r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3817
Expires: Sun, 05 Feb 2023 18:00:53 GMT
Date: Sun, 05 Feb 2023 16:57:16 GMT
Connection: keep-alive
links.letter.juretro.com/c/sUu/bhq/ePGT294zbhKUmrhValBau3/F/jYk/F/2e3aa18b
91.199.51.171302 Found 223 B URL HTTP/1.1 links.letter.juretro.com/c/sUu/bhq/ePGT294zbhKUmrhValBau3/F/jYk/F/2e3aa18b
IP 91.199.51.171:0
ASN #47544 IQ PL Sp. z o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 94d60f5462a576159de85617033e7808
6c6e4a7240aa6d53c3d4491fbeb10dea01bb4deb
8fe9ab516ee2589fdbcafabb7be61e365248f596a098c6cfd27a2f7be2ca2a95
GET /c/sUu/bhq/ePGT294zbhKUmrhValBau3/F/jYk/F/2e3aa18b HTTP/1.1
Host: links.letter.juretro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://www.juretro.com/hotsale/?locale=de&utm_campaign=20230205&utm_medium=mkt&utm_source=EDM
Set-Cookie: TEMP_DATA=406e5b4b-1bb6-404a-a278-6eb7e1f36731; path=/
esg1=sUu/bhq/ePGT294zbhKUmrhValBau3/F/jYk/F/5ba4a6f4; path=/
Date: Sun, 05 Feb 2023 16:57:15 GMT
Content-Length: 223
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12314
Expires: Sun, 05 Feb 2023 20:22:30 GMT
Date: Sun, 05 Feb 2023 16:57:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19995
Expires: Sun, 05 Feb 2023 22:30:31 GMT
Date: Sun, 05 Feb 2023 16:57:16 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 16:33:56 GMT
content-type: application/json
age: 1400
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: wuq3JNoU0fBiAGm5G42o1n4mx7fm/KjLtM0tMS3XWUk9Fp4qp0o7O3f0Zmza/Arpti/bHlujuqOCR3Lf7dtj+Q==
x-amz-request-id: EY20N1MQQS1SE36Q
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 16:24:32 GMT
age: 1964
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 16:57:16 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4e21206538def5aa711a2407387f8dd4
6aa8192d5dd2a535eb80d34791a78710b001779e
4021077e95d308b411506e8fc9154708dc2a8786a8342d63b53f201ae5c7e21d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:16 GMT
Server: ECS (amb/6B8F)
Content-Length: 279
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 16:49:07 GMT
age: 489
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5379
Expires: Sun, 05 Feb 2023 18:26:55 GMT
Date: Sun, 05 Feb 2023 16:57:16 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 943360c68293c47a55f4b765de5bba40
5b924fb16299eeb308b13c745ccaaf56a120e7d2
88ec2f6d8f681ef2c4fc822ff7910d2d00bf425833782ee17c5d1c630cc0f3e3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2747
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:17 GMT
Last-Modified: Sun, 05 Feb 2023 16:11:30 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-141228038-1
142.250.74.40200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-141228038-1
IP 142.250.74.40:0
File type ASCII text, with very long lines (1759)
Hash e65d03976492fe0e78a17ec861fcc1fa
c46a1cd385ddc121ec0ec9dc394f4ec4b46524da
caff828268e2681d77168690e441c575a9b5eb3f468bf53dbef4e7f5bf65a209
GET /gtag/js?id=UA-141228038-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 05 Feb 2023 16:57:17 GMT
expires: Sun, 05 Feb 2023 16:57:17 GMT
cache-control: private, max-age=900
last-modified: Sun, 05 Feb 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43915
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 23f0399bb579d408142a16ac2db6aa71
f8e392a0fe9d6e78ee3ff6c6315422c8ecf24ae1
0e28721ebcbde3227f73bb0b216368892541bc982dec0493951c2abec17ca22e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4722
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:17 GMT
Etag: "63df920e-1d7"
Last-Modified: Sun, 05 Feb 2023 15:38:35 GMT
Server: ECS (amb/6B8F)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 23f0399bb579d408142a16ac2db6aa71
f8e392a0fe9d6e78ee3ff6c6315422c8ecf24ae1
0e28721ebcbde3227f73bb0b216368892541bc982dec0493951c2abec17ca22e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4722
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:17 GMT
Last-Modified: Sun, 05 Feb 2023 15:38:35 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 23f0399bb579d408142a16ac2db6aa71
f8e392a0fe9d6e78ee3ff6c6315422c8ecf24ae1
0e28721ebcbde3227f73bb0b216368892541bc982dec0493951c2abec17ca22e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6388
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:17 GMT
Etag: "63de408e-1d7"
Last-Modified: Sun, 05 Feb 2023 15:10:49 GMT
Server: ECS (amb/6B85)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.187.106.193101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.106.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: T9V1z204M4G39DvHA4hv1A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AJtmM4wRnxCupr5SHyKYu3Ewa1U=
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 23f0399bb579d408142a16ac2db6aa71
f8e392a0fe9d6e78ee3ff6c6315422c8ecf24ae1
0e28721ebcbde3227f73bb0b216368892541bc982dec0493951c2abec17ca22e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4493
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:17 GMT
Etag: "63df920e-1d7"
Last-Modified: Sun, 05 Feb 2023 15:42:24 GMT
Server: ECS (amb/6B77)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 08f413d9495301a18dcad1f0dbf03952
3a5f9dfb9ae6892aab934554cf811e176168dbe2
0804eb4b86e37241393f4610bbd36ca15934bd08bf8bf12754df88f57fa79a9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.onesignal.com/sdks/OneSignalSDK.js
104.18.226.52200 OK 3.3 kB URL HTTP/2 cdn.onesignal.com/sdks/OneSignalSDK.js
IP 104.18.226.52:0
File type ASCII text, with very long lines (9097)
Hash 29d9eb00a36425db5784b3a0284c3e26
5940636f6d589ba67f08074d98096f4aeb6be13d
57ac326800a9db8c61013e07072ca1a7ea504a6ba58d410ada1f11a2add58fca
GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:17 GMT
content-type: application/javascript
etag: W/"ae63ef8ff03da61fffaa7f165729897a"
access-control-allow-headers: OneSignal-Subscription-Id
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 2446
expires: Wed, 08 Feb 2023 16:57:17 GMT
cache-control: public, max-age=259200
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 794d2f297d241c02-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 943360c68293c47a55f4b765de5bba40
5b924fb16299eeb308b13c745ccaaf56a120e7d2
88ec2f6d8f681ef2c4fc822ff7910d2d00bf425833782ee17c5d1c630cc0f3e3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1073
Cache-Control: max-age=141351
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:17 GMT
Etag: "63df60e3-116"
Expires: Tue, 07 Feb 2023 08:13:08 GMT
Last-Modified: Sun, 05 Feb 2023 07:55:15 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 278
sources.aopcdn.com/cloud/common/Components/op-analytics-af90185244.js
104.16.89.83200 OK 2.4 kB URL HTTP/2 sources.aopcdn.com/cloud/common/Components/op-analytics-af90185244.js
IP 104.16.89.83:0
File type ASCII text, with very long lines (4735), with no line terminators
Hash 58bce0419d1490ff22eefebbe1bc0d47
a766e9a3e9da7b26a1c607b02776c9103b785b55
3f7e168177f67d1418e803eebf9d59cc470843e9964cd6b4489eea4c925b5307
GET /cloud/common/Components/op-analytics-af90185244.js HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:17 GMT
content-type: application/javascript
cache-control: public, max-age=2678400
cf-bgj: minify
content-md5: r5AYUkS9FhV7rh4CLK8yiA==
last-modified: Wed, 01 Feb 2023 09:26:43 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 5818849719663490396
x-oss-object-type: Normal
x-oss-request-id: 63DB97BC76EC4B323907E07A
x-oss-server-time: 3
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 280098
expires: Wed, 08 Mar 2023 16:57:17 GMT
server: cloudflare
cf-ray: 794d2f29ebdfb517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ups.aopcdn.com/s1454/common/19361/78ua832e20714254930a42884a55e4d612b.png?x-oss-process=image/format,webp/interlace,1/quality,q_80
104.16.89.83200 OK 10 kB URL HTTP/2 ups.aopcdn.com/s1454/common/19361/78ua832e20714254930a42884a55e4d612b.png?x-oss-process=image/format,webp/interlace,1/quality,q_80
IP 104.16.89.83:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x48, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fae588cc65c0cd41555c3d61135ab74d
e1fc4ba29ee69452b03f7d2101b114280d200134
5060c8de16791ede3518cbd807536ecd3e35ce71840bc6e643f333efc7fdb084
GET /s1454/common/19361/78ua832e20714254930a42884a55e4d612b.png?x-oss-process=image/format,webp/interlace,1/quality,q_80 HTTP/1.1
Host: ups.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:17 GMT
content-type: image/webp
content-length: 10458
x-oss-request-id: 63DCDC65F488A53430DCFD5C
vary: Origin, Accept-Encoding
etag: "571CE24AFE9CE9837DCF331C217E2CB0"
last-modified: Wed, 04 Jan 2023 02:35:04 GMT
x-oss-object-type: Normal
x-oss-storage-class: Standard
x-oss-server-time: 36
x-oss-hash-crc64ecma: 16478431440117842887
cf-cache-status: HIT
expires: Wed, 08 Mar 2023 16:57:17 GMT
cache-control: public, max-age=2678400
accept-ranges: bytes
server: cloudflare
cf-ray: 794d2f2a3c42b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1429)
Hash 2354fa28c58e16af89e7da6224aeca93
6bd3430a81730ed77c5d53f5406ddb40306ecabd
dc35ae752b7be035bd3a3bd4ae205e41afce5fa8f88e1bfe0e9524610df10f3b
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Sun, 05 Feb 2023 16:57:17 GMT
expires: Sun, 05 Feb 2023 16:57:17 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "03884666a30c671f"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ups.aopcdn.com/s1454/common/18631/1189u4bb02c9c1d5145618264c48f3c3c15ec.png
104.16.89.83200 OK 3.5 kB URL HTTP/2 ups.aopcdn.com/s1454/common/18631/1189u4bb02c9c1d5145618264c48f3c3c15ec.png
IP 104.16.89.83:0
File type PNG image data, 446 x 200, 8-bit colormap, interlaced\012- data
Hash 82da5cd8ee1cdb4916bd110bf63bbd60
34c53717266eec4b8cf8aed46ab2b494ec920219
628b85c2bd5a42f2c86e3fda2fc3c77f8b6f9d7d9fe11254eea6419d2c202306
GET /s1454/common/18631/1189u4bb02c9c1d5145618264c48f3c3c15ec.png HTTP/1.1
Host: ups.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:17 GMT
content-type: image/png
content-length: 3479
cf-bgj: imgq:100,h2pri
cf-polished: origSize=10578, status=vary_header_present
content-md5: mzb3oUU5vCXm+SUqUOBfcw==
etag: "9B36F7A14539BC25E6F9252A50E05F73"
last-modified: Mon, 04 Jan 2021 09:23:06 GMT
vary: Origin, Accept-Encoding
x-oss-hash-crc64ecma: 940179212328634443
x-oss-object-type: Normal
x-oss-request-id: 63DFCFA7F488A5373979B324
x-oss-server-time: 41
x-oss-storage-class: Standard
cf-cache-status: HIT
expires: Wed, 08 Mar 2023 16:57:17 GMT
cache-control: public, max-age=2678400
accept-ranges: bytes
server: cloudflare
cf-ray: 794d2f2a3c3fb517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sources.aopcdn.com/cloud/opShop/pc/css/login-1d6366dfd2.css
104.16.89.83200 OK 925 B URL HTTP/2 sources.aopcdn.com/cloud/opShop/pc/css/login-1d6366dfd2.css
IP 104.16.89.83:0
File type ASCII text, with very long lines (1337), with no line terminators
Hash aaf8ce2715bbcbd848028d207580b1a6
1cf5ce5040385ca0e0f42fe0611a4c7815e03f35
fbc5fce09759cc46e6108d9ea261e70aee6efc9d65c883aa4b9e9022d9cd5efc
GET /cloud/opShop/pc/css/login-1d6366dfd2.css HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:17 GMT
content-type: text/css
cache-control: public, max-age=2678400
cf-bgj: minify
cf-polished: origSize=1350
content-md5: HWNm39J4ijoFrJm04YDs7g==
last-modified: Fri, 13 Jan 2023 03:44:54 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 11006456508115807779
x-oss-object-type: Normal
x-oss-request-id: 63C112CE9EAA1A343478C739
x-oss-server-time: 28
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 1700438
expires: Wed, 08 Mar 2023 16:57:17 GMT
server: cloudflare
cf-ray: 794d2f29ebdab517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.juretro.com/static/common/fonts/common_icon_font/iconfont.woff2
104.17.228.33200 OK 828 B URL HTTP/2 www.juretro.com/static/common/fonts/common_icon_font/iconfont.woff2
IP 104.17.228.33:0
File type Web Open Font Format (Version 2), TrueType, length 828, version 1.0\012- data
Hash a8634ede0d2d6fe0f5515b74ee93fc27
fa0c7f8129004593e9c7a8e48533217ac61eb3ee
f033126038d8811bd0aa7a82e4f756ab7991e58f87917e8db39a44ec3e7c0f74
GET /static/common/fonts/common_icon_font/iconfont.woff2 HTTP/1.1
Host: www.juretro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.juretro.com/hotsale/?locale=de&utm_campaign=20230205&utm_medium=mkt&utm_source=EDM
Connection: keep-alive
Cookie: locale=de; ccy=EUR; _opbd=EDM|mkt|20230205|||||47fda387b522ac88af156822d7ff6132; _opu=op_30917ad58d01413a_1862282b3cd_75ac; _opud=op_bfa6a5b973531e32_1862282b3cd_2dd6; _odevice=-1633778157; utm_source=EDM; utm_medium=mkt; utm_campaign=20230205; utm_term=; utm_adset=; utm_content=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:18 GMT
content-type: application/octet-stream;charset=UTF-8
content-length: 828
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-max-age: 259200
