Report - arabe-datsh.com/bimmaroc/bim/index.html

Report Overview

Submitted URL
arabe-datsh.com/bimmaroc/bim/index.html
IP
92.205.3.134
ASN
#21499 Host Europe GmbH
Submitted
2022-09-25 14:11:57
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.usertrust.com	899	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	330 B	1.0 kB	104.18.32.68
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	496 B	694 B	142.250.74.164
dnacdn.net	3760	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	863 B	1.8 kB	178.250.2.146
match.sharethrough.com	604	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	430 B	80 B	18.198.13.189
ups.analytics.yahoo.com	287	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	830 B	1.0 kB	18.156.0.31
sync-t1.taboola.com	1269	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	410 B	155 B	141.226.228.48
bestgamo.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	695 B	4.0 kB	162.0.235.121
bam.nr-data.net	630	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	856 B	602 B	162.247.241.14
criteo-sync.teads.tv	1786	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	270 B	23.195.255.234
ib.adnxs.com	241	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	830 B	1.7 kB	185.89.210.141
fontlibrary.org	270139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	375 B	149 B	45.56.91.11
cm.creativecdn.com	9835	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	853 B	700 B	185.184.8.90
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	366 B	63 kB	142.250.74.72
cm.g.doubleclick.net	202	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.3 kB	216.58.207.226
gum.criteo.com	381	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	1.0 kB	178.250.0.157
dpm.demdex.net	204	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	714 B	1.3 kB	34.252.39.216
criteo-partners.tremorhub.com	2360	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	389 B	201 B	3.230.192.196
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.3 kB	11 kB	93.184.220.29
ad.360yield.com	657	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	836 B	857 B	52.28.226.85
sync-criteo.ads.yieldmo.com	2354	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	404 B	629 B	54.220.128.66
visitor.omnitagjs.com	1722	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	441 B	511 B	185.255.84.152
sync.outbrain.com	757	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	392 B	143 B	70.42.32.127
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	6.2 kB	23.36.77.32
www.jumia.ci	352333	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.1 kB	144 kB	104.17.208.190
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	5.6 kB	142.250.74.3
js-agent.newrelic.com	378	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	356 B	15 kB	151.101.86.137
r.casalemedia.com	1896	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	820 B	1.9 kB	104.18.18.126
id5-sync.com	504	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	379 B	1.0 kB	141.95.98.64
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	60 kB	34.120.237.76
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	4.1 kB	142.250.74.98
x.bidswitch.net	286	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	804 B	972 B	52.57.150.184
ag.gbc.criteo.com	5925	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	374 B	493 B	185.235.84.36
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	984 B	2.9 kB	172.64.155.188
fledge-eu.creativecdn.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	585 B	986 B	185.184.8.90
cm.adform.net	1667	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	393 B	264 B	37.157.4.23
s.thebrighttag.com	1487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	347 B	376 B	3.128.146.7
gem.gbc.criteo.com	6039	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	375 B	4.6 kB	185.235.84.224
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.35
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ci.jumia.is	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	13 kB	1.2 MB	104.16.48.64
creativecdn.com	201462	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	1.7 kB	185.184.8.90
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.7 kB	143.204.42.158
eb2.3lift.com	402	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	394 B	206 B	76.223.111.18
arabe-datsh.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	21 kB	2.5 MB	92.205.3.134
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.115
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	34.216.192.228
static.criteo.net	652	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	349 B	446 B	178.250.2.130
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	581 B	707 B	64.233.162.156
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	600 B	373 B	157.240.200.35
simage2.pubmatic.com	578	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	450 B	771 B	185.64.189.110
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	495 B	694 B	142.250.74.3
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	358 B	28 kB	157.240.200.14
pixel.rubiconproject.com	314	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	237 B	213.19.162.80
ad.yieldlab.net	3515	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	1.6 kB	23.61.208.154
status.thawte.com	5123	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
dis.criteo.com	660	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	810 B	877 B	178.250.2.151
ocsp.entrust.net	1208	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	328 B	2.0 kB	104.110.10.32

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-25	medium	fontlibrary.org/face/droid-arabic-kufi	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (38)

	URL	Size	First Seen	Last Seen
	sslwidget.criteo.com/event?a=18017&v=5.12.1&p0=e%3Dexd%26site_type%3Dd%26ci%3Dundefined%26ref%3Dhttps%253A%252F%252Farabe-datsh.com&p1=e%3Dvh%26si%3D0%26p%3Dundefined&p2=e%3Ddis&adce=1&bundle=gRH2MF9zVVJpJTJCY2JNeTB5OHFNZGVtVEYxNDNuciUyQkZSMXNMYXBsJTJCSHQyYkxZY1NOajFMeUJBYzlETEQxNnoybDVYMVJRUklRR3FKTzhDQTR2NWdwUU9yMiUyRjd1NGVGallUclFLNWtPS1VSOUFpR2xHTzQ0ayUyQjZIaXd1SW9VJTJCTFM0b2RzUQ&tld=jumia.ci&fu=https%253A%252F%252Fwww.jumia.ci%252F&pu=https%253A%252F%252Farabe-datsh.com%252F&dtycbr=19694	8.4 kB	2023-03-08	2023-03-08
Pretty URL sslwidget.criteo.com/event?a=18017&v=5.12.1&p0=e%3Dexd%26site_type%3Dd%26ci%3Dundefined%26ref%3Dhttps%253A%252F%252Farabe-datsh.com&p1=e%3Dvh%26si%3D0%26p%3Dundefined&p2=e%3Ddis&adce=1&bundle=gRH2MF9zVVJpJTJCY2JNeTB5OHFNZGVtVEYxNDNuciUyQkZSMXNMYXBsJTJCSHQyYkxZY1NOajFMeUJBYzlETEQxNnoybDVYMVJRUklRR3FKTzhDQTR2NWdwUU9yMiUyRjd1NGVGallUclFLNWtPS1VSOUFpR2xHTzQ0ayUyQjZIaXd1SW9VJTJCTFM0b2RzUQ&tld=jumia.ci&fu=https%253A%252F%252Fwww.jumia.ci%252F&pu=https%253A%252F%252Farabe-datsh.com%252F&dtycbr=19694 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-03-08 01:04:20 Times Seen1 Hash 68e546430d66f012cfca1424a1d4edff 353da7743fb4046f2d86dcfa16ff8f3f22fc52d0 f99b69c963c5b15edd11d3781d06e453c54cb8ca6f677541a237237626ca116d Loading...

	www.jumia.ci/	5.0 kB	2023-03-08	2023-03-08
Pretty URL www.jumia.ci/ IP 104.17.208.190 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-03-08 01:04:20 Times Seen1 Hash 0012ee8c30734410498c6316122d71f5 5de537721554b0fd9de2a6f4d94d982400ccb7fb 99d28a1efbabb564b71a4a40a5bf06a1e8d1e7015c22e9cd01f30bcf3947be18 Loading...

	arabe-datsh.com/bimmaroc/bim/index.html	57 B	2023-03-07	2024-04-24
Pretty URL arabe-datsh.com/bimmaroc/bim/index.html IP 92.205.3.134 ASN #21499 Host Europe GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:59 Last Seen2024-04-24 17:00:30 Times Seen10844 Hash 2a2781f9bb6302c2f96df0d1e96ef524 796bb90146495848c0c479533c367edadb94f1a9 1b60af0ce49d65e8b1006457c16883d60e53a0054bb157c57c3b03a82ee9964d Loading...

	arabe-datsh.com/bimmaroc/bim/js/s4.min.js	451 B	2023-03-08	2023-05-30
Pretty URL arabe-datsh.com/bimmaroc/bim/js/s4.min.js IP 92.205.3.134 ASN #21499 Host Europe GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-05-30 15:30:44 Times Seen6 Hash f7fa9e8ba0692426c4758b8050413ade e9e85a368414a2c592f923aba04c1c6362370f9d bf618eacf329229fdc32975bbd3cf03e2627a180d69b6a4806c49badc1608d9f Loading...

	arabe-datsh.com/bimmaroc/bim/index.html	1.4 kB	2023-03-08	2023-05-03
Pretty URL arabe-datsh.com/bimmaroc/bim/index.html IP 92.205.3.134 ASN #21499 Host Europe GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-05-03 01:50:19 Times Seen3 Hash 432c5338accc64f0aafed2ddbdd0fddb 1d71db51e1a5ad82a40571941515e41247ac54d7 e4527f141e50218b2b732fc651a55dc072b6d5b1cdf57f1d3c65c921785045f4 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-01-06
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:05:31 Last Seen2024-01-06 17:39:53 Times Seen66 Hash 99ba52a15d2da967b023016d1af58cbd 5c2246049c43834d17113877b4731bd4f9803d55 9e25469f734732205f33dd80ff8ca12080406c18d2fa99a1f368103e51f7999f Loading...

	fledge-eu.creativecdn.com/fledge-igmembership?ntk=dAxnoAV5s_yBr6_SAaHodauLenz3s-tWDZHkVwwUfBMlueKErd19PKPpWTxnLjQuoI8TVro-WAO0pWocUtOMag	1.2 kB	2023-03-08	2023-03-08
Pretty URL fledge-eu.creativecdn.com/fledge-igmembership?ntk=dAxnoAV5s_yBr6_SAaHodauLenz3s-tWDZHkVwwUfBMlueKErd19PKPpWTxnLjQuoI8TVro-WAO0pWocUtOMag IP 185.184.8.90 ASN #204995 Rtb House S.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-03-08 01:04:20 Times Seen1 Hash b04f4327c10b643d2043e6881a12c621 b0d9edd38c2950cd4f48234bc54190be4a37a942 37ddaadb4a2c48e5328923a53a447bb9fd17e27bb6012fc9667c65376c137947 Loading...

	arabe-datsh.com/bimmaroc/bim/index.html	250 B	2023-03-08	2023-05-25
Pretty URL arabe-datsh.com/bimmaroc/bim/index.html IP 92.205.3.134 ASN #21499 Host Europe GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-05-25 22:53:55 Times Seen4 Hash e32958304906e00cc6aaffa34e89a942 f5dbc111acb28b317a6e47453d04027dec2f5176 c1d1ff66f93f716cb02a142293eeeb910f77cdbe77031366e2f66e2f6bd533d9 Loading...

	arabe-datsh.com/bimmaroc/bim/index.html	362 B	2023-03-08	2023-05-25
Pretty URL arabe-datsh.com/bimmaroc/bim/index.html IP 92.205.3.134 ASN #21499 Host Europe GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-05-25 22:53:55 Times Seen4 Hash 124f6ff0bcc3ecff33aaac6c61b7bcad c7d4ecb72cf09e7b508590f75b71a79e1b194650 537c102e1b7cf20904e8d5838b1f6250a75935bebbaaedd37af43545cf627b89 Loading...

	www.jumia.ci/	1.1 kB	2023-03-08	2023-03-08
Pretty URL www.jumia.ci/ IP 104.17.208.190 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-03-08 01:04:20 Times Seen1 Hash 02120c6487de66b5cfc40ff37d544467 d9432f15647a7bc5d420dd56ba7b9db7339c9c66 9ec694e1945bd70facbba3788e3fdc1b6a6f8364622e638f531beee748e78ea6 Loading...

	www.jumia.ci/	620 B	2023-03-08	2023-03-11
Pretty URL www.jumia.ci/ IP 104.17.208.190 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-03-11 23:48:26 Times Seen1 Hash 63c7fc181db53f0b97728e9fcccc7372 55b638f196bedbe6394b626fd21e1a9a5146d916 b75255c11b8cf7b35ac23a5a04768d2cae8863b65fe3bc5407052698b49f0bca Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/656490851/?random=1664115108895&cv=9&fst=1664115108895&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&ig=0&data=dynx_pagetype%3Dhome&frm=0&url=https%3A%2F%2Fwww.jumia.ci%2F&ref=https%3A%2F%2Farabe-datsh.com%2F&tiba=Jumia%20CI%20%7C%20Vente%20en%20ligne%20%C3%89picerie%2C%20Sant%C3%A9%20%26%20Hygi%C3%A8ne%2C%20T%C3%A9l%C3%A9phones%2C%20TV%2C%20Jeux%20Vid%C3%A9os&auid=1369925022.1664115108&hn=www.google.com&async=1&rfmt=3&fmt=4	2.6 kB	2023-03-08	2023-03-08
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/656490851/?random=1664115108895&cv=9&fst=1664115108895&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&ig=0&data=dynx_pagetype%3Dhome&frm=0&url=https%3A%2F%2Fwww.jumia.ci%2F&ref=https%3A%2F%2Farabe-datsh.com%2F&tiba=Jumia%20CI%20%7C%20Vente%20en%20ligne%20%C3%89picerie%2C%20Sant%C3%A9%20%26%20Hygi%C3%A8ne%2C%20T%C3%A9l%C3%A9phones%2C%20TV%2C%20Jeux%20Vid%C3%A9os&auid=1369925022.1664115108&hn=www.google.com&async=1&rfmt=3&fmt=4 IP 142.250.74.98 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-03-08 01:04:20 Times Seen1 Hash 6f230b481eec8d6a07964c49e01fc8e2 79e218287381470601f4e154c4d55b279aa4311d 37014824a8254622cfc1a427ab93b97af79b05f4a3479223407a5bb85512d7bf Loading...

	connect.facebook.net/signals/config/1064053203618969?v=2.9.84&r=stable	300 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/signals/config/1064053203618969?v=2.9.84&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-03-08 01:04:20 Times Seen1 Hash 831b0b392aaa0e1bb48e8d9d1f6dcba8 ef0ddb46c5f6fcaf8d2b44da83c7fad1f3c48a5a da7f94f3b5382c3f1fab7507624135c7182fe8c2e722ede847b0fc2322b7341e Loading...

	arabe-datsh.com/bimmaroc/bim/index.html	169 B	2023-03-08	2023-03-29
Pretty URL arabe-datsh.com/bimmaroc/bim/index.html IP 92.205.3.134 ASN #21499 Host Europe GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-03-29 22:24:19 Times Seen2 Hash b854187a5e7d43ee2d43bbe456947246 6f436e77b86b2bb0df6d06e1e0f1f0e90a08ad16 2e4b5c29bb04a7c9430a41f51c624dd46aa127f20073abe04d3eafa1cb87babf Loading...

	bam.nr-data.net/1/b76de0635f?a=200139805&v=1216.487a282&to=NVxXYhMHChFYVUELDQwWdkMSEgsPFn5aDwdCRRVmLjUw&rst=1700&ck=1&ref=https://www.jumia.ci/&ap=89.393564&be=1057&fe=1296&dc=1290&tt=cb163fedb01bcc1b&perf=%7B%22timing%22:%7B%22of%22:1664115106756,%22n%22:0,%22f%22:0,%22dn%22:15,%22dne%22:64,%22c%22:64,%22s%22:67,%22ce%22:123,%22rq%22:123,%22rp%22:965,%22rpe%22:1037,%22dl%22:969,%22di%22:1075,%22ds%22:1289,%22de%22:1292,%22dc%22:1295,%22l%22:1295,%22le%22:1321%7D,%22navigation%22:%7B%22ty%22:255%7D%7D&fcp=1187&jsonp=NREUM.setToken	49 B	2023-03-07	2024-03-22
Pretty URL bam.nr-data.net/1/b76de0635f?a=200139805&v=1216.487a282&to=NVxXYhMHChFYVUELDQwWdkMSEgsPFn5aDwdCRRVmLjUw&rst=1700&ck=1&ref=https://www.jumia.ci/&ap=89.393564&be=1057&fe=1296&dc=1290&tt=cb163fedb01bcc1b&perf=%7B%22timing%22:%7B%22of%22:1664115106756,%22n%22:0,%22f%22:0,%22dn%22:15,%22dne%22:64,%22c%22:64,%22s%22:67,%22ce%22:123,%22rq%22:123,%22rp%22:965,%22rpe%22:1037,%22dl%22:969,%22di%22:1075,%22ds%22:1289,%22de%22:1292,%22dc%22:1295,%22l%22:1295,%22le%22:1321%7D,%22navigation%22:%7B%22ty%22:255%7D%7D&fcp=1187&jsonp=NREUM.setToken IP 162.247.241.14 ASN #23467 NEWRELIC-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-03-22 06:11:42 Times Seen2776 Hash ada33e5b8877e743ff658bf4bfa1867c 5a78662243dac43c0ee48bcb7e05a536b84c2e38 dac715f087720dd7ff7067f5d2ec1988851fa93140ae8a9cbfaa15659dd7fd82 Loading...

	www.jumia.ci/	479 B	2023-03-08	2023-03-11
Pretty URL www.jumia.ci/ IP 104.17.208.190 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-03-11 23:48:26 Times Seen1 Hash ca75cff0efa53487ec560da3763b4b45 ff9c0aa201b6800430a5068f9bcf536887944538 f91a3d815245410261e8582e4284aaeea90120afc2cfb962bed1b76a1d63cb7c Loading...

	www.jumia.ci/	823 B	2023-03-08	2023-11-08
Pretty URL www.jumia.ci/ IP 104.17.208.190 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-11-08 01:32:37 Times Seen9 Hash 6bdfb6c80454bd50b88d32da57573abf 8fa553b83554f8307c7b6b352e10ada2e704e0bf 685e287cc0b368e5bc48be5f344e984b057df20cb63a6690535b05626945c5d6 Loading...

	connect.facebook.net/en_US/fbevents.js	103 kB	2023-03-08	2023-11-10
Pretty URL connect.facebook.net/en_US/fbevents.js IP 157.240.200.14 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:45:46 Last Seen2023-11-10 23:06:10 Times Seen10 Hash d78a7caef2779bec7d3e91de3eb77eeb 5af31c112f3bcd8f2866d4bf89e8455438b1e382 00a92494627ed8f758972b7dc47b3af186497c0637ea867a33fdb604c1548674 Loading...

	gum.criteo.com/syncframe?topUrl=www.jumia.ci&origin=onetag#%7B%22bundle%22:%7B%22origin%22:0,%22value%22:null%7D,%22cw%22:true,%22optout%22:%7B%22origin%22:0,%22value%22:null%7D,%22origin%22:%22onetag%22,%22pm%22:0,%22sid%22:%7B%22origin%22:0,%22value%22:null%7D,%22tld%22:%22jumia.ci%22,%22topUrl%22:%22www.jumia.ci%22,%22version%22:%225_12_1%22,%22ifa%22:%7B%22origin%22:0,%22value%22:null%7D,%22lsw%22:true%7D	14 kB	2023-03-07	2023-05-06
Pretty URL gum.criteo.com/syncframe?topUrl=www.jumia.ci&origin=onetag#%7B%22bundle%22:%7B%22origin%22:0,%22value%22:null%7D,%22cw%22:true,%22optout%22:%7B%22origin%22:0,%22value%22:null%7D,%22origin%22:%22onetag%22,%22pm%22:0,%22sid%22:%7B%22origin%22:0,%22value%22:null%7D,%22tld%22:%22jumia.ci%22,%22topUrl%22:%22www.jumia.ci%22,%22version%22:%225_12_1%22,%22ifa%22:%7B%22origin%22:0,%22value%22:null%7D,%22lsw%22:true%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:51:36 Last Seen2023-05-06 00:14:31 Times Seen2035 Hash 49e65b540d43d40997ce3844d41b2dd0 b7331c5edc086ee2c7731b1b36e937e7c44450a7 f185c1b78d87a007d9492a85c6ce64c06cc851ef9f13ca3caf8aaafe243b0ac2 Loading...

	js-agent.newrelic.com/nr-1216.min.js	39 kB	2023-03-07	2023-12-02
Pretty URL js-agent.newrelic.com/nr-1216.min.js IP 151.101.86.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:59 Last Seen2023-12-02 09:02:29 Times Seen204 Hash 9f533d8cd24b2c5e3b4dc886ecbd43e8 4aaad79f222fbcf885679bb30ac0cb6c14ec06eb 6f973e7d75a7e6f6e59708f19631c8890034db5debb4d04f189deb53c114e708 Loading...

	www.google-analytics.com/plugins/ua/ec.js	2.8 kB	2023-03-07	2024-04-24
Pretty URL www.google-analytics.com/plugins/ua/ec.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-24 19:10:50 Times Seen1644 Hash 7b430c6350a59a7cf22b9adeccba327b b48d3c289bcb6809bb52fffd8f013055ed6bcd65 058ed961bfe422af7bfc65865f4c08531ec8ace995f8a1ec560a46581cb7712c Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/992492390/?random=1664115108892&cv=9&fst=1664115108892&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&ig=0&data=dynx_pagetype%3Dhome&frm=0&url=https%3A%2F%2Fwww.jumia.ci%2F&ref=https%3A%2F%2Farabe-datsh.com%2F&tiba=Jumia%20CI%20%7C%20Vente%20en%20ligne%20%C3%89picerie%2C%20Sant%C3%A9%20%26%20Hygi%C3%A8ne%2C%20T%C3%A9l%C3%A9phones%2C%20TV%2C%20Jeux%20Vid%C3%A9os&auid=1369925022.1664115108&hn=www.google.com&async=1&rfmt=3&fmt=4	2.6 kB	2023-03-08	2023-03-08
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/992492390/?random=1664115108892&cv=9&fst=1664115108892&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&ig=0&data=dynx_pagetype%3Dhome&frm=0&url=https%3A%2F%2Fwww.jumia.ci%2F&ref=https%3A%2F%2Farabe-datsh.com%2F&tiba=Jumia%20CI%20%7C%20Vente%20en%20ligne%20%C3%89picerie%2C%20Sant%C3%A9%20%26%20Hygi%C3%A8ne%2C%20T%C3%A9l%C3%A9phones%2C%20TV%2C%20Jeux%20Vid%C3%A9os&auid=1369925022.1664115108&hn=www.google.com&async=1&rfmt=3&fmt=4 IP 142.250.74.98 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-03-08 01:04:20 Times Seen1 Hash cb5167866c4f2b808c427436706798fd 506ff26e2c19d275204cb8ebfbc72bcadd0dc354 97feb4af776d173d85849506e34c97d60a4536bb50b82f906017beaba43fcbe3 Loading...

