue, 13 Dec 2022 05:53:02 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 1552834857035757423
x-oss-object-type: Normal
x-oss-request-id: 63AEC14FF488A53539568FBE
x-oss-server-time: 2
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 1973708
expires: Mon, 06 Mar 2023 18:48:06 GMT
server: cloudflare
cf-ray: 793d56c09ef40b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
wzstatic1.streamoptim.com/log.js
54.230.111.77200 OK 0 B URL HTTP/2 wzstatic1.streamoptim.com/log.js
IP 54.230.111.77:0
GET /log.js HTTP/1.1
Host: wzstatic1.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Fri, 03 Feb 2023 06:56:58 GMT
last-modified: Mon, 25 Jul 2022 03:48:50 GMT
service-worker-allowed: /
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5zMaHgRaU8j9vjTlelgrJWG1GvB4qvIwHpmsF89DkvNsupMxH2bD0w==
age: 42669
X-Firefox-Spdy: h2
2e3b618057a1.cdn4.forter.com/sn/2e3b618057a1/script.js
143.204.55.87200 OK 0 B URL HTTP/2 2e3b618057a1.cdn4.forter.com/sn/2e3b618057a1/script.js
IP 143.204.55.87:0
GET /sn/2e3b618057a1/script.js HTTP/1.1
Host: 2e3b618057a1.cdn4.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 26 Jan 2023 08:13:56 GMT
strict-transport-security: max-age=86400; includeSubDomains
access-control-allow-origin: *
timing-allow-origin: *
last-modified: Thu, 26 Jan 2023 08:13:56 GMT
expires: Thu, 26 Jan 2023 08:18:56 GMT
cache-control: private, max-age=300
x-sourcemap: https://cdn4.forter.com/map/suid/2e3b618057a1/54012080142
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mgVuXnqCo7sdKrHman3lo_vnelPEe4hqohN9ZYxMO1LeGeruNnogJQ==
age: 729251
X-Firefox-Spdy: h2
www.juretro.com/collections/outerwear-50077/?utm_campaign=20230203&utm_medium=mkt&utm_source=EDM
104.17.227.33200 OK 0 B URL HTTP/2 www.juretro.com/collections/outerwear-50077/?utm_campaign=20230203&utm_medium=mkt&utm_source=EDM
IP 104.17.227.33:0
GET /collections/outerwear-50077/?utm_campaign=20230203&utm_medium=mkt&utm_source=EDM HTTP/1.1
Host: www.juretro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:06 GMT
content-type: text/html;charset=UTF-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-max-age: 259200
access-control-allow-headers: X-Requested-With,X_Requested_With,Content-Type
x-server-ip: 172.20.103.197
x-request-id: f1cd5fc359bf4ec0b98d26c734bc8d46
cache-control: no-cache
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-site-id: 1454
content-language: en
set-cookie: locale=en; Path=/
ccy=USD; Path=/
_opbd=EDM|mkt|20230203|||||a30808cd896b1e9082fb3fdc6cd15bde; Expires=Sun, 05-Mar-2023 18:48:06 GMT; Path=/
_opu=op_719fc27b8e79b08d_186189b72f2_2ae4; Expires=Sat, 03-Feb-2024 18:48:06 GMT; Path=/
_opud=op_620e0f2aa8543802_186189b72f2_b32c; Expires=Sat, 04-Feb-2023 18:48:06 GMT; Path=/
_odevice=892481604; Expires=Sat, 03-Feb-2024 18:48:06 GMT; Path=/
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793d56bdaeb31bfe-OSL
content-encoding: br
X-Firefox-Spdy: h2
sources.aopcdn.com/cloud/common/Components/op-analytics-af90185244.js
104.18.188.11200 OK 0 B URL HTTP/2 sources.aopcdn.com/cloud/common/Components/op-analytics-af90185244.js
IP 104.18.188.11:0
GET /cloud/common/Components/op-analytics-af90185244.js HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:06 GMT
content-type: application/javascript
cache-control: public, max-age=2678400
cf-bgj: minify
content-md5: r5AYUkS9FhV7rh4CLK8yiA==
last-modified: Wed, 01 Feb 2023 09:26:43 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 5818849719663490396
x-oss-object-type: Normal
x-oss-request-id: 63DB97BC76EC4B323907E07A
x-oss-server-time: 3
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 113947
expires: Mon, 06 Mar 2023 18:48:06 GMT
server: cloudflare
cf-ray: 793d56c09ef90b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sources.aopcdn.com/cloud/opShop/pc/css/login-1d6366dfd2.css
104.18.188.11200 OK 0 B URL HTTP/2 sources.aopcdn.com/cloud/opShop/pc/css/login-1d6366dfd2.css
IP 104.18.188.11:0
GET /cloud/opShop/pc/css/login-1d6366dfd2.css HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:06 GMT
content-type: text/css
cache-control: public, max-age=2678400
cf-bgj: minify
cf-polished: origSize=1350
content-md5: HWNm39J4ijoFrJm04YDs7g==
last-modified: Fri, 13 Jan 2023 03:44:54 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 11006456508115807779
x-oss-object-type: Normal