access-control-allow-headers: X-Requested-With,X_Requested_With,Content-Type
x-server-ip: 172.20.103.197
x-request-id: a76f0444cf5f4c87a3cbb5d2fe930d70
last-modified: Fri, 03 Feb 2023 00:56:04 GMT
cf-cache-status: REVALIDATED
expires: Sun, 05 Feb 2023 20:57:18 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 794d2f2dce53b4ed-OSL
X-Firefox-Spdy: h2
sources.aopcdn.com/cloud/opShop/script/index-741be2b968.js
104.16.89.83200 OK 33 kB URL HTTP/2 sources.aopcdn.com/cloud/opShop/script/index-741be2b968.js
IP 104.16.89.83:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash a1a572acb90ad9342a8b560dc290ca1d
7eb438ce9f6970b10aa955e089c8ff020c13677b
6112ff6ca2f20c365b817830a7c2d92d38d251993114db5fadb83890a401cc39
GET /cloud/opShop/script/index-741be2b968.js HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:17 GMT
content-type: application/javascript
cache-control: public, max-age=2678400
cf-bgj: minify
cf-polished: origSize=108237
content-md5: dBviuWgedN7RCMBLoERO2w==
last-modified: Fri, 13 Jan 2023 03:44:48 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 11558538337145633522
x-oss-object-type: Normal
x-oss-request-id: 63C112CE91795F3834B88B3A
x-oss-server-time: 11
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 1513783
expires: Wed, 08 Mar 2023 16:57:17 GMT
server: cloudflare
cf-ray: 794d2f2a0c0fb517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sources.aopcdn.com/cloud/common/i7eo-e584e8f58f.css
104.16.89.83200 OK 51 kB URL HTTP/2 sources.aopcdn.com/cloud/common/i7eo-e584e8f58f.css
IP 104.16.89.83:0
Hash b96172ab833895fd1526ed55078e0503
2ab625746a40f805a08fe0303230046e1593dae6
d9a2f33de923b8b2d06b50a9afe5f1e1a938f65659288d631b6d68850b022a74
GET /cloud/common/i7eo-e584e8f58f.css HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:17 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=7062
content-md5: 5YTo9Y/FlMR4LsqNO0LW9w==
last-modified: Fri, 12 Mar 2021 08:16:28 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 16128361567144840044
x-oss-object-type: Normal
x-oss-request-id: 60519D1612A71A31317823C7
x-oss-server-time: 28
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 818143
expires: Wed, 08 Mar 2023 16:57:17 GMT
cache-control: public, max-age=2678400
server: cloudflare
cf-ray: 794d2f2a0c21b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
wzstatic1.streamoptim.com/utils.js
54.230.111.77200 OK 137 kB URL HTTP/2 wzstatic1.streamoptim.com/utils.js
IP 54.230.111.77:0
Size 137 kB (136861 bytes)
Hash 9a19f3f955e637026a9251b9d129301c
77d54026eb3931994aef488af7cba77f9b0fe206
a000a150b9bdb66088a6b26f31367ad0d2611f36c574595577851bbe9d8e52a5
GET /utils.js HTTP/1.1
Host: wzstatic1.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Sun, 05 Feb 2023 08:08:24 GMT
last-modified: Sat, 07 May 2022 09:21:33 GMT
service-worker-allowed: /
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: U5J9IA3YIuZIHg-LNhitpTgkG2sQuOhX8Ggvf-5oUlPdYlBFI2VPuw==
age: 31734
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6894
Expires: Sun, 05 Feb 2023 18:52:12 GMT
Date: Sun, 05 Feb 2023 16:57:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6894
Expires: Sun, 05 Feb 2023 18:52:12 GMT
Date: Sun, 05 Feb 2023 16:57:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6894
Expires: Sun, 05 Feb 2023 18:52:12 GMT
Date: Sun, 05 Feb 2023 16:57:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a4eed23b240d04a3cd6b085cfa93375
f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00
93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10905
x-amzn-requestid: 093778fc-231c-452f-a6fc-15f4eb41ade0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmNJCEDzIAMFmxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8c239-7f56d6e56392f373541db219;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:24:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WVfpilnwhnRXBhJkHBWjxxoP09f7SqlRk8CdWRWOubIIwe0CX89bUA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:09:58 GMT
age: 67640
etag: "f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6894
Expires: Sun, 05 Feb 2023 18:52:12 GMT
Date: Sun, 05 Feb 2023 16:57:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6894
Expires: Sun, 05 Feb 2023 18:52:12 GMT
Date: Sun, 05 Feb 2023 16:57:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7a466d89c75ff3459b7328591db52cf
c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb
e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WXEEbnoAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:51:26 GMT
age: 68752
etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.juretro.com/cart/quantity.json?_=1675616279093
104.17.228.33200 OK 11 kB URL HTTP/2 www.juretro.com/cart/quantity.json?_=1675616279093
IP 104.17.228.33:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 10769ea610783b97dfce87a668e60551
cf31956ead2cc5a7b52fd93e3689688ef5e438d2
1f8f049c74ca240bee51e0e246a8ce1c51fd5d5512939b1335a639e740a02d4c
GET /cart/quantity.json?_=1675616279093 HTTP/1.1
Host: www.juretro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.juretro.com/hotsale/?locale=de&utm_campaign=20230205&utm_medium=mkt&utm_source=EDM
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: locale=de; ccy=EUR; _opbd=EDM|mkt|20230205|||||47fda387b522ac88af156822d7ff6132; _opu=op_30917ad58d01413a_1862282b3cd_75ac; _opud=op_bfa6a5b973531e32_1862282b3cd_2dd6; _odevice=-1633778157; utm_source=EDM; utm_medium=mkt; utm_campaign=20230205; utm_term=; utm_adset=; utm_content=; forterToken=8ef0b8929dfa48baa431ed63765381b4_1675616278857___9ck
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:18 GMT
content-type: application/json;charset=UTF-8
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-max-age: 259200
access-control-allow-headers: X-Requested-With,X_Requested_With,Content-Type
x-server-ip: 172.20.103.237
x-request-id: e3f55268cce24dc78ab1c842e23189a3
x-site-id: 1454
set-cookie: locale=de; Path=/
_opbd=EDM|mkt|20230205|||||47fda387b522ac88af156822d7ff6132; Expires=Tue, 07-Mar-2023 16:57:18 GMT; Path=/
_opu=op_30917ad58d01413a_1862282b3cd_75ac; Expires=Mon, 05-Feb-2024 16:57:18 GMT; Path=/
_opud=op_bfa6a5b973531e32_1862282b3cd_2dd6; Expires=Mon, 06-Feb-2023 16:57:18 GMT; Path=/
_odevice=-1633778157; Expires=Mon, 05-Feb-2024 16:57:18 GMT; Path=/
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 794d2f3009e0b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b6c30ad03669b66bf2f63b3edd69882
e630bd132b52b965a5ade646ea8a165d1abf6d7b
f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 11:24:01 GMT
age: 19997
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:05:45 GMT
age: 67893
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 013fa296-a431-410b-b3fb-7417b3e877eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpIQAFCMIAMF0Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9ed99-2e1daa8b75977de07c48b8fc;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 04:42:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UzQGDCYe_8AuYYLaLSAWzHQhwJMpzpXWbjE5AwukevW6G6SLDxDjmA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:42:59 GMT
age: 47659
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 586519
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
wzstatic.streamoptim.com/stream/streamUidIframe.html
54.230.111.49200 OK 1.7 kB URL HTTP/2 wzstatic.streamoptim.com/stream/streamUidIframe.html
IP 54.230.111.49:0
Hash af4aa0bfc15a72d1b189513ec94bbb8d
067cf1121af4678f4f069d154cb3e28d4ca141f5
c77c9df59ef707d8156029d86e48d98651d7722caa8b426cf80cbb7bc9e2a24b
GET /stream/streamUidIframe.html HTTP/1.1
Host: wzstatic.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
server: AliyunOSS
x-oss-request-id: 63DCBDA59762593530C4D8DD
last-modified: Wed, 16 Mar 2022 02:35:46 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 9570096327103776374
x-oss-storage-class: Standard
content-md5: YOVJYeMCSH0akyM8BK4kiA==
x-oss-server-time: 17
content-encoding: gzip
date: Sun, 05 Feb 2023 07:55:01 GMT
etag: "60E54961E302487D1A93233C04AE2488"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8FM2pHJmhjEQcFdPIBgNziYAeTI2er4Zs-BgIcKxMIbd8Z_y7ZzLqw==
age: 32583
X-Firefox-Spdy: h2
2e3b618057a1.cdn4.forter.com/sn/2e3b618057a1/script.js
143.204.55.27200 OK 137 kB URL HTTP/2 2e3b618057a1.cdn4.forter.com/sn/2e3b618057a1/script.js
IP 143.204.55.27:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 137 kB (137398 bytes)
Hash dc2ece38652ce925e6aa269f4e10803c
9434717f534b519b40f9589ce98f44ae0e9416fb
0d5b5f8285bf33a747da7b79b3170fc98b3bc0a5e52be6cdc793259fa170248e
GET /sn/2e3b618057a1/script.js HTTP/1.1
Host: 2e3b618057a1.cdn4.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 26 Jan 2023 08:13:56 GMT
strict-transport-security: max-age=86400; includeSubDomains
access-control-allow-origin: *
timing-allow-origin: *
last-modified: Thu, 26 Jan 2023 08:13:56 GMT
expires: Thu, 26 Jan 2023 08:18:56 GMT
cache-control: private, max-age=300
x-sourcemap: https://cdn4.forter.com/map/suid/2e3b618057a1/54012080142
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2ak5fU-gmuT6oLmJgMzOMM3OHhBvUWYOTCuZyDOQErJcJgp-KhKdfw==
age: 895402
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 05 Feb 2023 15:45:20 GMT
expires: Sun, 05 Feb 2023 17:45:20 GMT
cache-control: public, max-age=7200
age: 4319
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5ac5aaa2dd1a2ab697244f3c0fe3b5b5
bb8a9aeb28cc645435760f3a9a57d85e295de419
d42327bb295e41a2b04efa1c2ad6094a3480d0010de10bb32600f4d17fe9f0d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-NXPQZDP9SK>m=45je3210&_p=917006512&cid=1015240465.1675616280&ul=en-us&sr=1280x1024&uaW=1&_s=1&uid=&sid=1675616279&sct=1&seg=0&dl=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&dt=G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-NXPQZDP9SK>m=45je3210&_p=917006512&cid=1015240465.1675616280&ul=en-us&sr=1280x1024&uaW=1&_s=1&uid=&sid=1675616279&sct=1&seg=0&dl=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&dt=G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-NXPQZDP9SK>m=45je3210&_p=917006512&cid=1015240465.1675616280&ul=en-us&sr=1280x1024&uaW=1&_s=1&uid=&sid=1675616279&sct=1&seg=0&dl=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&dt=G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.juretro.com
date: Sun, 05 Feb 2023 16:57:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bat.bing.com/bat.js
204.79.197.200200 OK 12 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 6D2771099EE04CA7B2399958E06062DD Ref B: OSL30EDGE0212 Ref C: 2023-02-05T16:57:19Z
date: Sun, 05 Feb 2023 16:57:18 GMT
X-Firefox-Spdy: h2
sources.aopcdn.com/cloud/common/forter-2713a96ac9.js
104.16.89.83200 OK 4.4 kB URL HTTP/2 sources.aopcdn.com/cloud/common/forter-2713a96ac9.js
IP 104.16.89.83:0
File type ASCII text, with very long lines (3930), with no line terminators
Hash 997325b00283df2163b02a5eedccec42
6a13cf7b7110107a1bd670d6a8aae36eecb24ae3
b29b153093f08aa29b0c76adb44fe4c4cfb211ccb261dd5d0c29c4281db0624f
GET /cloud/common/forter-2713a96ac9.js HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:17 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3936
content-md5: pk3iTA/nf3FlZ/EnE6lqyQ==
last-modified: Wed, 20 Oct 2021 07:24:00 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 14080981734720421440
x-oss-object-type: Normal
x-oss-request-id: 621883FB9979C73930D0DB42
x-oss-server-time: 49
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 1711470
expires: Wed, 08 Mar 2023 16:57:17 GMT
cache-control: public, max-age=2678400
server: cloudflare
cf-ray: 794d2f29fbf5b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
assets.pinterest.com/js/pinit_main.js?0.08361733027028362
2.18.172.195200 OK 19 kB URL HTTP/2 assets.pinterest.com/js/pinit_main.js?0.08361733027028362
IP 2.18.172.195:0
File type Unicode text, UTF-8 text, with very long lines (32016)
Hash 3725764cf05d1a0938de73d398772331
abdc742d760ca9c8f28c8d44ca9796d9ad6c0bc7
f8c41f2f59fc9e9d088bc9002eef583c3cf256b4cd371619b18107b4abd92812
GET /js/pinit_main.js?0.08361733027028362 HTTP/1.1
Host: assets.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "3725764cf05d1a0938de73d398772331"
content-encoding: br
accept-ranges: bytes
content-type: application/javascript; charset=utf-8
content-length: 18679
cache-control: max-age=217
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 721c3f2797fcac86eff0c208d119cba7
d9f8bc5796e32c8679f440a4ed55b2e389cc7345
fc2c30fe66b2dd2d05f7a2d76b5ad9b3689c2f8439d14921fc70b190e9944c37
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1165
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:20 GMT
Last-Modified: Sun, 05 Feb 2023 16:37:56 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 122d09f3c0e479664f7ed8ed3d4dbe74