	arabe-datsh.com/bimmaroc/bim/js/bootstrap.min.js	51 kB	2023-03-07	2024-04-24
Pretty URL arabe-datsh.com/bimmaroc/bim/js/bootstrap.min.js IP 92.205.3.134 ASN #21499 Host Europe GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:40 Last Seen2024-04-24 09:36:58 Times Seen1458 Hash baaadea4492b059f284187d75af46063 7326bf5e023f871afcf6ebb18cb89109f81a7708 0e25895d7caaf355a53d19c37c69a06198f668e5422b211d27597ed93983b80b Loading...

	arabe-datsh.com/bimmaroc/bim/js/popper.js	82 kB	2023-03-08	2024-01-13
Pretty URL arabe-datsh.com/bimmaroc/bim/js/popper.js IP 92.205.3.134 ASN #21499 Host Europe GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2024-01-13 01:58:55 Times Seen10 Hash 433c932e3a173bc82e7012327fa2860e a444fa96ae3fa4713aa60da75da76b14eed4d0f0 41cb21545b545e1acd2b4886c5556b321b0a087c8e381e560136b2c9057932e9 Loading...

	www.jumia.ci/	1.8 kB	2023-03-08	2023-03-11
Pretty URL www.jumia.ci/ IP 104.17.208.190 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-03-11 23:48:25 Times Seen1 Hash e305c7fb48ed909df3d11980e707c910 d4bf8825693c9a31a38327274bf4b6892890807f 3a2849aa6891eda4f904f92e3f98acb87f6f76e99f2dffafa2c7a03aa9e97865 Loading...

	static.criteo.net/js/ld/ld.js	43 kB	2023-03-07	2023-03-17
Pretty URL static.criteo.net/js/ld/ld.js IP 178.250.2.130 ASN #44788 Criteo SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:01:35 Last Seen2023-03-17 12:47:05 Times Seen1 Hash 40b550b211b73f23c1f331b86afd472f c9bd1e9095ffc8283f3fb791acd75d03314c21d7 561c579d66ced3002754404f18100a5b84c2b6fb62ad20dbc9d0c290a65ac712 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 00:02:03 Times Seen37050700 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	arabe-datsh.com/bimmaroc/bim/index.html	251 B	2023-03-08	2023-05-25
Pretty URL arabe-datsh.com/bimmaroc/bim/index.html IP 92.205.3.134 ASN #21499 Host Europe GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-05-25 22:53:55 Times Seen4 Hash 8ac8beabc16817f7543ad388121da069 ad1c4c73229ab79e00c38d50bca3a119a2236324 fc0a85977280f6f4163ffb4d9be137e37f30dffe0ef75bc917e9bd86c7c8b01e Loading...

	www.jumia.ci/	10 kB	2023-03-08	2023-03-08
Pretty URL www.jumia.ci/ IP 104.17.208.190 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-03-08 01:04:20 Times Seen1 Hash 1667f80140d36bb05ecb9c1ee501fd39 c4346676e1b4b702e5e46b1892f6520de91b3bf8 f7a11e9b11d5762635e335efa999027821e7a829ce3fe7f303202cbf9fd68d98 Loading...

	www.jumia.ci/	934 B	2023-03-08	2023-03-08
Pretty URL www.jumia.ci/ IP 104.17.208.190 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-03-08 01:04:20 Times Seen1 Hash 218771c9479deb97ba0305983a62ac28 615403be7d5fd6f34f67ebd85dbd575e572713bc cfe15ad9b3ae5d1a9dbaef42bcd266dac979c4d845d1d7bea83bc47ad4456e00 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-KS6DC65	178 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-KS6DC65 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-03-08 01:04:20 Times Seen1 Hash 828549effd872d9a535f23e1bf792d8a eddc63c1bc65024c50327418103874230baf31e1 2d17ceb849a488e1e0459b174892c2622cd7eb57dc4ac429b10beb2b13fb688f Loading...

	www.jumia.ci/assets_he/js/pages/home/index.b16981fc.js	5.3 kB	2023-03-08	2023-03-11
Pretty URL www.jumia.ci/assets_he/js/pages/home/index.b16981fc.js IP 104.17.208.190 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-03-11 23:48:25 Times Seen1 Hash 67b18f09a367c30fa0e1027d027ecb53 876309d89a31a4173096b135171efdc1b97fae52 ca5096e2ab7583a71f408ac3b32934c75926d91296d799c9b5c1d029c1142913 Loading...

	www.jumia.ci/assets_he/js/common.06115e7b.js	124 kB	2023-03-08	2023-03-10
Pretty URL www.jumia.ci/assets_he/js/common.06115e7b.js IP 104.17.208.190 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:04:20 Last Seen2023-03-10 10:52:52 Times Seen1 Hash 67769bc38e9be62285788944294bfc76 d5cb8e2c56196613630327c714cbc920ae135aab beaf49eb85dd24961af559d800e0a09157cae841e4043be21bb27faf3ce3044a Loading...

	www.google.com/pagead/conversion_async.js	42 kB	2023-03-07	2023-03-17
Pretty URL www.google.com/pagead/conversion_async.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:28:40 Last Seen2023-03-17 12:55:48 Times Seen1 Hash cedb242a337140e0dedb365b50a20508 cf2420a336b9405dfc7d236ec57873fe3ef0f726 5a39699f592d82029c73d15d80e407d51367dd5cf2d49172c9ad4aa8176ce67b Loading...

	gum.criteo.com/syncframe?topUrl=www.jumia.ci&origin=onetag#%7B%22bundle%22:%7B%22origin%22:0,%22value%22:null%7D,%22cw%22:true,%22optout%22:%7B%22origin%22:0,%22value%22:null%7D,%22origin%22:%22onetag%22,%22pm%22:0,%22sid%22:%7B%22origin%22:0,%22value%22:null%7D,%22tld%22:%22jumia.ci%22,%22topUrl%22:%22www.jumia.ci%22,%22version%22:%225_12_1%22,%22ifa%22:%7B%22origin%22:0,%22value%22:null%7D,%22lsw%22:true%7D	418 B	2023-03-07	2023-04-01
Pretty URL gum.criteo.com/syncframe?topUrl=www.jumia.ci&origin=onetag#%7B%22bundle%22:%7B%22origin%22:0,%22value%22:null%7D,%22cw%22:true,%22optout%22:%7B%22origin%22:0,%22value%22:null%7D,%22origin%22:%22onetag%22,%22pm%22:0,%22sid%22:%7B%22origin%22:0,%22value%22:null%7D,%22tld%22:%22jumia.ci%22,%22topUrl%22:%22www.jumia.ci%22,%22version%22:%225_12_1%22,%22ifa%22:%7B%22origin%22:0,%22value%22:null%7D,%22lsw%22:true%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:51:37 Last Seen2023-04-01 10:34:33 Times Seen447 Hash 755b312976dc0edb23fa08bed999c482 6685710ba04dc63e4122ec3ce89f3adfe479adf4 663197a6a8353d989cdc65d4f3112e425a00839c85a3fde99bbe451a9c604a6f Loading...

	www.jumia.ci/	288 B	2023-03-07	2024-01-08
Pretty URL www.jumia.ci/ IP 104.17.208.190 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:52 Last Seen2024-01-08 01:35:02 Times Seen573 Hash 5cd7c2485cc82fc034007a1bda2498ae 9d8bc3c285f9c006ae1b8ff309f53ea6a51a137c 9f0ff3271e6149ab91c177f1dee5672ed4dc5264f439620e8af86fc4d9f70c2b Loading...

	arabe-datsh.com/bimmaroc/bim/js/jquery.js	87 kB	2023-03-07	2024-04-24
Pretty URL arabe-datsh.com/bimmaroc/bim/js/jquery.js IP 92.205.3.134 ASN #21499 Host Europe GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-24 23:58:49 Times Seen62124 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

		Size	First Seen	Last Seen
	#1 Write - d4f85302bca263e279aa4b8179f6f464	5.5 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 01:04:20 Last Seen2023-03-08 01:04:20 Times Seen1 Hash d4f85302bca263e279aa4b8179f6f464 7e8a41c3e33ee44bff775ea0e28a1b00b9638f11 bdb1da60f1b36d196f4144b0b156d6c930dead442b676219df83779a8a00cbc7 Loading...

HTTP Transactions (190)

URL IP Response Size

arabe-datsh.com/bimmaroc/bim/index.html

92.205.3.134

301 Moved Permanently

255 B

URL HTTP/1.1
arabe-datsh.com/bimmaroc/bim/index.html
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
255 B (255 bytes)
Hash
7af3c2a79e8acde5de91ef3e2a14e2af
2081635b5d690a4ee4c338fb27776b689fdd8c17
ea209c8bee6a9c950084adb38874150d446c9d5fdd606dcb35f895594fa39d49

HTTP Headers

GET /bimmaroc/bim/index.html HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sun, 25 Sep 2022 14:11:46 GMT
Server: Apache
Location: https://arabe-datsh.com/bimmaroc/bim/index.html
Content-Length: 255
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 13:14:57 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JJBm8kyZqBl45IGsVQxMQwv3fH5AG6AR9Hwu--oCXkBW_T62s_wF_w==
Age: 3409

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6031
Expires: Sun, 25 Sep 2022 15:52:17 GMT
Date: Sun, 25 Sep 2022 14:11:46 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.35

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QLf_OGhRcxAhQQwTE1Jih4VeWadpJ6EaUcwtqXoPY6nXe9Fx6UPv_g==
age: 34592
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/index.html

92.205.3.134

200 OK

3.6 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/index.html
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
3.6 kB (3553 bytes)
Hash
4d9302a497208cd703463e1ca0c0b06f
9c8074680bae1cd77d6638052a2115293812f476
183472c1bf04cd5526065c96bd7a3c94807cf7ca1109eddd1d8f99894f963e77

HTTP Headers

GET /bimmaroc/bim/index.html HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3e20996-4851-5e93ac9516814-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3553
content-type: text/html
date: Sun, 25 Sep 2022 14:11:46 GMT
server: Apache
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:11:46 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/css/font-awesome.min.css

92.205.3.134

200 OK

291 B

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/css/font-awesome.min.css
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
ASCII text, with very long lines (376)
Size
291 B (291 bytes)
Hash
810ed77986d321a5503601af4d224232
96a26a85bbfcb0bf6a059d8bac4757deaa59f66b
c9c478ecb7e8b48e7e21a45c9223c75354b75f27ac0067a88176953f581aa83b

HTTP Headers

GET /bimmaroc/bim/css/font-awesome.min.css HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2638-2e1-5e93ac951548c-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 291
content-type: text/css
date: Sun, 25 Sep 2022 14:11:46 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/css/bootstrap.min.css

92.205.3.134

200 OK

2.5 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/css/bootstrap.min.css
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
ASCII text
Size
2.5 kB (2522 bytes)
Hash
b73abaaeb068dc0a4cf74f2dc36c24bd
08ea0d822c0cfa2ef36048706d1e0c949a944a63
c42a3c7d0974d8cfdc4b1db92e4916e899529401a7244bdd0a00dae574b3dad5

HTTP Headers

GET /bimmaroc/bim/css/bootstrap.min.css HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2637-2820-5e93ac951548c-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2522
content-type: text/css
date: Sun, 25 Sep 2022 14:11:46 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/css/style.css

92.205.3.134

200 OK

1.5 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/css/style.css
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
Unicode text, UTF-8 text
Size
1.5 kB (1455 bytes)
Hash
3a9603b27ae2e006a95ef76cc80f796c
7c8c5f749c9201e3c8e44d7ed973a27b10f6e586
92959d814d195b21c4fb39d81cc778fb86dccbbb54422bfeafbd9b178d99fcb7

HTTP Headers

GET /bimmaroc/bim/css/style.css HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2633-16c2-5e93ac951548c-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1455
content-type: text/css
date: Sun, 25 Sep 2022 14:11:46 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/css/spin.css

92.205.3.134

200 OK

1.2 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/css/spin.css
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
ASCII text
Size
1.2 kB (1168 bytes)
Hash
6c1ce4e1ae21aadde6588786b07d70a5
53cec837e849fa4dffb5ef917ef026f5c3c36fea
37f16f77fdba74c4fc15bd85e6fa03988c2c2abd84f6ab6a94648d7dd23b92ac

HTTP Headers

GET /bimmaroc/bim/css/spin.css HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2635-1ad1-5e93ac951548c-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1168
content-type: text/css
date: Sun, 25 Sep 2022 14:11:46 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/css/sweetalert.css

92.205.3.134

200 OK

2.4 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/css/sweetalert.css
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
ASCII text
Size
2.4 kB (2353 bytes)
Hash
7208cff22fe05be9ef054f86d291f8c8
2d293eee214ec73e8996622430d4b7d4fe0e07e5
4fb7bebe76a54edaf9c354887aab19766f12cd61590ffbf23cd065d2c67088fb

HTTP Headers

GET /bimmaroc/bim/css/sweetalert.css HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2636-4921-5e93ac951548c-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2353
content-type: text/css
date: Sun, 25 Sep 2022 14:11:46 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/css/animate.css

92.205.3.134

200 OK

4.0 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/css/animate.css
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
ASCII text
Size
4.0 kB (3990 bytes)
Hash
5c880e094627a3cba22445012d9cfcad
180856c31895eb1b60ba3a874e18aac61d938314
729d453369b56c9c4f9b7a91fc06dbb2233d6bc1e4d9de5e3381dba4dff15a4b

HTTP Headers

GET /bimmaroc/bim/css/animate.css HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2634-115b1-5e93ac951548c-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3990
content-type: text/css
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/gUQ5616.png

92.205.3.134

200 OK

26 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/gUQ5616.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 960 x 182, 8-bit/color RGB, non-interlaced\012- data
Size
26 kB (25914 bytes)
Hash
b5587307761b7ae0fb3acf123adb1821
f6a26af0fbf3a23efbea9bbb8f03896f39da9ac4
b7d451306cae03975ab9aaf3ea949ec16b6b4b3059eff692fdef7328da9db81c

HTTP Headers

GET /bimmaroc/bim/images/gUQ5616.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2643-653a-5e93ac9515874"
accept-ranges: bytes
content-length: 25914
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/js/s4.min.js

92.205.3.134

200 OK

177 B

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/js/s4.min.js
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
ASCII text
Size
177 B (177 bytes)
Hash
daa702ad4cdfb47243deb8e27a2701ae
a13dd4a30205a8e501a4bd8dae6f159c646b9b10
c0bb280ef5f55026fd417753165aa573d25b0f8353006731dd50a5bfa0e25b22

HTTP Headers

GET /bimmaroc/bim/js/s4.min.js HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2663-1c3-5e93ac9516bfc-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 177
content-type: application/javascript
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/js/script.js

92.205.3.134

200 OK

1.5 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/js/script.js
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
Unicode text, UTF-8 text
Size
1.5 kB (1471 bytes)
Hash
cc0923e46ad6b010b3b48961eaae9fc4
62ee450f17ceefa8a845309a061edd2b598550fa
5f2ac35551c092c5ccfe1003dbee3a66597d3c94257b5843748dac3cdc59d5a8

HTTP Headers

GET /bimmaroc/bim/js/script.js HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2665-11e7-5e93ac9516bfc-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1471
content-type: application/javascript
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/js/jqueryspin.js

92.205.3.134

200 OK

76 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/js/jqueryspin.js
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
ASCII text
Size
76 kB (75657 bytes)
Hash
aba08dcc026664474e86530f6d00b9a0
a0a90ccd295bbe80ef407506bb7c4bb93af16686
6c3fc4edd90fafaced7bdc10746982b2e715d1684deb2c8372bc1f8cc40a2de1

HTTP Headers

GET /bimmaroc/bim/js/jqueryspin.js HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2664-40f48-5e93ac9516bfc-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 75657
content-type: application/javascript
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/img2.jpg

92.205.3.134

200 OK

1.1 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/img2.jpg
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 32x32, components 3\012- data
Size
1.1 kB (1144 bytes)
Hash
a0073c3cbbb0e7ad7eb7bfdc3aa7b113
adc8013d3a80831d55067487cafde5bc8f7e7646
02a37e132ade040f91f52464b40f747fea63bae0dd61a0286b7d850078075733

HTTP Headers

GET /bimmaroc/bim/images/img2.jpg HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2655-478-5e93ac951642c"
accept-ranges: bytes
content-length: 1144
content-type: image/jpeg
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/btn.png

92.205.3.134

200 OK

258 B

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/btn.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
258 B (258 bytes)
Hash
c91aafe28873c33e04f0ebcf28d46422
35f229653e4a8dd6930521cec0486d97ddb3cb99
06035e1ce818608c1b28618e4236796d6a7eee24ab8c3fee372126bee1596bb5

HTTP Headers

GET /bimmaroc/bim/images/btn.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2644-102-5e93ac9515874"
accept-ranges: bytes
content-length: 258
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/love.png

92.205.3.134

200 OK

266 B

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/love.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
266 B (266 bytes)
Hash
68b6d6b119d3aa694d57270b02d63067
a419647cd50ec9e4058c1eee8794f781ce236df7
d4e12eb9ba3e585951accc67459078f16eef9213ec6a983710247c8c7924fb9c

HTTP Headers

GET /bimmaroc/bim/images/love.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea264e-10a-5e93ac951642c"
accept-ranges: bytes
content-length: 266
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/img3.jpg

92.205.3.134

200 OK

1.0 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/img3.jpg
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 32x32, components 3\012- data
Size
1.0 kB (1025 bytes)
Hash
d1d2ce9fa74475032260325cf1f1a5c1
8b7697b8424d98bce485cda0547dde55080c2db2
f94d2fb1737b84ba35ebf0d4f7deb5af5d4de7763d1c6a515ffd9b27876a4099

HTTP Headers

GET /bimmaroc/bim/images/img3.jpg HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2649-401-5e93ac9515c5c"
accept-ranges: bytes
content-length: 1025
content-type: image/jpeg
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/img5.jpg

92.205.3.134

200 OK

1.2 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/img5.jpg
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 32x32, components 3\012- data
Size
1.2 kB (1214 bytes)
Hash
0665dbd73eea60dcfc69ed7fee0f6b87
d36ad60994994144705225ac7fc8ac6cdfe9f52d
477c7afb0e442b9ba4844ba9a3cec3840f479eb2805bfb3f7de1e6813c623ce1

HTTP Headers

GET /bimmaroc/bim/images/img5.jpg HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2657-4be-5e93ac951642c"
accept-ranges: bytes
content-length: 1214
content-type: image/jpeg
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/generic.jpg

92.205.3.134

200 OK

1.1 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/generic.jpg
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size
1.1 kB (1131 bytes)
Hash
f04f15ed225fbf9390c6cac221a2fb85
bfd71aa20ce765daace60fb7c53d270171c54a2a
d7af70fd2dab0fadd7b57438ae80cd4cbfc69384ace14284c990e2916631ff3b

HTTP Headers

GET /bimmaroc/bim/images/generic.jpg HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2650-46b-5e93ac951642c"
accept-ranges: bytes
content-length: 1131
content-type: image/jpeg
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/11.png

92.205.3.134

200 OK

1.7 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/11.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 531 x 531, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1738 bytes)
Hash
e71fab23491b5325aaa0e34e8cf5b2ca
9cff7d9bceeb169c4f62040109311cf1e03e1786
f9c38d77b0c72edbb224caa228a92958cd58656b51e45e0be1b899901e3af58f

HTTP Headers

GET /bimmaroc/bim/images/11.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2654-6ca-5e93ac951642c"
accept-ranges: bytes
content-length: 1738
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/img1.jpg

92.205.3.134

200 OK

1.7 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/img1.jpg
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Size
1.7 kB (1708 bytes)
Hash
a028b7645cd4fc483bd1a42de3b467ea
16ab9fe05cc5932f80b78062b95b3ad549496ecf
27abebdc7c5eb879a3100c3cc3695632438b229be6c7156220b3d900bdd64c71

HTTP Headers

GET /bimmaroc/bim/images/img1.jpg HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea264c-6ac-5e93ac9516044"
accept-ranges: bytes
content-length: 1708
content-type: image/jpeg
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/img4.jpg

92.205.3.134

200 OK

1.6 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/img4.jpg
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Size
1.6 kB (1574 bytes)
Hash
c88c812ec0e6be36ed538993ed5dffa7
76a156e727e45892ef991d0494177351225e6bf9
3e3bf8af0efd6f432a7e869844f0e0c77aa44c00b06069fb46c2be1313ddeafa