x-oss-request-id: 63C112CE9EAA1A343478C739
x-oss-server-time: 28
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 1534287
expires: Mon, 06 Mar 2023 18:48:06 GMT
server: cloudflare
cf-ray: 793d56c09ef70b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn9.forter.com/vchk2
143.204.55.68301 Moved Permanently 0 B IP 143.204.55.68:0
GET /vchk2 HTTP/1.1
Host: cdn9.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: eyJyIjowLjE4NzY2NzQzMDg3MjE2OTg2LCJ1IjoiYjE3N2Q4ZjhkNmNlNGY0MGJjOTc3YWY1MTk0YzdlZDgiLCJzIjoiMmUzYjYxODA1N2ExIn0=
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: https://cdn9.forter.com/vchk2/v1/2cbe5d9c68427a736922e14f18f802bfa2e0970c29d91060b9ef650cb891961cac7f4bc9661352e7d9f84edca475
date: Fri, 03 Feb 2023 18:48:07 GMT
access-control-allow-origin: *
timing-allow-origin: *
cache-control: private, s-maxage=0, proxy-revalidate
strict-transport-security: max-age=86400; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gyRwQtTptYp4Z31WywJ7-7bKB8IWYj_Yt-Xq0Iq4oqdaNA6UCtHKdA==
X-Firefox-Spdy: h2
sources.aopcdn.com/cloud/opShop/script/user-core-b640671d09.js
104.18.188.11200 OK 0 B URL HTTP/2 sources.aopcdn.com/cloud/opShop/script/user-core-b640671d09.js
IP 104.18.188.11:0
GET /cloud/opShop/script/user-core-b640671d09.js HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:06 GMT
content-type: application/javascript
cache-control: public, max-age=2678400
cf-bgj: minify
content-md5: tkBnHQmnqdlWlenXU5ghIQ==
last-modified: Mon, 16 Jan 2023 06:55:55 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 18132986310976553868
x-oss-object-type: Normal
x-oss-request-id: 63C743629979C738336564D2
x-oss-server-time: 39
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 1434426
expires: Mon, 06 Mar 2023 18:48:06 GMT
server: cloudflare
cf-ray: 793d56c09ef60b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
exit.streamoptim.com/notify/capture-config?shop=www.juretro.com&domain=www.juretro.com
47.251.41.24200 OK 0 B URL HTTP/2 exit.streamoptim.com/notify/capture-config?shop=www.juretro.com&domain=www.juretro.com
IP 47.251.41.24:0
ASN #45102 Alibaba US Technology Co., Ltd.
GET /notify/capture-config?shop=www.juretro.com&domain=www.juretro.com HTTP/1.1
Host: exit.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:07 GMT
content-type: application/json; charset=UTF-8
x-powered-by: PHP/7.3.3
access-control-allow-origin: https://www.juretro.com
access-control-allow-credentials: true
access-control-expose-headers: X-Redirect
X-Firefox-Spdy: h2
sl.streamoptim.com/log/report?p=%7B%22uuid%22%3A%22%22%2C%22ukey%22%3A%2266f10deqx493%22%2C%22rand%22%3A1675450119276%2C%22browser_time%22%3A%222023-02-03%2018%3A48%3A39%22%2C%22timezone%22%3A0%2C%22language%22%3A%22en%22%2C%22stream_msg_num%22%3A%22%22%2C%22is_sub%22%3A%22%22%2C%22from_stream_lp%22%3Afalse%2C%22event%22%3A%22visit%22%2C%22option%22%3A%7B%22url%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22visit_type%22%3A%22page-landing%22%7D%7D
198.11.178.42200 OK 0 B URL HTTP/2 sl.streamoptim.com/log/report?p=%7B%22uuid%22%3A%22%22%2C%22ukey%22%3A%2266f10deqx493%22%2C%22rand%22%3A1675450119276%2C%22browser_time%22%3A%222023-02-03%2018%3A48%3A39%22%2C%22timezone%22%3A0%2C%22language%22%3A%22en%22%2C%22stream_msg_num%22%3A%22%22%2C%22is_sub%22%3A%22%22%2C%22from_stream_lp%22%3Afalse%2C%22event%22%3A%22visit%22%2C%22option%22%3A%7B%22url%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22visit_type%22%3A%22page-landing%22%7D%7D
IP 198.11.178.42:0
ASN #45102 Alibaba US Technology Co., Ltd.
GET /log/report?p=%7B%22uuid%22%3A%22%22%2C%22ukey%22%3A%2266f10deqx493%22%2C%22rand%22%3A1675450119276%2C%22browser_time%22%3A%222023-02-03%2018%3A48%3A39%22%2C%22timezone%22%3A0%2C%22language%22%3A%22en%22%2C%22stream_msg_num%22%3A%22%22%2C%22is_sub%22%3A%22%22%2C%22from_stream_lp%22%3Afalse%2C%22event%22%3A%22visit%22%2C%22option%22%3A%7B%22url%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fcollections%2Fouterwear-50077%2F%3Futm_campaign%3D20230203%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22visit_type%22%3A%22page-landing%22%7D%7D HTTP/1.1
Host: sl.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 18:48:07 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.3.3
access-control-allow-origin: https://www.juretro.com
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2