91a4554bb5ba6a763ba9acbb712e2b57d1a1bd46
fca4655dd725b3d54840da0ab81bb7fafd628b82c56a897a1cd7f647fc4b8200
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5587
Cache-Control: max-age=97265
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:20 GMT
Etag: "63dea30e-139"
Expires: Mon, 06 Feb 2023 19:58:25 GMT
Last-Modified: Sat, 04 Feb 2023 18:25:18 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
googleads.g.doubleclick.net/pagead/viewthroughconversion/750327233/?random=1675616279513&cv=11&fst=1675616279513&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&tiba=G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com&auid=1771134328.1675616280&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.162200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/750327233/?random=1675616279513&cv=11&fst=1675616279513&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&tiba=G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com&auid=1771134328.1675616280&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.162:0
File type ASCII text, with very long lines (2251), with no line terminators
Hash 3f31fa968c2ecbc15d97a0142c1669b2
cf669212238f4859cd1d039f42ab43c22e1b01f9
425ff7f77b2403519ae09b00000403f93c3c4e226699bc28ef767fae991de09d
GET /pagead/viewthroughconversion/750327233/?random=1675616279513&cv=11&fst=1675616279513&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&tiba=G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com&auid=1771134328.1675616280&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 05 Feb 2023 16:57:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1000
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 05-Feb-2023 17:12:20 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.221.16200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.221.16:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: itOn+GrE/1y6WQhQQLHv7zwBhTK6mfsU614QeqZMsilzbcM7iIf16HDr3r0COoTEHKitaVpP5uhgHuf8vytWCg==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1679558926
date: Sun, 05 Feb 2023 16:57:20 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5ac5aaa2dd1a2ab697244f3c0fe3b5b5
bb8a9aeb28cc645435760f3a9a57d85e295de419
d42327bb295e41a2b04efa1c2ad6094a3480d0010de10bb32600f4d17fe9f0d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 721c3f2797fcac86eff0c208d119cba7
d9f8bc5796e32c8679f440a4ed55b2e389cc7345
fc2c30fe66b2dd2d05f7a2d76b5ad9b3689c2f8439d14921fc70b190e9944c37
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4189
Cache-Control: max-age=149095
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:20 GMT
Etag: "63df72fa-1d7"
Expires: Tue, 07 Feb 2023 10:22:15 GMT
Last-Modified: Sun, 05 Feb 2023 09:12:26 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
sl.streamoptim.com/log/report?p=%7B%22uuid%22%3A%22%22%2C%22ukey%22%3A%2266jvf74hx34%22%2C%22rand%22%3A1675616279332%2C%22browser_time%22%3A%222023-02-05%2016%3A57%3A59%22%2C%22timezone%22%3A0%2C%22language%22%3A%22en%22%2C%22stream_msg_num%22%3A%22%22%2C%22is_sub%22%3A%22%22%2C%22from_stream_lp%22%3Afalse%2C%22event%22%3A%22visit%22%2C%22option%22%3A%7B%22url%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22visit_type%22%3A%22page-landing%22%7D%7D
198.11.178.42200 OK 24 B URL HTTP/2 sl.streamoptim.com/log/report?p=%7B%22uuid%22%3A%22%22%2C%22ukey%22%3A%2266jvf74hx34%22%2C%22rand%22%3A1675616279332%2C%22browser_time%22%3A%222023-02-05%2016%3A57%3A59%22%2C%22timezone%22%3A0%2C%22language%22%3A%22en%22%2C%22stream_msg_num%22%3A%22%22%2C%22is_sub%22%3A%22%22%2C%22from_stream_lp%22%3Afalse%2C%22event%22%3A%22visit%22%2C%22option%22%3A%7B%22url%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22visit_type%22%3A%22page-landing%22%7D%7D
IP 198.11.178.42:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash 7751bc2473122c778009f3a8ff3f991f
5180b100e1b7ffa7a2d03bd7ad25002ec6032862
60f5b22a55f8dfde4ae3b0e150862de962d18ba7250baee5c13dfb92aba207c3
GET /log/report?p=%7B%22uuid%22%3A%22%22%2C%22ukey%22%3A%2266jvf74hx34%22%2C%22rand%22%3A1675616279332%2C%22browser_time%22%3A%222023-02-05%2016%3A57%3A59%22%2C%22timezone%22%3A0%2C%22language%22%3A%22en%22%2C%22stream_msg_num%22%3A%22%22%2C%22is_sub%22%3A%22%22%2C%22from_stream_lp%22%3Afalse%2C%22event%22%3A%22visit%22%2C%22option%22%3A%7B%22url%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22visit_type%22%3A%22page-landing%22%7D%7D HTTP/1.1
Host: sl.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:20 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.3.3
access-control-allow-origin: https://www.juretro.com
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
static.criteo.net/js/ld/ld.js
178.250.2.130200 OK 14 kB URL HTTP/2 static.criteo.net/js/ld/ld.js
IP 178.250.2.130:0
File type ASCII text, with very long lines (43748), with no line terminators
Hash 4cfacdc7acd86cb45c86837d5f920104
d718f8aee04120db85731ad3c1318286a58d527d
43ce0df6fe08477d0b51abebbdf185442662413cbbcf88e4781f4e82088c3f24
GET /js/ld/ld.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 16:57:20 GMT
content-type: text/javascript
last-modified: Mon, 02 Jan 2023 16:36:54 GMT
etag: W/"63b30826-aae4"
expires: Mon, 06 Feb 2023 16:57:20 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 8077210062c315b98902cb06c74d485b
808e94ac31f1b45185103ce25c1bc2afd056b17a
78871f45de0c58bffa6a86b50f6bd0db61932bf6a2b7d8191dba0f0eaab628b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 8942dac2c3b84167c8c1c36c8c5dbc24
3202c79b026ed05cd1568065cfba03cffe066637
998bc79f4dc7577f16aa29eea707a9f74380352848fae678f2f9e1a5a5ea42c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4542
Cache-Control: max-age=159217
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:20 GMT
Etag: "63df9923-138"
Expires: Tue, 07 Feb 2023 13:10:57 GMT
Last-Modified: Sun, 05 Feb 2023 11:55:15 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 312
bat.bing.com/p/action/25140549.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/25140549.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/25140549.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 6A155ABF6ABF4DE295834168F53CFC7C Ref B: OSL30EDGE0212 Ref C: 2023-02-05T16:57:20Z
date: Sun, 05 Feb 2023 16:57:20 GMT
X-Firefox-Spdy: h2
s.pinimg.com/ct/lib/main.73589e70.js
2.18.172.195200 OK 20 kB URL HTTP/2 s.pinimg.com/ct/lib/main.73589e70.js
IP 2.18.172.195:0
File type ASCII text, with very long lines (57031), with no line terminators
Hash e2e6ae3a0d92146f974216e640b9f99a
8ceb48ec7a0aa43ebfe0eeb0094164292f95c6d2
965349a9e9f471fadf2512567bdfae0aedff8e90a093306e2b61673c292fed0b
GET /ct/lib/main.73589e70.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "e2e6ae3a0d92146f974216e640b9f99a"
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 19691
akamai-x-true-ttl: 1209600
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/750327233/?random=1675616279513&cv=11&fst=1675612800000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&tiba=G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4075094552&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/750327233/?random=1675616279513&cv=11&fst=1675612800000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&tiba=G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4075094552&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/750327233/?random=1675616279513&cv=11&fst=1675612800000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&tiba=G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4075094552&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 05 Feb 2023 16:57:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a78b06ca527ce7542b24b349e0485d8b
6f5e5126c1c9d40c9ba09d58e1755d2ca39d02ab
bc7dc156ab8b2b33422fff0922e219246eb1d12469d10ac8007416fed41ac473
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/750327233/?random=1675616279513&cv=11&fst=1675612800000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&tiba=G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4075094552&rmt_tld=0&ipr=y
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/750327233/?random=1675616279513&cv=11&fst=1675612800000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&tiba=G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4075094552&rmt_tld=0&ipr=y
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/750327233/?random=1675616279513&cv=11&fst=1675612800000&bg=ffffff&guid=ON&async=1>m=45be3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&tiba=G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=4075094552&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 05 Feb 2023 16:57:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
d2q8lslmdp9f7.cloudfront.net/library/20220511/100329_566893/NFEQ8UN4fXQMF7csM4wx4gHMfSPdBjBz.gif
143.204.42.197200 OK 24 kB URL HTTP/2 d2q8lslmdp9f7.cloudfront.net/library/20220511/100329_566893/NFEQ8UN4fXQMF7csM4wx4gHMfSPdBjBz.gif
IP 143.204.42.197:0
File type GIF image data, version 89a, 500 x 500\012- data
Hash d3ce2e38c392e900614327cccc26e10b
6a967092995824dfde8e48cd490e9fe358548ff9
5a9353f38ac257034c16b735a9c398d8582b006dc12ed2b72535dcb95346b05f
GET /library/20220511/100329_566893/NFEQ8UN4fXQMF7csM4wx4gHMfSPdBjBz.gif HTTP/1.1
Host: d2q8lslmdp9f7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 23805
x-amz-replication-status: COMPLETED
last-modified: Wed, 11 May 2022 02:03:30 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Sun, 05 Feb 2023 09:30:18 GMT
etag: "d3ce2e38c392e900614327cccc26e10b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: s8TjHUvaKUqxnkm2_l3WbGrtlnoqXCSnX05O7zdghXM7Fd4idGdzHA==
age: 26824
X-Firefox-Spdy: h2
cdn9.forter.com/vchk2
143.204.55.40301 Moved Permanently 4 B IP 143.204.55.40:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
GET /vchk2 HTTP/1.1
Host: cdn9.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: eyJyIjowLjg5NDc1OTcwMzE1Nzg2OTcsInUiOiI4ZWYwYjg5MjlkZmE0OGJhYTQzMWVkNjM3NjUzODFiNCIsInMiOiIyZTNiNjE4MDU3YTEifQ==
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: https://cdn9.forter.com/vchk2/v1/76ea0c9b6e4225793470e44b18a654eea1b79d0a7bdc4066bfe0645cb7c59010ac7f4bc9661156e1dbf449d4a179
date: Sun, 05 Feb 2023 16:57:20 GMT
access-control-allow-origin: *
timing-allow-origin: *
cache-control: private, s-maxage=0, proxy-revalidate
strict-transport-security: max-age=86400; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LlXoAuc5Fqa1Q1zSI3NFQB03i5jHR04f9bjvJABwXYqE_XV1nL7eEg==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 9d7d54937b70d60ca299d07980bc1e1e
42ee245e31b6c480419253d420a75159e107cc65
fd8c0e9b7ce1332347da031c471053f5acaab963f5aafd0e29bb94b90bcf9293
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-141228038-1&cid=1015240465.1675616280&jid=888166366&_u=4CDAAUAKAAAAACAAI~&z=1902739190
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-141228038-1&cid=1015240465.1675616280&jid=888166366&_u=4CDAAUAKAAAAACAAI~&z=1902739190
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-141228038-1&cid=1015240465.1675616280&jid=888166366&_u=4CDAAUAKAAAAACAAI~&z=1902739190 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 05 Feb 2023 16:57:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2612771844502&pd=%7B%7D&cb=1675616282116&dep=2%2CPAGE_LOAD
23.38.200.197200 OK 111 kB URL HTTP/2 ct.pinterest.com/user/?tid=2612771844502&pd=%7B%7D&cb=1675616282116&dep=2%2CPAGE_LOAD
IP 23.38.200.197:0
File type ASCII text, with very long lines (64471)
Size 111 kB (110630 bytes)
Hash 17a698d70769a33cf89acd3de601c39d
37c3daf47d723d289b958c2a59697b2ce2b9945a
9bebf1bc1f739aa005e09b4ca6a95afd531a2931f3f7e421e599ffacc061d071
GET /user/?tid=2612771844502&pd=%7B%7D&cb=1675616282116&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU5qZzJPR05tWW1RdE56bG1OQzAwWVRrd0xUbGxObUV0TlRsbU5EazBaREJqTjJRNQ
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.juretro.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 372
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 6826340263042243
date: Sun, 05 Feb 2023 16:57:21 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675616241.d7f76df4
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=pagevisit&tid=2612547234711&cb=1675616282119&dep=5%2CEVENT_TAGS_ABSENT
23.38.200.197200 OK 372 B URL HTTP/2 ct.pinterest.com/user/?event=pagevisit&tid=2612547234711&cb=1675616282119&dep=5%2CEVENT_TAGS_ABSENT
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash cb60b4bb9f692e0eccd37330432c3c88
0f850c1d37f97ea20375d7b0b3f56f80f46f7a83
68ef92e043c30a34094e4359ce99370aef1153692f0bd6fe82e0e65120978043
GET /user/?event=pagevisit&tid=2612547234711&cb=1675616282119&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU9ETTFaalZrTTJJdFpXRmxOeTAwTm1VM0xXSTNNelF0WXpFek5UWXhNamd3TUdGbA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.juretro.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 372