HTTP Headers

GET /bimmaroc/bim/images/img4.jpg HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea265e-626-5e93ac9516814"
accept-ranges: bytes
content-length: 1574
content-type: image/jpeg
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/img9.jpg

92.205.3.134

200 OK

1.6 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/img9.jpg
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Size
1.6 kB (1574 bytes)
Hash
52d841f1d791d38e1a8c10be716a6d55
cda3eb5731c9071e77cfc145251ce797c308f48e
3654254eb29dacff7b77fc66b44ee0e7429cb96c3bd5a483859d13fccef5c809

HTTP Headers

GET /bimmaroc/bim/images/img9.jpg HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2656-626-5e93ac951642c"
accept-ranges: bytes
content-length: 1574
content-type: image/jpeg
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/img8.jpg

92.205.3.134

200 OK

1.9 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/img8.jpg
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Size
1.9 kB (1923 bytes)
Hash
e2af053321e866261c17c031a684272b
29c5dd889d488408496d6e79e148e9fc301f7cd0
595017561ccb711f784b01ec7c62e1b9f12d7fb6e625f8b695f5d75add4da80c

HTTP Headers

GET /bimmaroc/bim/images/img8.jpg HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea264b-783-5e93ac9516044"
accept-ranges: bytes
content-length: 1923
content-type: image/jpeg
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/img6.jpg

92.205.3.134

200 OK

1.9 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/img6.jpg
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Size
1.9 kB (1864 bytes)
Hash
017d4a4134d809fe49b0c240d8e809ca
8a18e410791cfdd9fed871dc5b7a13502e1453d9
02e9c70274eef18d6e3b438c593762a08f6eed46bae848789b6a8285a39d5a5a

HTTP Headers

GET /bimmaroc/bim/images/img6.jpg HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2642-748-5e93ac9515874"
accept-ranges: bytes
content-length: 1864
content-type: image/jpeg
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/2.png

92.205.3.134

200 OK

2.4 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/2.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 40 x 40, 8-bit colormap, non-interlaced\012- data
Size
2.4 kB (2409 bytes)
Hash
338ed4ed85b08973ea15b35c3eff8c8d
e3913561ee580c261b5775e1fc3e1ebb95c6de48
c2663561f9bd4141ad340c6e344edaa435525a64cf59f4350ddd4a716be1a890

HTTP Headers

GET /bimmaroc/bim/images/2.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2646-969-5e93ac9515874"
accept-ranges: bytes
content-length: 2409
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/8.png

92.205.3.134

200 OK

2.3 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/8.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 40 x 40, 8-bit colormap, non-interlaced\012- data
Size
2.3 kB (2287 bytes)
Hash
f78ba03cbf1a841a346f8b78ad35be38
30b8abba3be21b4a3e227653930e311ec4db24a5
aa12be838e4198d935848abb0af4f2f7c8d997f61999a00e440c6caa6a4e2191

HTTP Headers

GET /bimmaroc/bim/images/8.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea263f-8ef-5e93ac9515874"
accept-ranges: bytes
content-length: 2287
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/img7.jpg

92.205.3.134

200 OK

1.9 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/img7.jpg
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 32x32, components 3\012- data
Size
1.9 kB (1879 bytes)
Hash
1917479de0eecc373f9232c80a774523
8755a57c940b648a681845ca3ce25cb6e14af95e
cc777c7112d34e1a46accc1ae0164635adc2e0ff2ea0e227d73ff1439d0b9e9f

HTTP Headers

GET /bimmaroc/bim/images/img7.jpg HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2647-757-5e93ac9515874"
accept-ranges: bytes
content-length: 1879
content-type: image/jpeg
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/js/popper.js

92.205.3.134

200 OK

20 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/js/popper.js
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
Unicode text, UTF-8 text, with very long lines (337)
Size
20 kB (20399 bytes)
Hash
272f725109ef203a001b558ad4073d1d
6ed40c4a956e4d2776b1e15ce40c1110498969c1
86670b981c1269559adbcc86e8f47b4f2b48152262cc0a705f55d327b9a3e1bd

HTTP Headers

GET /bimmaroc/bim/js/popper.js HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2661-13f0a-5e93ac9516bfc-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 20399
content-type: application/javascript
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/7.png

92.205.3.134

200 OK

3.1 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/7.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Size
3.1 kB (3071 bytes)
Hash
8efa6bda3b6ebeda315488ff239e3a94
a89c2e9a11787bc18bc53075ad16ca9d8ad9cdc8
6857fab2c1d1e89c6d993692dd1bf6abfaf1f663526010b9ea0fcea0fba3a1fd

HTTP Headers

GET /bimmaroc/bim/images/7.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea263c-bff-5e93ac951548c"
accept-ranges: bytes
content-length: 3071
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/6.png

92.205.3.134

200 OK

3.2 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/6.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Size
3.2 kB (3159 bytes)
Hash
2a4d16200e4cdbcd08aa82601d33dab9
df3339c086a3eb8c84a40543547d6f80e0cdc283
571bccfea3505f4e4ebd31ae7af5e67dd7e98ecda2accfe6b80d956cd53f5bc3

HTTP Headers

GET /bimmaroc/bim/images/6.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea264d-c57-5e93ac9516044"
accept-ranges: bytes
content-length: 3159
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/9.png

92.205.3.134

200 OK

3.2 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/9.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Size
3.2 kB (3244 bytes)
Hash
97e95f365b87b5e4efa02f0e812f5903
39e2216765784eb59dad1c6f1ae2cc4f16bd37ff
f0631422a87c9c9801680d15c611b37f2e32086d18db1d6c67a1913c5957904b

HTTP Headers

GET /bimmaroc/bim/images/9.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea265b-cac-5e93ac9516814"
accept-ranges: bytes
content-length: 3244
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/js/jquery.js

92.205.3.134

200 OK

30 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/js/jquery.js
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
ASCII text, with very long lines (32058)
Size
30 kB (29530 bytes)
Hash
afd9031dd71187666d68d243890aca65
389cebf76047c73486fe8b11ed2ed0385a055d83
ee0901bee8bc7ed7938a5e16685975edee14661df55454a42d7d1de95e89a9b7

HTTP Headers

GET /bimmaroc/bim/js/jquery.js HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2662-15283-5e93ac9516bfc-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 29530
content-type: application/javascript
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/3.png

92.205.3.134

200 OK

4.7 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/3.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 40 x 40, 8-bit/color RGB, non-interlaced\012- data
Size
4.7 kB (4656 bytes)
Hash
3ec611c3702fb95950bf5bc4d1803e03
99796d668b338f5f867ef3b313752f2fea9e08b4
ae95052784ccea40a6138037a0d99cf0cab0541ab4e94574398c99fc9fdb3487

HTTP Headers

GET /bimmaroc/bim/images/3.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2640-1230-5e93ac9515874"
accept-ranges: bytes
content-length: 4656
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/4.png

92.205.3.134

200 OK

6.0 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/4.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 41 x 50, 8-bit/color RGB, non-interlaced\012- data
Size
6.0 kB (6041 bytes)
Hash
8320b442e24f311a79e2628e107278f0
d6d695eddf34ac780695b9873d9b74472e81201f
f684fc01dedcba31762a7a8f36ecc14e77a5af002b02750afdf83863d078b075

HTTP Headers

GET /bimmaroc/bim/images/4.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2658-1799-5e93ac951642c"
accept-ranges: bytes
content-length: 6041
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/1gXBtm4.png

92.205.3.134

200 OK

9.7 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/1gXBtm4.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 243 x 143, 8-bit/color RGBA, non-interlaced\012- data
Size
9.7 kB (9679 bytes)
Hash
83567bb6a34359a8a17a59e03ff4898d
a1bddfd1b61aafbe116c587632363c937288ec97
50428f24d60b13c68ca8066ec83e43085cbe1667305c05efaba60fd781b4ce63

HTTP Headers

GET /bimmaroc/bim/images/1gXBtm4.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2645-25cf-5e93ac9515874"
accept-ranges: bytes
content-length: 9679
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/dri2.jpg

92.205.3.134

200 OK

9.6 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/dri2.jpg
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x200, components 3\012- data
Size
9.6 kB (9559 bytes)
Hash
0ca7a49b8aace53d6d2be99986a3e9a8
c3edca95f5bd1a3469c5d73a893a72bc6d54a230
33baa62490122e3d60498420f5c46e3deabdbc1c31c5b011156194af8555d27b

HTTP Headers

GET /bimmaroc/bim/images/dri2.jpg HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea263a-2557-5e93ac951548c"
accept-ranges: bytes
content-length: 9559
content-type: image/jpeg
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/dri14.jpg

92.205.3.134

200 OK

9.1 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/dri14.jpg
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 199x200, components 3\012- data
Size
9.1 kB (9096 bytes)
Hash
835376106cff88b8227cfd410b64f7b6
4d6a7dd619559d09d7a3b2ca3c9266b5b034c584
7040f10ea2784dac767bff8c3bf6518984befc5faaff696c060c50240a4daea0

HTTP Headers

GET /bimmaroc/bim/images/dri14.jpg HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea265a-2388-5e93ac9516814"
accept-ranges: bytes
content-length: 9096
content-type: image/jpeg
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/dri11.jpg

92.205.3.134

200 OK

11 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/dri11.jpg
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x196, components 3\012- data
Size
11 kB (11145 bytes)
Hash
3565e474c7b52049452dab8e8ada362d
76b8c20fa36669cf109391a1771d4254fdd395f0
013a35c8ccd65a201eee6860d6020d5aa9718485a40b3969ade69564ce3de724

HTTP Headers

GET /bimmaroc/bim/images/dri11.jpg HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2659-2b89-5e93ac9516814"
accept-ranges: bytes
content-length: 11145
content-type: image/jpeg
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/dri19.jpg

92.205.3.134

200 OK

12 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/dri19.jpg
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x200, components 3\012- data
Size
12 kB (12014 bytes)
Hash
8d45a97b0bc255fe268e973c2b7610b2
9d30cd2359c414a481f20d3dbc25e470229bda52
36f536382323af52185970048e4dc397a0371f50e8dead0ae3839993e0d97ff2

HTTP Headers

GET /bimmaroc/bim/images/dri19.jpg HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea263d-2eee-5e93ac951548c"
accept-ranges: bytes
content-length: 12014
content-type: image/jpeg
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/dri3.jpg

92.205.3.134

200 OK

15 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/dri3.jpg
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x200, components 3\012- data
Size
15 kB (14832 bytes)
Hash
a40a514fd5dca87c8a3319bd24fde71e
f29bc8f61735f95f27b72be7e6ec31773f077980
6791953d4848f7ffacdf4c7c43bb7c436c8cb96d37dfbe0ec6214bea3ea0e7f2

HTTP Headers

GET /bimmaroc/bim/images/dri3.jpg HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2653-39f0-5e93ac951642c"
accept-ranges: bytes
content-length: 14832
content-type: image/jpeg
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/aRFsXEt.png

92.205.3.134

200 OK

134 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/aRFsXEt.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 600 x 289, 8-bit/color RGBA, non-interlaced\012- data
Size
134 kB (133892 bytes)
Hash
94063d6d60035bef8e25d391848f8721
88f5c52e78d1112e8d6d985a2d0ee2be29caee5f
9688df579c2224ee499d2487d7cfd3c4dd7833425f2ccca30898bc4da734d520

HTTP Headers

GET /bimmaroc/bim/images/aRFsXEt.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea265d-20b04-5e93ac9516814"
accept-ranges: bytes
content-length: 133892
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/8PLTqJk.png

92.205.3.134

200 OK

134 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/8PLTqJk.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 600 x 289, 8-bit/color RGBA, non-interlaced\012- data
Size
134 kB (133786 bytes)
Hash
a0f6afa8911657861c471c9b90cfeffe
9b8ed8f6b9426bf5fa01c93961a82f81a0ed28d5
478f77f89201aeee46f1d955d563898346a7a8439b8463e55aafc4843b6cf17b

HTTP Headers

GET /bimmaroc/bim/images/8PLTqJk.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea265c-20a9a-5e93ac9516814"
accept-ranges: bytes
content-length: 133786
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/EMfL2QO.png

92.205.3.134

200 OK

134 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/EMfL2QO.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 600 x 289, 8-bit/color RGBA, non-interlaced\012- data
Size
134 kB (134414 bytes)
Hash
626d1faf74d3dedd65e306cb7814df5a
e0999b94674356a056c93c44d2bdb51f0f19c5c2
64f74d1f7e437cc6468b9a70e9fbceca001230368be9227fc4ed6839e8fa1cdc

HTTP Headers

GET /bimmaroc/bim/images/EMfL2QO.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2651-20d0e-5e93ac951642c"
accept-ranges: bytes
content-length: 134414
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/Z8r3aKG.png

92.205.3.134

200 OK

178 kB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/Z8r3aKG.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 501 x 501, 8-bit/color RGBA, non-interlaced\012- data
Size
178 kB (178225 bytes)
Hash
9c54d2ab245f306cba18c6f8dbbc8344
96e5a09b232f6095dccf1f522994af68e97341dd
f00a016afc695ed97012baaf3ca7223a620f120f1e1e85c0df416052a83f8afc

HTTP Headers

GET /bimmaroc/bim/images/Z8r3aKG.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2641-2b831-5e93ac9515874"
accept-ranges: bytes
content-length: 178225
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
12445eab8514621919f1860662c17fbf
ec3d6b108545fcfc28421bfacbcaf8b06cf6b759
d0582b209ff80670db4be38ebe61a50c305f72498e0ba12c41c1e2dc021b1f68

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D0582B209FF80670DB4BE38EBE61A50C305F72498E0BA12C41C1E2DC021B1F68"
Last-Modified: Fri, 23 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12103
Expires: Sun, 25 Sep 2022 17:33:30 GMT
Date: Sun, 25 Sep 2022 14:11:47 GMT
Connection: keep-alive

arabe-datsh.com/bimmaroc/bim/images/1TkMpmE.png

92.205.3.134

200 OK

1.6 MB

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/1TkMpmE.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 2560 x 1701, 8-bit/color RGB, non-interlaced\012- data
Size
1.6 MB (1620425 bytes)
Hash
dac7a6b913bafbbdb4bdc03d8c76ab36
3bc527f61f2e9c6c557560d2335eaeea09d67271
fc441d9f05270b79bc7b3fc8a9abdd6a16debf1fb909f8bed2cd416fb4a135f6

HTTP Headers

GET /bimmaroc/bim/images/1TkMpmE.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea264a-18b9c9-5e93ac9515c5c"
accept-ranges: bytes
content-length: 1620425
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 25 Sep 2022 14:04:17 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sun, 25 Sep 2022 14:07:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: v8C42AbWlVqURC4WoIfNN5gu1nBjjmm6ejzglZjJgK_MxdQ5s-bMig==
Age: 450

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
ea80263fe72dfcce5346b1494bb9d51d
2e5f76c82c36b0ddcb0daadff9d6aee8eacdc9e0
187634bcc7c8918f8928753cb58c682d9cb8fecd1527e8450174993358170fa6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 14:11:47 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 00:39:22 GMT
Expires: Sun, 02 Oct 2022 00:39:21 GMT
Etag: "2e5f76c82c36b0ddcb0daadff9d6aee8eacdc9e0"
Cache-Control: max-age=555453,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750459dd9d23b523-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4478
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:47 GMT
Last-Modified: Sun, 25 Sep 2022 12:57:09 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

arabe-datsh.com/bimmaroc/bim/images/like.png

92.205.3.134

200 OK

270 B

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/like.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 13 x 13, 8-bit colormap, non-interlaced\012- data
Size
270 B (270 bytes)
Hash
69132f017d1ea5c42d1cfc60336ca55a
fde729eac27952b526b64dd2eb3b626516faef79
3c9343a766e28b630e376b44070c88aacfbdda839602f87b8a56ec9a53b214b9

HTTP Headers

GET /bimmaroc/bim/images/like.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea263e-10e-5e93ac9515874"
accept-ranges: bytes
content-length: 270
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/bubble.png

92.205.3.134

200 OK

162 B

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/bubble.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 12 x 13, 4-bit colormap, non-interlaced\012- data
Size
162 B (162 bytes)
Hash
d7ae9442add710b1066911bfba428234
38b5869fbcb1147c58066b29cb73e29904799754
75a9efd4b12ff81a1fb3a563e4bf66c1d9ff21b9d01a40702ab5a82da152bd61

HTTP Headers

GET /bimmaroc/bim/images/bubble.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2652-a2-5e93ac951642c"
accept-ranges: bytes
content-length: 162
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/images/share.png

92.205.3.134

200 OK

279 B

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/images/share.png
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type
PNG image data, 14 x 13, 8-bit colormap, non-interlaced\012- data
Size
279 B (279 bytes)
Hash
95f6d48f48916d8f2f84a68d333f621a
611c32b4ce9b85577e13c5ca0afbcc57a7c959b9
8b66526de2d4a7165d7a43534675d222b348e5a7de88253b7c5af8d2435fcbd2

HTTP Headers

GET /bimmaroc/bim/images/share.png HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2648-117-5e93ac9515c5c"
accept-ranges: bytes
content-length: 279
content-type: image/png
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.216.192.228

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.216.192.228:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mf0vrvDS7nYl1Zys1qGLVg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nCgDe07GEXez8hJhk8XPV7Ig6iY=

bestgamo.com/wish

162.0.235.121

301 Moved Permanently

707 B

URL HTTP/2
bestgamo.com/wish
IP
162.0.235.121:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

HTTP Headers

GET /wish HTTP/1.1
Host: bestgamo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 707
date: Sun, 25 Sep 2022 14:11:47 GMT
server: LiteSpeed
location: https://bestgamo.com/wish/
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

bestgamo.com/wish/

162.0.235.121

200 OK

2.8 kB

URL HTTP/2
bestgamo.com/wish/
IP
162.0.235.121:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
2.8 kB (2793 bytes)
Hash
a05a7db46954652d14a7a378b1155311
7c54c9aff37c42bee298f9dfc4972e2c5d965ca3
0213ae606e5706115342967c9937292dbf336319b3c61ec5e02b0aa12e8c8656

HTTP Headers

GET /wish/ HTTP/1.1
Host: bestgamo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://arabe-datsh.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-powered-by: PHP/7.2.34
vary: Accept-Encoding
content-type: text/html; charset=UTF-8
content-length: 2793
content-encoding: gzip
date: Sun, 25 Sep 2022 14:11:48 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2

ocsp.usertrust.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.usertrust.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
cbe2540fc8685ab633be39fa0e0b03d5
96edd951dad962a84d62ea2184342d06f4147343
1c9444f675a74d88ee1dcf234d11d30eda18d12a4acd1ed780900cd0cdb467b6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 14:11:48 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 12:45:35 GMT
Expires: Sun, 02 Oct 2022 12:45:34 GMT
Etag: "96edd951dad962a84d62ea2184342d06f4147343"
Cache-Control: max-age=600964,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 750459e2e9b90b31-OSL

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8657
Expires: Sun, 25 Sep 2022 16:36:05 GMT
Date: Sun, 25 Sep 2022 14:11:48 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8656
Expires: Sun, 25 Sep 2022 16:36:05 GMT
Date: Sun, 25 Sep 2022 14:11:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8656
Expires: Sun, 25 Sep 2022 16:36:05 GMT
Date: Sun, 25 Sep 2022 14:11:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8656
Expires: Sun, 25 Sep 2022 16:36:05 GMT
Date: Sun, 25 Sep 2022 14:11:49 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6199 bytes)
Hash
714af732a9aa1db2b13ffb62810fd532
358e74de395352a9529ff1c17856daf8900888c5
1d2035cfcd283560ebe8494f9438e52f8d96cd092dd41cb0eb899a3f905c1e05

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6199
x-amzn-requestid: d26f22d9-4e9b-4764-8c96-2e1c7ce36340
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y--OKHowoAMFbQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7727-7adb7c4925e6e50e13889544;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:31:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LryqVGSkKbiNOwcqXMULY9FXbOuZBBenjgGPDME3NZLZOdp5divXmw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 22:02:29 GMT
age: 58160
etag: "358e74de395352a9529ff1c17856daf8900888c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8914 bytes)
Hash
dfdacc8edea3c24dad020d7e9c11b3f4
2b6e37596e88b62f288dc8e8c937fd904fae28d5
338a44f3bcc01bdd197f037dd8f8bf58a18dea00127465488efe76fb72a6fdff

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8914
x-amzn-requestid: 8cfdc32e-f04a-4fd6-a1f1-632934a682fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EUHqJoAMF7MQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7881-14a6d8ef126409964607e0aa;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kdF6En2vbJhRH1bkYMOuNm5XOIsT1qs3FE281N1SKn1FbyW-oNZsEw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:06 GMT
etag: "2b6e37596e88b62f288dc8e8c937fd904fae28d5"
content-type: image/jpeg
age: 59683
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6307cf78-7c68-41f1-9dfd-ba063eeb3f4b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5172 bytes)
Hash
d7bd3afd3069904500c28e9bb16587e8
a881666627e1077859ed1941cee576caf600d798
78a7b0a2127c583aba569abace503cff376cde67d5faa9a346c1494d91e8f3cf

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6307cf78-7c68-41f1-9dfd-ba063eeb3f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5172
x-amzn-requestid: d366d3e0-71d7-404c-a93b-3267852824ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_T5F5PoAMFqWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f78e5-52362b5f0dc1ee8951eebc07;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ean91lOEJLzLQFKy3gBuqD_G-BVw3SMuED20W6ixdkKYvVcMatdGJA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:39:23 GMT
age: 59546
etag: "a881666627e1077859ed1941cee576caf600d798"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b8b1112-7394-4d92-9fc1-54f8e005817f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10845 bytes)
Hash
716068d10c9e3a16d3a8e727992f71ec
f18edf7b5080b39e00bde335c16ca0f771428e8e
5991be1a009df210adc123f9f8081f669368a3a1891305717fc40ead172917a3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3b8b1112-7394-4d92-9fc1-54f8e005817f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10845
x-amzn-requestid: b819b750-c0b1-46b1-9e6c-010912fa87b7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EzFpWoAMFxdA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7884-3671ba9f0fc6b3e52e25f8a7;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:08 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: F8HfbDS4Ki85iwI7IgBulH70M3NwK6_-lmATgGp2myUTSlJKCDiScw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:39:26 GMT
age: 59543
etag: "f18edf7b5080b39e00bde335c16ca0f771428e8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Size
13 kB (12826 bytes)
Hash
b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:19 GMT
age: 59670
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10032 bytes)
Hash
aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5CzA52-o7GYViSJ4lna7ptv9dycJCUL-NLWOk-iCW-ZxDU_FQH_OoQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:51:18 GMT
age: 58831
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ci.jumia.is/cms/00-BFE22/LIVE/D015/CI_W35_BG_GEN_BFEST.jpg

104.16.48.64

200 OK

554 kB

URL HTTP/2
ci.jumia.is/cms/00-BFE22/LIVE/D015/CI_W35_BG_GEN_BFEST.jpg
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1410, components 3\012- data
Size
554 kB (554237 bytes)
Hash
bada73177306dacdd64020089a1db839
d56b75871c8dba833bf2d3c18dea45279ff3d999
28c055bdc5dd3fe6e3028a224057bae272f4d71e3b2fa72e2e8d6fb117e6df3d

HTTP Headers

GET /cms/00-BFE22/LIVE/D015/CI_W35_BG_GEN_BFEST.jpg HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/jpeg
content-length: 554237
cache-control: max-age=86400, public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=564372, status=vary_header_present
etag: "3e0db23889f3377a9b250cd484993266a4b198b4"
expires: Mon, 26 Sep 2022 02:01:33 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=604800; includeSubDomains
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-cache: HIT
x-cache-hits: 1
x-cacheable: YES
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-lb: nginx-aws-a01
x-proxy: nginx-aws-a01.live
x-server: thumbor-6685569497-cjqmh
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 43816
accept-ranges: bytes
set-cookie: __cf_bm=LT7np.db9FhMUMIg2jSI95398sw3y_Klpdl8WYoq.yg-1664115109-0-Aa3l7JYGjAsr2hVNEG0+R8FeJ+PshkFMUSx/exp8glGOCh6DEQDUvbM5hmiFU2Zb4jyerIQZeLJfj2FCUqqDGeU=; path=/; expires=Sun, 25-Sep-22 14:41:49 GMT; domain=.jumia.is; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 750459e97f560af6-OSL
X-Firefox-Spdy: h2

www.jumia.ci/assets_he/js/pages/home/index.b16981fc.js

104.17.208.190

200 OK

59 kB

URL HTTP/2
www.jumia.ci/assets_he/js/pages/home/index.b16981fc.js
IP
104.17.208.190:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
59 kB (59353 bytes)
Hash
f89343b3f319d40aeaf2b315ddb256ab
63b046468f5c8cf1e33e0c0dbf5202abd15fc898
88a011ecd0a6296142735b3bc7eb14d1d320c92d839ae25ddc53d2679fd144e2

HTTP Headers

GET /assets_he/js/pages/home/index.b16981fc.js HTTP/1.1
Host: www.jumia.ci
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: newsletter=1; sb-closed=true; ABTests=%5B%7B%22name%22%3A%22Home%22%2C%22scenario%22%3A%22B%22%2C%22updatedAt%22%3A1629736661%7D%2C%7B%22name%22%3A%22SearchPerso%22%2C%22scenario%22%3A%22Y%22%2C%22updatedAt%22%3A1626167905%7D%2C%7B%22name%22%3A%22Cart%22%2C%22scenario%22%3A%22S%22%2C%22updatedAt%22%3A1621258805%7D%2C%7B%22name%22%3A%22AppPDVCatBar%22%2C%22scenario%22%3A%22B%22%2C%22updatedAt%22%3A1657805437%7D%2C%7B%22name%22%3A%22ReMe%22%2C%22scenario%22%3A%22N%22%2C%22updatedAt%22%3A1661936472%7D%5D; SOLSESSID=e3ba883f6afa2af9acd7d5ea3f2f5c90; userLanguage=fr_CI; __cf_bm=ziavfq8klwoT60wQVi4JPYJbeoJCKNcQZ1StUvZMIEM-1664115109-0-AZZz60CTW/IC0hRVy7BU0t4GoQXGBRXraXC3dN5Oc80iWltrR7+fz4Z23K/2C+7eYmw+DKYr9mD0EnElbJXUhWA=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: application/javascript
vary: Accept-Encoding, X-Device, X-Language, X-ABTests, X-Scenario, X-OS
last-modified: Wed, 31 Aug 2022 15:38:23 GMT
etag: W/"630f806f-14cf"
expires: Tue, 28 Feb 2023 14:05:39 GMT
cache-control: max-age=15552000, public
x-cacheable: YES
x-proxy: varnish-74db7c6466-gthct
x-cache: HIT
x-cache-hits: 28
access-control-allow-origin: *
x-lb: nginx-aws-b01
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-oa: 0
content-encoding: gzip
cf-cache-status: HIT
server: cloudflare
cf-ray: 750459e8ffea0b65-OSL
X-Firefox-Spdy: h2

ci.jumia.is/cms/00-BFE22/LIVE/D010/00/CI_W37_Slider_DKS_deal.gif

104.16.48.64

200 OK

139 kB

URL HTTP/2
ci.jumia.is/cms/00-BFE22/LIVE/D010/00/CI_W37_Slider_DKS_deal.gif
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 712 x 384\012- data
Size
139 kB (139002 bytes)
Hash
c192c54746cbc1d089310c261de2d46a
60347a20f083f1bb627a7e6513d2b5b3b1316623
6f1c8970551a436fa49f9055bd086cff99218f88a55fbf7fe461b37be16d9fdc

HTTP Headers

GET /cms/00-BFE22/LIVE/D010/00/CI_W37_Slider_DKS_deal.gif HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/gif
content-length: 139002
cache-control: max-age=86400, public
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "60347a20f083f1bb627a7e6513d2b5b3b1316623"
expires: Mon, 26 Sep 2022 02:01:33 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=604800; includeSubDomains
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-cache: HIT
x-cache-hits: 6
x-cacheable: YES
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-lb: nginx-aws-c01
x-proxy: nginx-aws-c01.live
x-server: thumbor-6685569497-7sjbd
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 43816
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eab9030af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/cms/00-BFE22/LIVE/D016/UP/CI_W38_S_DESTOCKAGE_9-9--(1).gif

104.16.48.64

200 OK

82 kB

URL HTTP/2
ci.jumia.is/cms/00-BFE22/LIVE/D016/UP/CI_W38_S_DESTOCKAGE_9-9--(1).gif
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 712 x 384\012- data
Size
82 kB (81973 bytes)
Hash
58381a11dfab280281f83bdb425081fe
bc4acef8f347443ed124700b20a80336f5df5194
e6f360a2f02495ba7fc423cac077b7a2699db4b5556d1354c42caeb686e94f2b

HTTP Headers

GET /cms/00-BFE22/LIVE/D016/UP/CI_W38_S_DESTOCKAGE_9-9--(1).gif HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/gif
content-length: 81973
cache-control: max-age=86400, public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=83550, status=vary_header_present
etag: "9748f3a1941f0b56bd4567500e11c693bf7b8fc1"
expires: Mon, 26 Sep 2022 02:01:33 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=604800; includeSubDomains
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-cache: HIT
x-cache-hits: 1
x-cacheable: YES
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-lb: nginx-aws-a01
x-proxy: nginx-aws-a01.live
x-server: thumbor-6685569497-xkqf6
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eaa8fc0af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/cms/00-BFE22/LIVE/D010/ILUX/UP/CI_W34_S_GEN_BF.gif

104.16.48.64

200 OK

94 kB

URL HTTP/2
ci.jumia.is/cms/00-BFE22/LIVE/D010/ILUX/UP/CI_W34_S_GEN_BF.gif
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 712 x 384\012- data
Size
94 kB (93580 bytes)
Hash
4bddac0910ab886dab0d9ae8a55f6926
cc73f0d76eb43668276748343167b72a2c2b385c
4ab02ed32712436e58ce7cebbcec32bf449dc752b63dcd7cfaf7bf9809816ac4

HTTP Headers

GET /cms/00-BFE22/LIVE/D010/ILUX/UP/CI_W34_S_GEN_BF.gif HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/gif
content-length: 93580
cache-control: max-age=86400, public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=93691, status=vary_header_present
etag: "ce0b9ff98395a8ebb11ac3d3c303cf34577c7e17"
expires: Mon, 26 Sep 2022 02:01:33 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=604800; includeSubDomains
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-cache: HIT
x-cache-hits: 19
x-cacheable: YES
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-lb: nginx-aws-b01
x-proxy: nginx-aws-b01.live
x-server: thumbor-6685569497-zw7vv
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eaa9000af6-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
58b52380a6b5c598d1ad88e8da148137
a56206a0277aea6e8e2f7629793aba713d8edd0c
561a57c27dfa1f8651a89292428576b626e8700b9cd6b8173a0ce121aa8f9f4a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ci.jumia.is/cms/1_2022/BANNER_TEXT_ICON/help-centerv4.png

104.16.48.64

200 OK

1.7 kB

URL HTTP/2
ci.jumia.is/cms/1_2022/BANNER_TEXT_ICON/help-centerv4.png
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1678 bytes)
Hash
669e618b92be3dc7a14d9dc252061f5e
3cf5c07e864e1fc71386f59315f107387ec59988
49456965f525f9427becacdeb550891d06597d669c1d27c73daf4906b5521e1c

HTTP Headers

GET /cms/1_2022/BANNER_TEXT_ICON/help-centerv4.png HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/png
content-length: 1678
cache-control: max-age=86400, public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1975, status=vary_header_present
etag: "e1366b96ac571de261601ddec705f39bb0511739"
expires: Mon, 26 Sep 2022 10:20:43 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=604800; includeSubDomains
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-cache: HIT
x-cache-hits: 22
x-cacheable: YES
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-lb: nginx-aws-a01
x-proxy: nginx-aws-a01.live
x-server: thumbor-6685569497-b2sjq
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb196c0af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/cms/1_2022/W30/Update/MA_W26_Onsite_HP_Thumb-avec-text-FS%60.png

104.16.48.64

200 OK

21 kB

URL HTTP/2
ci.jumia.is/cms/1_2022/W30/Update/MA_W26_Onsite_HP_Thumb-avec-text-FS%60.png
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 220 x 220, 8-bit/color RGBA, non-interlaced\012- data
Size
21 kB (21282 bytes)
Hash
de294d17c5f30f2641a2699dc9811c2a
ab4a40b5f8b56dc6f584a6f0f7cdad2bd0593961
9bad489635303077eb657837ed946a2594164afe512b47522a5f7f8c13e0d29b

HTTP Headers

GET /cms/1_2022/W30/Update/MA_W26_Onsite_HP_Thumb-avec-text-FS%60.png HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/png
content-length: 21282
cache-control: max-age=86400, public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=24766, status=vary_header_present
etag: "173553e075b3eff7b642e16f9a12b799ab5c0903"
expires: Mon, 26 Sep 2022 10:20:43 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=604800; includeSubDomains
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-cache: HIT
x-cache-hits: 8
x-cacheable: YES
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-lb: nginx-aws-a01
x-proxy: nginx-aws-a01.live
x-server: thumbor-6685569497-2k7tt
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb297e0af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/cms/00-BFE22/LIVE/D015/CI_W38_ET_GEN_LIVRAISON_GRATUITE-(1).gif

104.16.48.64

200 OK

30 kB

URL HTTP/2
ci.jumia.is/cms/00-BFE22/LIVE/D015/CI_W38_ET_GEN_LIVRAISON_GRATUITE-(1).gif
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 218 x 184\012- data
Size
30 kB (30068 bytes)
Hash
7f57064c544f0eb51b0092cbe2be75f7
a461454ef7be4b8c68636cec6bdf86cf6785b293
161f28d2c13a159eaab483336f165461b1d8423a50acd13a84e4f91a9f568775

HTTP Headers

GET /cms/00-BFE22/LIVE/D015/CI_W38_ET_GEN_LIVRAISON_GRATUITE-(1).gif HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/gif
content-length: 30068
cache-control: max-age=86400, public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=31390, status=vary_header_present
etag: "7c40ac83e517dbe54fd8230411dc444a8d24ee1e"
expires: Mon, 26 Sep 2022 10:20:43 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=604800; includeSubDomains
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-cache: HIT
x-cache-hits: 23
x-cacheable: YES
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-lb: nginx-aws-a01
x-proxy: nginx-aws-a01.live
x-server: thumbor-6685569497-w587p
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb29710af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/cms/1_2022/W30/Update/220x220_copy.jpg

104.16.48.64

200 OK

19 kB

URL HTTP/2
ci.jumia.is/cms/1_2022/W30/Update/220x220_copy.jpg
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 220x220, components 3\012- data
Size
19 kB (18563 bytes)
Hash
bb776b435e4ce68e92f2cbcdfa5f9553
7a0c2a4a877b3d3ca3c6fc0f7668bc1e96becbeb
8e4cb299b90f26882c8f9b88305055be1c820bedd4c3fb7cea0d462b3c2cb104

HTTP Headers

GET /cms/1_2022/W30/Update/220x220_copy.jpg HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/jpeg
content-length: 18563
cache-control: max-age=86400, public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=18786, status=vary_header_present
etag: "d9a538afd25c7ff75f73c4d839376647c8ecc34d"
expires: Mon, 26 Sep 2022 10:20:43 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=604800; includeSubDomains
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-cache: HIT
x-cache-hits: 10
x-cacheable: YES
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-lb: nginx-aws-c01
x-proxy: nginx-aws-c01.live
x-server: thumbor-6685569497-m4x5r
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb29980af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/cms/1_2022/BANNER_TEXT_ICON/icone-seller-1.png

104.16.48.64

200 OK

1.8 kB

URL HTTP/2
ci.jumia.is/cms/1_2022/BANNER_TEXT_ICON/icone-seller-1.png
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Size
1.8 kB (1815 bytes)
Hash
ea93438cdf7d399718cbca006cb464cf
9601d434e998ba78ce5b6fae96f91f280fa5545c
f5a1216caa7fdd281934fdd3fc073a4347b1dd075816ff34f42d09bcaff21965

HTTP Headers

GET /cms/1_2022/BANNER_TEXT_ICON/icone-seller-1.png HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/png
content-length: 1815
cache-control: max-age=86400, public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1825, status=vary_header_present
etag: "b84cd75d3fa5e6ce9401062b9e1fa9f5fd94bebe"
expires: Mon, 26 Sep 2022 10:20:43 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=604800; includeSubDomains
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-cache: HIT
x-cache-hits: 23
x-cacheable: YES
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-lb: nginx-aws-c01
x-proxy: nginx-aws-c01.live
x-server: thumbor-6685569497-b8ks9
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb196f0af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/cms/00-BFE22/BrandFestival_1.png

104.16.48.64

200 OK

61 kB

URL HTTP/2
ci.jumia.is/cms/00-BFE22/BrandFestival_1.png
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 220 x 220, 8-bit/color RGBA, non-interlaced\012- data
Size
61 kB (61345 bytes)
Hash
0f2df1595e71088ee067d1647de1e4f0
4aeec7011989e987d13cf810f0546434557dbc89
63f5a760b7490d7942318dba27149ffa86b392b3282d03f225205860788c0d3f

HTTP Headers

GET /cms/00-BFE22/BrandFestival_1.png HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/png
content-length: 61345
cache-control: max-age=86400, public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=62295, status=vary_header_present
etag: "dfb2d14d27a02b9919afa60d5ec602e213a0555f"
expires: Mon, 26 Sep 2022 10:20:43 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=604800; includeSubDomains
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-cache: HIT
x-cache-hits: 1
x-cacheable: YES
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-lb: nginx-aws-c01
x-proxy: nginx-aws-c01.live
x-server: thumbor-6685569497-n82nh
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb29780af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/cms/00-JA22/SBD/CI_W27_QuickLink_APP_Install.gif

104.16.48.64

200 OK

21 kB

URL HTTP/2
ci.jumia.is/cms/00-JA22/SBD/CI_W27_QuickLink_APP_Install.gif
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 220 x 220\012- data
Size
21 kB (21251 bytes)
Hash
f1a5dcd8cc19629eb1d0e5b4e1c6c6b3
7f0b8bde37caf5cc3c42d2b5d1452695053c0cd2
aba14d0e8278908cf5b5d2951a6b9212575800e88b6f7d261cd128bf151576ae

HTTP Headers

GET /cms/00-JA22/SBD/CI_W27_QuickLink_APP_Install.gif HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/gif
content-length: 21251
cache-control: max-age=86400, public
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "7f0b8bde37caf5cc3c42d2b5d1452695053c0cd2"
expires: Mon, 26 Sep 2022 10:20:43 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=604800; includeSubDomains
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-cache: HIT
x-cache-hits: 1
x-cacheable: YES
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-lb: nginx-aws-b01
x-proxy: nginx-aws-b01.live
x-server: thumbor-6685569497-7fst6
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb298a0af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/cms/00-BFE22/LIVE/D013/UP/CI_W38_THUMBNAILS_LIVRAISON_GRATUITE.png

104.16.48.64

200 OK

32 kB

URL HTTP/2
ci.jumia.is/cms/00-BFE22/LIVE/D013/UP/CI_W38_THUMBNAILS_LIVRAISON_GRATUITE.png
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 220 x 220, 8-bit/color RGBA, non-interlaced\012- data
Size
32 kB (32445 bytes)
Hash
0920afce68e914d0be8c4b9180f976f0
ddad70ca3e803126ff63797d0c4973e5d37d3dd1
4726e576625e92e73313cccb7050d3b5ef09798f81c0a2bcf65b557759a4b403

HTTP Headers

GET /cms/00-BFE22/LIVE/D013/UP/CI_W38_THUMBNAILS_LIVRAISON_GRATUITE.png HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/png
content-length: 32445
cache-control: max-age=86400, public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=35936, status=vary_header_present
etag: "a61029bea3d64bad42753c1f5497a65fa7f4229c"
expires: Mon, 26 Sep 2022 10:20:43 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=604800; includeSubDomains
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-cache: HIT
x-cache-hits: 102
x-cacheable: YES
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-lb: nginx-aws-c01
x-proxy: nginx-aws-c01.live
x-server: thumbor-6685569497-hzp24
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb29810af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/cms/00-BFE22/Update2/Thumbnail-1.png

104.16.48.64

200 OK

19 kB

URL HTTP/2
ci.jumia.is/cms/00-BFE22/Update2/Thumbnail-1.png
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 220 x 220, 8-bit/color RGBA, non-interlaced\012- data
Size
19 kB (19154 bytes)
Hash
d4f5ed68da53dde883d1922e02e9520b
d62d5306a0fb66987179126eb2f6734a0dd9c553
39cd0d6934908bffdb213f581214070ce2255e12c630fa11d946ff8c0aad9090

HTTP Headers

GET /cms/00-BFE22/Update2/Thumbnail-1.png HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/png
content-length: 19154
cache-control: max-age=86400, public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=29494, status=vary_header_present
etag: "d095f911726a080b9b012a14b8cb5ec638a2257c"
expires: Mon, 26 Sep 2022 10:20:43 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=604800; includeSubDomains
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-cache: HIT
x-cache-hits: 6
x-cacheable: YES
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-lb: nginx-aws-a01
x-proxy: nginx-aws-a01.live
x-server: thumbor-6685569497-lkxjx
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb297c0af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/cms/1_2022/BANNER_TEXT_ICON/call-1-1.png

104.16.48.64

200 OK

1.8 kB

URL HTTP/2
ci.jumia.is/cms/1_2022/BANNER_TEXT_ICON/call-1-1.png
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Size
1.8 kB (1754 bytes)
Hash
fe30547d54786132b89af15c02aa986a
bb62e407db8d32f689d524568612ef0f7ec05d0f
d56a9131c221c74d0405cf257796c08615e5a2dad123a90074a5837fd134c5ed