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 7342468307074649
date: Sun, 05 Feb 2023 16:57:21 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675616241.d7f76e7c
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/user/?event=pagevisit&tid=2612771844502&cb=1675616282117&dep=5%2CEVENT_TAGS_ABSENT
23.38.200.197200 OK 372 B URL HTTP/2 ct.pinterest.com/user/?event=pagevisit&tid=2612771844502&cb=1675616282117&dep=5%2CEVENT_TAGS_ABSENT
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash cb60b4bb9f692e0eccd37330432c3c88
0f850c1d37f97ea20375d7b0b3f56f80f46f7a83
68ef92e043c30a34094e4359ce99370aef1153692f0bd6fe82e0e65120978043
GET /user/?event=pagevisit&tid=2612771844502&cb=1675616282117&dep=5%2CEVENT_TAGS_ABSENT HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU5HWXhOakU1TWprdE56SXdOeTAwTkdNNUxUZzBZVFV0TXpaaE1qUTJPVE0yTkRnNQ
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.juretro.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 372
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 1611139381928282
date: Sun, 05 Feb 2023 16:57:21 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675616241.d7f76f77
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2612547234711&pd=%7B%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675616282120
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2612547234711&pd=%7B%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675616282120
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2612547234711&pd=%7B%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675616282120 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 4150116189375231
date: Sun, 05 Feb 2023 16:57:21 GMT
akamai-grn: 0.274f2417.1675616241.d7f770ae
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2612771844502&pd=%7B%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675616282120
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2612771844502&pd=%7B%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675616282120
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2612771844502&pd=%7B%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D&cb=1675616282120 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 1596423879449259
date: Sun, 05 Feb 2023 16:57:21 GMT
akamai-grn: 0.274f2417.1675616241.d7f77105
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=www.juretro.com&origin=onetag
178.250.2.146200 OK 5.1 kB URL HTTP/2 gum.criteo.com/syncframe?topUrl=www.juretro.com&origin=onetag
IP 178.250.2.146:0
Hash 13bec7381f363bf28c0c5843aded0fe6
4a1b04fbd898a3ebf21d5dcf79082c38e47cc73a
b755d9ec74ee8a1fdd428c54fec0b7cefa8e60bc5bb542d8039d80ed04f9e8bb
GET /syncframe?topUrl=www.juretro.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:20 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
uid=a4174549-f8d2-4e7d-a98c-f3405809b4c1; expires=Fri, 01 Mar 2024 16:57:20 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 410309
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?event=pagevisit&tid=2612771844502&cb=1675616282361&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22pin_unauth%22%3A%22dWlkPU5qZzJPR05tWW1RdE56bG1OQzAwWVRrd0xUbGxObUV0TlRsbU5EazBaREJqTjJRNQ%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?event=pagevisit&tid=2612771844502&cb=1675616282361&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22pin_unauth%22%3A%22dWlkPU5qZzJPR05tWW1RdE56bG1OQzAwWVRrd0xUbGxObUV0TlRsbU5EazBaREJqTjJRNQ%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?event=pagevisit&tid=2612771844502&cb=1675616282361&dep=5%2CEVENT_TAGS_ABSENT&pd=%7B%22pin_unauth%22%3A%22dWlkPU5qZzJPR05tWW1RdE56bG1OQzAwWVRrd0xUbGxObUV0TlRsbU5EazBaREJqTjJRNQ%22%7D&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2273589e70%22%2C%22is_eu%22%3Atrue%2C%22ecm_enabled%22%3Afalse%7D HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 1048424999099685
date: Sun, 05 Feb 2023 16:57:21 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZHSkpWNkttQS9QbUlKaFRET0ZmWEhqYm9LdHlFWnRRVm5ENk4rTnF5NjY4RE5YTnRHSmJMb1lTbTIzL3VFS1BEaEYrUmtUSjlRVVk5M095NUpnWnhKQVFZVjZlMEJyMjBGYWZ0Mm5CSjhmST0mUUtoWTlZUW94L1pDMkk1TXV6L2E5ZEtPeWRJPQ=="; Expires=Mon, 05 Feb 2024 16:57:21 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1675616241.d7f7758e
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
log.pinterest.com/?type=pidget&guid=vHPu7BmmCCuM&tv=2021110201&event=init&sub=www&button_count=0&follow_count=0&pin_count=0&profile_count=0&board_count=0§ion_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F&viaSrc=canonical
151.101.192.84200 OK 0 B URL HTTP/2 log.pinterest.com/?type=pidget&guid=vHPu7BmmCCuM&tv=2021110201&event=init&sub=www&button_count=0&follow_count=0&pin_count=0&profile_count=0&board_count=0§ion_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F&viaSrc=canonical
IP 151.101.192.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?type=pidget&guid=vHPu7BmmCCuM&tv=2021110201&event=init&sub=www&button_count=0&follow_count=0&pin_count=0&profile_count=0&board_count=0§ion_count=0&lang=en&nvl=en-US&via=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F&viaSrc=canonical HTTP/1.1
Host: log.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-envoy-upstream-service-time: 2
server: envoy
x-pinterest-rid: 1375998410687360
accept-ranges: bytes
date: Sun, 05 Feb 2023 16:57:21 GMT
via: 1.1 varnish
x-served-by: cache-bma1634-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675616241.370655,VS0,VE41
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash b23324d6f4d0e667817fe82657ea263e
d82916373ee96db4ec3f53ce1c45be33335eb5d2
591a0efe0ebb8eeda4679ee09e9bfe90d09af104f101724781bac817a2902cae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2973
Cache-Control: max-age=163717
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:21 GMT
Etag: "63dfb0d9-139"
Expires: Tue, 07 Feb 2023 14:25:58 GMT
Last-Modified: Sun, 05 Feb 2023 13:36:25 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 77c548ed6dbee7a04321102c3d93db5c
3f4a20119d052c6c8e5f4224a2948ffd559f96b3
5d553cadff959602e40d007c876a01e0dd4540640c64bbb2679300d43326c603
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2943
Cache-Control: max-age=130612
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:21 GMT
Etag: "63df2fa7-139"
Expires: Tue, 07 Feb 2023 05:14:13 GMT
Last-Modified: Sun, 05 Feb 2023 04:25:11 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 77c548ed6dbee7a04321102c3d93db5c
3f4a20119d052c6c8e5f4224a2948ffd559f96b3
5d553cadff959602e40d007c876a01e0dd4540640c64bbb2679300d43326c603
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2657
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:21 GMT
Last-Modified: Sun, 05 Feb 2023 16:13:04 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:20 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=L90Kp180M0RITmhlJTJCZkMwOUJGQlhaMUN2czF4ZnJ1eEpHMExTa1RUclFYWWN3N0szV2ZZU1g1OGR1JTJCcEpodVI2UGpyeg; expires=Fri, 01 Mar 2024 16:57:21 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 152217
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.108200 OK 74 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.108:0
Hash 76fd391b03b1265cb149c15021a3b24b
394be04d0049496bbdcd77af47f98bc76516a377
3dece0fd5b664cfd2419ad394782d219b87b7935fca604d832777585344a0a8d
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:21 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 66314
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=208921711168498&ev=PageView&dl=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&rl=&if=false&ts=1675616282551&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675616282549.1609023223&it=1675616281305&coo=false&rqm=GET
157.240.221.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=208921711168498&ev=PageView&dl=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&rl=&if=false&ts=1675616282551&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675616282549.1609023223&it=1675616281305&coo=false&rqm=GET
IP 157.240.221.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=208921711168498&ev=PageView&dl=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&rl=&if=false&ts=1675616282551&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675616282549.1609023223&it=1675616281305&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 05 Feb 2023 16:57:21 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1558980394299812&ev=PageView&dl=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&rl=&if=false&ts=1675616282549&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675616282549.1609023223&it=1675616281305&coo=false&rqm=GET
157.240.221.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1558980394299812&ev=PageView&dl=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&rl=&if=false&ts=1675616282549&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675616282549.1609023223&it=1675616281305&coo=false&rqm=GET
IP 157.240.221.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1558980394299812&ev=PageView&dl=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&rl=&if=false&ts=1675616282549&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675616282549.1609023223&it=1675616281305&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 05 Feb 2023 16:57:21 GMT
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
185.235.84.13200 OK 40 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.13:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 4553d6f5f1d74bc2df68ade919aea247
8d031ec5be9af96de97d365e991ed0b34cac3501
9e5de1f8b91c80b969682dc4f2b0c3d14939d4e131f994b10c593ec7afd56d06
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:21 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 84626
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=208921711168498&ev=Microdata&dl=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&rl=&if=false&ts=1675616283081&cd[DataLayer]=%5B%5D&cd[Meta]=%7B%22title%22%3A%22G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com%20%22%2C%22meta%3Adescription%22%3A%22G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com%20%22%2C%22meta%3Akeywords%22%3A%22G%C3%BCnstige%20Mode%20Klamotten%20f%C3%BCr%20Frauen%20%22%7D&cd[OpenGraph]=%7B%22og%3Aimage%22%3A%22https%3A%2F%2Fups.aopcdn.com%2Fs1454%2Fcommon%2F18039%2F97u31b914938cd047f78934609076e162b3.png%40!w200%22%2C%22og%3Asite_name%22%3A%22juretro%22%2C%22og%3Atitle%22%3A%22G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com%22%2C%22og%3Adescription%22%3A%22G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com%22%2C%22og%3Aurl%22%3A%22%2F%2Fwww.juretro.com%2Fhotsale%2F%22%2C%22og%3Atype%22%3A%22product.group%22%7D&cd[Schema.org]=%5B%5D&cd[JSON-LD]=%5B%5D&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=30&fbp=fb.1.1675616282549.1609023223&it=1675616281305&coo=false&es=automatic&tm=3&rqm=GET
157.240.221.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=208921711168498&ev=Microdata&dl=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&rl=&if=false&ts=1675616283081&cd[DataLayer]=%5B%5D&cd[Meta]=%7B%22title%22%3A%22G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com%20%22%2C%22meta%3Adescription%22%3A%22G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com%20%22%2C%22meta%3Akeywords%22%3A%22G%C3%BCnstige%20Mode%20Klamotten%20f%C3%BCr%20Frauen%20%22%7D&cd[OpenGraph]=%7B%22og%3Aimage%22%3A%22https%3A%2F%2Fups.aopcdn.com%2Fs1454%2Fcommon%2F18039%2F97u31b914938cd047f78934609076e162b3.png%40!w200%22%2C%22og%3Asite_name%22%3A%22juretro%22%2C%22og%3Atitle%22%3A%22G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com%22%2C%22og%3Adescription%22%3A%22G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com%22%2C%22og%3Aurl%22%3A%22%2F%2Fwww.juretro.com%2Fhotsale%2F%22%2C%22og%3Atype%22%3A%22product.group%22%7D&cd[Schema.org]=%5B%5D&cd[JSON-LD]=%5B%5D&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=30&fbp=fb.1.1675616282549.1609023223&it=1675616281305&coo=false&es=automatic&tm=3&rqm=GET
IP 157.240.221.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=208921711168498&ev=Microdata&dl=https%3A%2F%2Fwww.juretro.com%2Fhotsale%2F%3Flocale%3Dde%26utm_campaign%3D20230205%26utm_medium%3Dmkt%26utm_source%3DEDM&rl=&if=false&ts=1675616283081&cd[DataLayer]=%5B%5D&cd[Meta]=%7B%22title%22%3A%22G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com%20%22%2C%22meta%3Adescription%22%3A%22G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com%20%22%2C%22meta%3Akeywords%22%3A%22G%C3%BCnstige%20Mode%20Klamotten%20f%C3%BCr%20Frauen%20%22%7D&cd[OpenGraph]=%7B%22og%3Aimage%22%3A%22https%3A%2F%2Fups.aopcdn.com%2Fs1454%2Fcommon%2F18039%2F97u31b914938cd047f78934609076e162b3.png%40!w200%22%2C%22og%3Asite_name%22%3A%22juretro%22%2C%22og%3Atitle%22%3A%22G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com%22%2C%22og%3Adescription%22%3A%22G%C3%BCnstige%20Mode%20Kleidung%20Klamotten%20f%C3%BCr%20Frauen%3A%20Coole%20Klamotten%20bis%20zu%2050%25%20BILLIGER%20%7C%20juretro.com%22%2C%22og%3Aurl%22%3A%22%2F%2Fwww.juretro.com%2Fhotsale%2F%22%2C%22og%3Atype%22%3A%22product.group%22%7D&cd[Schema.org]=%5B%5D&cd[JSON-LD]=%5B%5D&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=30&fbp=fb.1.1675616282549.1609023223&it=1675616281305&coo=false&es=automatic&tm=3&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 05 Feb 2023 16:57:22 GMT
X-Firefox-Spdy: h2
ct.pinterest.com/ct.html
23.38.200.197200 OK 323 B IP 23.38.200.197:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 1843917534150339
date: Sun, 05 Feb 2023 16:57:22 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1675616242.d7f7a599
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2b7809e9767b229a3f03b4edf7a0d9bf
be1cbc9231b659c78ac08af47205391dd400de90
c1fb51c2ddb50176dd8070e4820a0508dff37428b4aee895d8b4f4e3c2f9763a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C1FB51C2DDB50176DD8070E4820A0508DFF37428B4AEE895D8B4F4E3C2F9763A"
Last-Modified: Fri, 03 Feb 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5237
Expires: Sun, 05 Feb 2023 18:24:39 GMT
Date: Sun, 05 Feb 2023 16:57:22 GMT
Connection: keep-alive
matching.ivitrack.com/sync?realm=criteo&uid=k-MRWP9YNIO9b-vkMIbVtR_coBlAy_Y1LVwe-ByQ
34.117.157.22200 OK 42 B URL HTTP/2 matching.ivitrack.com/sync?realm=criteo&uid=k-MRWP9YNIO9b-vkMIbVtR_coBlAy_Y1LVwe-ByQ
IP 34.117.157.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /sync?realm=criteo&uid=k-MRWP9YNIO9b-vkMIbVtR_coBlAy_Y1LVwe-ByQ HTTP/1.1
Host: matching.ivitrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
date: Sun, 05 Feb 2023 16:57:22 GMT
content-type: image/gif
content-length: 42
cache-control: public, max-age=86400
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: tag-manager.programmatic.svc.cluster.local:3000/*
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 05 Feb 2023 16:57:23 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 1077468
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2b7809e9767b229a3f03b4edf7a0d9bf
be1cbc9231b659c78ac08af47205391dd400de90
c1fb51c2ddb50176dd8070e4820a0508dff37428b4aee895d8b4f4e3c2f9763a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C1FB51C2DDB50176DD8070E4820A0508DFF37428B4AEE895D8B4F4E3C2F9763A"
Last-Modified: Fri, 03 Feb 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5235
Expires: Sun, 05 Feb 2023 18:24:39 GMT
Date: Sun, 05 Feb 2023 16:57:24 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash fd18731d85ceafdf8a7c41871125f4c6
e1b6e3f105c68c029a505e23a71c7ce760c52bdd
2d7baa294974e61f36936e7f44202ac7dbe37c21ca4b8681b82aeca142ccea8d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 16:57:24 GMT
Last-Modified: Sun, 05 Feb 2023 16:16:12 GMT
Server: ECS (nyb/1D05)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: K3HYGUSz3fZd7sjX2XL1vwvBEiazwul2K3Ehw0uvz4BBUs9aqSg5WA==
Age: 2472
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0006fb5e3cfceb796be5de36d494e9ac
b597abcab8e24c535b8b4479775f9e2f5b15ccb0
2567f8b81cbffd4565a6638ef2c01d3ded23de59b925b35136e225a0595bbdeb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5548
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:24 GMT
Last-Modified: Sun, 05 Feb 2023 15:24:56 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash eb0e0c25454e9b4c02a9b0c9d7d6f7d0
bd2267d81c5bd0cbb2db0b5549b9fdc5170a7000
ec5e00a0e1169a333229204bbd0ecfa72e686d2cfafdbd617648a8bfd1549abd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC5E00A0E1169A333229204BBD0ECFA72E686D2CFAFDBD617648A8BFD1549ABD"
Last-Modified: Sat, 04 Feb 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11951
Expires: Sun, 05 Feb 2023 20:16:35 GMT
Date: Sun, 05 Feb 2023 16:57:24 GMT
Connection: keep-alive
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d7422eb5607dcf3fe8421aa5b60119db
9a4ce67f3379aee76baa521620cc23ffa9de53bb
4d68b820e1a33df20b6d685b4584cfd405f134cd6e55a1d9705757e380ed7b96
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1497
Cache-Control: max-age=98176
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:24 GMT
Etag: "63deb69c-1d7"
Expires: Mon, 06 Feb 2023 20:13:40 GMT
Last-Modified: Sat, 04 Feb 2023 19:48:44 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
criteo-sync.teads.tv/um?eid=80&uid=k-t6pZ3oNIO9b-vkMIbVtR_coBlAzQn9R-zevXPQ
23.195.255.234200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-t6pZ3oNIO9b-vkMIbVtR_coBlAzQn9R-zevXPQ
IP 23.195.255.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-t6pZ3oNIO9b-vkMIbVtR_coBlAzQn9R-zevXPQ HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Sun, 05 Feb 2023 16:57:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 16:57:24 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9c1238528ba24afab682d850ac06c17a
80e76b5d5b0aeac9b2cd866462bc16c21fe428f3
02e4991d1b22357a66e264b15d31469abfbfce5a2736cf359c536be1798da485
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6438
Cache-Control: max-age=171862
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:24 GMT
Etag: "63dfc324-1d7"
Expires: Tue, 07 Feb 2023 16:41:46 GMT
Last-Modified: Sun, 05 Feb 2023 14:54:28 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-FN6k7YNIO9b-vkMIbVtR_coBlAxEsDSGahFgjQ
23.38.200.22200 OK 237 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-FN6k7YNIO9b-vkMIbVtR_coBlAxEsDSGahFgjQ
IP 23.38.200.22:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 74378edf31ef26cd97c236ad08d05fa3
fdd52cdbf193d1dfd1031978667689f3414b49ed
11cb2c0e70f91c6a0326cf4a4f9fa1b177c14efba6b56bf7535624b9c7bce990
GET /cksync.php?cs=3&type=crt&ovsid=k-FN6k7YNIO9b-vkMIbVtR_coBlAxEsDSGahFgjQ HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 237
content-type: image/gif
set-cookie: visitor-id=3186178443580261000V10; Expires=Mon, 05 Feb 2024 16:57:24 GMT; domain=.media.net; Path=/;
data-c-ts=1675616244;Expires=Tue, 07 Mar 2023 16:57:24 GMT;path=/;domain=.media.net;
data-c=k-FN6k7YNIO9b-vkMIbVtR_coBlAxEsDSGahFgjQ~~3;Expires=Tue, 07 Mar 2023 16:57:24 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Sun, 05 Feb 2023 16:57:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 05 Feb 2023 16:57:24 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 9c7cfc46c1a02a2ca0c44b35d75546d9
06ef5e2c5023814571fe796c883709d5a277e0fe
d2f9fe418926f903a38730140750747d3acde8d070077e31ae1c1bc43a9039f3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=164253
Date: Sun, 05 Feb 2023 16:57:24 GMT
Etag: "63dfa888-1d7"
Expires: Tue, 07 Feb 2023 14:34:57 GMT
Last-Modified: Sun, 05 Feb 2023 13:00:56 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 07E0LEXv6z-aV_Ow9kdgsMopzOJZQmFEHsUKm1yByay9GTvX3iExXw==
Age: 5641
id5-sync.com/s/966/9.gif?puid=k-wOo9r4NIO9b-vkMIbVtR_coBlAygN_C8hk1o6A
141.95.33.111200 43 B URL HTTP/1.1 id5-sync.com/s/966/9.gif?puid=k-wOo9r4NIO9b-vkMIbVtR_coBlAygN_C8hk1o6A
IP 141.95.33.111:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /s/966/9.gif?puid=k-wOo9r4NIO9b-vkMIbVtR_coBlAygN_C8hk1o6A HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Sun, 05-Feb-2023 17:02:24 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Sun, 05-Feb-2023 17:02:24 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Sun, 05-Feb-2023 17:02:24 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Sun, 05-Feb-2023 17:02:24 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Sun, 05-Feb-2023 17:02:24 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Sun, 05-Feb-2023 17:02:24 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Sun, 05 Feb 2023 16:57:24 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-PWv_Q4NIO9b-vkMIbVtR_coBlAwKrWSPzrMXkw
172.64.154.237302 Found 0 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-PWv_Q4NIO9b-vkMIbVtR_coBlAwKrWSPzrMXkw
IP 172.64.154.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-PWv_Q4NIO9b-vkMIbVtR_coBlAwKrWSPzrMXkw HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 16:57:24 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-PWv_Q4NIO9b-vkMIbVtR_coBlAwKrWSPzrMXkw&C=1
cf-ray: 794d2f56dce1b511-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y9-f9Ai4VLlzLn8Nv95-uwAA; Path=/; Domain=casalemedia.com; Expires=Mon, 05 Feb 2024 16:57:24 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=663; Path=/; Domain=casalemedia.com; Expires=Sat, 06 May 2023 16:57:24 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=663; Path=/; Domain=casalemedia.com; Expires=Sat, 06 May 2023 16:57:24 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gE5R3jsabg2AjAXda1k5F8AVuGrNrqCtavq4xyXaUM0zEBwtUTpZRzihOgzV7A3nNtSFhdP%2Bk1TthjLWUzDJx%2FSQQbPoUrgcdQ3nauP9xfnLRzLJHOphbMorIwjSx7zypTFz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 392150821fa2297ac03c44478a2dce26
d95771a08af29868b2cf80c0cb7e27b4de9a38e5
30fbbe75e0ec1a15edac9f7b0271ee25bb924822be648cf04c5148eec820af77
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5867
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:24 GMT
Last-Modified: Sun, 05 Feb 2023 15:19:37 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ad.yieldlab.net/m?dt_id=8664&ext_id=k-FVgcn4NIO9b-vkMIbVtR_coBlAweL4DvHd2xSA
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-FVgcn4NIO9b-vkMIbVtR_coBlAweL4DvHd2xSA
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-FVgcn4NIO9b-vkMIbVtR_coBlAweL4DvHd2xSA HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Sat, 04 Feb 2023 16:57:24 GMT
Date: Sun, 05 Feb 2023 16:57:24 GMT
Connection: keep-alive
Set-Cookie: id=49941075-437b-42ac-b730-90ef6897c824; Path=/; Domain=prod.svc.y6b.de; Expires=Mon, 05-Feb-2024 16:57:24 GMT; Max-Age=31536000; Secure; SameSite=None
cm.adform.net/pixel?adform_pid=15&adform_pc=k-Lggjw4NIO9b-vkMIbVtR_coBlAwKqOIMrSkW2g
37.157.3.30200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-Lggjw4NIO9b-vkMIbVtR_coBlAwKqOIMrSkW2g
IP 37.157.3.30:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-Lggjw4NIO9b-vkMIbVtR_coBlAwKqOIMrSkW2g HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 16:57:24 GMT
content-type: image/gif
content-length: 43
last-modified: Fri, 07 Feb 2020 08:03:24 GMT
etag: "5e3d19cc-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash e4dfb9e29f29906cd74c15f9796f94a4
eaaad4849c68f6e27b26b49bde5c33d30132d0da
fd04918a97864139ab2d2c32c51f83d39d67c01cd3a97053d95a0f7bcf411fbd
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 16:57:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 15:11:58 GMT
Expires: Sat, 11 Feb 2023 15:11:57 GMT
Etag: "eaaad4849c68f6e27b26b49bde5c33d30132d0da"
Cache-Control: max-age=511472,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794d2f56f8d71bfa-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3df6a2ef0673760172cd3d0dffb9689c
4d01cfe8a9493e1977a140ea946322e74cf11b75
99dffa81b41fdb7c4f4806f460d4f8a8f9eafabcac64b4b9a27f9feb28112762
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5232
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:24 GMT
Last-Modified: Sun, 05 Feb 2023 15:30:12 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
8ef0b8929dfa48baa431ed63765381b4-2e3b618057a1.cdn.forter.com/prop.json
100.26.87.64200 OK 2 B URL HTTP/1.1 8ef0b8929dfa48baa431ed63765381b4-2e3b618057a1.cdn.forter.com/prop.json
IP 100.26.87.64:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /prop.json HTTP/1.1
Host: 8ef0b8929dfa48baa431ed63765381b4-2e3b618057a1.cdn.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 16:57:24 GMT
Server: Apache
Last-Modified: Sun, 05 Feb 2023 12:08:20 GMT
ETag: "2-5f3f2c53f49b7"
Accept-Ranges: bytes
Content-Length: 2
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Access-Control-Allow-Origin: https://www.juretro.com
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Access-Control-Allow-Headers: origin, x-requested-with, content-type, x-csrf-token
Access-Control-Allow-Methods: PUT, GET, POST, DELETE, OPTIONS
Connection: close
Content-Type: application/json
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-79npRoNIO9b-vkMIbVtR_coBlAwAVtqABmp43Q
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-79npRoNIO9b-vkMIbVtR_coBlAwAVtqABmp43Q
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-79npRoNIO9b-vkMIbVtR_coBlAwAVtqABmp43Q HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 16:57:24 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-79npRoNIO9b-vkMIbVtR_coBlAwAVtqABmp43Q&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBPTf32MCED37_-0krVCBCU4P67CxQEMFEgEBAQEx4WPpYwAAAAAA_eMAAA&S=AQAAAvtS3viUYU5TejL3rpimrMY; Expires=Mon, 5 Feb 2024 22:57:24 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
eb2.3lift.com/xuid?mid=2711&xuid=k-H1xnpYNIO9b-vkMIbVtR_coBlAw83RlkDnrOHQ&dongle=013b
76.223.111.18200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-H1xnpYNIO9b-vkMIbVtR_coBlAw83RlkDnrOHQ&dongle=013b
IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-H1xnpYNIO9b-vkMIbVtR_coBlAw83RlkDnrOHQ&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:24 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-646kx4NIO9b-vkMIbVtR_coBlAy27hmDwgiGGQ&google_cm&google_hm=ay02NDZreDROSU85Yi12a01JYlZ0Ul9jb0JsQXkyN2htRHdnaUdHUQ
142.250.74.98302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-646kx4NIO9b-vkMIbVtR_coBlAy27hmDwgiGGQ&google_cm&google_hm=ay02NDZreDROSU85Yi12a01JYlZ0Ul9jb0JsQXkyN2htRHdnaUdHUQ
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 2bb11999a825beffddb2a6986878830d
fdd24681e7d6f783a9132ec5676a7248c4d1956c
5dfd50777d06ee224275bc714fad36577f202742741fdc175b631fcfd25fc2b2
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-646kx4NIO9b-vkMIbVtR_coBlAy27hmDwgiGGQ&google_cm&google_hm=ay02NDZreDROSU85Yi12a01JYlZ0Ul9jb0JsQXkyN2htRHdnaUdHUQ HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-646kx4NIO9b-vkMIbVtR_coBlAy27hmDwgiGGQ&google_cm=&google_hm=ay02NDZreDROSU85Yi12a01JYlZ0Ul9jb0JsQXkyN2htRHdnaUdHUQ&google_tc=
date: Sun, 05 Feb 2023 16:57:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 05-Feb-2023 17:12:24 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash be7f3f4089391cef2ea78f259940035e
e1dac0692a0d3111c73cd6b3dd1045b70361406f
0ea389625b51190d2e31782836d5ba57bf2261b9c557a232c7c2eba374ff9fdb
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 05 Feb 2023 16:57:24 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 04 Feb 2023 21:32:54 GMT
Expires: Sun, 05 Feb 2023 21:32:54 GMT
ETag: "e1dac0692a0d3111c73cd6b3dd1045b70361406f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ef93957e7647de6875c55fc7dcfaa912
db22475c14c297db2f90b0b4d3dd6f5210e573b1
6bf15bb83446ac97e63455961ba37f9f93c60fad1abd422403969847c8b6f6c2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2941
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:24 GMT
Last-Modified: Sun, 05 Feb 2023 16:08:23 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-PWv_Q4NIO9b-vkMIbVtR_coBlAwKrWSPzrMXkw&C=1
172.64.154.237200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-PWv_Q4NIO9b-vkMIbVtR_coBlAwKrWSPzrMXkw&C=1
IP 172.64.154.237:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-PWv_Q4NIO9b-vkMIbVtR_coBlAwKrWSPzrMXkw&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:24 GMT
content-type: image/gif
content-length: 43
cf-ray: 794d2f577dc0b511-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pg%2B4LETwskeI43b%2Fro5bg6oDb0u%2FCszsrnxWSJy0kIQjyoIL0e0hUX5WmiGVdGlo9PiXPm0fmuQ%2FbfhkaXNfOFKV9P%2FYOFUXsRPAL9m5fF7kvJ2JMCN8mwuBrhAyon03YWij"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-3WXX_INIO9b-vkMIbVtR_coBlAzqe7j7AYybmw
185.255.84.153200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-3WXX_INIO9b-vkMIbVtR_coBlAzqe7j7AYybmw
IP 185.255.84.153:0
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-3WXX_INIO9b-vkMIbVtR_coBlAzqe7j7AYybmw HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=45e3411850db9d3bcc04a51f856ba30b; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Sun, 05 Feb 2023 16:57:24 GMT
content-length: 49
x-envoy-upstream-service-time: 9
server: ayl-lb-fra02
X-Firefox-Spdy: h2
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-5PshEoNIO9b-vkMIbVtR_coBlAwBcXTUjgW09Q
185.64.190.80200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-5PshEoNIO9b-vkMIbVtR_coBlAwBcXTUjgW09Q
IP 185.64.190.80:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-5PshEoNIO9b-vkMIbVtR_coBlAwBcXTUjgW09Q HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 16:57:24 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-5PshEoNIO9b-vkMIbVtR_coBlAwBcXTUjgW09Q&KRTB&23144-uid:k-5PshEoNIO9b-vkMIbVtR_coBlAwBcXTUjgW09Q&KRTB&23286-uid:k-5PshEoNIO9b-vkMIbVtR_coBlAwBcXTUjgW09Q&KRTB&23287-uid:k-5PshEoNIO9b-vkMIbVtR_coBlAwBcXTUjgW09Q; domain=pubmatic.com; secure; expires=Tue, 07-Mar-2023 16:57:24 GMT; path=/
PugT=1675616244; domain=pubmatic.com; secure; expires=Tue, 07-Mar-2023 16:57:24 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-m5k1E4NIO9b-vkMIbVtR_coBlAwIfR9jBliVhw&expires=30
69.173.144.139204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-m5k1E4NIO9b-vkMIbVtR_coBlAwIfR9jBliVhw&expires=30
IP 69.173.144.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-m5k1E4NIO9b-vkMIbVtR_coBlAwIfR9jBliVhw&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: a66cbf3142c6ef39e3614b84a34262cf
Content-Type: image/gif
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash a46e0fcb2e91936a965a9d1bc0ad7a1f
caf39ee6942ad2a2adfdb921c1413857981ac555
aeb1c2a2aa956d9057d4517761e290b232fe76fdb9742994060d44e793c559b2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 16:57:24 GMT
Last-Modified: Sun, 05 Feb 2023 16:36:12 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: h8yX6WrtCKFDqpoD0fMbUVUChSCflYdSm0zi-mWwlPnYTaJZCS7LeQ==
Age: 1272
e1.emxdgt.com/put?d=d53&uid=k-KvGKPoNIO9b-vkMIbVtR_coBlAyFHCWjb50aUiWaiBSO5jBo
18.158.8.202204 No Content 0 B URL HTTP/2 e1.emxdgt.com/put?d=d53&uid=k-KvGKPoNIO9b-vkMIbVtR_coBlAyFHCWjb50aUiWaiBSO5jBo
IP 18.158.8.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /put?d=d53&uid=k-KvGKPoNIO9b-vkMIbVtR_coBlAyFHCWjb50aUiWaiBSO5jBo HTTP/1.1
Host: e1.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html
date: Sun, 05 Feb 2023 16:57:23 GMT
content-length: 0
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
37.252.173.215307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP 37.252.173.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sun, 05 Feb 2023 16:57:24 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: 9074ba77-4b67-411f-858e-6833cb64d309
Set-Cookie: uuid2=2961379656617718535; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 06-May-2023 16:57:24 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 38d6041488926d00ce47d44a224dcf85
adb307149c1ccbff39171dbcec950a1bc4a3555b
6af704be5ac7effb872d2f932626d74b74a7918700e57e8118a056fe0745488a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1727
Cache-Control: max-age=132969
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:24 GMT
Etag: "63df3d9e-139"
Expires: Tue, 07 Feb 2023 05:53:33 GMT
Last-Modified: Sun, 05 Feb 2023 05:24:46 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 7747482ad48551c80c7099680c497b3a
369de8f8c56917f793d8f8c425c8ab6204832159
3f6a47246c40f0b1ebb5de42929e4f084c7908f41b6f1fe74f286ed27306cae0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 16:57:24 GMT
Last-Modified: Sun, 05 Feb 2023 15:23:06 GMT
Server: ECS (nyb/1D1D)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8O7ThLqlQcMfubdrV7dxq4kCbOX3rn4NAnfmRjg400JRnSao788hoA==
Age: 5658
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f10d75d5bea623f30504e31b0d6849b8
7c3eed33f22bddf3eb086223eadb6f0bd9882f75
093c5ea6c95e07dd765ca33547de30bc660bb2a91480e18d3aecf6ab751a5f7e
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5723
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:24 GMT
Last-Modified: Sun, 05 Feb 2023 15:22:01 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
sync-criteo.ads.yieldmo.com/sync?id=k-Qe2Ph4NIO9b-vkMIbVtR_coBlAzv_cjfSi-Fgg&pn_id=criteo&ext=1
34.255.72.7200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-Qe2Ph4NIO9b-vkMIbVtR_coBlAzv_cjfSi-Fgg&pn_id=criteo&ext=1
IP 34.255.72.7:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-Qe2Ph4NIO9b-vkMIbVtR_coBlAzv_cjfSi-Fgg&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:24 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=g66bb49e0a0003636d1c%7C1675616244515%7C0%7C; Domain=.yieldmo.com; Expires=Mon, 05-Feb-2024 16:57:24 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-Qe2Ph4NIO9b-vkMIbVtR_coBlAzv_cjfSi-Fgg; Domain=ads.yieldmo.com; Expires=Mon, 05-Feb-2024 16:57:24 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-79npRoNIO9b-vkMIbVtR_coBlAwAVtqABmp43Q&verify=true
3.126.56.137204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-79npRoNIO9b-vkMIbVtR_coBlAwAVtqABmp43Q&verify=true
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-79npRoNIO9b-vkMIbVtR_coBlAwAVtqABmp43Q&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 16:57:24 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBPTf32MCEIRgxujY02hFywJ5roA8C-MFEgEBAQEx4WPpYwAAAAAA_eMAAA&S=AQAAAq-DjiU6BvZujpEJVWIn3sg; Expires=Mon, 5 Feb 2024 22:57:24 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-646kx4NIO9b-vkMIbVtR_coBlAy27hmDwgiGGQ&google_cm=&google_hm=ay02NDZreDROSU85Yi12a01JYlZ0Ul9jb0JsQXkyN2htRHdnaUdHUQ&google_tc=
142.250.74.98302 Found 332 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-646kx4NIO9b-vkMIbVtR_coBlAy27hmDwgiGGQ&google_cm=&google_hm=ay02NDZreDROSU85Yi12a01JYlZ0Ul9jb0JsQXkyN2htRHdnaUdHUQ&google_tc=
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 7b5a7e1a85499d313bfd33914136808c
ffbd7e644b890251038b41feaa6e9253a5b398d1
c6b3adf46a02385136543cfb1db52c4d464fd64d97a8f379df117f7a5acd6dfa
GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-646kx4NIO9b-vkMIbVtR_coBlAy27hmDwgiGGQ&google_cm=&google_hm=ay02NDZreDROSU85Yi12a01JYlZ0Ul9jb0JsQXkyN2htRHdnaUdHUQ&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-646kx4NIO9b-vkMIbVtR_coBlAy27hmDwgiGGQ&google_error=3
date: Sun, 05 Feb 2023 16:57:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9ba49f1fc7f2f554049e6761ba03e37b
687a48ce650668c484bfda4b50fd202977bb85de
256310e4ec423d30bb346e06ff441daf493641a12ad9e208a2cdf90a0fcbf6f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6453
Cache-Control: max-age=140238
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:24 GMT
Etag: "63df478d-1d7"
Expires: Tue, 07 Feb 2023 07:54:42 GMT
Last-Modified: Sun, 05 Feb 2023 06:07:09 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-D8GdK4NIO9b-vkMIbVtR_coBlAyGQV8wEehg0A
3.125.215.124204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-D8GdK4NIO9b-vkMIbVtR_coBlAyGQV8wEehg0A
IP 3.125.215.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-D8GdK4NIO9b-vkMIbVtR_coBlAyGQV8wEehg0A HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 05 Feb 2023 16:57:24 GMT
X-Firefox-Spdy: h2
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-QV2T7oNIO9b-vkMIbVtR_coBlAxrnbRgXMQdTA
185.86.139.113200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-QV2T7oNIO9b-vkMIbVtR_coBlAxrnbRgXMQdTA
IP 185.86.139.113:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-QV2T7oNIO9b-vkMIbVtR_coBlAxrnbRgXMQdTA HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Sun, 05 Feb 2023 16:57:23 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=7826919843962935661; expires=Tue, 05 Mar 2024 16:57:24 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Tue, 05 Mar 2024 16:57:24 GMT; domain=smartadserver.com; path=/
csync=79:k-QV2T7oNIO9b-vkMIbVtR_coBlAxrnbRgXMQdTA; expires=Mon, 05 Feb 2024 16:57:24 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 5f9a07c50e171a7a1c983c3e546fa747
701c6cb3c3acf183ada0ca7144fd5a6accdc3a7a
cf5194a18d2a1926880316305c783ac5d9a6b8086d9ed13d0c50f1303d2fa756
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 16:57:24 GMT
Last-Modified: Sun, 05 Feb 2023 16:34:46 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zPvRO7Q6q3KYbP5iwdIDr1UizPByFKpv-vJExMM1BSiCjDa-CQ-VWw==
Age: 1358
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
37.252.173.215302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP 37.252.173.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Sun, 05 Feb 2023 16:57:24 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: 13b2c9aa-7c6c-4097-b87a-06a60240c0da
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0006fb5e3cfceb796be5de36d494e9ac
b597abcab8e24c535b8b4479775f9e2f5b15ccb0
2567f8b81cbffd4565a6638ef2c01d3ded23de59b925b35136e225a0595bbdeb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5544
Cache-Control: max-age=105853
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 16:57:24 GMT
Etag: "63dec4c9-117"
Expires: Mon, 06 Feb 2023 22:21:37 GMT
Last-Modified: Sat, 04 Feb 2023 20:49:13 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
sync.outbrain.com/cookie-sync?p=criteo&uid=k-gj7vOYNIO9b-vkMIbVtR_coBlAzyLXmgxV62MQ
70.42.32.223200 OK 408 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-gj7vOYNIO9b-vkMIbVtR_coBlAzyLXmgxV62MQ
IP 70.42.32.223:0
File type JSON data\012- , ASCII text, with very long lines (408), with no line terminators
Hash f5e8ba17a27272e9373f1b72d96a956e
f7f9eef52c2d795b1f188c893d382c87a6c50a50
3ee607d4860d05c6743a989864d280191837110eae9aa4a362a6bb242f0d2294
GET /cookie-sync?p=criteo&uid=k-gj7vOYNIO9b-vkMIbVtR_coBlAzyLXmgxV62MQ HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 16:57:24 GMT
Content-Type: application/json
Content-Length: 408
Cache-Control: no-cache
X-TraceId: a5fb1dd5a409574d02eb4b34d96af148
dpm.demdex.net/ibs:dpid=28645&dpuuid=
52.18.15.195302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP 52.18.15.195:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v045-0327f6936.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=66553404508672666001276595944308781535; Max-Age=15552000; Expires=Fri, 04 Aug 2023 16:57:24 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: UOzt2mhhRLM=
Content-Length: 0
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 8b01e823dcdb0bc93def67791b99c1ff
c2b1ff308d5b27a776259ed5696ee0854e586c77
7be7f84db702ba6b520c773d6422eaf7e1ee519485a030057713a74618e3be2d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 05 Feb 2023 16:57:24 GMT
Last-Modified: Sun, 05 Feb 2023 15:21:47 GMT
Server: ECS (bsa/EB15)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uHnO64OnKihZawuoppMnGqLi7Vnso3fzhgN06utGiN0HEEAwmU9f7Q==
Age: 5737
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-hiSTeINIO9b-vkMIbVtR_coBlAyh6a6fG8UpVg
52.59.132.152302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-hiSTeINIO9b-vkMIbVtR_coBlAyh6a6fG8UpVg
IP 52.59.132.152:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-hiSTeINIO9b-vkMIbVtR_coBlAyh6a6fG8UpVg HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 16:57:24 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-hiSTeINIO9b-vkMIbVtR_coBlAyh6a6fG8UpVg
set-cookie: tuuid=4ffa4b6b-f72b-428e-a43c-3495c8de4be0; Expires=Sat, 06 May 2023 16:57:24 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1675616244; Expires=Sat, 06 May 2023 16:57:24 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-hiSTeINIO9b-vkMIbVtR_coBlAyh6a6fG8UpVg
52.59.132.152200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-hiSTeINIO9b-vkMIbVtR_coBlAyh6a6fG8UpVg
IP 52.59.132.152:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-hiSTeINIO9b-vkMIbVtR_coBlAyh6a6fG8UpVg HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:24 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
52.18.15.195200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP 52.18.15.195:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v045-034f2d6c4.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: VMCUSBWZTMw=
Content-Length: 59
Connection: keep-alive
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 05 Feb 2023 16:57:24 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 550391
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdn0.forter.com/2e3b618057a1/8ef0b8929dfa48baa431ed63765381b4/prop.json?_=1675616284715
54.204.202.163200 OK 20 B URL HTTP/1.1 cdn0.forter.com/2e3b618057a1/8ef0b8929dfa48baa431ed63765381b4/prop.json?_=1675616284715
IP 54.204.202.163:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5820854f62a6eb3d38ba7ba0d1b3ea75
639df0b84fe699b4a290a713fd6b9a94bd4deb95
912d0c07da7bdb22cdae025b96da26d01523aaab7362edb28544e3949deb369d
GET /2e3b618057a1/8ef0b8929dfa48baa431ed63765381b4/prop.json?_=1675616284715 HTTP/1.1
Host: cdn0.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: https://www.juretro.com
Vary: Origin
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cache-Control: no-cache
Expires: -1
Pragma: no-cache
Content-Type: application/json
Connection: keep-alive
Date: Sun, 05 Feb 2023 16:57:24 GMT
Transfer-Encoding: chunked
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash bbd90245f244e76d9f45706b1fb5ae58
1e15a0d03d74175f976310f2db334050485ed546
03fda0816cd373e36f33630fc50b4fb5e5852fb1f2c65175b98437386c436dd4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 16:57:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 01:56:49 GMT
Expires: Sat, 11 Feb 2023 01:56:48 GMT
Etag: "1e15a0d03d74175f976310f2db334050485ed546"
Cache-Control: max-age=463763,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794d2f57f9d51bfa-OSL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d53279-1206-40a7-be9b-b504e0748218.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d53279-1206-40a7-be9b-b504e0748218.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7fff69db25a1c7a3fbe154a3c80ac5aa
638e08807f73b70ab87b804816f9eb3e8dd2aa74
be96b347ba90dda9c39975077d963ff875831a14a4269e28edc0d2f80928bba6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d53279-1206-40a7-be9b-b504e0748218.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: af4c4533-48b8-4b02-951a-3e61933fb126
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3fyFrMoAMFr_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c64-0346b30d0ded67912070f671;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:06:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IJBXK8DSlmaj48MVSTo-8A69jOe3x2cvnZYRLfyXZ7jZWqsMbTZsEg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:43:26 GMT
age: 69239
etag: "638e08807f73b70ab87b804816f9eb3e8dd2aa74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=46&user_id=k-TJY2Y4NIO9b-vkMIbVtR_coBlAy6DdeSQjtbmA&expires=30
3.124.26.229302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=46&user_id=k-TJY2Y4NIO9b-vkMIbVtR_coBlAy6DdeSQjtbmA&expires=30
IP 3.124.26.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=46&user_id=k-TJY2Y4NIO9b-vkMIbVtR_coBlAy6DdeSQjtbmA&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 05 Feb 2023 16:57:25 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-TJY2Y4NIO9b-vkMIbVtR_coBlAy6DdeSQjtbmA&expires=30
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=c1ab7c31-4b42-4039-8ff3-bfc08284abcc; path=/; expires=Mon, 05-Feb-2024 16:57:25 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675616245; path=/; expires=Mon, 05-Feb-2024 16:57:25 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675616245; path=/; expires=Mon, 05-Feb-2024 16:57:25 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675616245; path=/; expires=Mon, 05-Feb-2024 16:57:25 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-646kx4NIO9b-vkMIbVtR_coBlAy27hmDwgiGGQ&google_error=3
178.250.0.163200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-646kx4NIO9b-vkMIbVtR_coBlAy27hmDwgiGGQ&google_error=3
IP 178.250.0.163:0
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-646kx4NIO9b-vkMIbVtR_coBlAy27hmDwgiGGQ&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:24 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 91952
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
178.250.0.163200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP 178.250.0.163:0
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:23 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 263364
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
sources.aopcdn.com/cloud/common/i7eo-cdb7a0aad4.js
104.16.89.83200 OK 0 B URL HTTP/2 sources.aopcdn.com/cloud/common/i7eo-cdb7a0aad4.js
IP 104.16.89.83:0
GET /cloud/common/i7eo-cdb7a0aad4.js HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:17 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=33459
content-md5: zbegqtQougeXwv2gd2lgfQ==
last-modified: Mon, 15 Mar 2021 02:34:42 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 2318280625526166053
x-oss-object-type: Normal
x-oss-request-id: 618CA546719F77373628703A
x-oss-server-time: 52
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 1706093
expires: Wed, 08 Mar 2023 16:57:17 GMT
cache-control: public, max-age=2678400
server: cloudflare
cf-ray: 794d2f29ebd4b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sources.aopcdn.com/cloud/opShop/pc/css/vendor-0c8e7ad1a3.css
104.16.89.83200 OK 0 B URL HTTP/2 sources.aopcdn.com/cloud/opShop/pc/css/vendor-0c8e7ad1a3.css
IP 104.16.89.83:0
GET /cloud/opShop/pc/css/vendor-0c8e7ad1a3.css HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:17 GMT
content-type: text/css
cache-control: public, max-age=2678400
cf-bgj: minify
cf-polished: origSize=423112
content-md5: VPqDbTNRldU8La1RyC+Lzw==
last-modified: Fri, 06 Jan 2023 06:25:00 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 1024714085614593747
x-oss-object-type: Normal
x-oss-request-id: 63BF95039979C73230353232
x-oss-server-time: 44
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 1600578
expires: Wed, 08 Mar 2023 16:57:17 GMT
server: cloudflare
cf-ray: 794d2f2a2c33b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
commondatastorage.googleapis.com/chromium-browser-snapshots/Win/1101351/chrome-win.zip
216.58.207.240200 OK 0 B URL HTTP/1.1 commondatastorage.googleapis.com/chromium-browser-snapshots/Win/1101351/chrome-win.zip
IP 216.58.207.240:0
GET /chromium-browser-snapshots/Win/1101351/chrome-win.zip HTTP/1.1
Host: commondatastorage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
X-GUploader-UploadID: ADPycdu2IS7OtioWNitXdio40mf5iWmp_F8mOjklDbpe2grT6B2NMQIQ_zqxPGJOLdxCWYSzJRqnxLw9xEtz8FzNwv3qOrlTN2n_
Expires: Sun, 05 Feb 2023 17:57:17 GMT
Date: Sun, 05 Feb 2023 16:57:17 GMT
Cache-Control: public, max-age=3600
Vary: X-Goog-Allowed-Resources
Last-Modified: Sat, 04 Feb 2023 17:05:15 GMT
ETag: "7d8b4f70eaa28533eafe4ffab2aa871d"
x-goog-generation: 1675530315389941
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 190988350
Content-Type: application/x-zip-compressed
x-goog-hash: crc32c=/mnPyA==, md5=fYtPcOqihTPq/k/6sqqHHQ==
x-goog-storage-class: STANDARD
Accept-Ranges: bytes
Content-Length: 190988350
Server: UploadServer
wzstatic1.streamoptim.com/stream-subscribe.js
54.230.111.77200 OK 0 B URL HTTP/2 wzstatic1.streamoptim.com/stream-subscribe.js
IP 54.230.111.77:0
GET /stream-subscribe.js HTTP/1.1
Host: wzstatic1.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Mon, 09 Jan 2023 02:40:24 GMT
service-worker-allowed: /
content-encoding: gzip
date: Sun, 05 Feb 2023 06:59:13 GMT
etag: "63bb7e98-9bf79"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Glcy7pgf2Av8USiWvFPLvJWmq-w4tArzwp41RgmpMTwpEQBRlCjWAQ==
age: 36016
X-Firefox-Spdy: h2
cdn9.forter.com/vchk2/v1/76ea0c9b6e4225793470e44b18a654eea1b79d0a7bdc4066bfe0645cb7c59010ac7f4bc9661156e1dbf449d4a179
143.204.55.40200 OK 0 B URL HTTP/2 cdn9.forter.com/vchk2/v1/76ea0c9b6e4225793470e44b18a654eea1b79d0a7bdc4066bfe0645cb7c59010ac7f4bc9661156e1dbf449d4a179
IP 143.204.55.40:0
GET /vchk2/v1/76ea0c9b6e4225793470e44b18a654eea1b79d0a7bdc4066bfe0645cb7c59010ac7f4bc9661156e1dbf449d4a179 HTTP/1.1
Host: cdn9.forter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: eyJyIjowLjg5NDc1OTcwMzE1Nzg2OTcsInUiOiI4ZWYwYjg5MjlkZmE0OGJhYTQzMWVkNjM3NjUzODFiNCIsInMiOiIyZTNiNjE4MDU3YTEifQ==
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Referer: https://www.juretro.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:20 GMT
access-control-allow-origin: *
timing-allow-origin: *
cache-control: private, s-maxage=0, proxy-revalidate
strict-transport-security: max-age=86400; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vGWcmeIPXWtpEBINzEPwt2f3w68_GgskO_oQrFA-7E_zW8IwSVCX2Q==
X-Firefox-Spdy: h2
www.juretro.com/hotsale/?locale=de&utm_campaign=20230205&utm_medium=mkt&utm_source=EDM
104.17.228.33200 OK 0 B URL HTTP/2 www.juretro.com/hotsale/?locale=de&utm_campaign=20230205&utm_medium=mkt&utm_source=EDM
IP 104.17.228.33:0
GET /hotsale/?locale=de&utm_campaign=20230205&utm_medium=mkt&utm_source=EDM HTTP/1.1
Host: www.juretro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:16 GMT
content-type: text/html;charset=UTF-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-max-age: 259200
access-control-allow-headers: X-Requested-With,X_Requested_With,Content-Type
x-server-ip: 172.20.103.197
x-request-id: f9902890613046ceb54d4ded3dffe2eb
cache-control: no-cache
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
x-site-id: 1454
content-language: de
set-cookie: locale=de; Path=/
locale=de; Path=/
ccy=EUR; Path=/
_opbd=EDM|mkt|20230205|||||47fda387b522ac88af156822d7ff6132; Expires=Tue, 07-Mar-2023 16:57:16 GMT; Path=/
_opu=op_30917ad58d01413a_1862282b3cd_75ac; Expires=Mon, 05-Feb-2024 16:57:16 GMT; Path=/
_opud=op_bfa6a5b973531e32_1862282b3cd_2dd6; Expires=Mon, 06-Feb-2023 16:57:16 GMT; Path=/
_odevice=-1633778157; Expires=Mon, 05-Feb-2024 16:57:16 GMT; Path=/
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 794d2f256aa4b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
exit.streamoptim.com/notify/capture-config?shop=www.juretro.com&domain=www.juretro.com
47.251.41.24200 OK 0 B URL HTTP/2 exit.streamoptim.com/notify/capture-config?shop=www.juretro.com&domain=www.juretro.com
IP 47.251.41.24:0
ASN #45102 Alibaba US Technology Co., Ltd.
GET /notify/capture-config?shop=www.juretro.com&domain=www.juretro.com HTTP/1.1
Host: exit.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.juretro.com
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:20 GMT
content-type: application/json; charset=UTF-8
x-powered-by: PHP/7.3.3
access-control-allow-origin: https://www.juretro.com
access-control-allow-credentials: true
access-control-expose-headers: X-Redirect
X-Firefox-Spdy: h2
sslwidget.criteo.com/event?a=78119&v=5.13.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dce%26m%3D%255B%255D&p2=e%3Ddis&adce=1&bundle=NyCmLl94TENCYTVjWWR3aldjZkhqJTJCUWFWQ0t5NVEzVklQSzB4eFRIdVVxSWM1OWFVNmh4dUpXJTJCQ2ZIMDJFd2M5V2ZIWFdzS0huNmNlbDFlUkxNM1JVall2SGxUaE55V3lkOXd1S01UTHlXdU9odG9KeVFPMFd0eTVVYm9PYjBNUDhzdjZUVWphQ3JDUEdyZExBOFk3NVhWeXJRJTNEJTNE&tld=juretro.com&fu=https%253A%252F%252Fwww.juretro.com%252Fhotsale%252F%253Flocale%253Dde%2526utm_campaign%253D20230205%2526utm_medium%253Dmkt%2526utm_source%253DEDM&dtycbr=46085
178.250.0.163200 OK 0 B URL HTTP/2 sslwidget.criteo.com/event?a=78119&v=5.13.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dce%26m%3D%255B%255D&p2=e%3Ddis&adce=1&bundle=NyCmLl94TENCYTVjWWR3aldjZkhqJTJCUWFWQ0t5NVEzVklQSzB4eFRIdVVxSWM1OWFVNmh4dUpXJTJCQ2ZIMDJFd2M5V2ZIWFdzS0huNmNlbDFlUkxNM1JVall2SGxUaE55V3lkOXd1S01UTHlXdU9odG9KeVFPMFd0eTVVYm9PYjBNUDhzdjZUVWphQ3JDUEdyZExBOFk3NVhWeXJRJTNEJTNE&tld=juretro.com&fu=https%253A%252F%252Fwww.juretro.com%252Fhotsale%252F%253Flocale%253Dde%2526utm_campaign%253D20230205%2526utm_medium%253Dmkt%2526utm_source%253DEDM&dtycbr=46085
IP 178.250.0.163:0
GET /event?a=78119&v=5.13.0&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dce%26m%3D%255B%255D&p2=e%3Ddis&adce=1&bundle=NyCmLl94TENCYTVjWWR3aldjZkhqJTJCUWFWQ0t5NVEzVklQSzB4eFRIdVVxSWM1OWFVNmh4dUpXJTJCQ2ZIMDJFd2M5V2ZIWFdzS0huNmNlbDFlUkxNM1JVall2SGxUaE55V3lkOXd1S01UTHlXdU9odG9KeVFPMFd0eTVVYm9PYjBNUDhzdjZUVWphQ3JDUEdyZExBOFk3NVhWeXJRJTNEJTNE&tld=juretro.com&fu=https%253A%252F%252Fwww.juretro.com%252Fhotsale%252F%253Flocale%253Dde%2526utm_campaign%253D20230205%2526utm_medium%253Dmkt%2526utm_source%253DEDM&dtycbr=46085 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:22 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 24980010
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-n8c7AINIO9b-vkMIbVtR_coBlAyraIWwuQmvqZ1vyTYeA_bP
18.198.115.75200 OK 0 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-n8c7AINIO9b-vkMIbVtR_coBlAyraIWwuQmvqZ1vyTYeA_bP
IP 18.198.115.75:0
GET /usersync/push?partner=criteo&partnerId=k-n8c7AINIO9b-vkMIbVtR_coBlAyraIWwuQmvqZ1vyTYeA_bP HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:24 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%2229955590-a576-11ed-9eb6-c9e2865dff7a%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Sun, 19 Feb 2023 16:57:24 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%2229955590-a576-11ed-9eb6-c9e2865dff7a%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Sun, 19 Feb 2023 16:57:24 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%2229955590-a576-11ed-9eb6-c9e2865dff7a%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Sun, 19 Feb 2023 16:57:24 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%2229955590-a576-11ed-9eb6-c9e2865dff7a%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Sun, 19 Feb 2023 16:57:24 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-n8c7AINIO9b-vkMIbVtR_coBlAyraIWwuQmvqZ1vyTYeA_bP%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Sun, 19 Feb 2023 16:57:24 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
wzstatic.streamoptim.com/stream/style/fonts-style.css
54.230.111.49200 OK 0 B URL HTTP/2 wzstatic.streamoptim.com/stream/style/fonts-style.css
IP 54.230.111.49:0
GET /stream/style/fonts-style.css HTTP/1.1
Host: wzstatic.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: AliyunOSS
x-oss-request-id: 63DE1FB54EA121323292DE04
last-modified: Thu, 24 Jun 2021 03:21:47 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 4707530008504402095
x-oss-storage-class: Standard
content-md5: 9h/+Bs66X1XZqOeOfipmdQ==
x-oss-server-time: 15
content-encoding: gzip
date: Sun, 05 Feb 2023 09:05:00 GMT
etag: "F61FFE06CEBA5F55D9A8E78E7E2A6675"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: h_l57uK_UgedO2uLdLDOhVfbnoO_lbV24kcGOOpuUNHK4oVPjSEVDg==
age: 28344
X-Firefox-Spdy: h2
criteo-partners.tremorhub.com/sync?UICR=k-sDSTGoNIO9b-vkMIbVtR_coBlAyBynUIIk6q5A
54.236.111.218200 OK 0 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-sDSTGoNIO9b-vkMIbVtR_coBlAyBynUIIk6q5A
IP 54.236.111.218:0
GET /sync?UICR=k-sDSTGoNIO9b-vkMIbVtR_coBlAyBynUIIk6q5A HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:24 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
sources.aopcdn.com/cloud/opShop/script/user-core-b640671d09.js
104.16.89.83200 OK 0 B URL HTTP/2 sources.aopcdn.com/cloud/opShop/script/user-core-b640671d09.js
IP 104.16.89.83:0
GET /cloud/opShop/script/user-core-b640671d09.js HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:17 GMT
content-type: application/javascript
cache-control: public, max-age=2678400
cf-bgj: minify
content-md5: tkBnHQmnqdlWlenXU5ghIQ==
last-modified: Mon, 16 Jan 2023 06:55:55 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 18132986310976553868
x-oss-object-type: Normal
x-oss-request-id: 63C743629979C738336564D2
x-oss-server-time: 39
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 1600577
expires: Wed, 08 Mar 2023 16:57:17 GMT
server: cloudflare
cf-ray: 794d2f29ebd8b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sources.aopcdn.com/cloud/opShop/script/cart-progress-870d7ff2c0.js
104.16.89.83200 OK 0 B URL HTTP/2 sources.aopcdn.com/cloud/opShop/script/cart-progress-870d7ff2c0.js
IP 104.16.89.83:0
GET /cloud/opShop/script/cart-progress-870d7ff2c0.js HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:17 GMT
content-type: application/javascript
cache-control: public, max-age=2678400
cf-bgj: minify
content-md5: YHIVto2yzpdw8v51w/AcCw==
last-modified: Fri, 13 Jan 2023 03:44:48 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 10498003901656960275
x-oss-object-type: Normal
x-oss-request-id: 63C112CE719F7731324AE90C
x-oss-server-time: 26
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 1513783
expires: Wed, 08 Mar 2023 16:57:17 GMT
server: cloudflare
cf-ray: 794d2f29ebd5b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
wzstatic1.streamoptim.com/log.js
54.230.111.77200 OK 0 B URL HTTP/2 wzstatic1.streamoptim.com/log.js
IP 54.230.111.77:0
GET /log.js HTTP/1.1
Host: wzstatic1.streamoptim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Mon, 25 Jul 2022 03:48:52 GMT
service-worker-allowed: /
content-encoding: gzip
date: Sun, 05 Feb 2023 06:59:13 GMT
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _Hw0uZGDEQfkXQjtwZ1mV5HCBHuEL80-3QOXjSo4xZ5AZvAXSyJ3Aw==
age: 36018
X-Firefox-Spdy: h2
sources.aopcdn.com/cloud/opShop/script/vendor-4d83fc9c1d.js
104.16.89.83200 OK 0 B URL HTTP/2 sources.aopcdn.com/cloud/opShop/script/vendor-4d83fc9c1d.js
IP 104.16.89.83:0
GET /cloud/opShop/script/vendor-4d83fc9c1d.js HTTP/1.1
Host: sources.aopcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.juretro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:17 GMT
content-type: application/javascript
cache-control: public, max-age=2678400
cf-bgj: minify
cf-polished: origSize=732487
content-md5: TYP8nB3PwQ9erkL9mZCgCw==
last-modified: Tue, 13 Dec 2022 05:53:02 GMT
vary: Accept-Encoding
x-oss-hash-crc64ecma: 1552834857035757423
x-oss-object-type: Normal
x-oss-request-id: 63AEC14FF488A53539568FBE
x-oss-server-time: 2
x-oss-storage-class: Standard
cf-cache-status: HIT
age: 2139859
expires: Wed, 08 Mar 2023 16:57:17 GMT
server: cloudflare
cf-ray: 794d2f2a2c35b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=onetag&domain=juretro.com&sn=FirefoxSyncframe&so=0&topUrl=www.juretro.com&info=6Z-O8l80M0RITmhlJTJCZkMwOUJGQlhaMUN2czF4ZnJ1eEpHMExTa1RUclFYWWN3N0xYdnB2Tk95aWdaTVZKRnN0MVo2TmY&idsd=-1228010590,-617539913&cw=1&lsw=1
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=juretro.com&sn=FirefoxSyncframe&so=0&topUrl=www.juretro.com&info=6Z-O8l80M0RITmhlJTJCZkMwOUJGQlhaMUN2czF4ZnJ1eEpHMExTa1RUclFYWWN3N0xYdnB2Tk95aWdaTVZKRnN0MVo2TmY&idsd=-1228010590,-617539913&cw=1&lsw=1
IP 178.250.2.146:0
GET /sid/json?origin=onetag&domain=juretro.com&sn=FirefoxSyncframe&so=0&topUrl=www.juretro.com&info=6Z-O8l80M0RITmhlJTJCZkMwOUJGQlhaMUN2czF4ZnJ1eEpHMExTa1RUclFYWWN3N0xYdnB2Tk95aWdaTVZKRnN0MVo2TmY&idsd=-1228010590,-617539913&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=www.juretro.com&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 16:57:21 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 955409
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-kqVbLYNIO9b-vkMIbVtR_coBlAwun7U62RAakw
141.226.228.48200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-kqVbLYNIO9b-vkMIbVtR_coBlAwun7U62RAakw
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-kqVbLYNIO9b-vkMIbVtR_coBlAwun7U62RAakw HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 16:57:24 GMT
x-fastly-to-nlb-rtt: 22277
access-control-allow-credentials: true
X-Firefox-Spdy: h2