HTTP Headers

GET /cms/1_2022/BANNER_TEXT_ICON/call-1-1.png HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/png
content-length: 1754
cache-control: max-age=86400, public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1769, status=vary_header_present
etag: "7d7f84dfc1247f43e091310888c18e8ea16601b6"
expires: Mon, 26 Sep 2022 10:20:43 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=604800; includeSubDomains
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-cache: HIT
x-cache-hits: 8
x-cacheable: YES
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-lb: nginx-aws-a01
x-proxy: nginx-aws-a01.live
x-server: thumbor-6685569497-w4zg7
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb196e0af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/cms/1_2022/W30/Update/CI_W30_Thumbnails_UNIVERS-1.png

104.16.48.64

200 OK

4.9 kB

URL HTTP/2
ci.jumia.is/cms/1_2022/W30/Update/CI_W30_Thumbnails_UNIVERS-1.png
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 220 x 220, 8-bit colormap, non-interlaced\012- data
Size
4.9 kB (4900 bytes)
Hash
a26b825bd15a8b0c51295914eaf94105
8c121932827f4171e810820b08bd0d31e077b4b1
de47ec32a7c89f8124c6e04a9fd633a6a8ff4e26258a794a8188d621ae1b5dc8

HTTP Headers

GET /cms/1_2022/W30/Update/CI_W30_Thumbnails_UNIVERS-1.png HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/png
content-length: 4900
cache-control: max-age=86400, public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=5480, status=vary_header_present
etag: "d999088ad6a4ddf08711d33b12a7fcfa2e589484"
expires: Mon, 26 Sep 2022 10:20:43 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=604800; includeSubDomains
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-cache: HIT
x-cache-hits: 13
x-cacheable: YES
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-lb: nginx-aws-c01
x-proxy: nginx-aws-c01.live
x-server: thumbor-6685569497-5nd24
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb29930af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/cms/1_2022/W35/D1/JPAy_AR.png

104.16.48.64

200 OK

4.8 kB

URL HTTP/2
ci.jumia.is/cms/1_2022/W35/D1/JPAy_AR.png
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 220 x 220, 8-bit/color RGBA, non-interlaced\012- data
Size
4.8 kB (4802 bytes)
Hash
c28e079692bdc332d6b5f296760c6e2c
f72668ac3c2b036e615626c7496150cb43226401
50bc11fbb75ddd5f086e8ec62e4783df666dc017414a5ef22c94ebb63e05e182

HTTP Headers

GET /cms/1_2022/W35/D1/JPAy_AR.png HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/png
content-length: 4802
cache-control: max-age=86400, public
cf-bgj: imgq:100,h2pri
cf-polished: origSize=6866, status=vary_header_present
etag: "8de77d824967fb416ba8d34121fc9aadf2ae9129"
expires: Mon, 26 Sep 2022 11:15:46 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=604800; includeSubDomains
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-cache: HIT
x-cache-hits: 4
x-cacheable: YES
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-lb: nginx-aws-b01
x-proxy: nginx-aws-b01.live
x-server: thumbor-6685569497-hqttj
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb298e0af6-OSL
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-KS6DC65

142.250.74.72

200 OK

62 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-KS6DC65
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (17427)
Size
62 kB (62299 bytes)
Hash
dc7e5d66e7f994280ff33920e7d174e6
de3f261f9505cd0ac3b0420398e394441a8fe5c3
d79f3cfe21abfda4bbb2fc6c63608bd94e00802c7a0c10b2bea64c25749bb426

HTTP Headers

GET /gtm.js?id=GTM-KS6DC65 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 25 Sep 2022 14:11:49 GMT
expires: Sun, 25 Sep 2022 14:11:49 GMT
cache-control: private, max-age=900
last-modified: Sun, 25 Sep 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 62299
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
58b52380a6b5c598d1ad88e8da148137
a56206a0277aea6e8e2f7629793aba713d8edd0c
561a57c27dfa1f8651a89292428576b626e8700b9cd6b8173a0ce121aa8f9f4a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ci.jumia.is/unsafe/fit-in/300x300/filters:fill(white)/product/94/599791/1.jpg?2269

104.16.48.64

200 OK

11 kB

URL HTTP/2
ci.jumia.is/unsafe/fit-in/300x300/filters:fill(white)/product/94/599791/1.jpg?2269
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Size
11 kB (10973 bytes)
Hash
176b332262536173aa1d3c0639e0bc36
57552d495c97432f3085471db99dfc364c27c4a7
ad2c1faab230c5aef4c37ba1627b48c3763946f68320913979c9b7cb3fc5d256

HTTP Headers

GET /unsafe/fit-in/300x300/filters:fill(white)/product/94/599791/1.jpg?2269 HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/jpeg
content-length: 10973
expires: Sun, 23 Oct 2022 14:11:49 GMT
etag: "57552d495c97432f3085471db99dfc364c27c4a7"
x-server: thumbor-6685569497-h2zgd
cache-control: max-age=2419200
x-cacheable: YES
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-proxy: nginx-aws-a01.live
x-cache: HIT
x-cache-hits: 1
x-lb: nginx-aws-a01
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=604800; includeSubDomains
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb39a40af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/unsafe/fit-in/300x300/filters:fill(white)/product/60/105891/1.jpg?4489

104.16.48.64

200 OK

8.1 kB

URL HTTP/2
ci.jumia.is/unsafe/fit-in/300x300/filters:fill(white)/product/60/105891/1.jpg?4489
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Size
8.1 kB (8060 bytes)
Hash
2e913d10326aa4b6113aa5eff36021a1
e52d3ec84cc2708aae1c6e249618c9e6b409a78e
3db46b60cf84df532e51b8aba28da8677100229e053ca8e17169fa7e8e5edef5

HTTP Headers

GET /unsafe/fit-in/300x300/filters:fill(white)/product/60/105891/1.jpg?4489 HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/jpeg
content-length: 8060
expires: Sun, 23 Oct 2022 14:11:49 GMT
etag: "e52d3ec84cc2708aae1c6e249618c9e6b409a78e"
x-server: thumbor-6685569497-kntgm
cache-control: max-age=2419200
x-cacheable: YES
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-proxy: nginx-aws-a01.live
x-cache: HIT
x-cache-hits: 2
x-lb: nginx-aws-a01
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=604800; includeSubDomains
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb49b30af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/cms/00-BFE22/LIVE/D016/UP/CI_W38_PU_Jumia_Colis_-Express_C2C.gif

104.16.48.64

200 OK

31 kB

URL HTTP/2
ci.jumia.is/cms/00-BFE22/LIVE/D016/UP/CI_W38_PU_Jumia_Colis_-Express_C2C.gif
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 320 x 200\012- data
Size
31 kB (31065 bytes)
Hash
7bbed679e5efcf864b5fa9ae807753d3
92b16a3e1766232aff9a9810a5ef708b3622fa8d
31d236a1affa0367b0bc5ef9c11ae6736ab9c5c53482c4cee0d100a9973d03ae

HTTP Headers

GET /cms/00-BFE22/LIVE/D016/UP/CI_W38_PU_Jumia_Colis_-Express_C2C.gif HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/gif
content-length: 31065
cache-control: max-age=86400, public
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "92b16a3e1766232aff9a9810a5ef708b3622fa8d"
expires: Mon, 26 Sep 2022 14:11:49 GMT
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=604800; includeSubDomains
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-cache: HIT
x-cache-hits: 10
x-cacheable: YES
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-lb: nginx-aws-b01
x-proxy: nginx-aws-b01.live
x-server: thumbor-6685569497-pqlbv
x-xss-protection: 1; mode=block
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb49b60af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/unsafe/fit-in/300x300/filters:fill(white)/product/82/607651/1.jpg?8058

104.16.48.64

200 OK

18 kB

URL HTTP/2
ci.jumia.is/unsafe/fit-in/300x300/filters:fill(white)/product/82/607651/1.jpg?8058
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Size
18 kB (18071 bytes)
Hash
704fc12706050ad76a5669265854db85
a57ab2f8305187b2bd69cc32b49e57ff9aaf0683
392692ba19b00b01830c6656630276cd53ae7e075079dd5838d8085d0dccdf0b

HTTP Headers

GET /unsafe/fit-in/300x300/filters:fill(white)/product/82/607651/1.jpg?8058 HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/jpeg
content-length: 18071
expires: Sun, 23 Oct 2022 14:11:49 GMT
etag: "a57ab2f8305187b2bd69cc32b49e57ff9aaf0683"
x-server: thumbor-6685569497-r9j2b
cache-control: max-age=2419200
x-cacheable: YES
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-proxy: nginx-aws-a01.live
x-cache: HIT
x-cache-hits: 6
x-lb: nginx-aws-a01
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=604800; includeSubDomains
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb49b50af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/unsafe/fit-in/300x300/filters:fill(white)/product/00/385941/1.jpg?4191

104.16.48.64

200 OK

16 kB

URL HTTP/2
ci.jumia.is/unsafe/fit-in/300x300/filters:fill(white)/product/00/385941/1.jpg?4191
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Size
16 kB (16105 bytes)
Hash
3aa5c1d3c29302713dd3f69eaec808f0
2fb410601c4985817a1eb4a4c7ae863d1177d6ce
47a703004eaa8232e2ba9bb877e1b9975beae7d861a620cfd33f5df0105c10a7

HTTP Headers

GET /unsafe/fit-in/300x300/filters:fill(white)/product/00/385941/1.jpg?4191 HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/jpeg
content-length: 16105
expires: Sun, 23 Oct 2022 14:11:49 GMT
etag: "2fb410601c4985817a1eb4a4c7ae863d1177d6ce"
x-server: thumbor-6685569497-nc98k
cache-control: max-age=2419200
x-cacheable: YES
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-proxy: nginx-aws-b01.live
x-cache: HIT
x-cache-hits: 8
x-lb: nginx-aws-b01
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=604800; includeSubDomains
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb39a30af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/unsafe/fit-in/300x300/filters:fill(white)/product/19/373341/1.jpg?5807

104.16.48.64

200 OK

13 kB

URL HTTP/2
ci.jumia.is/unsafe/fit-in/300x300/filters:fill(white)/product/19/373341/1.jpg?5807
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Size
13 kB (13151 bytes)
Hash
7296d91b7513aab7d9d1728e4629f5ce
9e5c1f342c120249818a23ee22e5da0666f009c2
6fa330a95df2d520bfd4f83c74ff513ec36eac5e03652be4587f3485768a5cab

HTTP Headers

GET /unsafe/fit-in/300x300/filters:fill(white)/product/19/373341/1.jpg?5807 HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/jpeg
content-length: 13151
expires: Sun, 23 Oct 2022 14:11:49 GMT
etag: "9e5c1f342c120249818a23ee22e5da0666f009c2"
x-server: thumbor-6685569497-rvv7z
cache-control: max-age=2419200
x-cacheable: YES
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-proxy: nginx-aws-c01.live
x-cache: MISS
x-cache-hits: 0
x-lb: nginx-aws-c01
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=604800; includeSubDomains
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb299c0af6-OSL
X-Firefox-Spdy: h2

ci.jumia.is/unsafe/fit-in/300x300/filters:fill(white)/product/85/994891/1.jpg?4447

104.16.48.64

200 OK

10 kB

URL HTTP/2
ci.jumia.is/unsafe/fit-in/300x300/filters:fill(white)/product/85/994891/1.jpg?4447
IP
104.16.48.64:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Size
10 kB (10032 bytes)
Hash
7da100065e0e239dfe77a6d225357aab
631d2f16470a4169c1ce813ed6eff29701a4fa63
cbc4e6cd3edc899cda3321e427fb0fe0b92d47d4276824ae8f726de9d0fa3e70

HTTP Headers

GET /unsafe/fit-in/300x300/filters:fill(white)/product/85/994891/1.jpg?4447 HTTP/1.1
Host: ci.jumia.is
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: __cf_bm=2DF5ExYbitbjFdGCx02PtrR.AF.SFLjelTFHYk67GcQ-1664115109-0-AXG78i43pjabMltOEi6rpiggUMshsjIIJzmJRPCMWV6q5/Qn0u98H0pCSe9KJX/f3CG2U7/d4psAgWB7E/bMeJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/jpeg
content-length: 10032
expires: Sun, 23 Oct 2022 14:11:49 GMT
etag: "631d2f16470a4169c1ce813ed6eff29701a4fa63"
x-server: thumbor-6685569497-knp5d
cache-control: max-age=2419200
x-cacheable: YES
vary: X-Device, X-Language, X-ABTests, X-Scenario, X-OS, Accept-Encoding
x-proxy: nginx-aws-b01.live
x-cache: MISS
x-cache-hits: 0
x-lb: nginx-aws-b01
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=604800; includeSubDomains
x-frame-options: SAMEORIGIN
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 750459eb49b40af6-OSL
X-Firefox-Spdy: h2

js-agent.newrelic.com/nr-1216.min.js

151.101.86.137

200 OK

14 kB

URL HTTP/2
js-agent.newrelic.com/nr-1216.min.js
IP
151.101.86.137:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (32022)
Size
14 kB (14391 bytes)
Hash
b7c09cc097b2847f9edc784adba62dcb
5aa648623cf5e3b4b215fe5d068a7904c59f2925
6da450b6a3ba53bdab36f6529e987a245cdfca9a37b77790f06dfd8d5797bdaa

HTTP Headers

GET /nr-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Vf9xsFZHH0UI6bmTnW+KeBzegICGOxvtMLIWtbljNKoJtdkUEk/MfmbYPFui+bgtiUf/4lC5dk8=
x-amz-request-id: 4AV5AVKCCR961CNG
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "9f533d8cd24b2c5e3b4dc886ecbd43e8"
x-amz-version-id: mHHzJIqOizHibcYt0xqAszRr0gQRiNYy
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sun, 25 Sep 2022 14:11:49 GMT
via: 1.1 varnish
x-served-by: cache-bma1637-BMA
x-cache: HIT
x-cache-hits: 3420
x-timer: S1664115110.905391,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 14391
X-Firefox-Spdy: h2

www.jumia.ci/fragment/fly-out/?lang=fr

104.17.208.190

200 OK

28 kB

URL HTTP/2
www.jumia.ci/fragment/fly-out/?lang=fr
IP
104.17.208.190:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, Unicode text, UTF-8 text, with very long lines (47091)
Size
28 kB (28373 bytes)
Hash
d0e9d3fb5c6fe7c9775a2c3a73b39691
dca516b54950fb17801651e08f7accb9e2fd9758
4ff13da2860e16961ad219495a7bb91da9222d7d72c7abab15a4ac144ecd1d5c

HTTP Headers

GET /fragment/fly-out/?lang=fr HTTP/1.1
Host: www.jumia.ci
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
X-Request-Type: async
Connection: keep-alive
Cookie: newsletter=1; sb-closed=true; ABTests=%5B%7B%22name%22%3A%22Home%22%2C%22scenario%22%3A%22B%22%2C%22updatedAt%22%3A1629736661%7D%2C%7B%22name%22%3A%22SearchPerso%22%2C%22scenario%22%3A%22Y%22%2C%22updatedAt%22%3A1626167905%7D%2C%7B%22name%22%3A%22Cart%22%2C%22scenario%22%3A%22S%22%2C%22updatedAt%22%3A1621258805%7D%2C%7B%22name%22%3A%22AppPDVCatBar%22%2C%22scenario%22%3A%22B%22%2C%22updatedAt%22%3A1657805437%7D%2C%7B%22name%22%3A%22ReMe%22%2C%22scenario%22%3A%22N%22%2C%22updatedAt%22%3A1661936472%7D%5D; SOLSESSID=e3ba883f6afa2af9acd7d5ea3f2f5c90; userLanguage=fr_CI; __cf_bm=ziavfq8klwoT60wQVi4JPYJbeoJCKNcQZ1StUvZMIEM-1664115109-0-AZZz60CTW/IC0hRVy7BU0t4GoQXGBRXraXC3dN5Oc80iWltrR7+fz4Z23K/2C+7eYmw+DKYr9mD0EnElbJXUhWA=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding, Accept
cache-control: public, max-age=60, no-transform
set-cookie: SOLSESSID=e3ba883f6afa2af9acd7d5ea3f2f5c90; expires=Sun, 25-Sep-2022 14:35:49 GMT; path=/; domain=.jumia.ci; secure; httponly; samesite=Lax
x-cacheable: NO:Set-Cookie
age: 0
x-proxy: varnish-74db7c6466-gthct
x-cache: MISS
x-cache-hits: 0
access-control-allow-origin: *
x-lb: nginx-aws-b01
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-oa: 0
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750459eb6a880b65-OSL
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0cef234c6faf10617bf293173b24ca5b
a17090860c96476f10920527171270a78df90be6
9ee0161e298ac539f36f613a9b0ef7b128c28ec6559492d34b50a2b863dae9c9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4202
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:49 GMT
Last-Modified: Sun, 25 Sep 2022 13:01:47 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
cd8e3570655a88b47a20fb93af0fc0c5
6ebbd655af47cbe0788f5ea6a7d9cd457bda2f33
12bc57afd44ddf43fc3802ecc23e743660b146acff0958093fcea30e96b02f6b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-41452964-1&cid=554888038.1664115108&jid=21250692&gjid=89593509&_gid=1619444877.1664115108&_u=YEBAAEAAAAAAAC~&z=1028780918

64.233.162.156

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-41452964-1&cid=554888038.1664115108&jid=21250692&gjid=89593509&_gid=1619444877.1664115108&_u=YEBAAEAAAAAAAC~&z=1028780918
IP
64.233.162.156:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-41452964-1&cid=554888038.1664115108&jid=21250692&gjid=89593509&_gid=1619444877.1664115108&_u=YEBAAEAAAAAAAC~&z=1028780918 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Content-Type: text/plain
Content-Length: 0
Origin: https://www.jumia.ci
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.jumia.ci
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 25 Sep 2022 14:11:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

bam.nr-data.net/1/b76de0635f?a=200139805&v=1216.487a282&to=NVxXYhMHChFYVUELDQwWdkMSEgsPFn5aDwdCRRVmLjUw&rst=1700&ck=1&ref=https://www.jumia.ci/&ap=89.393564&be=1057&fe=1296&dc=1290&tt=cb163fedb01bcc1b&perf=%7B%22timing%22:%7B%22of%22:1664115106756,%22n%22:0,%22f%22:0,%22dn%22:15,%22dne%22:64,%22c%22:64,%22s%22:67,%22ce%22:123,%22rq%22:123,%22rp%22:965,%22rpe%22:1037,%22dl%22:969,%22di%22:1075,%22ds%22:1289,%22de%22:1292,%22dc%22:1295,%22l%22:1295,%22le%22:1321%7D,%22navigation%22:%7B%22ty%22:255%7D%7D&fcp=1187&jsonp=NREUM.setToken

162.247.241.14

200 OK

72 B

URL HTTP/1.1
bam.nr-data.net/1/b76de0635f?a=200139805&v=1216.487a282&to=NVxXYhMHChFYVUELDQwWdkMSEgsPFn5aDwdCRRVmLjUw&rst=1700&ck=1&ref=https://www.jumia.ci/&ap=89.393564&be=1057&fe=1296&dc=1290&tt=cb163fedb01bcc1b&perf=%7B%22timing%22:%7B%22of%22:1664115106756,%22n%22:0,%22f%22:0,%22dn%22:15,%22dne%22:64,%22c%22:64,%22s%22:67,%22ce%22:123,%22rq%22:123,%22rp%22:965,%22rpe%22:1037,%22dl%22:969,%22di%22:1075,%22ds%22:1289,%22de%22:1292,%22dc%22:1295,%22l%22:1295,%22le%22:1321%7D,%22navigation%22:%7B%22ty%22:255%7D%7D&fcp=1187&jsonp=NREUM.setToken
IP
162.247.241.14:0
ASN
#23467 NEWRELIC-AS-1

File type
ASCII text, with no line terminators
Size
72 B (72 bytes)
Hash
107d93e382e2c9b00fbf9fb0edc65d86
77e750e3ebf9706f4f6dd253785602d70be17c6c
a1ee50b689ea433a0acdccbf4ee4629e9ea3f9c4bcdd21effb334359a2f9e937

HTTP Headers

GET /1/b76de0635f?a=200139805&v=1216.487a282&to=NVxXYhMHChFYVUELDQwWdkMSEgsPFn5aDwdCRRVmLjUw&rst=1700&ck=1&ref=https://www.jumia.ci/&ap=89.393564&be=1057&fe=1296&dc=1290&tt=cb163fedb01bcc1b&perf=%7B%22timing%22:%7B%22of%22:1664115106756,%22n%22:0,%22f%22:0,%22dn%22:15,%22dne%22:64,%22c%22:64,%22s%22:67,%22ce%22:123,%22rq%22:123,%22rp%22:965,%22rpe%22:1037,%22dl%22:969,%22di%22:1075,%22ds%22:1289,%22de%22:1292,%22dc%22:1295,%22l%22:1295,%22le%22:1321%7D,%22navigation%22:%7B%22ty%22:255%7D%7D&fcp=1187&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 14:11:50 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 750459ed3ab5b503-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=94643e3a61ad0e54; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
23ba09c14e337ac70d877d2ed33dc795
175d5155889b45711d0a9050116591ad25e74891
cb117ac56fe205bfca3b512ed3d8ddb46a7115446d099739cc4d111c853696ae

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ea6011094da3116e1bb049caa0e491e1
5809e1f5b0beee0282601045c0a152853c977565
25bd8112864ac34144820c6aecf49dec7ff9cfb863d864ca0ebbf55dee213414

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
cd8e3570655a88b47a20fb93af0fc0c5
6ebbd655af47cbe0788f5ea6a7d9cd457bda2f33
12bc57afd44ddf43fc3802ecc23e743660b146acff0958093fcea30e96b02f6b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-41452964-1&cid=554888038.1664115108&jid=21250692&_u=YEBAAEAAAAAAAC~&z=1626144488

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-41452964-1&cid=554888038.1664115108&jid=21250692&_u=YEBAAEAAAAAAAC~&z=1626144488
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-41452964-1&cid=554888038.1664115108&jid=21250692&_u=YEBAAEAAAAAAAC~&z=1626144488 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 25 Sep 2022 14:11:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-41452964-1&cid=554888038.1664115108&jid=21250692&_u=YEBAAEAAAAAAAC~&z=1626144488

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-41452964-1&cid=554888038.1664115108&jid=21250692&_u=YEBAAEAAAAAAAC~&z=1626144488
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-41452964-1&cid=554888038.1664115108&jid=21250692&_u=YEBAAEAAAAAAAC~&z=1626144488 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 25 Sep 2022 14:11:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
267300d587831dda7559c30c40cc614e
d7ff0b9754e61f5d4178eddb5e63c3390ab559c8
ec7aad1a3116ce8ef5258b49de87cf3456c8c4890206fa5d46c8e510ded80ac0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ea6011094da3116e1bb049caa0e491e1
5809e1f5b0beee0282601045c0a152853c977565
25bd8112864ac34144820c6aecf49dec7ff9cfb863d864ca0ebbf55dee213414

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
6738d1761d3c5000a4a15aa4abf2f7d0
7a81af5cdb7fb0d139ac3974e1fc3a031a0b0b49
7920e24baa7bcf6ac07d419e4e2a71ad39e8ad273e6d12003e0730adb95c9afa

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3492
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:50 GMT
Last-Modified: Sun, 25 Sep 2022 13:13:38 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/en_US/fbevents.js

157.240.200.14

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
157.240.200.14:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (26840 bytes)
Hash
e1327a02d76346c7e23d114e4e508b30
195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: Nc0r9LtBbrE6Eb7Asfnv4kANmHlaL0p+ORYk5CK+ZeMPUm/6kX8/zVIlIoBQ3rUnR4wMNuOlzefK8vZLzpxXqQ==
priority: u=3,i
content-length: 26840
x-fb-trip-id: 1679558926
date: Sun, 25 Sep 2022 14:11:50 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/992492390/?random=1664115108892&cv=9&fst=1664115108892&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&ig=0&data=dynx_pagetype%3Dhome&frm=0&url=https%3A%2F%2Fwww.jumia.ci%2F&ref=https%3A%2F%2Farabe-datsh.com%2F&tiba=Jumia%20CI%20%7C%20Vente%20en%20ligne%20%C3%89picerie%2C%20Sant%C3%A9%20%26%20Hygi%C3%A8ne%2C%20T%C3%A9l%C3%A9phones%2C%20TV%2C%20Jeux%20Vid%C3%A9os&auid=1369925022.1664115108&hn=www.google.com&async=1&rfmt=3&fmt=4

142.250.74.98

200 OK

1.1 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/992492390/?random=1664115108892&cv=9&fst=1664115108892&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&ig=0&data=dynx_pagetype%3Dhome&frm=0&url=https%3A%2F%2Fwww.jumia.ci%2F&ref=https%3A%2F%2Farabe-datsh.com%2F&tiba=Jumia%20CI%20%7C%20Vente%20en%20ligne%20%C3%89picerie%2C%20Sant%C3%A9%20%26%20Hygi%C3%A8ne%2C%20T%C3%A9l%C3%A9phones%2C%20TV%2C%20Jeux%20Vid%C3%A9os&auid=1369925022.1664115108&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
142.250.74.98:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2574), with no line terminators
Size
1.1 kB (1114 bytes)
Hash
1099d80734be1f523e2c610841b51e7a
333480777b12ada971726983f44c3b9af71babfb
8f1af6cbf6bbc3a4cb091c8a4e3d1d94da4728b7a6a1b056d28e77479ae2ef7a

HTTP Headers

GET /pagead/viewthroughconversion/992492390/?random=1664115108892&cv=9&fst=1664115108892&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&ig=0&data=dynx_pagetype%3Dhome&frm=0&url=https%3A%2F%2Fwww.jumia.ci%2F&ref=https%3A%2F%2Farabe-datsh.com%2F&tiba=Jumia%20CI%20%7C%20Vente%20en%20ligne%20%C3%89picerie%2C%20Sant%C3%A9%20%26%20Hygi%C3%A8ne%2C%20T%C3%A9l%C3%A9phones%2C%20TV%2C%20Jeux%20Vid%C3%A9os&auid=1369925022.1664115108&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 25 Sep 2022 14:11:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1114
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 25-Sep-2022 14:26:50 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
6738d1761d3c5000a4a15aa4abf2f7d0
7a81af5cdb7fb0d139ac3974e1fc3a031a0b0b49
7920e24baa7bcf6ac07d419e4e2a71ad39e8ad273e6d12003e0730adb95c9afa

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3492
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:50 GMT
Last-Modified: Sun, 25 Sep 2022 13:13:38 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
edb9f0deb2339c1b9b0a529e42aba3c5
224c4331136c7b5e24382ce7d826659e70d17e9c
91274edd5c6342eb863cf6e0e47d3524d2b719742ea4c081bc677ffababbfe91

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2024
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:50 GMT
Last-Modified: Sun, 25 Sep 2022 13:38:06 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 313

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4c9a3ed14bd3713284d793330905b0d3
00f7b29a4d1bbfa93560dd154966f28d43d9a873
cb7521dc5578b5e9284ac357cf9ff693e1e2e575c6439e5d05ca413454787668

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2106
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:50 GMT
Last-Modified: Sun, 25 Sep 2022 13:36:44 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

creativecdn.com/tags?type=iframe&id=pr_gVDvtinZXhHwRXQC3FFV_home&id=pr_gVDvtinZXhHwRXQC3FFV_custom_customLang_fr&id=pr_gVDvtinZXhHwRXQC3FFV_lid_uEQXNekcZmyeJH7cyHd2&su=https%3A%2F%2Fwww.jumia.ci%2F&sr=https%3A%2F%2Farabe-datsh.com%2F&ts=1664115108867

185.184.8.90

302 Found

0 B

URL HTTP/2
creativecdn.com/tags?type=iframe&id=pr_gVDvtinZXhHwRXQC3FFV_home&id=pr_gVDvtinZXhHwRXQC3FFV_custom_customLang_fr&id=pr_gVDvtinZXhHwRXQC3FFV_lid_uEQXNekcZmyeJH7cyHd2&su=https%3A%2F%2Fwww.jumia.ci%2F&sr=https%3A%2F%2Farabe-datsh.com%2F&ts=1664115108867
IP
185.184.8.90:0
ASN
#204995 Rtb House S.A.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tags?type=iframe&id=pr_gVDvtinZXhHwRXQC3FFV_home&id=pr_gVDvtinZXhHwRXQC3FFV_custom_customLang_fr&id=pr_gVDvtinZXhHwRXQC3FFV_lid_uEQXNekcZmyeJH7cyHd2&su=https%3A%2F%2Fwww.jumia.ci%2F&sr=https%3A%2F%2Farabe-datsh.com%2F&ts=1664115108867 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jumia.ci/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 25 Sep 2022 14:11:50 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=bixbbdtqPOTcgMEdoUhN;Path=/;Domain=.creativecdn.com;Expires=Mon, 25-Sep-2023 14:11:50 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1664115110;Path=/;Domain=.creativecdn.com;Expires=Mon, 25-Sep-2023 14:11:50 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://creativecdn.com/tags?type=iframe&id=pr_gVDvtinZXhHwRXQC3FFV_home&id=pr_gVDvtinZXhHwRXQC3FFV_custom_customLang_fr&id=pr_gVDvtinZXhHwRXQC3FFV_lid_uEQXNekcZmyeJH7cyHd2&su=https%3A%2F%2Fwww.jumia.ci%2F&sr=https%3A%2F%2Farabe-datsh.com%2F&ts=1664115108867&tc=1
content-length: 0
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/656490851/?random=1664115108895&cv=9&fst=1664115108895&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&ig=0&data=dynx_pagetype%3Dhome&frm=0&url=https%3A%2F%2Fwww.jumia.ci%2F&ref=https%3A%2F%2Farabe-datsh.com%2F&tiba=Jumia%20CI%20%7C%20Vente%20en%20ligne%20%C3%89picerie%2C%20Sant%C3%A9%20%26%20Hygi%C3%A8ne%2C%20T%C3%A9l%C3%A9phones%2C%20TV%2C%20Jeux%20Vid%C3%A9os&auid=1369925022.1664115108&hn=www.google.com&async=1&rfmt=3&fmt=4

142.250.74.98

200 OK

1.1 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/656490851/?random=1664115108895&cv=9&fst=1664115108895&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&ig=0&data=dynx_pagetype%3Dhome&frm=0&url=https%3A%2F%2Fwww.jumia.ci%2F&ref=https%3A%2F%2Farabe-datsh.com%2F&tiba=Jumia%20CI%20%7C%20Vente%20en%20ligne%20%C3%89picerie%2C%20Sant%C3%A9%20%26%20Hygi%C3%A8ne%2C%20T%C3%A9l%C3%A9phones%2C%20TV%2C%20Jeux%20Vid%C3%A9os&auid=1369925022.1664115108&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
142.250.74.98:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2574), with no line terminators
Size
1.1 kB (1115 bytes)
Hash
a333f170b2092609986fe740d1dc2daf
aa347b850aad2e57166fce61cc55b25b4061f4b2
d2a97cde7a6f96780f71208ac3c1194fd9f6e806387f3b915ac6d6a3ebb06712

HTTP Headers

GET /pagead/viewthroughconversion/656490851/?random=1664115108895&cv=9&fst=1664115108895&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9l0&sendb=1&ig=0&data=dynx_pagetype%3Dhome&frm=0&url=https%3A%2F%2Fwww.jumia.ci%2F&ref=https%3A%2F%2Farabe-datsh.com%2F&tiba=Jumia%20CI%20%7C%20Vente%20en%20ligne%20%C3%89picerie%2C%20Sant%C3%A9%20%26%20Hygi%C3%A8ne%2C%20T%C3%A9l%C3%A9phones%2C%20TV%2C%20Jeux%20Vid%C3%A9os&auid=1369925022.1664115108&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 25 Sep 2022 14:11:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1115
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 25-Sep-2022 14:26:50 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

185.184.8.90

200 OK

337 B

URL HTTP/2
creativecdn.com/tags?type=iframe&id=pr_gVDvtinZXhHwRXQC3FFV_home&id=pr_gVDvtinZXhHwRXQC3FFV_custom_customLang_fr&id=pr_gVDvtinZXhHwRXQC3FFV_lid_uEQXNekcZmyeJH7cyHd2&su=https%3A%2F%2Fwww.jumia.ci%2F&sr=https%3A%2F%2Farabe-datsh.com%2F&ts=1664115108867&tc=1
IP
185.184.8.90:0
ASN
#204995 Rtb House S.A.

File type
HTML document, ASCII text, with very long lines (464), with no line terminators
Size
337 B (337 bytes)
Hash
d22d39dffa99f582c1217c33716e211a
1d59423b5b67c3824b7fd7755a14f90fc9dd2e27
75b710bb485f92c640bfc53ce8391dda3c06299c9072c2d04808faa8946030ff

HTTP Headers

GET /tags?type=iframe&id=pr_gVDvtinZXhHwRXQC3FFV_home&id=pr_gVDvtinZXhHwRXQC3FFV_custom_customLang_fr&id=pr_gVDvtinZXhHwRXQC3FFV_lid_uEQXNekcZmyeJH7cyHd2&su=https%3A%2F%2Fwww.jumia.ci%2F&sr=https%3A%2F%2Farabe-datsh.com%2F&ts=1664115108867&tc=1 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin, Accept-Encoding
content-type: text/html;charset=utf-8
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Sun, 25 Sep 2022 14:11:50 GMT, Sun, 25 Sep 2022 14:11:50 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-length: 337
X-Firefox-Spdy: h2

fledge-eu.creativecdn.com/fledge-igmembership?ntk=dAxnoAV5s_yBr6_SAaHodauLenz3s-tWDZHkVwwUfBMlueKErd19PKPpWTxnLjQuoI8TVro-WAO0pWocUtOMag

185.184.8.90

200 OK

438 B

URL HTTP/2
fledge-eu.creativecdn.com/fledge-igmembership?ntk=dAxnoAV5s_yBr6_SAaHodauLenz3s-tWDZHkVwwUfBMlueKErd19PKPpWTxnLjQuoI8TVro-WAO0pWocUtOMag
IP
185.184.8.90:0
ASN
#204995 Rtb House S.A.

File type
HTML document text\012- HTML document, ASCII text
Size
438 B (438 bytes)
Hash
d14e8251750055c2c488741f8507bead
441a2942d184b7deb71a145921198184fac0f923
a9a2d51097cdf5ab9ceadde775643bec5683ed312ad24022aeebe58427c0e536

HTTP Headers

GET /fledge-igmembership?ntk=dAxnoAV5s_yBr6_SAaHodauLenz3s-tWDZHkVwwUfBMlueKErd19PKPpWTxnLjQuoI8TVro-WAO0pWocUtOMag HTTP/1.1
Host: fledge-eu.creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creativecdn.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-type: text/html;charset=utf-8
origin-trial: Ak5VBljBsjJRD9BC0VYrnHXYCIGSsChJNaOqX8hbKIGHkDDje71v/ij0z52980oFG8GrMXGX5DDkr55QzNcS0w0AAABxeyJvcmlnaW4iOiJodHRwczovL2NyZWF0aXZlY2RuLmNvbTo0NDMiLCJmZWF0dXJlIjoiUHJpdmFjeVNhbmRib3hBZHNBUElzIiwiZXhwaXJ5IjoxNjY5NzY2Mzk5LCJpc1N1YmRvbWFpbiI6dHJ1ZX0=
cache-control: public, max-age=86400
date: Sun, 25 Sep 2022 14:11:50 GMT, Sun, 25 Sep 2022 14:11:50 GMT
expires: Mon, 26 Sep 2022 14:11:50 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 438
X-Firefox-Spdy: h2

cm.g.doubleclick.net/pixel?google_nid=rtb_house&google_cm&google_sc&google_ula=5153224&google_hm=dUVRWE5la2NabXllSkg3Y3lIZDI%3D&pi=adx&tdc=ams&chain=

216.58.207.226

302 Found

399 B

URL HTTP/2
cm.g.doubleclick.net/pixel?google_nid=rtb_house&google_cm&google_sc&google_ula=5153224&google_hm=dUVRWE5la2NabXllSkg3Y3lIZDI%3D&pi=adx&tdc=ams&chain=
IP
216.58.207.226:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
399 B (399 bytes)
Hash
05583302684950b9612e0ba5502d1cfe
b720258ee70b6310e6820a82ca716479c84f7434
aebd1bb293fac1a4dd33c5785ab37bb647cd295d0fd56095af88f1eeed05e433

HTTP Headers

GET /pixel?google_nid=rtb_house&google_cm&google_sc&google_ula=5153224&google_hm=dUVRWE5la2NabXllSkg3Y3lIZDI%3D&pi=adx&tdc=ams&chain= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creativecdn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=rtb_house&google_cm=&google_sc=&google_ula=5153224&google_hm=dUVRWE5la2NabXllSkg3Y3lIZDI%3D&pi=adx&tdc=ams&chain=&google_tc=
date: Sun, 25 Sep 2022 14:11:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 399
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 25-Sep-2022 14:26:50 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cm.g.doubleclick.net/pixel?google_nid=rtb_house&google_cm=&google_sc=&google_ula=5153224&google_hm=dUVRWE5la2NabXllSkg3Y3lIZDI%3D&pi=adx&tdc=ams&chain=&google_tc=

216.58.207.226

302 Found

287 B

URL HTTP/2
cm.g.doubleclick.net/pixel?google_nid=rtb_house&google_cm=&google_sc=&google_ula=5153224&google_hm=dUVRWE5la2NabXllSkg3Y3lIZDI%3D&pi=adx&tdc=ams&chain=&google_tc=
IP
216.58.207.226:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
287 B (287 bytes)
Hash
33068a3757b4bf12e64534764359ce49
e579a8d17394e892bcc15458c865cb189a35a82b
1816c0b32463d441e70f4d940383ec2be46f396570c18de96eff4ffb8f6db664

HTTP Headers

GET /pixel?google_nid=rtb_house&google_cm=&google_sc=&google_ula=5153224&google_hm=dUVRWE5la2NabXllSkg3Y3lIZDI%3D&pi=adx&tdc=ams&chain=&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creativecdn.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
location: https://cm.creativecdn.com/adx/cm?v=2&pi=adx&tdc=ams&chain=&google_error=3
date: Sun, 25 Sep 2022 14:11:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 287
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cm.creativecdn.com/adx/cm?v=2&pi=adx&tdc=ams&chain=&google_error=3

185.184.8.90

302 Found

0 B

URL HTTP/2
cm.creativecdn.com/adx/cm?v=2&pi=adx&tdc=ams&chain=&google_error=3
IP
185.184.8.90:0
ASN
#204995 Rtb House S.A.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /adx/cm?v=2&pi=adx&tdc=ams&chain=&google_error=3 HTTP/1.1
Host: cm.creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creativecdn.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
date: Sun, 25 Sep 2022 14:11:50 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=XpxmkzFoZJWUsKxvj6i0;Path=/;Domain=.creativecdn.com;Expires=Mon, 25-Sep-2023 14:11:50 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1664115110;Path=/;Domain=.creativecdn.com;Expires=Mon, 25-Sep-2023 14:11:50 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://cm.creativecdn.com/adx/cm?v=2&pi=adx&tdc=ams&chain=&google_error=3&tc=1
content-length: 0
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

312 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
312 B (312 bytes)
Hash
12482f755f1264f5587bb8cdc7fff5c3
ff01e5ec3898e03cd21ddd586dab090e994abace
7560f40a0cd5c96d14d22048dc6c0a2937c0f7aad9b23b4e4baf36cd08cec337

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4921
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:50 GMT
Last-Modified: Sun, 25 Sep 2022 12:49:50 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 312

cm.creativecdn.com/adx/cm?v=2&pi=adx&tdc=ams&chain=&google_error=3&tc=1

185.184.8.90

200 OK

42 B

URL HTTP/2
cm.creativecdn.com/adx/cm?v=2&pi=adx&tdc=ams&chain=&google_error=3&tc=1
IP
185.184.8.90:0
ASN
#204995 Rtb House S.A.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /adx/cm?v=2&pi=adx&tdc=ams&chain=&google_error=3&tc=1 HTTP/1.1
Host: cm.creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://creativecdn.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:50 GMT
content-type: image/gif
content-length: 42
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

312 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
312 B (312 bytes)
Hash
7fb4df915d04b7ad9fc63a5387df0de8
b146aa5505e39b734c2591334dddc8192cade32c
4c25a2e5f33eeadf1f3e21cbc4fe7acc9e1ab87743b3130adda2fd94f1fd160b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5358
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:50 GMT
Last-Modified: Sun, 25 Sep 2022 12:42:32 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 312

www.facebook.com/tr/?id=1064053203618969&ev=PageView&dl=https%3A%2F%2Fwww.jumia.ci%2F&rl=https%3A%2F%2Farabe-datsh.com%2F&if=false&ts=1664115109350&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664115109349.231160290&it=1664115108985&coo=false&rqm=GET

157.240.200.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=1064053203618969&ev=PageView&dl=https%3A%2F%2Fwww.jumia.ci%2F&rl=https%3A%2F%2Farabe-datsh.com%2F&if=false&ts=1664115109350&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664115109349.231160290&it=1664115108985&coo=false&rqm=GET
IP
157.240.200.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=1064053203618969&ev=PageView&dl=https%3A%2F%2Fwww.jumia.ci%2F&rl=https%3A%2F%2Farabe-datsh.com%2F&if=false&ts=1664115109350&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664115109349.231160290&it=1664115108985&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Sun, 25 Sep 2022 14:11:50 GMT
X-Firefox-Spdy: h2

dnacdn.net/dna

178.250.2.146

200 OK

0 B

URL HTTP/2
dnacdn.net/dna
IP
178.250.2.146:0
ASN
#44788 Criteo SA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:50 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=bpgbO180M0RITmhlJTJCZkMwOUJGQlhaMUN2czR5SkxMbXdQV3ZBVGNtZ2lhYmolMkJ4d2VCaUthRnZpWVprdFBDdjNVMmN3eg; expires=Fri, 20 Oct 2023 14:11:50 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 247249
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

312 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
312 B (312 bytes)
Hash
c355ed9771e902f61a7b25899ee283c4
67f4c542d67acf7b206c6f9d19f04db21c588dbc
75d8d7a6cf95a6bcb3d4176ed97a3adafee0d1371480b7997b9e1361ba133dfa

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3181
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:50 GMT
Last-Modified: Sun, 25 Sep 2022 13:18:49 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 312

dnacdn.net/dna

178.250.2.146

200 OK

448 B

URL HTTP/2
dnacdn.net/dna
IP
178.250.2.146:0
ASN
#44788 Criteo SA

File type
data
Size
448 B (448 bytes)
Hash
dca05030fcb28bac5850521c4cbb9b29
cefda78c3220b2628ca46514141c595b1b3d6db9
44ca7a961422707ee061eb7ec5c35991efa36879e1cfa7e9578225c3ed1d97f1

HTTP Headers

GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=bpgbO180M0RITmhlJTJCZkMwOUJGQlhaMUN2czR5SkxMbXdQV3ZBVGNtZ2lhYmolMkJ4d2VCaUthRnZpWVprdFBDdjNVMmN3eg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:50 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=SSL1R180M0RITmhlJTJCZkMwOUJGQlhaMUN2czR5SkxMbXdQV3ZBVGNtZ2lhYmolMkJ4eGZVVUZaUzFRJTJCS1ElMkJlN2duRXVpSG8; expires=Fri, 20 Oct 2023 14:11:50 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 325970
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2

gem.gbc.criteo.com/newidsd

185.235.84.224

200 OK

4.1 kB

URL HTTP/2
gem.gbc.criteo.com/newidsd
IP
185.235.84.224:0
ASN
#44788 Criteo SA

File type
data
Size
4.1 kB (4058 bytes)
Hash
ea0b2d7cda40ffbb0c7bf2bdf01496fe
88e9c6407b30147f431b41a28b0773545e986557
ece8aa4b2b8bbe887e52c3a74f091a231a6f343637206237a3554c4fe49c317b

HTTP Headers

GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:50 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 59264
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2

gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40

178.250.0.157

302 Found

0 B

URL HTTP/2
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP
178.250.0.157:0
ASN
#44788 Criteo SA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
date: Sun, 25 Sep 2022 14:11:50 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 715668
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
5c85847a2c328ce0ce16e9b16d690664
67aff9a779e8f0bf15a9536b5f4ae1b24372d2d3
c6a4beb8087632396abe412270967899610df0402c50ba4895aed9721e87500f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 14:11:51 GMT
Last-Modified: Sun, 25 Sep 2022 12:48:59 GMT
Server: ECS (nyb/1D2E)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UomVyy244vObjR8BlzZAtIRk7RsW05lvEChZzf8o1hJVPrcAHiEnrQ==
Age: 4972

r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-Q1pyezEGlETazDNBXOJNA5Vlme2HuhwaoIBwqw

104.18.18.126

302 Found

0 B

URL HTTP/2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-Q1pyezEGlETazDNBXOJNA5Vlme2HuhwaoIBwqw
IP
104.18.18.126:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rum?cm_dsp_id=20&external_user_id=k-Q1pyezEGlETazDNBXOJNA5Vlme2HuhwaoIBwqw HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 25 Sep 2022 14:11:51 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-Q1pyezEGlETazDNBXOJNA5Vlme2HuhwaoIBwqw&C=1
cf-ray: 750459f62edab521-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=YzBhp4DtGkidSCzsssmUUAAA; Path=/; Domain=casalemedia.com; Expires=Mon, 25 Sep 2023 14:11:51 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=4487; Path=/; Domain=casalemedia.com; Expires=Sat, 24 Dec 2022 14:11:51 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=4487; Path=/; Domain=casalemedia.com; Expires=Sat, 24 Dec 2022 14:11:51 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2a5imFTYi3g7Sndzg0zDurhxGmUNxZZf3AlwQKdBVWa3zKryWp9WrgVMo9vgqs5m6Lhup1FpjPu3VlLpv6yK4Rm0l8H2%2BNj2BoFESgxt5xLywmBBsVg2%2F%2FA0D8qZr1JXY6iR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

criteo-sync.teads.tv/um?eid=80&uid=k-Yb8jZDEGlETazDNBXOJNA5Vlme3EUZ8kB_vwrg

23.195.255.234

200 OK

23 B

URL HTTP/2
criteo-sync.teads.tv/um?eid=80&uid=k-Yb8jZDEGlETazDNBXOJNA5Vlme3EUZ8kB_vwrg
IP
23.195.255.234:0
ASN
#16625 AKAMAI-AS

File type
GIF image data, version 89a, 1 x 1\012- data
Size
23 B (23 bytes)
Hash
da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7

HTTP Headers

GET /um?eid=80&uid=k-Yb8jZDEGlETazDNBXOJNA5Vlme3EUZ8kB_vwrg HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Sun, 25 Sep 2022 14:11:51 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 14:11:51 GMT
X-Firefox-Spdy: h2

r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-Q1pyezEGlETazDNBXOJNA5Vlme2HuhwaoIBwqw&C=1

104.18.18.126

200 OK

43 B

URL HTTP/2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-Q1pyezEGlETazDNBXOJNA5Vlme2HuhwaoIBwqw&C=1
IP
104.18.18.126:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /rum?cm_dsp_id=20&external_user_id=k-Q1pyezEGlETazDNBXOJNA5Vlme2HuhwaoIBwqw&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:51 GMT
content-type: image/gif
content-length: 43
cf-ray: 750459f69f83b521-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3ubmpkIQ9mBVpOetX2Rtp9g9WD5hpXN5CXfQr7sw49XS6WY3vYEUohBbQz8Fe5M6tpH1pRbiM7Gw4l7qm464q2NYh37tXUAHJo1dJQccgGnz46PGXyI3XjuADsfs5i2QvmTr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID

185.89.210.141

307 Redirection

0 B

URL HTTP/1.1
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP
185.89.210.141:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sun, 25 Sep 2022 14:11:51 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: 087e247b-27b3-4121-ab5a-30a4d04e1aba
Set-Cookie: uuid2=9171336411381859794; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 24-Dec-2022 14:11:51 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 950.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID

185.89.210.141

302 Found

0 B

URL HTTP/1.1
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP
185.89.210.141:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Sun, 25 Sep 2022 14:11:51 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: cfb5d69b-9534-49c9-8328-532d9d9bd670
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 950.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5d04731e7d05385c083d4d4a69bc885c
e9be1b168a98366bffada661dc712bbac816480f
87659ad44d0862b531d84882b8012918288ff667609dc86ce1002553f213c501

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2386
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:51 GMT
Last-Modified: Sun, 25 Sep 2022 13:32:05 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
4e95a5ef9cea692769875efb7acb535e
c2bdcd2df16aa99dcaf74703dda63f2ddb1acb63
e67fe6f2a6bf8033c54e1c9be8f1cd954d6390d337527ddf82aa9f975c027f1f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 14:11:51 GMT
Last-Modified: Sun, 25 Sep 2022 12:51:56 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: P50F-odvfUE9RHGcsDtlqp3YCkvWVFQFUMcSZsIYlJuWPrLgtxzTMg==
Age: 4795

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5eb63d935525c73d27fe2ccc266c1f48
933536fe9ed7dfc94cb73ace4fb905e192a268f3
267a73a91a91b8b0ca8aba627a54ee2fdbb19dcd4d8dd04ae9f3a0841fa97134

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2448
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:51 GMT
Last-Modified: Sun, 25 Sep 2022 13:31:03 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-ZvXCJjEGlETazDNBXOJNA5Vlme2sBFvtIqzrog

185.64.189.110

200 OK

42 B

URL HTTP/2
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-ZvXCJjEGlETazDNBXOJNA5Vlme2sBFvtIqzrog
IP
185.64.189.110:0
ASN
#62713 AS-PUBMATIC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-ZvXCJjEGlETazDNBXOJNA5Vlme2sBFvtIqzrog HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:11:51 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-ZvXCJjEGlETazDNBXOJNA5Vlme2sBFvtIqzrog&KRTB&23144-uid:k-ZvXCJjEGlETazDNBXOJNA5Vlme2sBFvtIqzrog&KRTB&23286-uid:k-ZvXCJjEGlETazDNBXOJNA5Vlme2sBFvtIqzrog&KRTB&23287-uid:k-ZvXCJjEGlETazDNBXOJNA5Vlme2sBFvtIqzrog; domain=pubmatic.com; secure; expires=Tue, 25-Oct-2022 14:11:51 GMT; path=/
PugT=1664115111; domain=pubmatic.com; secure; expires=Tue, 25-Oct-2022 14:11:51 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2

match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-cAZyJDEGlETazDNBXOJNA5Vlme3WQ335eaEL5w

18.198.13.189

204 No Content

0 B

URL HTTP/2
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-cAZyJDEGlETazDNBXOJNA5Vlme3WQ335eaEL5w
IP
18.198.13.189:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-cAZyJDEGlETazDNBXOJNA5Vlme3WQ335eaEL5w HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Sun, 25 Sep 2022 14:11:51 GMT
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

312 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
312 B (312 bytes)
Hash
54a26e69184e61e9105f77ef53573b5f
7a46c52218ac3b1223d3cecd1c85a5c79ba3ad26
120aee4dfbcd215660fbc4b588d99b20953c9155fc3ed0b17dca5f7a1653e947

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4456
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:51 GMT
Last-Modified: Sun, 25 Sep 2022 12:57:35 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 312

pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-EPp7JDEGlETazDNBXOJNA5Vlme12oOTmbiyBrg&expires=30

213.19.162.80

204 No Content

0 B

URL HTTP/1.1
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-EPp7JDEGlETazDNBXOJNA5Vlme12oOTmbiyBrg&expires=30
IP
213.19.162.80:0
ASN
#26667 RUBICONPROJECT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tap.php?v=6434&nid=2149&put=k-EPp7JDEGlETazDNBXOJNA5Vlme12oOTmbiyBrg&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 19600bc21eacf9565125744d917cac10
Content-Type: image/gif

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
6fe79ba72a558da210d1a9e6bc452721
1fdb8a8c04d463569f701cd49aab64b30e9423fa
736525326c32eab9d161abd3f2b12e4cfb66e532970ed1cec1ca6a9191c3265b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4927
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:51 GMT
Last-Modified: Sun, 25 Sep 2022 12:49:44 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
071e8e8b8db52bfa00d77f49982b8056
f4ef0463f733d7622e84aa657865f7befb6bb9ae
61a818f46b7ffeec64eafbb10abb4af2b8c668f6c1f9688a7026933800b53f3d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5334
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:51 GMT
Last-Modified: Sun, 25 Sep 2022 12:42:58 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a1f53e0af39f60ce7e9ed59b773eb3b0
34448321a48d2b8e56ab8ac8c2b3e6b74a556e29
29adec20a9d53d88d6b18936510411584ee9f1a54e3a7984a9ec8db2debf3a0a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2025
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:51 GMT
Last-Modified: Sun, 25 Sep 2022 13:38:06 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

ad.yieldlab.net/m?dm_id=8666&ext_id=k-_WMW1TEGlETazDNBXOJNA5Vlme3Rw0Kk61obKA

23.61.208.154

204 No Content

0 B

URL HTTP/1.1
ad.yieldlab.net/m?dm_id=8666&ext_id=k-_WMW1TEGlETazDNBXOJNA5Vlme3Rw0Kk61obKA
IP
23.61.208.154:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /m?dm_id=8666&ext_id=k-_WMW1TEGlETazDNBXOJNA5Vlme3Rw0Kk61obKA HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Sat, 24 Sep 2022 14:11:51 GMT
Date: Sun, 25 Sep 2022 14:11:51 GMT
Connection: keep-alive
Set-Cookie: id=cecab065-06e6-4b82-8ef5-402511eb1155; Path=/; Domain=yieldlab.net; Expires=Mon, 25-Sep-2023 14:11:51 GMT; Max-Age=31536000; Secure; SameSite=None

www.jumia.ci/

104.17.208.190

200 OK

51 kB

URL HTTP/2
www.jumia.ci/
IP
104.17.208.190:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
51 kB (51126 bytes)
Hash
27b4cfffba72cbd5bd21ebf3f157ab4b
4385a48288366305233e11b66eb699431e6d4df7
f4175b3da9b41e7d527bfe5719c97ea6193abf2900c93e0efbf3686b0b59bc79

HTTP Headers

GET / HTTP/1.1
Host: www.jumia.ci
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding, X-Device, X-Language, X-ABTests, X-Scenario, X-OS
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
x-cacheable: NO:Not Cacheable
age: 0
x-proxy: varnish-74db7c6466-k2z5g
x-cache: MISS
x-cache-hits: 0
access-control-allow-origin: *
x-lb: nginx-aws-b01
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-oa: 0
content-encoding: gzip
cf-cache-status: DYNAMIC
set-cookie: newsletter=1; expires=Sat, 25-Sep-2027 14:11:49 GMT; path=/; domain=.jumia.ci
sb-closed=true; expires=Sun, 02-Oct-2022 14:11:49 GMT; path=/; domain=.jumia.ci
ABTests=%5B%7B%22name%22%3A%22Home%22%2C%22scenario%22%3A%22B%22%2C%22updatedAt%22%3A1629736661%7D%2C%7B%22name%22%3A%22SearchPerso%22%2C%22scenario%22%3A%22Y%22%2C%22updatedAt%22%3A1626167905%7D%2C%7B%22name%22%3A%22Cart%22%2C%22scenario%22%3A%22S%22%2C%22updatedAt%22%3A1621258805%7D%2C%7B%22name%22%3A%22AppPDVCatBar%22%2C%22scenario%22%3A%22B%22%2C%22updatedAt%22%3A1657805437%7D%2C%7B%22name%22%3A%22ReMe%22%2C%22scenario%22%3A%22N%22%2C%22updatedAt%22%3A1661936472%7D%5D; expires=Mon, 25-Sep-2023 14:11:49 GMT; path=/; domain=.jumia.ci
SOLSESSID=e3ba883f6afa2af9acd7d5ea3f2f5c90; expires=Sun, 25-Sep-2022 14:35:49 GMT; path=/; domain=.jumia.ci; secure; httponly; samesite=Lax
userLanguage=fr_CI; expires=Mon, 25-Sep-2023 14:11:49 GMT; path=/; domain=.jumia.ci
__cf_bm=ziavfq8klwoT60wQVi4JPYJbeoJCKNcQZ1StUvZMIEM-1664115109-0-AZZz60CTW/IC0hRVy7BU0t4GoQXGBRXraXC3dN5Oc80iWltrR7+fz4Z23K/2C+7eYmw+DKYr9mD0EnElbJXUhWA=; path=/; expires=Sun, 25-Sep-22 14:41:49 GMT; domain=.jumia.ci; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 750459e329cd0b65-OSL
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
925dcfd890f0fc22ebce6e43cc497ecd
1d756347443f7bf74cbe47b8f4f3a7f011f34a6a
e7b0dd7394e21b78df7c84eef61e0dd3ca0811a470c06d594cd93f080dabc580

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 14:11:51 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 01:56:49 GMT
Expires: Sat, 01 Oct 2022 01:56:48 GMT
Etag: "1d756347443f7bf74cbe47b8f4f3a7f011f34a6a"
Cache-Control: max-age=473696,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750459f69f6cb523-OSL

ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-qEO5fTEGlETazDNBXOJNA5Vlme0qKZr9htsK_A

18.156.0.31

302 Found

0 B

URL HTTP/2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-qEO5fTEGlETazDNBXOJNA5Vlme0qKZr9htsK_A
IP
18.156.0.31:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ups/58301/sync?_origin=1&uid=k-qEO5fTEGlETazDNBXOJNA5Vlme0qKZr9htsK_A HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 25 Sep 2022 14:11:51 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-qEO5fTEGlETazDNBXOJNA5Vlme0qKZr9htsK_A&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKdhMGMCED8-S5yk8DX3eP9jKgJX_YoFEgEBAQGzMWM6YwAAAAAA_eMAAA&S=AQAAAhqmSX36oXHP3UxJvl-dqhE; Expires=Mon, 25 Sep 2023 20:11:51 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
62e9e92d640992c2c170762f7f7b95e8
0aa64baa74ff0580bc7ad10bb664a5a1443f2b0a
5e5d78880dcba50a969638650966cfd634901f66d3aaac19e49f8a9192cba24f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E5D78880DCBA50A969638650966CFD634901F66D3AAAC19E49F8A9192CBA24F"
Last-Modified: Sat, 24 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6498
Expires: Sun, 25 Sep 2022 16:00:09 GMT
Date: Sun, 25 Sep 2022 14:11:51 GMT
Connection: keep-alive

cm.adform.net/pixel?adform_pid=15&adform_pc=k-ZuSDbDEGlETazDNBXOJNA5Vlme3Msl8x1ymNuA

37.157.4.23

200 OK

43 B

URL HTTP/2
cm.adform.net/pixel?adform_pid=15&adform_pc=k-ZuSDbDEGlETazDNBXOJNA5Vlme3Msl8x1ymNuA
IP
37.157.4.23:0
ASN
#198622 Adform A/S

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /pixel?adform_pid=15&adform_pc=k-ZuSDbDEGlETazDNBXOJNA5Vlme3Msl8x1ymNuA HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:11:51 GMT
content-type: image/gif
content-length: 43
last-modified: Wed, 11 Oct 2017 13:40:08 GMT
etag: "59de1f38-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
7bb6737f6e8c35b233a8b1cc5e285204
7043934dff49d97b315866a281cc931e6bd0db3d
7332f514cbcf7944ea163d9c7f9dc86a83117dfd5e687a56d4fe5c6381e4c5db

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 14:11:51 GMT
Last-Modified: Sun, 25 Sep 2022 13:35:45 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xhgVwyRcSmUgubjPRg1adL6n6d-kpRMcAXBzKG4OjK-jhgrEqDF3-Q==
Age: 2166

dpm.demdex.net/ibs:dpid=28645&dpuuid=

34.252.39.216

302 Found

0 B

URL HTTP/1.1
dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP
34.252.39.216:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v042-092e55943.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=50444406463278794423156988767707532417; Max-Age=15552000; Expires=Fri, 24 Mar 2023 14:11:51 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: oA/Yu25iSIU=
Content-Length: 0
Connection: keep-alive

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
40019f714d3cf5cd682f0047a4a89604
3c10d323136756905fdda49fbe3c6660c759fa2a
52dbdee48984657fac707b80437393935b7c4cc396596ab3312b8a179390dfc3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 14:11:51 GMT
Last-Modified: Sun, 25 Sep 2022 14:00:06 GMT
Server: ECS (nyb/1D1D)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: N747GSL6HBGStU9ZRnKJOPriXzzETq3hp4i11eleWfH5eYesOegc0Q==
Age: 705

x.bidswitch.net/sync?dsp_id=46&user_id=k-4DfaCTEGlETazDNBXOJNA5Vlme1mRPFSyHEdSg&expires=30

52.57.150.184

302 Moved Temporarily

0 B

URL HTTP/1.1
x.bidswitch.net/sync?dsp_id=46&user_id=k-4DfaCTEGlETazDNBXOJNA5Vlme1mRPFSyHEdSg&expires=30
IP
52.57.150.184:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync?dsp_id=46&user_id=k-4DfaCTEGlETazDNBXOJNA5Vlme1mRPFSyHEdSg&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 25 Sep 2022 14:11:51 GMT
Location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-4DfaCTEGlETazDNBXOJNA5Vlme1mRPFSyHEdSg&expires=30
Set-Cookie: tuuid=986bd00d-cac5-454f-b639-d1dcd6d1cc1b; path=/; expires=Mon, 25-Sep-2023 14:11:51 GMT; domain=.bidswitch.net; samesite=none; secure
c=1664115111; path=/; expires=Mon, 25-Sep-2023 14:11:51 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1664115111; path=/; expires=Mon, 25-Sep-2023 14:11:51 GMT; domain=.bidswitch.net; samesite=none; secure
c=1664115111; path=/; expires=Mon, 25-Sep-2023 14:11:51 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive

ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-qEO5fTEGlETazDNBXOJNA5Vlme0qKZr9htsK_A&verify=true

18.156.0.31

204 No Content

0 B

URL HTTP/2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-qEO5fTEGlETazDNBXOJNA5Vlme0qKZr9htsK_A&verify=true
IP
18.156.0.31:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ups/58301/sync?_origin=1&uid=k-qEO5fTEGlETazDNBXOJNA5Vlme0qKZr9htsK_A&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
date: Sun, 25 Sep 2022 14:11:51 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKdhMGMCEH1Ix6zBCCt1YWf-VxWbH1IFEgEBAQGzMWM6YwAAAAAA_eMAAA&S=AQAAAlTefcCtLK-cGE95VPFtO0Q; Expires=Mon, 25 Sep 2023 20:11:51 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2

eb2.3lift.com/xuid?mid=2711&xuid=k-hY8t8TEGlETazDNBXOJNA5Vlme2brmieexbw1g&dongle=013b

76.223.111.18

200 OK

37 B

URL HTTP/2
eb2.3lift.com/xuid?mid=2711&xuid=k-hY8t8TEGlETazDNBXOJNA5Vlme2brmieexbw1g&dongle=013b
IP
76.223.111.18:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
37 B (37 bytes)
Hash
3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96

HTTP Headers

GET /xuid?mid=2711&xuid=k-hY8t8TEGlETazDNBXOJNA5Vlme2brmieexbw1g&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:51 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2

ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-kEnfIjEGlETazDNBXOJNA5Vlme0j5VYotXK72Q

52.28.226.85

302 Found

0 B

URL HTTP/2
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-kEnfIjEGlETazDNBXOJNA5Vlme0j5VYotXK72Q
IP
52.28.226.85:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?publisher_dsp_id=38&external_user_id=k-kEnfIjEGlETazDNBXOJNA5Vlme0j5VYotXK72Q HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 25 Sep 2022 14:11:51 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-kEnfIjEGlETazDNBXOJNA5Vlme0j5VYotXK72Q
set-cookie: tuuid=0fdfe52c-bc2e-4d1a-8434-6dea615988f1; Expires=Sat, 24 Dec 2022 14:11:51 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1664115111; Expires=Sat, 24 Dec 2022 14:11:51 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2

id5-sync.com/s/966/9.gif?puid=k-GESp0jEGlETazDNBXOJNA5Vlme3_HPKJykGYlg

141.95.98.64

200

43 B

URL HTTP/1.1
id5-sync.com/s/966/9.gif?puid=k-GESp0jEGlETazDNBXOJNA5Vlme3_HPKJykGYlg
IP
141.95.98.64:0
ASN
#16276 OVH SAS

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7

HTTP Headers

GET /s/966/9.gif?puid=k-GESp0jEGlETazDNBXOJNA5Vlme3_HPKJykGYlg HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Sun, 25-Sep-2022 14:16:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Sun, 25-Sep-2022 14:16:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Sun, 25-Sep-2022 14:16:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Sun, 25-Sep-2022 14:16:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Sun, 25-Sep-2022 14:16:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Sun, 25-Sep-2022 14:16:51 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Sun, 25 Sep 2022 14:11:51 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload

status.thawte.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
status.thawte.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
183bb1d95d5f9d2f92660bb80c38143c
76d3028cab692ee9bba86ff3c41d6e65c19ae9bb
22b15b9cacbe432e9199a82ea9b649f63d6550b6bccca3e711ec18d1ec061642

HTTP Headers

POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1090
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:51 GMT
Last-Modified: Sun, 25 Sep 2022 13:53:42 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

ad.yieldlab.net/m?dt_id=8664&ext_id=k-_WMW1TEGlETazDNBXOJNA5Vlme3Rw0Kk61obKA

23.61.208.154

204 No Content

0 B

URL HTTP/1.1
ad.yieldlab.net/m?dt_id=8664&ext_id=k-_WMW1TEGlETazDNBXOJNA5Vlme3Rw0Kk61obKA
IP
23.61.208.154:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /m?dt_id=8664&ext_id=k-_WMW1TEGlETazDNBXOJNA5Vlme3Rw0Kk61obKA HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Sat, 24 Sep 2022 14:11:51 GMT
Date: Sun, 25 Sep 2022 14:11:51 GMT
Connection: keep-alive
Set-Cookie: id=cf57bc98-7777-4691-ae12-98ece5faadac; Path=/; Domain=yieldlab.net; Expires=Mon, 25-Sep-2023 14:11:51 GMT; Max-Age=31536000; Secure; SameSite=None

ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-kEnfIjEGlETazDNBXOJNA5Vlme0j5VYotXK72Q

52.28.226.85

200 OK

43 B

URL HTTP/2
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-kEnfIjEGlETazDNBXOJNA5Vlme0j5VYotXK72Q
IP
52.28.226.85:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-kEnfIjEGlETazDNBXOJNA5Vlme0j5VYotXK72Q HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:51 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2

dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=

34.252.39.216

200 OK

59 B

URL HTTP/1.1
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP
34.252.39.216:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
59 B (59 bytes)
Hash
1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13

HTTP Headers

GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v042-0bfed758b.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: OdMcJnmWRJk=
Content-Length: 59
Connection: keep-alive

x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-4DfaCTEGlETazDNBXOJNA5Vlme1mRPFSyHEdSg&expires=30

52.57.150.184

200 OK

43 B

URL HTTP/1.1
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-4DfaCTEGlETazDNBXOJNA5Vlme1mRPFSyHEdSg&expires=30
IP
52.57.150.184:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /ul_cb/sync?dsp_id=46&user_id=k-4DfaCTEGlETazDNBXOJNA5Vlme1mRPFSyHEdSg&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Sun, 25 Sep 2022 14:11:51 GMT
Content-Length: 43
Connection: keep-alive

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
beab72de9f58af97f41bed80c74507f5
ccf1e1b52091553839738f2a696d338943f5afe3
ee0aad405b549d7fe0068d5425db919304275a63102456e8040989ab6fc8d940

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 14:11:51 GMT
Last-Modified: Sun, 25 Sep 2022 12:52:25 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: k0ian80LFDSu4Xa8YoSnNrwRtXWD-7eFb1_aIoOoQySiDXWT-4XInQ==
Age: 4766

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
9d0c4d31db713f6e0c4045953eb2c36e
41c25a649d9653c0e830e9aa2b75cd5142db32c4
3599c0d19052550915e434cb4456eebc40b02fe17d937e3008ffde3f07cbc13c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 14:11:51 GMT
Last-Modified: Sun, 25 Sep 2022 12:54:09 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6za4EARVu21voPcimTGycpBRzhyE9epocn1Wsxe1o8nsDvAfAiSxCQ==
Age: 4662

ad.yieldlab.net/m?dt_id=12438557&ext_id=k-_WMW1TEGlETazDNBXOJNA5Vlme3Rw0Kk61obKA

23.61.208.154

204 No Content

0 B

URL HTTP/1.1
ad.yieldlab.net/m?dt_id=12438557&ext_id=k-_WMW1TEGlETazDNBXOJNA5Vlme3Rw0Kk61obKA
IP
23.61.208.154:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /m?dt_id=12438557&ext_id=k-_WMW1TEGlETazDNBXOJNA5Vlme3Rw0Kk61obKA HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Sat, 24 Sep 2022 14:11:51 GMT
Date: Sun, 25 Sep 2022 14:11:51 GMT
Connection: keep-alive
Set-Cookie: id=c7d3fa8c-3970-45de-8c07-c669b7ecb7c7; Path=/; Domain=yieldlab.net; Expires=Mon, 25-Sep-2023 14:11:51 GMT; Max-Age=31536000; Secure; SameSite=None

gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40

178.250.0.157

302 Found

0 B

URL HTTP/2
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP
178.250.0.157:0
ASN
#44788 Criteo SA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
date: Sun, 25 Sep 2022 14:11:50 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 746658
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

sync.outbrain.com/cookie-sync?p=criteo&uid=k-T_mDLzEGlETazDNBXOJNA5Vlme3ZpAR_WJ4mLg

70.42.32.127

200 OK

0 B

URL HTTP/1.1
sync.outbrain.com/cookie-sync?p=criteo&uid=k-T_mDLzEGlETazDNBXOJNA5Vlme3ZpAR_WJ4mLg
IP
70.42.32.127:0
ASN
#22075 AS-OUTBRAIN

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cookie-sync?p=criteo&uid=k-T_mDLzEGlETazDNBXOJNA5Vlme3ZpAR_WJ4mLg HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 14:11:51 GMT
Content-Length: 0
Cache-Control: no-cache
X-TraceId: 06ebebfe9bc6b7308403f9267db280cd

sync-criteo.ads.yieldmo.com/sync?id=k-OMrNpDEGlETazDNBXOJNA5Vlme2cFxOmXbdWdQ&pn_id=criteo&ext=1

54.220.128.66

200 OK

43 B

URL HTTP/2
sync-criteo.ads.yieldmo.com/sync?id=k-OMrNpDEGlETazDNBXOJNA5Vlme2cFxOmXbdWdQ&pn_id=criteo&ext=1
IP
54.220.128.66:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /sync?id=k-OMrNpDEGlETazDNBXOJNA5Vlme2cFxOmXbdWdQ&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:51 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=gbdab042c3861986cfb8%7C1664115111810%7C0%7C; Domain=.yieldmo.com; Expires=Mon, 25-Sep-2023 14:11:51 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-OMrNpDEGlETazDNBXOJNA5Vlme2cFxOmXbdWdQ; Domain=ads.yieldmo.com; Expires=Mon, 25-Sep-2023 14:11:51 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
4198fa094a76094df485c9e89231f691
856785aae5adf63dc734f076be4dcf74b53a292d
de133db7a975e49b2e3e4a6cfd324a07b6678cf1e9fe178ed9368d606f614d70

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 14:11:51 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 15:11:55 GMT
Expires: Sat, 01 Oct 2022 15:11:54 GMT
Etag: "856785aae5adf63dc734f076be4dcf74b53a292d"
Cache-Control: max-age=521402,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750459f7e915b523-OSL

visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-5HxstjEGlETazDNBXOJNA5Vlme0rU8QDdhtOnQ

185.255.84.152

200 OK

49 B

URL HTTP/2
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-5HxstjEGlETazDNBXOJNA5Vlme0rU8QDdhtOnQ
IP
185.255.84.152:0
ASN
#200271 Iguane Solutions SAS

File type
GIF image data, version 89a, 1 x 1\012- data
Size
49 B (49 bytes)
Hash
4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38

HTTP Headers

GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-5HxstjEGlETazDNBXOJNA5Vlme0rU8QDdhtOnQ HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=fec4b6170611dab3efe4cba9d5df992f; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Sun, 25 Sep 2022 14:11:51 GMT
content-length: 49
x-envoy-upstream-service-time: 2
server: ayl-lb-fra02
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5a6523225dc7ac830faca26492f48ca8
848bc1a13c50d15ca674225af2e189ac7a9cf041
a5a13f70ea9cf56156c6de36f6189e88eaef1d49e54c638d5000ad40bb345563

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6483
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 14:11:51 GMT
Last-Modified: Sun, 25 Sep 2022 12:23:48 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0

178.250.2.151

200 OK

43 B

URL HTTP/2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP
178.250.2.151:0
ASN
#44788 Criteo SA

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

HTTP Headers

GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:51 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 282972
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40

178.250.0.157

302 Found

0 B

URL HTTP/2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP
178.250.0.157:0
ASN
#44788 Criteo SA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
date: Sun, 25 Sep 2022 14:11:51 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 353213
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1586 bytes)
Hash
a2ec6e13f21b0337961fb9a1a17678f1
72a1ca35a757339d3d1c4acf7c8ee5f5f69a25d1
f54ed9bad3faa1954170a65d666dd42bc93eaea234773b36ba242bacb7b8789c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "F54ED9BAD3FAA1954170A65D666DD42BC93EAEA234773B36BA242BACB7B8789C"
Last-Modified: Sun, 25 Sep 2022 08:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=3425
Expires: Sun, 25 Sep 2022 15:08:57 GMT
Date: Sun, 25 Sep 2022 14:11:52 GMT
Connection: keep-alive

s.thebrighttag.com/cs?btt=0&tp=cr&uid=

3.128.146.7

200 OK

35 B

URL HTTP/2
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP
3.128.146.7:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015

HTTP Headers

GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:52 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: 00e17280-3cdc-11ed-bf0b-0000ac170374
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: 
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2

dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-Tq806jEGlETazDNBXOJNA5Vlme0VBHt_RsPWlw&google_error=3

178.250.2.151

200 OK

0 B

URL HTTP/2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-Tq806jEGlETazDNBXOJNA5Vlme0VBHt_RsPWlw&google_error=3
IP
178.250.2.151:0
ASN
#44788 Criteo SA

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-Tq806jEGlETazDNBXOJNA5Vlme0VBHt_RsPWlw&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:50 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 262223
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

criteo-partners.tremorhub.com/sync?UICR=k-XG1klzEGlETazDNBXOJNA5Vlme1NQL_y9urfPg

3.230.192.196

200 OK

0 B

URL HTTP/2
criteo-partners.tremorhub.com/sync?UICR=k-XG1klzEGlETazDNBXOJNA5Vlme1NQL_y9urfPg
IP
3.230.192.196:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sync?UICR=k-XG1klzEGlETazDNBXOJNA5Vlme1NQL_y9urfPg HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:51 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2

www.jumia.ci/assets_he/images/i-global.cd8c5f0c.svg

104.17.208.190

200 OK

0 B

URL HTTP/2
www.jumia.ci/assets_he/images/i-global.cd8c5f0c.svg
IP
104.17.208.190:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets_he/images/i-global.cd8c5f0c.svg HTTP/1.1
Host: www.jumia.ci
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: newsletter=1; sb-closed=true; ABTests=%5B%7B%22name%22%3A%22Home%22%2C%22scenario%22%3A%22B%22%2C%22updatedAt%22%3A1629736661%7D%2C%7B%22name%22%3A%22SearchPerso%22%2C%22scenario%22%3A%22Y%22%2C%22updatedAt%22%3A1626167905%7D%2C%7B%22name%22%3A%22Cart%22%2C%22scenario%22%3A%22S%22%2C%22updatedAt%22%3A1621258805%7D%2C%7B%22name%22%3A%22AppPDVCatBar%22%2C%22scenario%22%3A%22B%22%2C%22updatedAt%22%3A1657805437%7D%2C%7B%22name%22%3A%22ReMe%22%2C%22scenario%22%3A%22N%22%2C%22updatedAt%22%3A1661936472%7D%5D; SOLSESSID=e3ba883f6afa2af9acd7d5ea3f2f5c90; userLanguage=fr_CI; __cf_bm=ziavfq8klwoT60wQVi4JPYJbeoJCKNcQZ1StUvZMIEM-1664115109-0-AZZz60CTW/IC0hRVy7BU0t4GoQXGBRXraXC3dN5Oc80iWltrR7+fz4Z23K/2C+7eYmw+DKYr9mD0EnElbJXUhWA=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: image/svg+xml
vary: Accept-Encoding, X-Device, X-Language, X-ABTests, X-Scenario, X-OS
last-modified: Wed, 31 Aug 2022 15:37:53 GMT
etag: W/"630f8051-14c8e"
expires: Tue, 28 Feb 2023 13:56:08 GMT
cache-control: max-age=15552000, public
x-cacheable: YES
x-proxy: varnish-74db7c6466-gthct
x-cache: HIT
x-cache-hits: 22
access-control-allow-origin: *
x-lb: nginx-aws-b01
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-oa: 0
content-encoding: gzip
cf-cache-status: HIT
age: 43817
server: cloudflare
cf-ray: 750459e928210b65-OSL
X-Firefox-Spdy: h2

arabe-datsh.com/bimmaroc/bim/js/bootstrap.min.js

92.205.3.134

200 OK

0 B

URL HTTP/2
arabe-datsh.com/bimmaroc/bim/js/bootstrap.min.js
IP
92.205.3.134:0
ASN
#21499 Host Europe GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bimmaroc/bim/js/bootstrap.min.js HTTP/1.1
Host: arabe-datsh.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/bimmaroc/bim/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 02:26:18 GMT
etag: "3ea2660-c7c7-5e93ac9516814-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 12444
content-type: application/javascript
date: Sun, 25 Sep 2022 14:11:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.jumia.ci/assets_he/css/main.4aeb6141.css

104.17.208.190

200 OK

0 B

URL HTTP/2
www.jumia.ci/assets_he/css/main.4aeb6141.css
IP
104.17.208.190:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets_he/css/main.4aeb6141.css HTTP/1.1
Host: www.jumia.ci
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: newsletter=1; sb-closed=true; ABTests=%5B%7B%22name%22%3A%22Home%22%2C%22scenario%22%3A%22B%22%2C%22updatedAt%22%3A1629736661%7D%2C%7B%22name%22%3A%22SearchPerso%22%2C%22scenario%22%3A%22Y%22%2C%22updatedAt%22%3A1626167905%7D%2C%7B%22name%22%3A%22Cart%22%2C%22scenario%22%3A%22S%22%2C%22updatedAt%22%3A1621258805%7D%2C%7B%22name%22%3A%22AppPDVCatBar%22%2C%22scenario%22%3A%22B%22%2C%22updatedAt%22%3A1657805437%7D%2C%7B%22name%22%3A%22ReMe%22%2C%22scenario%22%3A%22N%22%2C%22updatedAt%22%3A1661936472%7D%5D; SOLSESSID=e3ba883f6afa2af9acd7d5ea3f2f5c90; userLanguage=fr_CI; __cf_bm=ziavfq8klwoT60wQVi4JPYJbeoJCKNcQZ1StUvZMIEM-1664115109-0-AZZz60CTW/IC0hRVy7BU0t4GoQXGBRXraXC3dN5Oc80iWltrR7+fz4Z23K/2C+7eYmw+DKYr9mD0EnElbJXUhWA=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: text/css
vary: Accept-Encoding, X-Device, X-Language, X-ABTests, X-Scenario, X-OS
last-modified: Thu, 08 Sep 2022 15:38:41 GMT
etag: W/"631a0c81-f63f"
expires: Sun, 12 Mar 2023 16:02:38 GMT
cache-control: max-age=15552000, public
x-cacheable: YES
x-proxy: varnish-74db7c6466-k2z5g
x-cache: HIT
x-cache-hits: 8
access-control-allow-origin: *
x-lb: nginx-aws-b01
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-oa: 0
content-encoding: gzip
cf-cache-status: HIT
server: cloudflare
cf-ray: 750459e8bf850b65-OSL
X-Firefox-Spdy: h2

sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-sGrVSjEGlETazDNBXOJNA5Vlme2AqTLhOWEq7Q

141.226.228.48

200 OK

0 B

URL HTTP/2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-sGrVSjEGlETazDNBXOJNA5Vlme2AqTLhOWEq7Q
IP
141.226.228.48:0
ASN
#200478 Taboola.com ltd

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-sGrVSjEGlETazDNBXOJNA5Vlme2AqTLhOWEq7Q HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:11:51 GMT
x-fastly-to-nlb-rtt: 25914
access-control-allow-credentials: true
X-Firefox-Spdy: h2

www.jumia.ci/assets_he/js/common.06115e7b.js

104.17.208.190

200 OK

0 B

URL HTTP/2
www.jumia.ci/assets_he/js/common.06115e7b.js
IP
104.17.208.190:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets_he/js/common.06115e7b.js HTTP/1.1
Host: www.jumia.ci
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Cookie: newsletter=1; sb-closed=true; ABTests=%5B%7B%22name%22%3A%22Home%22%2C%22scenario%22%3A%22B%22%2C%22updatedAt%22%3A1629736661%7D%2C%7B%22name%22%3A%22SearchPerso%22%2C%22scenario%22%3A%22Y%22%2C%22updatedAt%22%3A1626167905%7D%2C%7B%22name%22%3A%22Cart%22%2C%22scenario%22%3A%22S%22%2C%22updatedAt%22%3A1621258805%7D%2C%7B%22name%22%3A%22AppPDVCatBar%22%2C%22scenario%22%3A%22B%22%2C%22updatedAt%22%3A1657805437%7D%2C%7B%22name%22%3A%22ReMe%22%2C%22scenario%22%3A%22N%22%2C%22updatedAt%22%3A1661936472%7D%5D; SOLSESSID=e3ba883f6afa2af9acd7d5ea3f2f5c90; userLanguage=fr_CI; __cf_bm=ziavfq8klwoT60wQVi4JPYJbeoJCKNcQZ1StUvZMIEM-1664115109-0-AZZz60CTW/IC0hRVy7BU0t4GoQXGBRXraXC3dN5Oc80iWltrR7+fz4Z23K/2C+7eYmw+DKYr9mD0EnElbJXUhWA=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:49 GMT
content-type: application/javascript
vary: Accept-Encoding, X-Device, X-Language, X-ABTests, X-Scenario, X-OS
last-modified: Wed, 31 Aug 2022 15:38:23 GMT
etag: W/"630f806f-1e3ea"
expires: Tue, 28 Feb 2023 13:45:23 GMT
cache-control: max-age=15552000, public
x-cacheable: YES
x-proxy: varnish-74db7c6466-gthct
x-cache: HIT
x-cache-hits: 29
access-control-allow-origin: *
x-lb: nginx-aws-a01
x-xss-protection: 1; mode=block
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-oa: 0
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 750459e8ffe90b65-OSL
X-Firefox-Spdy: h2

static.criteo.net/js/ld/ld.js

178.250.2.130

200 OK

0 B

URL HTTP/2
static.criteo.net/js/ld/ld.js
IP
178.250.2.130:0
ASN
#44788 Criteo SA

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/ld/ld.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.jumia.ci/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:11:50 GMT
content-type: text/javascript
last-modified: Thu, 25 Aug 2022 11:02:07 GMT
etag: W/"630756af-a8d9"
expires: Mon, 26 Sep 2022 14:11:50 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

ag.gbc.criteo.com/newidsd

185.235.84.36

200 OK

0 B

URL HTTP/2
ag.gbc.criteo.com/newidsd
IP
185.235.84.36:0
ASN
#44788 Criteo SA

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Sun, 25 Sep 2022 14:11:50 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 120288
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2

fontlibrary.org/face/droid-arabic-kufi

45.56.91.11

200 OK

0 B

URL HTTP/2
fontlibrary.org/face/droid-arabic-kufi
IP
45.56.91.11:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /face/droid-arabic-kufi HTTP/1.1
Host: fontlibrary.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://arabe-datsh.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 14:11:47 GMT
content-type: text/css;charset=UTF-8
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (38)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations