r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12126
Expires: Fri, 31 Mar 2023 23:03:43 GMT
Date: Fri, 31 Mar 2023 19:41:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cca063332ba9a89eadd62a8dd7f81a9b
d473b2a7a32c964599ff3bac8f98fa578f03d1d1
02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7191
Expires: Fri, 31 Mar 2023 21:41:28 GMT
Date: Fri, 31 Mar 2023 19:41:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Length, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 31 Mar 2023 19:16:12 GMT
content-type: application/json
age: 1525
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 374c9e295a804e605c402f48ae7e2446
967394b36ecdff2dd32842f878887f061024c6b3
7652dfcb9e2d620ce1d033be8ecc53166d2881154c15decd60899415e5ac2706
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7652DFCB9E2D620CE1D033BE8ECC53166D2881154C15DECD60899415E5AC2706"
Last-Modified: Thu, 30 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5842
Expires: Fri, 31 Mar 2023 21:18:59 GMT
Date: Fri, 31 Mar 2023 19:41:37 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: AZ9JNLDk2G4zVZLeDkzJe9p0pWnwYMvi6aEpfKkfrUCb4NIc9Zb6mTMRT/Xd/HM1x+vYU4JHUBQ=
x-amz-request-id: 3ARJXQD469BWM993
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 31 Mar 2023 19:12:18 GMT
age: 1759
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:41:37 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ab61862f016dea85f8aa55e59369d905
a5e81f13052b9e9184caf05a9740c345a40d1f22
e0d580c313088d524a5338e63e4acf9f3f3cb45a54f2528c5d1c4915d71b255b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E0D580C313088D524A5338E63E4ACF9F3F3CB45A54F2528C5D1C4915D71B255B"
Last-Modified: Thu, 30 Mar 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11983
Expires: Fri, 31 Mar 2023 23:01:20 GMT
Date: Fri, 31 Mar 2023 19:41:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Pragma, Backoff, Expires, Last-Modified, Content-Type, Alert, Retry-After, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 31 Mar 2023 19:17:26 GMT
age: 1451
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2VhXvATBdS5HrkKld/b2DA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2uqbZ/KnEhhHN4wP1S7tFp3bp0g=
Date: Fri, 31 Mar 2023 19:41:37 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maxcdn.bootstrapcdn.com/font-awesome/4.6.1/css/font-awesome.min.css
104.18.11.207200 OK 7.3 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.6.1/css/font-awesome.min.css
IP 104.18.11.207:0
File type ASCII text, with very long lines (28596)
Hash 875e1e4d0d25d6f931f9f66908e89a96
372337a2cbc3b47e58a803d16a08a21ed358085d
8ae986b627917dc888ac995ec8dfb4ebabaa13cacb33d8878cb11cd9dae0b75f
GET /font-awesome/4.6.1/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 19:41:37 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: US
CDN-EdgeStorageId: 617, 617
Last-Modified: Mon, 25 Jan 2021 22:04:54 GMT
CDN-CachedAt: 2021-06-03 22:46:19
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: b43941af4bb8e32ed6d04a6a37617f28
Content-Encoding: gzip
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 6190444
Server: cloudflare
CF-RAY: 7b0b12285b13b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
fonts.googleapis.com/css?family=Nunito:400,700
142.250.74.74200 OK 511 B URL HTTP/1.1 fonts.googleapis.com/css?family=Nunito:400,700
IP 142.250.74.74:0
Hash 1405905d8dd7f18df682138788dbe046
030d6f1174a222cc3b5deee1ef946b2ee7520629
a0c15cd15eda6d77a76b6c717f69abcb366ac7468f6ac284f9410eb6d1e9a65f
GET /css?family=Nunito:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 31 Mar 2023 19:41:37 GMT
Date: Fri, 31 Mar 2023 19:41:37 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Open+Sans%3A400%7COswald%3A400&ver=1484800313
142.250.74.74200 OK 701 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A400%7COswald%3A400&ver=1484800313
IP 142.250.74.74:0
Hash f4446ff3a0c820998f915e85b49fc612
cabb4f6587ecf0872e2c30089a5894de413ffd6c
182eca65645b62d454d6391694fad73e7802f8646930c784928c3fdc1aa9bd65
GET /css?family=Open+Sans%3A400%7COswald%3A400&ver=1484800313 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 31 Mar 2023 19:41:37 GMT
Date: Fri, 31 Mar 2023 19:41:37 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c7c442df4545181d3e9d3292cf342a77
f7746d30dbf5adb1f8a9561194f21e3a8316f36e
3b7ed85cacd633fa5883c8d21534d30623237e8c8d7d91780399287882557825
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css
216.58.207.233200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (35959)
Hash f1d1c6947963cb45c723ade544114d08
b5ec31c95a56be9d83a5e1f0dc739f02284e30fe
794458aabbb7c9b3d68e9692c84044988099732239e2c4cc6f4204eb2011b448
GET /static/v1/widgets/3566091532-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7756
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Mar 2023 02:39:17 GMT
expires: Tue, 26 Mar 2024 02:39:17 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 27 Mar 2023 01:49:46 GMT
content-type: text/css
vary: Accept-Encoding
age: 406941
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/jsbin/976584016-comment_from_post_iframe.js
216.58.207.233200 OK 6.8 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/976584016-comment_from_post_iframe.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (1720)
Hash 6257474fb561cbfe96fe59a4bf03c9db
5341cee7f12a49010b004ad7e2a5d6d775db57c6
32b2fb9167f78dfc0c2309c8928b7971468a60bc2b8cce9b2690aba73e464c19
GET /static/v1/jsbin/976584016-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6756
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Mar 2023 12:51:17 GMT
expires: Thu, 28 Mar 2024 12:51:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 28 Mar 2023 13:49:44 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 197421
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ac29d7d71ef6c0cc7547974c8c4f7b
29108a8370757ef63f347d1fd2ae696f5842342c
3371093d6dab54c7c3b612e3774435f0a592bee4e40fbcc2edd55d29d7715c26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ibrandstory.blogspot.com/2016/06/blog-post_71.html
172.217.21.161200 OK 51 kB URL HTTP/1.1 ibrandstory.blogspot.com/2016/06/blog-post_71.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6967)
Hash f9002f5a56249dbbcc1cabf024842a33
faf73abed4c6f325bf20bf6a342e811882519ce9
ab06ad55a75d3098b416672a869f24dfb8c0ae2d95ec72531ac0eefe594177dc
GET /2016/06/blog-post_71.html HTTP/1.1
Host: ibrandstory.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Fri, 31 Mar 2023 19:41:37 GMT
Date: Fri, 31 Mar 2023 19:41:37 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 09 Apr 2022 16:06:07 GMT
ETag: W/"8509d0dfa1c0e5541b2987761d95f0b7154a0d1d45133e0d915a8819f3a8f82a"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 51100
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7963311f969ba57d0c57f3bf21a87164
c260cf0b00c9d43671143f0e70ce977f865307df
eddeae9c567f47f3608a4dc12d5b80ac2dcab9244c1feb87b9596142e3276ac2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ac29d7d71ef6c0cc7547974c8c4f7b
29108a8370757ef63f347d1fd2ae696f5842342c
3371093d6dab54c7c3b612e3774435f0a592bee4e40fbcc2edd55d29d7715c26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.12.2/jquery.min.js
216.58.207.202200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.12.2/jquery.min.js
IP 216.58.207.202:0
File type ASCII text, with very long lines (32029)
Hash a5b25f19a6a491f4d4de5a8777b97459
ff8c134995ee13f12875de0daec8fe3139e2269d
85dc8a6ea561bf0b30b582d096cbb36b39f2482f6358d9b18dea1f03d1d1cf64
GET /ajax/libs/jquery/1.12.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 34009
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 31 Mar 2023 18:05:13 GMT
expires: Sat, 30 Mar 2024 18:05:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 5785
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ibrandstory.blogspot.com/js/cookienotice.js
172.217.21.161200 OK 2.0 kB URL HTTP/1.1 ibrandstory.blogspot.com/js/cookienotice.js
IP 172.217.21.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: ibrandstory.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/2016/06/blog-post_71.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Fri, 31 Mar 2023 19:41:38 GMT
Expires: Fri, 07 Apr 2023 19:41:38 GMT
Cache-Control: public, max-age=604800
Last-Modified: Fri, 31 Mar 2023 14:51:11 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
www.blogger.com/static/v1/widgets/194262808-widgets.js
216.58.207.233200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/194262808-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 008c618ae0742d3857a253f6e1f8d3de
621f126701f72c73180ff2264b6bb8c490430994
400de07efa42d536e029b4b3cb55d77722c5b0f9639395c6e66834da0f65ae19
GET /static/v1/widgets/194262808-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56925
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Mar 2023 02:00:16 GMT
expires: Thu, 28 Mar 2024 02:00:16 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Mar 2023 00:53:01 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 236482
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c7c442df4545181d3e9d3292cf342a77
f7746d30dbf5adb1f8a9561194f21e3a8316f36e
3b7ed85cacd633fa5883c8d21534d30623237e8c8d7d91780399287882557825
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e2d5e4593c830bd9a297e9d820fce16b
a48bacab5839fbc2a379e0e1f8703da462f3c31d
c273a26e5fb94b4aa7c494bd09daf02419f99307f90de3891951535ae93e8028
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e2d5e4593c830bd9a297e9d820fce16b
a48bacab5839fbc2a379e0e1f8703da462f3c31d
c273a26e5fb94b4aa7c494bd09daf02419f99307f90de3891951535ae93e8028
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUJiZTaR.woff2
216.58.207.227200 OK 5.8 kB URL HTTP/1.1 fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUJiZTaR.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 5804, version 1.0\012- data
Hash 49bd2e79094eea9504be090e2d7fea3e
85f710d4c9cacd20bc1b70556ce4e40026e72835
2eea6522648a0efe79473ddf2b6d98680b4abb1933cbb7377ab62e16b0d99ec3
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUJiZTaR.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ibrandstory.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 5804
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 29 Mar 2023 04:32:24 GMT
Expires: Thu, 28 Mar 2024 04:32:24 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 18 Jul 2022 19:16:43 GMT
Content-Type: font/woff2
Age: 227354
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiZQ.woff2
216.58.207.227200 OK 9.8 kB URL HTTP/1.1 fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiZQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 9840, version 1.0\012- data
Hash afda6e429fd299054de28e1f157c683d
c1847d6f3df5fe11d5e96fd5e6a59b73ff7ed96b
81cd29d1413ecf75834fb3ce1da572fe5c39e53b22c61f5dafec5b14ed4ee12e
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiZQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ibrandstory.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 9840
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 28 Mar 2023 11:52:03 GMT
Expires: Wed, 27 Mar 2024 11:52:03 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 18 Jul 2022 19:24:04 GMT
Content-Type: font/woff2
Age: 287375
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.98200 OK 36 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.98:0
Hash c26b97e7f5bb7a34d190703522d75e16
69d9e5aea0544dbaf9b78c1b65139c03eceece8f
96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Fri, 31 Mar 2023 19:41:38 GMT
Expires: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 2969738739123653115
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 51455
X-XSS-Protection: 0
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofIMeaBXso.woff2
216.58.207.227200 OK 21 kB URL HTTP/1.1 fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofIMeaBXso.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 20824, version 1.0\012- data
Hash b64d77c41dff8cf0803c13fe1758189e
7855e3dc3181f191160844546bb47425880f5b42
7ca4b4bb8be6840990cc92b2dee938f142df99c93ce85063b391a09369b63b17
GET /s/nunito/v25/XRXV3I6Li01BKofIMeaBXso.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ibrandstory.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 20824
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 31 Mar 2023 01:45:47 GMT
Expires: Sat, 30 Mar 2024 01:45:47 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 18 Jul 2022 19:35:18 GMT
Content-Type: font/woff2
Age: 64551
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cc5c3178ec98953ab42a506e7362ce19
4604426ea2484d4a0c07ef948a3c68dec4d3191e
aa7928a6a422a824e601587054fb8639ae013f4e5eaebc4db6fae1d0fb6993ab
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA7928A6A422A824E601587054FB8639AE013F4E5EAEBC4DB6FAE1D0FB6993AB"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12740
Expires: Fri, 31 Mar 2023 23:13:58 GMT
Date: Fri, 31 Mar 2023 19:41:38 GMT
Connection: keep-alive
maxcdn.bootstrapcdn.com/font-awesome/4.6.1/fonts/fontawesome-webfont.woff2?v=4.6.1
104.18.11.207200 OK 71 kB URL HTTP/1.1 maxcdn.bootstrapcdn.com/font-awesome/4.6.1/fonts/fontawesome-webfont.woff2?v=4.6.1
IP 104.18.11.207:0
File type Web Open Font Format (Version 2), TrueType, length 70728, version 4.393\012- data
Hash 926c93d201fe51c8f351e858468980c3
977357f82830f57fbdac2492dd421e5dcce44a1a
d3ebb498192527b985939ae62cc4e5eb5c108efc1896184126b45d866868e73d
GET /font-awesome/4.6.1/fonts/fontawesome-webfont.woff2?v=4.6.1 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ibrandstory.blogspot.com
Connection: keep-alive
Referer: http://maxcdn.bootstrapcdn.com/
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 19:41:38 GMT
Content-Type: font/woff2
Content-Length: 70728
Connection: keep-alive
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
ETag: "926c93d201fe51c8f351e858468980c3"
Last-Modified: Mon, 25 Jan 2021 22:04:55 GMT
CDN-CachedAt: 01/05/2023 13:19:42
CDN-ProxyVer: 1.03
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 1082
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: d030836fc6823a7d16d4298596da2159
CDN-Cache: HIT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0b1229a83f0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 78a93851c07bc72ae322b9ce9c30d14b
0e0c93f5f97a510f3471de81aa9a65657f06b15e
8e75431d6476416e81fd1af92e592a6159793131ad428d101af1499705464a65
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2809
Cache-Control: max-age=87868
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Etag: "6425e0b5-1d7"
Expires: Sat, 01 Apr 2023 20:06:06 GMT
Last-Modified: Thu, 30 Mar 2023 19:19:17 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7ea999a491ab4009f8658e78af2bfb94
f0cbd3d48c9081acfdeb53adf55135dba5bbe08b
d159c0baaa0869f3e69e16ea482178e6184d68cb6f5ae8a6156955488fd415fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7ea999a491ab4009f8658e78af2bfb94
f0cbd3d48c9081acfdeb53adf55135dba5bbe08b
d159c0baaa0869f3e69e16ea482178e6184d68cb6f5ae8a6156955488fd415fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20085
Date: Fri, 31 Mar 2023 18:05:24 GMT
Expires: Fri, 31 Mar 2023 20:05:24 GMT
Cache-Control: public, max-age=7200
Age: 5774
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
Vary: Accept-Encoding
googleads.g.doubleclick.net/pagead/html/r20230329/r20190131/zrt_lookup.html
142.250.74.66200 OK 4.5 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230329/r20190131/zrt_lookup.html
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3205)
Hash bad17ab9662318e8927e5009c83c2ad1
53ded630f95abe04b7b77d43076bf71b9ea71c02
68da39270ebfa6d17f4b765cbe004797a736611585ff0c53213d91f78f13c260
GET /pagead/html/r20230329/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4549
x-xss-protection: 0
date: Fri, 31 Mar 2023 02:51:28 GMT
expires: Fri, 14 Apr 2023 02:51:28 GMT
cache-control: public, max-age=1209600
age: 60610
etag: 2378337311435320485
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.facebook.com/plugins/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fibrandstory&width=120&layout=box_count&action=like&size=large&show_faces=false&share=false&height=65&appId=802694679871373
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fibrandstory&width=120&layout=box_count&action=like&size=large&show_faces=false&share=false&height=65&appId=802694679871373
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fibrandstory&width=120&layout=box_count&action=like&size=large&show_faces=false&share=false&height=65&appId=802694679871373 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval';style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}, {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: 9YgMYkpitHm8MEY2ChZVQkETU8BQoTR9ApdjRVb1pkhf7Pq+luWA4KJtKHMbcMzsAvQcOXj3uibEXuajfH9/fQ==
content-length: 0
date: Fri, 31 Mar 2023 19:41:38 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
get.mycounter.ua/counter.php?id=148976&w=http%3A//ibrandstory.blogspot.com/2016/06/blog-post_71.html&s=1280x1024x24&c=1&j=5
62.149.0.249200 OK 1.1 kB URL HTTP/1.1 get.mycounter.ua/counter.php?id=148976&w=http%3A//ibrandstory.blogspot.com/2016/06/blog-post_71.html&s=1280x1024x24&c=1&j=5
IP 62.149.0.249:0
File type PNG image data, 88 x 41, 8-bit colormap, non-interlaced\012- data
Hash 27db9dad9d33db090af874f97d7f789b
a5b1788c2ec9e6dc1bfd46431e0a418b6fd2da2d
98150cf7bc832d8853b9533cb596be960fe06ebe4fef53863e55786ecaa8bba1
GET /counter.php?id=148976&w=http%3A//ibrandstory.blogspot.com/2016/06/blog-post_71.html&s=1280x1024x24&c=1&j=5 HTTP/1.1
Host: get.mycounter.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 1131
Connection: keep-alive
Date: Fri, 31 Mar 2023 22:41:38 GMT
Server: MyCounter TCP Server v.2.0.0
Accept-Ranges: bytes
Expires: 0
Cache-control: no-cache
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202303270101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-6871256885693670&plah=ibrandstory.blogspot.com
142.250.74.98200 OK 120 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202303270101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-6871256885693670&plah=ibrandstory.blogspot.com
IP 142.250.74.98:0
File type ASCII text, with very long lines (4362)
Size 120 kB (119844 bytes)
Hash cbf12366a72c1dd108f49cc8be5e5178
b42d3bed82f1647267191abcf8b09b4d4bebc6d9
0577149e40bf05052283352752e925aacb40bff89f9795a7bc3474938db06946
GET /pagead/managed/js/adsense/m202303270101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-6871256885693670&plah=ibrandstory.blogspot.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 31 Mar 2023 19:41:38 GMT
expires: Fri, 31 Mar 2023 19:41:38 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 8355085877088099434
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119844
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7ea999a491ab4009f8658e78af2bfb94
f0cbd3d48c9081acfdeb53adf55135dba5bbe08b
d159c0baaa0869f3e69e16ea482178e6184d68cb6f5ae8a6156955488fd415fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 78a93851c07bc72ae322b9ce9c30d14b
0e0c93f5f97a510f3471de81aa9a65657f06b15e
8e75431d6476416e81fd1af92e592a6159793131ad428d101af1499705464a65
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 344
Cache-Control: max-age=85403
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Etag: "6425e0b5-1d7"
Expires: Sat, 01 Apr 2023 19:25:01 GMT
Last-Modified: Thu, 30 Mar 2023 19:19:17 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ibrandstory.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:31:23 GMT
expires: Wed, 27 Mar 2024 10:31:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 292215
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/-ULNLmj90a1E/Vf5mNmyTSFI/AAAAAAAAESY/PsKDvK-eJEM/s1600-r/ob.png
142.250.74.161200 OK 5.2 kB URL HTTP/1.1 2.bp.blogspot.com/-ULNLmj90a1E/Vf5mNmyTSFI/AAAAAAAAESY/PsKDvK-eJEM/s1600-r/ob.png
IP 142.250.74.161:0
File type PNG image data, 320 x 105, 8-bit/color RGBA, non-interlaced\012- data
Hash d16760f1387a5e8da62b39c628707191
2b4c596f6f5f63dcfd0dcec94f73d56761dc5eef
410eaa1ae017edaa66385dee1426e534e9e56e61c7fd2e388a0f23d4c14dbc81
GET /-ULNLmj90a1E/Vf5mNmyTSFI/AAAAAAAAESY/PsKDvK-eJEM/s1600-r/ob.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1127"
Expires: Sat, 01 Apr 2023 19:41:38 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="ob.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 31 Mar 2023 19:41:38 GMT
Server: fife
Content-Length: 5200
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 17 kB IP 142.250.74.131:0
File type gzip compressed data, max compression\012- data
Hash da93e8569cbe7d937c6ddfc88f9bb295
8d3a8ed1039c36d6f929c8327a4183927d5176c3
663a7a45c8d551055a9de91080aa844fed375e5fe83260d4f65ccea7f36864a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j99&a=363437474&t=pageview&_s=1&dl=http%3A%2F%2Fibrandstory.blogspot.com%2F2016%2F06%2Fblog-post_71.html&ul=en-us&de=UTF-8&dt=%D0%A0%D1%83%D0%BC%D1%8B%D0%BD%D1%8B%20%D1%82%D1%80%D0%B5%D0%B1%D1%83%D1%8E%D1%82%20%D0%B0%D0%B2%D1%82%D0%BE%D0%BD%D0%BE%D0%BC%D0%B8%D0%B8%20%D0%B2%20%D0%A7%D0%B5%D1%80%D0%BD%D0%BE%D0%B2%D1%86%D0%B0%D1%85%20-%20iBrand%20%3A%3A%20%D0%9E%D0%B1%D0%B8%D1%80%D0%B0%D0%B9%20%D1%81%D0%B8%D0%BB%D1%8C%D0%BD%D1%83%20%D1%82%D0%BE%D1%87%D0%BA%D1%83%20%D0%B7%D0%BE%D1%80%D1%83!&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1681064116&gjid=2086388402&cid=2065995160.1680291698&tid=UA-56118832-6&_gid=448244294.1680291698&_r=1&_slc=1&z=1424973065
142.250.74.110200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=363437474&t=pageview&_s=1&dl=http%3A%2F%2Fibrandstory.blogspot.com%2F2016%2F06%2Fblog-post_71.html&ul=en-us&de=UTF-8&dt=%D0%A0%D1%83%D0%BC%D1%8B%D0%BD%D1%8B%20%D1%82%D1%80%D0%B5%D0%B1%D1%83%D1%8E%D1%82%20%D0%B0%D0%B2%D1%82%D0%BE%D0%BD%D0%BE%D0%BC%D0%B8%D0%B8%20%D0%B2%20%D0%A7%D0%B5%D1%80%D0%BD%D0%BE%D0%B2%D1%86%D0%B0%D1%85%20-%20iBrand%20%3A%3A%20%D0%9E%D0%B1%D0%B8%D1%80%D0%B0%D0%B9%20%D1%81%D0%B8%D0%BB%D1%8C%D0%BD%D1%83%20%D1%82%D0%BE%D1%87%D0%BA%D1%83%20%D0%B7%D0%BE%D1%80%D1%83!&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1681064116&gjid=2086388402&cid=2065995160.1680291698&tid=UA-56118832-6&_gid=448244294.1680291698&_r=1&_slc=1&z=1424973065
IP 142.250.74.110:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=363437474&t=pageview&_s=1&dl=http%3A%2F%2Fibrandstory.blogspot.com%2F2016%2F06%2Fblog-post_71.html&ul=en-us&de=UTF-8&dt=%D0%A0%D1%83%D0%BC%D1%8B%D0%BD%D1%8B%20%D1%82%D1%80%D0%B5%D0%B1%D1%83%D1%8E%D1%82%20%D0%B0%D0%B2%D1%82%D0%BE%D0%BD%D0%BE%D0%BC%D0%B8%D0%B8%20%D0%B2%20%D0%A7%D0%B5%D1%80%D0%BD%D0%BE%D0%B2%D1%86%D0%B0%D1%85%20-%20iBrand%20%3A%3A%20%D0%9E%D0%B1%D0%B8%D1%80%D0%B0%D0%B9%20%D1%81%D0%B8%D0%BB%D1%8C%D0%BD%D1%83%20%D1%82%D0%BE%D1%87%D0%BA%D1%83%20%D0%B7%D0%BE%D1%80%D1%83!&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1681064116&gjid=2086388402&cid=2065995160.1680291698&tid=UA-56118832-6&_gid=448244294.1680291698&_r=1&_slc=1&z=1424973065 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://ibrandstory.blogspot.com
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://ibrandstory.blogspot.com
date: Fri, 31 Mar 2023 19:41:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 5ac54bb3628890e12111d64757053dac
882c767217269bad8ce48c525f3fc09b0b463524
c1ad6c172550ea4fe7b49ec5f913099a74b95f887cb31bfde78e4895b016bc01
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-Qwyjdi-wrBM/V2jxdQSUMCI/AAAAAAAAAhw/uRAhj8RaJkwm11tsD46-ekMNVyEXoAkJwCLcB/s640/49407_w_300.jpg
142.250.74.161200 OK 64 kB URL HTTP/2 3.bp.blogspot.com/-Qwyjdi-wrBM/V2jxdQSUMCI/AAAAAAAAAhw/uRAhj8RaJkwm11tsD46-ekMNVyEXoAkJwCLcB/s640/49407_w_300.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 300x175, components 3\012- data
Hash ee34db041cbeff479439238d71c43aa3
7d188a3615530e114932f540f379bdf466157b35
07e833f5f0679b4ff69033df70b0cf20c0c343898c984c5ba7d69be6cb5ab667
GET /-Qwyjdi-wrBM/V2jxdQSUMCI/AAAAAAAAAhw/uRAhj8RaJkwm11tsD46-ekMNVyEXoAkJwCLcB/s640/49407_w_300.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v21e"
expires: Sat, 01 Apr 2023 19:41:38 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="49407_w_300.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 31 Mar 2023 19:41:38 GMT
server: fife
content-length: 64186
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fibrandstory%2F&tabs&width=340&height=130&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=false&appId
157.240.205.35200 OK 13 kB URL HTTP/2 www.facebook.com/plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fibrandstory%2F&tabs&width=340&height=130&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=false&appId
IP 157.240.205.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (18767)
Hash fc443770118c234ba18812a278314b44
40826c218af5be2e8653adc594ca36e30dd395ed
be01c48b9a8758e67a859c7d1dbce096f06819cd46f52f25cd5962a090760c9e
GET /plugins/page.php?href=https%3A%2F%2Fwww.facebook.com%2Fibrandstory%2F&tabs&width=340&height=130&small_header=false&adapt_container_width=true&hide_cover=false&show_facepile=false&appId HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval';style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: cOD4ZsiNB9JczIqKpjFY1tulrOtzoB6OBZ+8ivZpyYV2diIUWMLliOMGUKbgWfPLNiwl75NswnMagr+3fQdwgA==
date: Fri, 31 Mar 2023 19:41:38 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ibrandstory.blogspot.com/feeds/posts/default/-/%D0%9F%D0%BE%D0%BB%D1%96%D1%82%D0%B8%D0%BA%D0%B0?alt=json-in-script&max-results=3&callback=jQuery11220735902917216543_1680291697279&_=1680291697280
172.217.21.161404 Not Found 88 B URL HTTP/1.1 ibrandstory.blogspot.com/feeds/posts/default/-/%D0%9F%D0%BE%D0%BB%D1%96%D1%82%D0%B8%D0%BA%D0%B0?alt=json-in-script&max-results=3&callback=jQuery11220735902917216543_1680291697279&_=1680291697280
IP 172.217.21.161:0
File type ASCII text, with no line terminators
Hash 0ca97419bdbd096a31d53ffcd437d6b1
6a4562c24fb84fa288417c9776a685cf15181e61
d3395dd537f34cb5cfdb8fb4525a44155a752f2ed4939d4bedde277ccbaf6dab
GET /feeds/posts/default/-/%D0%9F%D0%BE%D0%BB%D1%96%D1%82%D0%B8%D0%BA%D0%B0?alt=json-in-script&max-results=3&callback=jQuery11220735902917216543_1680291697279&_=1680291697280 HTTP/1.1
Host: ibrandstory.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/2016/06/blog-post_71.html
Cookie: s=1
HTTP/1.1 404 Not Found
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"927df8e32900943d9b6a7ee4fae7f8f4674347321ff25c2e04b23caba0144a06"
Date: Fri, 31 Mar 2023 19:41:38 GMT
Content-Type: text/html; charset=UTF-8
Server: blogger-renderd
Expires: Fri, 31 Mar 2023 19:41:39 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Content-Length: 88
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b3f59ff1fec36cad0249e88f19b0913f
da1527919e61fa348117cc8ebfb7b1eec2e55905
8165a8117a9763ed875eadbadeae41533204e63fb8d3379d1b36aaefd71175f8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7963311f969ba57d0c57f3bf21a87164
c260cf0b00c9d43671143f0e70ce977f865307df
eddeae9c567f47f3608a4dc12d5b80ac2dcab9244c1feb87b9596142e3276ac2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-Uu4n2zIOw7o/Vf2ldc4oskI/AAAAAAAAEQI/OM_wlldsJNM/s1600/55e02a44162ba_1440754244.jpg
142.250.74.161200 OK 75 kB URL HTTP/1.1 2.bp.blogspot.com/-Uu4n2zIOw7o/Vf2ldc4oskI/AAAAAAAAEQI/OM_wlldsJNM/s1600/55e02a44162ba_1440754244.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 800x536, components 3\012- data
Hash 63308b8703927f13849ac75533db6850
bb0b20466ea9f382e8f9fd8df99e62b877687e1a
c8fe90111e3e790e45a0b460ccf7145216c3e53d9f1fa32dc322c5cfdc69f4f9
GET /-Uu4n2zIOw7o/Vf2ldc4oskI/AAAAAAAAEQI/OM_wlldsJNM/s1600/55e02a44162ba_1440754244.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1103"
Expires: Sat, 01 Apr 2023 19:41:38 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="55e02a44162ba_1440754244.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 31 Mar 2023 19:41:38 GMT
Server: fife
Content-Length: 74909
X-XSS-Protection: 0
1.bp.blogspot.com/--L5WM6P6VhA/VgGmGuL99-I/AAAAAAAAEZI/th6U12lF_Ig/s1600/11880605_778099428965625_7242759597584770044_n.jpg
142.250.74.161200 OK 61 kB URL HTTP/1.1 1.bp.blogspot.com/--L5WM6P6VhA/VgGmGuL99-I/AAAAAAAAEZI/th6U12lF_Ig/s1600/11880605_778099428965625_7242759597584770044_n.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 604x442, components 3\012- data
Hash f54b21f0af7c191bfd4591ce5a83a65a
040744b121099ec3738a5e1229a7e3cc3766df8a
ef9e1629cd0ca6bf97643470f4ea2d724115b36be2474b7ea41253bb08ab3a5d
GET /--L5WM6P6VhA/VgGmGuL99-I/AAAAAAAAEZI/th6U12lF_Ig/s1600/11880605_778099428965625_7242759597584770044_n.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1193"
Expires: Sat, 01 Apr 2023 19:41:38 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="11880605_778099428965625_7242759597584770044_n.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 31 Mar 2023 19:41:38 GMT
Server: fife
Content-Length: 61233
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4950e24a0440a020b30c6874c98f75bd
3b15a0974242f132b9b2c664a19a3c3e37472cab
36fca91cbb3cce32e2754454af341bb4dec9bf5f202858cca1ce1397baf8a411
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a013b8698c4ff7b527a98379d21f8d51
4cffc2d5925e6daea086b70fecc3e12fd2a75b8d
28f02fdf4c2167dbfc6bd7530f24586626b50b5440f4d1747d31be0d800946f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=ibrandstory.blogspot.com&callback=_gfp_s_&client=ca-pub-6871256885693670
216.58.207.226200 OK 252 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=ibrandstory.blogspot.com&callback=_gfp_s_&client=ca-pub-6871256885693670
IP 216.58.207.226:0
File type ASCII text, with very long lines (391), with no line terminators
Hash 9e0a931893525dec1721f4cd53a01bbc
ee862d3291ce86212b6e1f427640f056a60dffd0
a174996809a88779c20f27788b86c27bfaeda984b0e53676e58f7895194770d6
GET /gampad/cookie.js?domain=ibrandstory.blogspot.com&callback=_gfp_s_&client=ca-pub-6871256885693670 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 31 Mar 2023 19:41:38 GMT
server: cafe
cache-control: private
content-length: 252
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=ibrandstory.blogspot.com
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=ibrandstory.blogspot.com
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=ibrandstory.blogspot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 31 Mar 2023 19:41:38 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=ibrandstory.blogspot.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=ibrandstory.blogspot.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=ibrandstory.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 31 Mar 2023 19:41:38 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-HQMocTIL6-M/Vf1tz2jL3DI/AAAAAAAAEPw/LLAo0ZprA38/s1600/1368956670_g6.jpg
142.250.74.161200 OK 107 kB URL HTTP/1.1 4.bp.blogspot.com/-HQMocTIL6-M/Vf1tz2jL3DI/AAAAAAAAEPw/LLAo0ZprA38/s1600/1368956670_g6.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 600x516, components 3\012- data
Size 107 kB (107353 bytes)
Hash 9f7839c646c0a07b80a7941b948d5862
0a54a7b66e2f6f25c97be3c6942f63a6a6cfea7e
868ffff67245ae526d619b5a1f7cbaee3e1e47524ef7eef2ee7aebaca9fe8a92
GET /-HQMocTIL6-M/Vf1tz2jL3DI/AAAAAAAAEPw/LLAo0ZprA38/s1600/1368956670_g6.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v10fd"
Expires: Sat, 01 Apr 2023 19:41:38 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1368956670_g6.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 31 Mar 2023 19:41:38 GMT
Server: fife
Content-Length: 107353
X-XSS-Protection: 0
static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 830 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (724)
Hash d63a02ce87c07ffcfa869fef7fc5f233
cae745fef84088abe3525bb77f75c55cd1d4cc2c
bf9d4d71541a0a1f31b10be351add847ee935da6de355756314c8ca96512444d
GET /rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 21 Mar 2024 16:38:59 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 1joCzofAf/z6hp/vf8XyMw==
x-fb-debug: NnCF857XVfWY1GixK+AqPPO5Ud1MtpujnaS3EZSX48PTFNtIZMHVjgQsVr+JUfaNLoP/aJRUEHiwNxC6cwq6tg==
content-length: 830
x-fb-trip-id: 1679558926
date: Fri, 31 Mar 2023 19:41:38 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yY/l/en_US/UIbhq_otiob.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 21 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yY/l/en_US/UIbhq_otiob.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (29335)
Hash 645141cae9b5ff75afce55cf0ba3efc9
1203e0465b0e271a286073ed7a0f71dda188e956
b308244b4e2beb35542cc11737b4cf7abae316fdd4c43338d22b6fc8da84246b
GET /rsrc.php/v3iEpO4/yY/l/en_US/UIbhq_otiob.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 27 Mar 2024 09:43:50 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ZFFByum1/3WvzlXPC6PvyQ==
x-fb-debug: hGXhV37OnLssT3J5SFei9ASTbZQdDyfmM+/GEOroYNgsbH74+xKDCH9URMVvqSKzQlJhUHkzP56Ptc/Yw7zRDQ==
content-length: 20907
x-fb-trip-id: 1679558926
date: Fri, 31 Mar 2023 19:41:38 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iLl54/yR/l/en_US/-nQoSbg5QUl.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iLl54/yR/l/en_US/-nQoSbg5QUl.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (10442)
Hash e5be61a1e3084215ef64610cd7009dda
8c0dd35d8ff7acb4993fdc4560470933bb0b95e6
23c97ac115d152465157afd5464bab0eba1668cc9e482ef46314342699faf81a
GET /rsrc.php/v3iLl54/yR/l/en_US/-nQoSbg5QUl.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Mar 2024 17:39:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 5b5hoeMIQhXvZGEM1wCd2g==
x-fb-debug: OkXL7oFLU9HraSC6wP6Pk6Y79uGwS5PG7+gDWJHNngJQN2+mxbDmo4l/DpEyJKdDX8vP8ij/MBU5Erg2F7WIgQ==
content-length: 11642
x-fb-trip-id: 1679558926
date: Fri, 31 Mar 2023 19:41:38 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 293 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (327)
Hash 2f913d812811ef7e6fca30334c5972e2
d17caaa167443dc08696c672380f237e0db3fb02
ee8918a2f5d163099104b70f79065abc8fd309e69add57170546f2706956eef8
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 28 Mar 2024 19:25:41 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: L5E9gSgR735vyjAzTFly4g==
x-fb-debug: vZkKc/2oRAIcM5aKd2H1zTJtmGf7QCesnzxsHiXSli6DqklorzUnpwFd74q7EgcowMh9+xmk4Bw3wFtb4jlE8w==
content-length: 293
x-fb-trip-id: 1679558926
date: Fri, 31 Mar 2023 19:41:38 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yE/l/0,cross/ZLxfbvwB86B.css?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 5.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yE/l/0,cross/ZLxfbvwB86B.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (4431)
Hash 865751ad8560706b1c1418abcf988c5d
28b8a1f32235e1be42e07b376009741aa32482ca
540115895d18f115c57102d2e4ef1ea1e58c1eb1db30c901ca22eb6e36a63ee0
GET /rsrc.php/v3/yE/l/0,cross/ZLxfbvwB86B.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Mar 2024 17:40:05 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: hldRrYVgcGscFBirz5iMXQ==
x-fb-debug: Zw65wkmGbY5uyvBaRPSygrVZkYemuMfvU4gkJf8iL1x92C0N9Aen2B73RF+gVl9pp4y6n3Epaub+veEO6RHQeA==
content-length: 5099
x-fb-trip-id: 1679558926
date: Fri, 31 Mar 2023 19:41:38 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b3f59ff1fec36cad0249e88f19b0913f
da1527919e61fa348117cc8ebfb7b1eec2e55905
8165a8117a9763ed875eadbadeae41533204e63fb8d3379d1b36aaefd71175f8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 1.6 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (1984)
Hash 9286a42c6635bf94761964f1b129c0de
21d966c8e5833bec35fd039f80e6f7e47185743a
da4067af50abaeaa27b4dfc7f3accf1346f13d9fd9d3821222bc820378c7ed00
GET /rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 28 Mar 2024 17:01:41 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: koakLGY1v5R2GWTxsSnA3g==
x-fb-debug: eJxHfziHvXvH3csIQ5NaYTYTE0lUkQvT4KCh73SB6QEYwb9YtMwV47d72lR725wfJ3P4g1F9JwBkqxIu4HN+NQ==
content-length: 1615
x-fb-trip-id: 1679558926
date: Fri, 31 Mar 2023 19:41:38 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3c805a5c8d88d63e317a631e82533b14
c9c70d6d8c42c5690e57e1d3b0b6331a8b1ec1a7
4957e91e8473ee4aaf83db07185ba4a0eab8f9b5687d566e65cb5f4028071183
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a013b8698c4ff7b527a98379d21f8d51
4cffc2d5925e6daea086b70fecc3e12fd2a75b8d
28f02fdf4c2167dbfc6bd7530f24586626b50b5440f4d1747d31be0d800946f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.xx.fbcdn.net/rsrc.php/v3/yC/r/sN8pzo7zgao.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yC/r/sN8pzo7zgao.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (5542)
Hash 03e3077706b8b50039a12a054db91391
76fc975aea0a4067f27709be013a1f2b8ad5357a
ac89d29ecf7e0cc8a67f185eeef9267e41daa91017fa421443a8997193c04199
GET /rsrc.php/v3/yC/r/sN8pzo7zgao.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Mar 2024 00:20:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: A+MHdwa4tQA5oSoFTbkTkQ==
x-fb-debug: xeQ5RyA7IoanpTReI5hVWi5S0wuWUaN8GABuR9kJi2V3i6UpczS2yjIOfT/rqMW3m7OCoiLSJq1Y0AnmWVI/PQ==
content-length: 12398
x-fb-trip-id: 1679558926
date: Fri, 31 Mar 2023 19:41:38 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yt/r/x9ob8vCc1UZ.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 17 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yt/r/x9ob8vCc1UZ.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type C source, ASCII text, with very long lines (9798)
Hash c795982806f8c6f2500b66588c7789eb
d3506f261bbd00a3cfd9d8260ced64d2454ee677
c12a5e184290cd87df97e13b67ca8ad2b26c4006596b04d7150912c9e49329d6
GET /rsrc.php/v3/yt/r/x9ob8vCc1UZ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Mar 2024 00:20:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: x5WYKAb4xvJQC2ZYjHeJ6w==
x-fb-debug: lfw6HQxugQ1A3NtctnVnBhliUtFn/jC+MX4aCq4gkLlXpsiudz9Ka3IxOw6QvPLX669IusY30Alx2XSSs2zyfA==
content-length: 16693
x-fb-trip-id: 1679558926
date: Fri, 31 Mar 2023 19:41:38 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bd5f736130efca53385a376507e64fbd
60e4def162522bc32731cd670834c76d763e83d4
aa03ff80ff8b3e95f9ff11ad9efaee8a0e4d6dbb4e6acdf36e5fe4a06212625f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
142.250.74.132200 OK 668 B URL HTTP/2 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP 142.250.74.132:0
File type ASCII text, with very long lines (1034), with no line terminators
Hash 27a9e27f0dfe79c7eb792dbe1197a9c8
d1adb3d5418aa8e1505c4c511de3e877b5bbe8c8
f76d0fa991e09132570f8fbf0cd3481568445e70e4dd7d82ea1039df33fe7bc1
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 31 Mar 2023 19:41:38 GMT
date: Fri, 31 Mar 2023 19:41:38 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 668
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
142.250.74.14200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 142.250.74.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Fri, 31 Mar 2023 19:41:38 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+514; expires=Sun, 30-Mar-2025 19:41:38 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Fri, 31 Mar 2023 19:41:38 GMT
cache-control: private
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js
142.250.74.35200 OK 166 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js
IP 142.250.74.35:0
File type HTML document, ASCII text, with very long lines (597)
Size 166 kB (166058 bytes)
Hash 4043af37a3392a9db521ff9ab62d9608
83828688e7a2259ed2f77345851a16122383b422
ee076822f35390ee382cda71759a2eec8f4db2bc18e4e3acd586173c29dab321
GET /recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166058
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 31 Mar 2023 08:38:04 GMT
expires: Sat, 30 Mar 2024 08:38:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Mar 2023 04:02:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 39814
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
142.250.74.14200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 142.250.74.14:0
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 2997
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Fri, 31 Mar 2023 19:41:38 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+855; expires=Sun, 30-Mar-2025 19:41:38 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Fri, 31 Mar 2023 19:41:38 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c3c06bba432c9bc866fba0d88090e308
29dee4c56fb0eb12dabc038c45e96a614199c4e2
f321376ec7cf2941a7da65d6f9847d452e1dc5e44f2679a32ad26a2d6b77133a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c3c06bba432c9bc866fba0d88090e308
29dee4c56fb0eb12dabc038c45e96a614199c4e2
f321376ec7cf2941a7da65d6f9847d452e1dc5e44f2679a32ad26a2d6b77133a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c3c06bba432c9bc866fba0d88090e308
29dee4c56fb0eb12dabc038c45e96a614199c4e2
f321376ec7cf2941a7da65d6f9847d452e1dc5e44f2679a32ad26a2d6b77133a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a8070f57a419ebadd7e2c6115eeed394
4657b655f2cf17f0d74631eb01f0a1424c910a09
475c1a60dbc19591f91707b7e436215d7cb7f22c74c5d5035ec103a7fa9469a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20230329/r20110914/client/window_focus_fy2021.js
216.58.207.193200 OK 1.2 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230329/r20110914/client/window_focus_fy2021.js
IP 216.58.207.193:0
File type ASCII text, with very long lines (1054)
Hash 169edf919beed1ee17c8a752ef12132e
b7fbae15ed7789984ee59618845b914aae37bf3e
2bcf9aebfd80a2558d54f39de59542c3df52610616fb2e4380d9f3d976cc13fc
GET /pagead/js/r20230329/r20110914/client/window_focus_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1236
x-xss-protection: 0
date: Fri, 31 Mar 2023 11:44:47 GMT
expires: Fri, 14 Apr 2023 11:44:47 GMT
cache-control: public, max-age=1209600
etag: 15004572836499977866
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 28612
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20230329/r20110914/client/qs_click_protection_fy2021.js
216.58.207.193200 OK 8.3 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230329/r20110914/client/qs_click_protection_fy2021.js
IP 216.58.207.193:0
File type ASCII text, with very long lines (2329)
Hash 15153e582e642d8a9980467efaa11ad4
f738352e6b73226ade4d1df49abd968ef49b9f90
f87b1904ab612eb27b708cfdc920e8e7f92f987737147280e3248ad5d87bf33d
GET /pagead/js/r20230329/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 8268
x-xss-protection: 0
date: Thu, 30 Mar 2023 22:33:06 GMT
expires: Thu, 13 Apr 2023 22:33:06 GMT
cache-control: public, max-age=1209600
age: 76113
etag: 8048349561987089234
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 42aae5afd04e28228a30413b84ee5168
e438660c72963f3e161fea620e3514b22ac7c7c5
9d5e86c3d81544df0a5d03542a39807a4374a6ea67f3bbd59d4d7c9b194c815f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1847
Cache-Control: max-age=131516
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:39 GMT
Etag: "64268ef8-138"
Expires: Sun, 02 Apr 2023 08:13:35 GMT
Last-Modified: Fri, 31 Mar 2023 07:42:48 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 42aae5afd04e28228a30413b84ee5168
e438660c72963f3e161fea620e3514b22ac7c7c5
9d5e86c3d81544df0a5d03542a39807a4374a6ea67f3bbd59d4d7c9b194c815f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5130
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:39 GMT
Last-Modified: Fri, 31 Mar 2023 18:16:09 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 312
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-56118832-6&cid=2065995160.1680291698&jid=1681064116&gjid=2086388402&_gid=448244294.1680291698&_u=IEBAAEAAAAAAACAAI~&z=1305561237
64.233.161.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-56118832-6&cid=2065995160.1680291698&jid=1681064116&gjid=2086388402&_gid=448244294.1680291698&_u=IEBAAEAAAAAAACAAI~&z=1305561237
IP 64.233.161.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-56118832-6&cid=2065995160.1680291698&jid=1681064116&gjid=2086388402&_gid=448244294.1680291698&_u=IEBAAEAAAAAAACAAI~&z=1305561237 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://ibrandstory.blogspot.com
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
Cookie: test_cookie=CheckForPermission
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://ibrandstory.blogspot.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 31 Mar 2023 19:41:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5811
Expires: Fri, 31 Mar 2023 21:18:30 GMT
Date: Fri, 31 Mar 2023 19:41:39 GMT
Connection: keep-alive
ads.eu.criteo.com/delivery/r/afr.php?z=ZCc3cgAM_X4KmvNMAA7LunRkRWKTaCwXkS2opQ&u=%7Csilcsvo0GXYMBcJh0a6Jvw4ZuUfZj44yK38Z6XBKkIk%3D%7C&c1=jWCgqsKSUoWKRvDssmEQ3dRte9oWhU873PslWXxlgwqyDsvBp4X-0QD3WoDqftjeOi_RL70L9weIUlPvKLKOZl6eZWa49NSibVTLEI1C_5oZnXVirGOZR_5jTx1q51CLApuzB5y-XSlLsZLh1aSqe_-dlz5HYX3mcj9272HvhD1Y_ckegsk_HMLm-hd7iNhxBqY_o03FzomzUF6HVrqT5ZpCbac70DeP2lvrTwf2dSoKxOdRbYLm-F05Bh9WiynBdvS9n-56rIRawksc6t6kISMrkTOfmqS9xZG7JzbtoCFmuhpieIZhFCBt8oqnaoiWYS4c7aoi82x4Q6KkHzBLmLoVJpGCN-ckg9pTpf9V_BFdCX-HygXjx1-IxvdQZvMFKszUVAjJgZZNXF6e7TPWqxArWzx9sBzFAT2u7A4bl8AB4pyKlJeK0h7SvP1kswLBOc4ot_ihX0biVRCDhD4G-Aih9TLkfB4VuGeFco5V-Lro9qYcvzNT_7W0HNFjBMAqnsAJorPoTdDaL3OXMGlcer2WGcm_XkBynF1QY4mM2LtvAYmvln_cr97UR8ECR3Pz_h-XzqF9qBM&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC-DxXcjcnZP76M8zm6wS6l7uIDsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNjg3MTI1Njg4NTY5MzY3MMgBCakCcyVSSrI8sj6oAwGqBJACT9B2ArIQlyRhXz_nvMhsVrOeB-0SP3CFInva5v7wC9RmMMuArXWGIC49QE5ixfotT9D30IVmCyWbvviOTh8bVUzBJAwFGCqYgLeYMo4slWmolT7wYgM-4sIkAz8-8d9OUDaGaDzfCKh8EtsZwxHRZp4iFzdm71O3jLW2YyMasMlgUVooUNXtJ9F3tTFKVQp8ax7zHxUIQShsr85A94fQwop4DUIFI9Msnb5xNYI0pKv4jBQikoTG5uqhoeoGFA4pHFj1eagmur3P6jJdRaLDclJMxEvWFOhyJjjz2XGc6Y5wtkkGQo-YL-QuqDWdbY2yXp133cw1yxayd8qmadYDP__F9fy5ihAqjgVvUw54_ziABvG4_oTqtrW3hAGgBiGoB6a-G6gHltgbqAeqm7ECqAeDrbECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_1pgNzGhh_z-PzR3N3W8G9vaNOOoA%26client%3Dca-pub-6871256885693670%26adurl%3D
178.250.0.138200 OK 45 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=ZCc3cgAM_X4KmvNMAA7LunRkRWKTaCwXkS2opQ&u=%7Csilcsvo0GXYMBcJh0a6Jvw4ZuUfZj44yK38Z6XBKkIk%3D%7C&c1=jWCgqsKSUoWKRvDssmEQ3dRte9oWhU873PslWXxlgwqyDsvBp4X-0QD3WoDqftjeOi_RL70L9weIUlPvKLKOZl6eZWa49NSibVTLEI1C_5oZnXVirGOZR_5jTx1q51CLApuzB5y-XSlLsZLh1aSqe_-dlz5HYX3mcj9272HvhD1Y_ckegsk_HMLm-hd7iNhxBqY_o03FzomzUF6HVrqT5ZpCbac70DeP2lvrTwf2dSoKxOdRbYLm-F05Bh9WiynBdvS9n-56rIRawksc6t6kISMrkTOfmqS9xZG7JzbtoCFmuhpieIZhFCBt8oqnaoiWYS4c7aoi82x4Q6KkHzBLmLoVJpGCN-ckg9pTpf9V_BFdCX-HygXjx1-IxvdQZvMFKszUVAjJgZZNXF6e7TPWqxArWzx9sBzFAT2u7A4bl8AB4pyKlJeK0h7SvP1kswLBOc4ot_ihX0biVRCDhD4G-Aih9TLkfB4VuGeFco5V-Lro9qYcvzNT_7W0HNFjBMAqnsAJorPoTdDaL3OXMGlcer2WGcm_XkBynF1QY4mM2LtvAYmvln_cr97UR8ECR3Pz_h-XzqF9qBM&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC-DxXcjcnZP76M8zm6wS6l7uIDsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNjg3MTI1Njg4NTY5MzY3MMgBCakCcyVSSrI8sj6oAwGqBJACT9B2ArIQlyRhXz_nvMhsVrOeB-0SP3CFInva5v7wC9RmMMuArXWGIC49QE5ixfotT9D30IVmCyWbvviOTh8bVUzBJAwFGCqYgLeYMo4slWmolT7wYgM-4sIkAz8-8d9OUDaGaDzfCKh8EtsZwxHRZp4iFzdm71O3jLW2YyMasMlgUVooUNXtJ9F3tTFKVQp8ax7zHxUIQShsr85A94fQwop4DUIFI9Msnb5xNYI0pKv4jBQikoTG5uqhoeoGFA4pHFj1eagmur3P6jJdRaLDclJMxEvWFOhyJjjz2XGc6Y5wtkkGQo-YL-QuqDWdbY2yXp133cw1yxayd8qmadYDP__F9fy5ihAqjgVvUw54_ziABvG4_oTqtrW3hAGgBiGoB6a-G6gHltgbqAeqm7ECqAeDrbECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_1pgNzGhh_z-PzR3N3W8G9vaNOOoA%26client%3Dca-pub-6871256885693670%26adurl%3D
IP 178.250.0.138:0
Hash d93e0e54cf949c12092fed891ee68a94
613e6e599d20b8bb4d8bd8db14dc297f37d6df83
710301a9c5a0be72e8a215f619a8153295d446f94b482a30ac2e4bf3d98404f6
GET /delivery/r/afr.php?z=ZCc3cgAM_X4KmvNMAA7LunRkRWKTaCwXkS2opQ&u=%7Csilcsvo0GXYMBcJh0a6Jvw4ZuUfZj44yK38Z6XBKkIk%3D%7C&c1=jWCgqsKSUoWKRvDssmEQ3dRte9oWhU873PslWXxlgwqyDsvBp4X-0QD3WoDqftjeOi_RL70L9weIUlPvKLKOZl6eZWa49NSibVTLEI1C_5oZnXVirGOZR_5jTx1q51CLApuzB5y-XSlLsZLh1aSqe_-dlz5HYX3mcj9272HvhD1Y_ckegsk_HMLm-hd7iNhxBqY_o03FzomzUF6HVrqT5ZpCbac70DeP2lvrTwf2dSoKxOdRbYLm-F05Bh9WiynBdvS9n-56rIRawksc6t6kISMrkTOfmqS9xZG7JzbtoCFmuhpieIZhFCBt8oqnaoiWYS4c7aoi82x4Q6KkHzBLmLoVJpGCN-ckg9pTpf9V_BFdCX-HygXjx1-IxvdQZvMFKszUVAjJgZZNXF6e7TPWqxArWzx9sBzFAT2u7A4bl8AB4pyKlJeK0h7SvP1kswLBOc4ot_ihX0biVRCDhD4G-Aih9TLkfB4VuGeFco5V-Lro9qYcvzNT_7W0HNFjBMAqnsAJorPoTdDaL3OXMGlcer2WGcm_XkBynF1QY4mM2LtvAYmvln_cr97UR8ECR3Pz_h-XzqF9qBM&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC-DxXcjcnZP76M8zm6wS6l7uIDsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNjg3MTI1Njg4NTY5MzY3MMgBCakCcyVSSrI8sj6oAwGqBJACT9B2ArIQlyRhXz_nvMhsVrOeB-0SP3CFInva5v7wC9RmMMuArXWGIC49QE5ixfotT9D30IVmCyWbvviOTh8bVUzBJAwFGCqYgLeYMo4slWmolT7wYgM-4sIkAz8-8d9OUDaGaDzfCKh8EtsZwxHRZp4iFzdm71O3jLW2YyMasMlgUVooUNXtJ9F3tTFKVQp8ax7zHxUIQShsr85A94fQwop4DUIFI9Msnb5xNYI0pKv4jBQikoTG5uqhoeoGFA4pHFj1eagmur3P6jJdRaLDclJMxEvWFOhyJjjz2XGc6Y5wtkkGQo-YL-QuqDWdbY2yXp133cw1yxayd8qmadYDP__F9fy5ihAqjgVvUw54_ziABvG4_oTqtrW3hAGgBiGoB6a-G6gHltgbqAeqm7ECqAeDrbECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_1pgNzGhh_z-PzR3N3W8G9vaNOOoA%26client%3Dca-pub-6871256885693670%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:41:38 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=9mSMrFJSDm_CgDkieBsT_VnHE8UHa7XrvdukCSL6fSMFemO-TISdQ3Yv34qd-ZGv6dGi4USHp-IQvOnLRa9Nr9DglozJQ2fg8aKOfngQGgGtuwqPLK8Z1Ob5nsBfwqKs0voHmp8Jb83yHnPzNxrdD46uBKQgjrgs2uZLypErW5MRYU5MpimBHtw-EpwQ9NUL5kpyt8XA47abMMxumWaR9iRHEpU6ruuwodiRcDkW3ivPZ_Bn3gc6_JZFMD3XOyFsO0ON8Q"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 67059888
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5811
Expires: Fri, 31 Mar 2023 21:18:30 GMT
Date: Fri, 31 Mar 2023 19:41:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5811
Expires: Fri, 31 Mar 2023 21:18:30 GMT
Date: Fri, 31 Mar 2023 19:41:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5811
Expires: Fri, 31 Mar 2023 21:18:30 GMT
Date: Fri, 31 Mar 2023 19:41:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 424b55535e5fd622b2fc96aac1246324
cf7cf08aa8969a86bf03695af2129686fd62fe86
c4bb26a7b2c431282b53b4df9999b9cc8e61369a79c606688a76499b31a65127
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10271
x-amzn-requestid: db0d1fe4-060a-4e61-90f3-ec9befee1295
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkBoXGh5oAMFfzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424afce-2e9251552b4acdcb19e02dfc;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:38:22 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 1cXec9_e-KpzyTwiHaNAaf0y5i12tw7BkZTXnduS5ek7yAAZ0LXTWw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:44:51 GMT
age: 79008
etag: "cf7cf08aa8969a86bf03695af2129686fd62fe86"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F611db66e-eb19-4ce3-9ee4-93c32afc29a5.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F611db66e-eb19-4ce3-9ee4-93c32afc29a5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d1e861b518e06e17ce657c5f9fc15daf
214322b88798120159ab55c7121c8775727b8fc7
3438eb2b7e18d784416c139b42c036eefff3759602e4ce553815c628e1cb5016
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F611db66e-eb19-4ce3-9ee4-93c32afc29a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8795
x-amzn-requestid: 33d91f7c-7d04-405b-8060-33e438ed09f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkAz2GwKoAMFW5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424ae7e-54ba3517206ac61c50167c3e;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:32:46 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: nORkLBTHqZ_ZrUuEkg9BcVT2TJzP7OLBRQtfUUzRgvwP9Q9dZtMFbg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:45:51 GMT
age: 78948
etag: "214322b88798120159ab55c7121c8775727b8fc7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 39bdd16276747b1445a79e674a2a3347
d0676f63738484298a78b7abf7e4934c3d256065
67aa526299060c2a39c4baa10fd03f121497dccd5e765676639ed73ac529c34b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11061
x-amzn-requestid: 428128ec-c441-4ff7-9c84-880a01672b00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnVFnFf0IAMFTvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260223-185c48300f161931310fa35f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:41:55 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: gc77o7y-moH1HuMEZFe9-00DVAda9baa-5VEPlMA4SIZDJNzQ8jUlA==
via: 1.1 a87682502db4b394cc6ba84510da9f98.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:49:08 GMT
etag: "d0676f63738484298a78b7abf7e4934c3d256065"
content-type: image/jpeg
age: 78751
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8600e41520408df4865627256a0a0736
dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef
9163d80d7b6087b804e6682a50d4f66339d339894cf1c5808f2e5c2e0b3de930
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5806
x-amzn-requestid: cee5b166-592b-405e-b5f1-e36eb249ec59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllFFooAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-01840fa47177285667bca060;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Jktkwc3JLU31AY5B5pC5JTjPGARjflqoJRZiD6IpF5-10IO6UNlH_Q==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 adc2002956acc4d61bfbf3b973fdf246.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:46:33 GMT
age: 78906
etag: "dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ibrandstory.blogspot.com/2016/06/blog-post_79.html
172.217.21.161200 OK 51 kB URL HTTP/1.1 ibrandstory.blogspot.com/2016/06/blog-post_79.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6967)
Hash 0d2c3efc589b4567a4269bdb756bf90c
b1b6efb7e7ca0ff7f479ac22027668f18ba02e42
b48f1a0457beba9dbd4053b8455e644e1df913b9e681cd3b0bd6d957f8b98853
GET /2016/06/blog-post_79.html HTTP/1.1
Host: ibrandstory.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/2016/06/blog-post_71.html
Cookie: s=1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Fri, 31 Mar 2023 19:41:39 GMT
Date: Fri, 31 Mar 2023 19:41:39 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 09 Apr 2022 16:06:07 GMT
ETag: W/"8509d0dfa1c0e5541b2987761d95f0b7154a0d1d45133e0d915a8819f3a8f82a"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 50954
Server: GSE
ibrandstory.blogspot.com/2016/06/blog-post_80.html
172.217.21.161200 OK 51 kB URL HTTP/1.1 ibrandstory.blogspot.com/2016/06/blog-post_80.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6967)
Hash ca16596fc624f9423e73b3ab17130227
609ed9574fecbb7366f8b7272cb3035a66ea8c74
56f4c18812b82c324928abd9f1b60f713b596027373b9f24dc81bc2e5b78d092
GET /2016/06/blog-post_80.html HTTP/1.1
Host: ibrandstory.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/2016/06/blog-post_71.html
Cookie: s=1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Fri, 31 Mar 2023 19:41:39 GMT
Date: Fri, 31 Mar 2023 19:41:39 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 09 Apr 2022 16:06:07 GMT
ETag: W/"8509d0dfa1c0e5541b2987761d95f0b7154a0d1d45133e0d915a8819f3a8f82a"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 51205
Server: GSE
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8a2b8f737604b7983cf686c82599dc73
aa63be93c4cd641f09ce0d5144ef60aab21caed1
78835586bfd170fee7e6f70b2b426ed186f5aeae969459c6dcbf527ba9c0deec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6380
x-amzn-requestid: 0a129a69-0720-47a0-8b0e-b3200de24204
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUn6E19IAMF9SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260165-564474a42e79d1dc4eb9558f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:45 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 3paQf8BhyRcZoZNox8660Zyzz0WaiQxJuHmDbj4wpo-rgbDdkxrYgQ==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:23 GMT
age: 78856
etag: "aa63be93c4cd641f09ce0d5144ef60aab21caed1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0530376e431b6563796e4abb0db0bc4e
6921f4bd83a806e1ea8247854ad4c045fa7ee298
d6371c81d5494d5e50fd5cc1cfe1ce28213dfa70ea5a94df82c9f4b3e6430a53
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10490
x-amzn-requestid: 0525e5c4-485e-47eb-ab95-1136e4d5c29a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUnTEztoAMFzMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260161-54b47454475ff6ee4d880534;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: AdbJgoCBGJGvjP53lBj3_GWyuRF8O_fgNTPPEjUmFmyRxMQl2pgTzw==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:54:29 GMT
age: 78430
etag: "6921f4bd83a806e1ea8247854ad4c045fa7ee298"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash f999e81d7331fe924756b80aec217379
e79f6ff4cc407504d833a55d2d95c00a7d879479
6a9353c7f4976eb9577abaa84ea5a9996389a7b8346abea333f1414fc51ef503
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5148
Cache-Control: max-age=104227
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:39 GMT
Etag: "6426177a-1d7"
Expires: Sun, 02 Apr 2023 00:38:46 GMT
Last-Modified: Thu, 30 Mar 2023 23:12:58 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash b941d8e2c7d9adde7e61c3cb488d3d12
8e4060b4e9ea39fdd8ce7df6ecab1e51b66c2fd7
97dcdb74b883255d79d914bb0d1da8a9435c0f27189549a172082e451f814456
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1924
Cache-Control: max-age=155398
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:39 GMT
Etag: "6426ebf5-1d7"
Expires: Sun, 02 Apr 2023 14:51:37 GMT
Last-Modified: Fri, 31 Mar 2023 14:19:33 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/sdk.js
157.240.205.11301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/en_US/sdk.js
IP 157.240.205.11:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/sdk.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Fri, 31 Mar 2023 19:41:39 GMT
Connection: keep-alive
Content-Length: 0
cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
104.17.25.14200 OK 4.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (2171)
Hash 44c72b9bddfecacc9114e84d685dd085
38f3ff57b9b64a38fc2153eb30564b7fc1c86349
c82afd4f2d89288b4b79244f0c24264810b11326670710ac8e28e7bfc87c7991
GET /ajax/libs/webfont/1.6.28/webfontloader.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: application/javascript; charset=utf-8
content-length: 4420
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04030-30d9"
last-modified: Mon, 04 May 2020 16:17:52 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2689450
expires: Wed, 20 Mar 2024 19:41:39 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fqn3o53HVgR%2BntT0fg0c3dYbBaFwFqCMj2wKJ2gdvwqo9RwIq3turi8jf2HYed55E7sQd%2BKLFMa2YJNPKfhr80A%2BOH7lao%2FRMY6XrJAmnF6pIZpZF7hi2%2FESQSuPW1BohhajJZ98"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7b0b1231eac1b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rtb.nl3.eu.criteo.com/google/auction/notify?profile=14&payload=kM71FLOzWcQEkAOdg2ICAgAAAA09LDAa_VvSEHI3J2Rjy-AMkgrL06ilAAASAAAKCkFRVUJBUUVCQVE&wp=ZCc3cgANEpwKmpWUAAm_c-QSH_nTYOmTqg2Tww
178.250.1.10200 OK 0 B URL HTTP/2 rtb.nl3.eu.criteo.com/google/auction/notify?profile=14&payload=kM71FLOzWcQEkAOdg2ICAgAAAA09LDAa_VvSEHI3J2Rjy-AMkgrL06ilAAASAAAKCkFRVUJBUUVCQVE&wp=ZCc3cgANEpwKmpWUAAm_c-QSH_nTYOmTqg2Tww
IP 178.250.1.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kM71FLOzWcQEkAOdg2ICAgAAAA09LDAa_VvSEHI3J2Rjy-AMkgrL06ilAAASAAAKCkFRVUJBUUVCQVE&wp=ZCc3cgANEpwKmpWUAAm_c-QSH_nTYOmTqg2Tww HTTP/1.1
Host: rtb.nl3.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:41:39 GMT
server: Kestrel
content-length: 0
server-processing-duration-in-ticks: 146204
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.fr3.eu.criteo.com/google/auction/notify?profile=14&payload=kLTUDrOzWdACmAKdg2ICAgAAACQkuQxuo8cEEHI3J2SGt0dDq96J9dHLAAASAAAKCkFRVUREd0VCRHc&wp=ZCc3cgAM_X4KmvNMAA7LunRkRWKTaCwXkS2opQ
178.250.7.12200 OK 0 B URL HTTP/2 rtb.fr3.eu.criteo.com/google/auction/notify?profile=14&payload=kLTUDrOzWdACmAKdg2ICAgAAACQkuQxuo8cEEHI3J2SGt0dDq96J9dHLAAASAAAKCkFRVUREd0VCRHc&wp=ZCc3cgAM_X4KmvNMAA7LunRkRWKTaCwXkS2opQ
IP 178.250.7.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kLTUDrOzWdACmAKdg2ICAgAAACQkuQxuo8cEEHI3J2SGt0dDq96J9dHLAAASAAAKCkFRVUREd0VCRHc&wp=ZCc3cgAM_X4KmvNMAA7LunRkRWKTaCwXkS2opQ HTTP/1.1
Host: rtb.fr3.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:41:38 GMT
server: Kestrel
content-length: 0
server-processing-duration-in-ticks: 154809
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash a9ce036f6d6084fa604e6255fcd312a1
5fa9617161c87aece377b2686fb594eca22b6cc5
a979c968786382b901173539f5e73f091b0491b7ee5bfb792af49bb898f296a7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1207
Cache-Control: max-age=103883
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:39 GMT
Etag: "64262587-1d7"
Expires: Sun, 02 Apr 2023 00:33:02 GMT
Last-Modified: Fri, 31 Mar 2023 00:12:55 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 471
ibrandstory.blogspot.com/favicon.ico
172.217.21.161200 OK 760 B URL HTTP/1.1 ibrandstory.blogspot.com/favicon.ico
IP 172.217.21.161:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 8c928f11981b5e06b27a969c40f022b1
ad7e789a24d373f3e63246b3da8c281a130817f1
b17229a3c659568e5b9d55517881c115b9438d02dd0789a8b0a25dd6a3bd3c7c
GET /favicon.ico HTTP/1.1
Host: ibrandstory.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/2016/06/blog-post_71.html
Cookie: s=1; _ga=GA1.3.2065995160.1680291698; _gid=GA1.3.448244294.1680291698; _gat=1
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Fri, 31 Mar 2023 19:41:39 GMT
Date: Fri, 31 Mar 2023 19:41:39 GMT
Cache-Control: private, max-age=86400
Last-Modified: Sat, 09 Apr 2022 16:06:07 GMT
ETag: W/"8509d0dfa1c0e5541b2987761d95f0b7154a0d1d45133e0d915a8819f3a8f82a"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 760
Server: GSE
static.criteo.net/design/dt/4ef456fb9fb14ec5a2da96fe450c24b3_homepagebaukasten-bold.woff
178.250.0.130200 OK 20 kB URL HTTP/2 static.criteo.net/design/dt/4ef456fb9fb14ec5a2da96fe450c24b3_homepagebaukasten-bold.woff
IP 178.250.0.130:0
File type Web Open Font Format, CFF, length 19492, version 1.0\012- data
Hash fe16408343054418c53b45c76a1892f2
b2f898a889e2164ba7bb7d6676b5a294eb97817b
3b42d14795d22866ea7e9bd3b4259fa75e510bcbbf7ab1861acb9ce2290128f2
GET /design/dt/4ef456fb9fb14ec5a2da96fe450c24b3_homepagebaukasten-bold.woff HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: text/plain; charset=UTF-8
content-length: 19492
last-modified: Mon, 06 Jul 2020 12:29:00 GMT
etag: "5f03190c-4c24"
expires: Mon, 25 Mar 2024 19:41:39 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 501ed6023b73b2a460206d5be48c8b7c
8b2c1ca977c4839e64c1f9c013cff32823054c3c
a960b941b2b9c6b15badaf4e8fa7ab367dab9e3adc42612e30fc955eb30fac6f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4259
Cache-Control: max-age=107327
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:39 GMT
Etag: "6426270f-138"
Expires: Sun, 02 Apr 2023 01:30:26 GMT
Last-Modified: Fri, 31 Mar 2023 00:19:27 GMT
Server: ECAcc (ska/F775)
X-Cache: HIT
Content-Length: 312
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:31:35 GMT
expires: Wed, 27 Mar 2024 10:31:35 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 292204
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:31:03 GMT
expires: Wed, 27 Mar 2024 10:31:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 292236
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/close_button.svg
178.250.0.130200 OK 308 B URL HTTP/2 static.criteo.net/flash/icon/close_button.svg
IP 178.250.0.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 1bfe2e290ec4440da74a2e2c249eae2b
0b888a3f9e27d1554f2e21d51e7a1c223d00dbd4
8ec89605fe3d580e9539c7b858e8f69ba4e26fe06377ebe04585397de23a7395
GET /flash/icon/close_button.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: image/svg+xml
content-length: 308
last-modified: Fri, 14 Feb 2020 13:51:32 GMT
etag: "5e46a5e4-134"
expires: Mon, 25 Mar 2024 19:41:39 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/back_button2.svg
178.250.0.130200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP 178.250.0.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Mon, 25 Mar 2024 19:41:39 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy_small.svg
178.250.0.130200 OK 1.1 kB URL HTTP/2 static.criteo.net/flash/icon/privacy_small.svg
IP 178.250.0.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1397)
Hash bee2929e9fc9cec23d73d78c92cffb33
86691d9ac48a4f421956493e6f4df7be93456b5c
116d6b0ee647440a3facc14edb17449b158a7259e436a3d3387b1ab94b778f14
GET /flash/icon/privacy_small.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:30:28 GMT
etag: W/"5e42ba84-6aa"
expires: Mon, 25 Mar 2024 19:41:39 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 16763016a1f6972d4c0670789baa10a7
f755d882c314725a29952c131c22450afac22990
f8508ae4da1a9cce4115c1f0ac72452ff95172c7bd14b6fdfce29e0321a18dc2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3619
Cache-Control: max-age=98411
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:39 GMT
Etag: "642606bb-1d7"
Expires: Sat, 01 Apr 2023 23:01:50 GMT
Last-Modified: Thu, 30 Mar 2023 22:01:31 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 16763016a1f6972d4c0670789baa10a7
f755d882c314725a29952c131c22450afac22990
f8508ae4da1a9cce4115c1f0ac72452ff95172c7bd14b6fdfce29e0321a18dc2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5262
Cache-Control: max-age=100054
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:39 GMT
Etag: "642606bb-1d7"
Expires: Sat, 01 Apr 2023 23:29:13 GMT
Last-Modified: Thu, 30 Mar 2023 22:01:31 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471
ads.eu.criteo.com/delivery/r/afr.php?z=ZCc3cgANEpwKmpWUAAm_c-QSH_nTYOmTqg2Tww&u=%7Csilcsvo0GXbnht6pfvNPSUsqYjFRcyXXQ5wtv5H7DbI%3D%7C&c1=jWCgqsKSUoWKRvDssmEQ3dRte9oWhU873PslWXxlgwqyDsvBp4X-0QD3WoDqftjeOi_RL70L9weIUlPvKLKOZl6eZWa49NSiu5lkZiSZux18kQkPkY2UuT-WNXDc8B38lwIP9Ox_lRGvXpOSAH__N9q4PL8Lx5_6q7Wbme1_vTidOh6_CHRK8Qx37NMDh3oSx2XwcTS_sprAHx6wd2lNP6BS4XG7wc5RDbCefRubwyhQiH-2Q-BMvQGi4SH5brIxfQr-F9Y8Nf7YdVx9F5m2OT75FPUSBeHiWNTTteQb9ZikyX4Iyl9CL4jV3kPEX7meitpeG09pms8ObV52JYxlHMb_hFexv6TsN32cKQ6wKLv7J816DhwRU8QT4s8VV-p6-CM8RjEt5C8jA0Z79EoCrcitJ8SV1h-kOUMAfVvsUMVbgVG_s7ui6cCU_F005Pgb2KFLO9H7OWrciWOj4qzoMEH5Blf4mpTE8BegsvupugTtHACaU8gsVLTiygXcdciy8A6iPcBGjGGdDoVOeC-zsH46wI2PrZWNuo88F1skbGzzeemol4u2Z4U4-Bzhxxp_IeWrmdgpMc8jupTKVVRkSA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCP6NYcjcnZJylNJSr6gTz_qb4DMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNjg3MTI1Njg4NTY5MzY3MMgBCakCcyVSSrI8sj6oAwGqBI8CT9C2TRKDTMelGpNtYe2NEnAE-ohI-SbWSlMzc5KDip7JfNGiyCD4Ipfo8a9FUPKOrFyU-BlgOtx-VFZbLSpOcYN3mJIxCkpki2zfWYIFIkfVIOsP11BUSCfz0mgF1So9gsTl2ohUu_PEogYWI2mimBBGfb2ZcxsUCqIfNN6mvNwptSgbsPVbQuFMwMDhmR3gbYJ9FYLijwSQNO6YZjlxgKO61n8fHikRyWaDoau0SVQOsMI9jbf_jm6MXb6t792fBw2t6L6IdeVvh2Dn9MGDhrzqI5Fogo3HqEoglZtWksJM8-I9ZdMeaDatn4X-U2hPabEAxgd96iST2sfgoltpZMyw89VaK8PslM538oZPeIAG3a3inMabjauLAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_2Qk6lDZSMpn5mSV17dm9Kh-j-XYA%26client%3Dca-pub-6871256885693670%26adurl%3D
178.250.0.138200 OK 51 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=ZCc3cgANEpwKmpWUAAm_c-QSH_nTYOmTqg2Tww&u=%7Csilcsvo0GXbnht6pfvNPSUsqYjFRcyXXQ5wtv5H7DbI%3D%7C&c1=jWCgqsKSUoWKRvDssmEQ3dRte9oWhU873PslWXxlgwqyDsvBp4X-0QD3WoDqftjeOi_RL70L9weIUlPvKLKOZl6eZWa49NSiu5lkZiSZux18kQkPkY2UuT-WNXDc8B38lwIP9Ox_lRGvXpOSAH__N9q4PL8Lx5_6q7Wbme1_vTidOh6_CHRK8Qx37NMDh3oSx2XwcTS_sprAHx6wd2lNP6BS4XG7wc5RDbCefRubwyhQiH-2Q-BMvQGi4SH5brIxfQr-F9Y8Nf7YdVx9F5m2OT75FPUSBeHiWNTTteQb9ZikyX4Iyl9CL4jV3kPEX7meitpeG09pms8ObV52JYxlHMb_hFexv6TsN32cKQ6wKLv7J816DhwRU8QT4s8VV-p6-CM8RjEt5C8jA0Z79EoCrcitJ8SV1h-kOUMAfVvsUMVbgVG_s7ui6cCU_F005Pgb2KFLO9H7OWrciWOj4qzoMEH5Blf4mpTE8BegsvupugTtHACaU8gsVLTiygXcdciy8A6iPcBGjGGdDoVOeC-zsH46wI2PrZWNuo88F1skbGzzeemol4u2Z4U4-Bzhxxp_IeWrmdgpMc8jupTKVVRkSA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCP6NYcjcnZJylNJSr6gTz_qb4DMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNjg3MTI1Njg4NTY5MzY3MMgBCakCcyVSSrI8sj6oAwGqBI8CT9C2TRKDTMelGpNtYe2NEnAE-ohI-SbWSlMzc5KDip7JfNGiyCD4Ipfo8a9FUPKOrFyU-BlgOtx-VFZbLSpOcYN3mJIxCkpki2zfWYIFIkfVIOsP11BUSCfz0mgF1So9gsTl2ohUu_PEogYWI2mimBBGfb2ZcxsUCqIfNN6mvNwptSgbsPVbQuFMwMDhmR3gbYJ9FYLijwSQNO6YZjlxgKO61n8fHikRyWaDoau0SVQOsMI9jbf_jm6MXb6t792fBw2t6L6IdeVvh2Dn9MGDhrzqI5Fogo3HqEoglZtWksJM8-I9ZdMeaDatn4X-U2hPabEAxgd96iST2sfgoltpZMyw89VaK8PslM538oZPeIAG3a3inMabjauLAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_2Qk6lDZSMpn5mSV17dm9Kh-j-XYA%26client%3Dca-pub-6871256885693670%26adurl%3D
IP 178.250.0.138:0
Hash 4226a12ae0a30fd5a533853560127c34
9f43d4d69b385ea1000c8ffb0bc626226eb54ff8
1a3c293673d82e5ab448c4b2f6dabd8b198c490d04aa89b5fa0a07cbe82414b6
GET /delivery/r/afr.php?z=ZCc3cgANEpwKmpWUAAm_c-QSH_nTYOmTqg2Tww&u=%7Csilcsvo0GXbnht6pfvNPSUsqYjFRcyXXQ5wtv5H7DbI%3D%7C&c1=jWCgqsKSUoWKRvDssmEQ3dRte9oWhU873PslWXxlgwqyDsvBp4X-0QD3WoDqftjeOi_RL70L9weIUlPvKLKOZl6eZWa49NSiu5lkZiSZux18kQkPkY2UuT-WNXDc8B38lwIP9Ox_lRGvXpOSAH__N9q4PL8Lx5_6q7Wbme1_vTidOh6_CHRK8Qx37NMDh3oSx2XwcTS_sprAHx6wd2lNP6BS4XG7wc5RDbCefRubwyhQiH-2Q-BMvQGi4SH5brIxfQr-F9Y8Nf7YdVx9F5m2OT75FPUSBeHiWNTTteQb9ZikyX4Iyl9CL4jV3kPEX7meitpeG09pms8ObV52JYxlHMb_hFexv6TsN32cKQ6wKLv7J816DhwRU8QT4s8VV-p6-CM8RjEt5C8jA0Z79EoCrcitJ8SV1h-kOUMAfVvsUMVbgVG_s7ui6cCU_F005Pgb2KFLO9H7OWrciWOj4qzoMEH5Blf4mpTE8BegsvupugTtHACaU8gsVLTiygXcdciy8A6iPcBGjGGdDoVOeC-zsH46wI2PrZWNuo88F1skbGzzeemol4u2Z4U4-Bzhxxp_IeWrmdgpMc8jupTKVVRkSA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCP6NYcjcnZJylNJSr6gTz_qb4DMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNjg3MTI1Njg4NTY5MzY3MMgBCakCcyVSSrI8sj6oAwGqBI8CT9C2TRKDTMelGpNtYe2NEnAE-ohI-SbWSlMzc5KDip7JfNGiyCD4Ipfo8a9FUPKOrFyU-BlgOtx-VFZbLSpOcYN3mJIxCkpki2zfWYIFIkfVIOsP11BUSCfz0mgF1So9gsTl2ohUu_PEogYWI2mimBBGfb2ZcxsUCqIfNN6mvNwptSgbsPVbQuFMwMDhmR3gbYJ9FYLijwSQNO6YZjlxgKO61n8fHikRyWaDoau0SVQOsMI9jbf_jm6MXb6t792fBw2t6L6IdeVvh2Dn9MGDhrzqI5Fogo3HqEoglZtWksJM8-I9ZdMeaDatn4X-U2hPabEAxgd96iST2sfgoltpZMyw89VaK8PslM538oZPeIAG3a3inMabjauLAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_2Qk6lDZSMpn5mSV17dm9Kh-j-XYA%26client%3Dca-pub-6871256885693670%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:41:38 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=91AUaFJSDm_CgDkiJgnmHcgqThB7JTCHWuwhQXvTCdD3nOxKs5bHsVwR3q4gyLLpGR13f-ODpAu0BB9YiG38cwS5ItdhJhXYQzkbjd0hEhGLbheHhhM5R7qdzUT8dsO5B2JAQsepxxT2KEMknF_ry3VS0QPOJcNCA5-V_cE2GvpSoo6nrBKDLhM2F6FohxpFOpZaN6QTM66yNn5Sr9ZDWcV6BC-9ci0trVDszP1FlHuZvtOWcvIJMvxDZD7seSTvTP3Eiw"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 112913350
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 16763016a1f6972d4c0670789baa10a7
f755d882c314725a29952c131c22450afac22990
f8508ae4da1a9cce4115c1f0ac72452ff95172c7bd14b6fdfce29e0321a18dc2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5262
Cache-Control: max-age=100054
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:39 GMT
Etag: "642606bb-1d7"
Expires: Sat, 01 Apr 2023 23:29:13 GMT
Last-Modified: Thu, 30 Mar 2023 22:01:31 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 16763016a1f6972d4c0670789baa10a7
f755d882c314725a29952c131c22450afac22990
f8508ae4da1a9cce4115c1f0ac72452ff95172c7bd14b6fdfce29e0321a18dc2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5678
Cache-Control: max-age=100470
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:41:39 GMT
Etag: "642606bb-1d7"
Expires: Sat, 01 Apr 2023 23:36:09 GMT
Last-Modified: Thu, 30 Mar 2023 22:01:31 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
static.criteo.net/design/googlefont/montserrat/montserrat-400-latin.woff2
178.250.0.130200 OK 13 kB URL HTTP/2 static.criteo.net/design/googlefont/montserrat/montserrat-400-latin.woff2
IP 178.250.0.130:0
File type Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Hash b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /design/googlefont/montserrat/montserrat-400-latin.woff2 HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://static.criteo.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: text/plain; charset=UTF-8
content-length: 12708
last-modified: Thu, 08 Dec 2022 14:06:54 GMT
etag: "6391ef7e-31a4"
expires: Mon, 25 Mar 2024 19:41:39 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Froyal-republiq%2F1300x1700%2Frrq250186119211_cbrown.jpg&v=3&w=400&s=aoH9gbLxX5y_hDJridYnM3hE&b=400
178.250.1.14200 OK 7.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Froyal-republiq%2F1300x1700%2Frrq250186119211_cbrown.jpg&v=3&w=400&s=aoH9gbLxX5y_hDJridYnM3hE&b=400
IP 178.250.1.14:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x372, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0eeda7e6493484cfb7f70b2967c08177
35b93c5f4f4652bd480397742e1d7edf02399d31
b1b70f74f765bdeacace86455a42be94b01ab5957f2fbaea09fbba672defef41
GET /img/img?c=3&cq=256&h=400&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Froyal-republiq%2F1300x1700%2Frrq250186119211_cbrown.jpg&v=3&w=400&s=aoH9gbLxX5y_hDJridYnM3hE&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30389115
expires: Sun, 17 Mar 2024 13:06:55 GMT
date: Fri, 31 Mar 2023 19:41:39 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7318
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/googlefont/montserrat/montserrat-400italic-latin.woff2
178.250.0.130200 OK 13 kB URL HTTP/2 static.criteo.net/design/googlefont/montserrat/montserrat-400italic-latin.woff2
IP 178.250.0.130:0
File type Web Open Font Format (Version 2), TrueType, length 12996, version 1.0\012- data
Hash 78e7edfa3d585a5f259d73de7f327839
785b3cc9b6f231365017f576c6a2cd6ac4891f99
0daf844710614138ad93ccc63bae5b8d2575780a5330e662f1375a03d8951aa5
GET /design/googlefont/montserrat/montserrat-400italic-latin.woff2 HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://static.criteo.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: text/plain; charset=UTF-8
content-length: 12996
last-modified: Thu, 08 Dec 2022 14:06:55 GMT
etag: "6391ef7f-32c4"
expires: Mon, 25 Mar 2024 19:41:39 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/googlefont/montserrat/montserrat-700-latin.woff2
178.250.0.130200 OK 13 kB URL HTTP/2 static.criteo.net/design/googlefont/montserrat/montserrat-700-latin.woff2
IP 178.250.0.130:0
File type Web Open Font Format (Version 2), TrueType, length 12848, version 1.0\012- data
Hash f0b3206d02a2f684530117ce1d7e8ce0
f3708b707b65e241b0f1c819d5f7bf7da8412653
f31b80562610135edd91a86ec7f243c5eeaec2ec08337e6a20c2d135d8e217da
GET /design/googlefont/montserrat/montserrat-700-latin.woff2 HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://static.criteo.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: text/plain; charset=UTF-8
content-length: 12848
last-modified: Thu, 08 Dec 2022 14:06:55 GMT
etag: "6391ef7f-3230"
expires: Mon, 25 Mar 2024 19:41:39 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fd%2F3%2F1%2F2%2Fd3124cd46cb04f399e3c895c31a119bd_2_NR1MC_0_10.png%3Fcb%3D202313&v=3&w=400&s=CQ3_Ji5MvZfIgakKGN6IDaOc&b=400
178.250.1.14200 OK 21 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fd%2F3%2F1%2F2%2Fd3124cd46cb04f399e3c895c31a119bd_2_NR1MC_0_10.png%3Fcb%3D202313&v=3&w=400&s=CQ3_Ji5MvZfIgakKGN6IDaOc&b=400
IP 178.250.1.14:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash c93af17e28f684ba2bc9f65fedbff8cc
fe4dc0dfae16144195363fe95809cc58c2d216ed
c293a29ffd725693c9d856279ae94663b783d27bb560433bc9eab781ab6b354c
GET /img/img?c=3&cq=256&h=400&m=0&partner=26192&q=80&r=2&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2Fd%2F3%2F1%2F2%2Fd3124cd46cb04f399e3c895c31a119bd_2_NR1MC_0_10.png%3Fcb%3D202313&v=3&w=400&s=CQ3_Ji5MvZfIgakKGN6IDaOc&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31146303
expires: Tue, 26 Mar 2024 07:26:43 GMT
date: Fri, 31 Mar 2023 19:41:38 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 21400
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=116&m=0&partner=91523&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F91523%2F221124%2Fcf4d96ca020d4e318ab97db5ad436112_logo_n_horizontal.jpg&v=3&w=1156&s=4VwNc7ZxsK3BOwk6z1sglhEX
178.250.1.14200 OK 3.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=116&m=0&partner=91523&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F91523%2F221124%2Fcf4d96ca020d4e318ab97db5ad436112_logo_n_horizontal.jpg&v=3&w=1156&s=4VwNc7ZxsK3BOwk6z1sglhEX
IP 178.250.1.14:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 309x116, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7e92a58fe1f7d85e516943a5b5bbed90
2f06120b49ed2d2a483ea30f3850dd750c6fa497
a310f9a8aa39e75839273246c5404a265b0c35a01a9130e3e312d857e58395c4
GET /img/img?h=116&m=0&partner=91523&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F91523%2F221124%2Fcf4d96ca020d4e318ab97db5ad436112_logo_n_horizontal.jpg&v=3&w=1156&s=4VwNc7ZxsK3BOwk6z1sglhEX HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=29811170
expires: Sun, 10 Mar 2024 20:34:30 GMT
date: Fri, 31 Mar 2023 19:41:39 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 3324
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/criteo_logo_2021.svg
178.250.0.130200 OK 14 kB URL HTTP/2 static.criteo.net/flash/icon/criteo_logo_2021.svg
IP 178.250.0.130:0
Hash bb05467f4d80b74dd31255a1b60edcf9
20fb5e5bd852d79104ee14db08c8811dbb8ccaa3
f2fd85f14744691e35ba6b74e097201b5301d71516f4cdee8bbf12c99c6ba921
GET /flash/icon/criteo_logo_2021.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: image/svg+xml
last-modified: Thu, 27 May 2021 13:21:59 GMT
etag: W/"60af9cf7-891"
expires: Mon, 25 Mar 2024 19:41:39 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=92&m=0&partner=26192&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F26192%2F221201%2F963c0dabea794b58a0dbd5d563dbb41e_xlmoto-logo_yellow.png&v=3&w=668&s=u5_dY_be4vkLyRWkFBK3mkF7
178.250.1.14200 OK 10 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=92&m=0&partner=26192&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F26192%2F221201%2F963c0dabea794b58a0dbd5d563dbb41e_xlmoto-logo_yellow.png&v=3&w=668&s=u5_dY_be4vkLyRWkFBK3mkF7
IP 178.250.1.14:0
File type PNG image data, 325 x 92, 8-bit/color RGBA, non-interlaced\012- data
Hash 86d31d3e1150a61648f06017afc52978
7fd58a945b69e38c02356294c41e31cca2d7a993
471051b06da722668b96d0a0e62060a311e82d29fd8fccfd639832145ffa5e81
GET /img/img?h=92&m=0&partner=26192&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F26192%2F221201%2F963c0dabea794b58a0dbd5d563dbb41e_xlmoto-logo_yellow.png&v=3&w=668&s=u5_dY_be4vkLyRWkFBK3mkF7 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=29593599
expires: Fri, 08 Mar 2024 08:08:19 GMT
date: Fri, 31 Mar 2023 19:41:39 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10256
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fbjorn-borg-footwear%2F1300x1700%2Fbbf1741394803_ctan.jpg&v=3&w=400&s=NTtvgePhF0MNicCYa-0Orwfu&b=400
178.250.1.14200 OK 14 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fbjorn-borg-footwear%2F1300x1700%2Fbbf1741394803_ctan.jpg&v=3&w=400&s=NTtvgePhF0MNicCYa-0Orwfu&b=400
IP 178.250.1.14:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x342, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 99693f44b94946304f8bc098974bcdd2
a76990117ddf657cb61f09a8e8011211efc5e897
4f31215492ee8b7855652b8d7f548ffedbbf1b4f6f0ce8077d02264fcdb926b8
GET /img/img?c=3&cq=256&h=400&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fbjorn-borg-footwear%2F1300x1700%2Fbbf1741394803_ctan.jpg&v=3&w=400&s=NTtvgePhF0MNicCYa-0Orwfu&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30062092
expires: Wed, 13 Mar 2024 18:16:32 GMT
date: Fri, 31 Mar 2023 19:41:39 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 13820
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fecco%2F1300x1700%2Fec207083_cblack_v01001.jpg&v=3&w=400&s=245CQ9W0kIX6F-sXz9FpInoa&b=400
178.250.1.14200 OK 10 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fecco%2F1300x1700%2Fec207083_cblack_v01001.jpg&v=3&w=400&s=245CQ9W0kIX6F-sXz9FpInoa&b=400
IP 178.250.1.14:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x336, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a038be7d3e6d4838b4a63bd8daa28a1e
81f01b450467dfc5a96a6077358e42787edcb977
d9e7a945587d1dc06c2ed3c5734385cc6bf6d8e8de37b21da2530a03c2a76128
GET /img/img?c=3&cq=256&h=400&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fecco%2F1300x1700%2Fec207083_cblack_v01001.jpg&v=3&w=400&s=245CQ9W0kIX6F-sXz9FpInoa&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=29954127
expires: Tue, 12 Mar 2024 12:17:07 GMT
date: Fri, 31 Mar 2023 19:41:39 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10502
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=4faiBfGmlTcJ7C5QPzGxms_Kfbu0juguTVGOimHbbhI8kOZeIRdw0WUFmsg_inSLwZi1nZioS7edI7QLMYAOmAt4BHSB8Rqkh5tQfhKcPtfYOD_1HZ8UYeqmQAMWusKqfpeLqzp_nNaixmeZY0FQHPynTErVUQfdEFj4lXco1VMM-NLXqFzF8OnVxtbqwfPR838SQSVfS3ZMpCcVXnmplDUlnQS6asOFArQ2XYR7ZHJvhqSwKsCK8C8MD6B4rt3S3yRFvOVPlL_JfbwJF9krxkkGoHh04ddqoaL5b65l2PWpCfz-D0QMrCZJDbIhzJZVNmbdGVak8UHGelQ-U-G09_hzwp099NJGctH_dROCwr3lE-bqQgS9iYGKZVpiqN4XrgmjRVurMy4gEWLTXuU3ZOWj_dqQd3qSvEu2UqdoLpxBflLRHGvIeOnsDsnTugf2Q0SN1A
178.250.0.160200 OK 52 kB URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=4faiBfGmlTcJ7C5QPzGxms_Kfbu0juguTVGOimHbbhI8kOZeIRdw0WUFmsg_inSLwZi1nZioS7edI7QLMYAOmAt4BHSB8Rqkh5tQfhKcPtfYOD_1HZ8UYeqmQAMWusKqfpeLqzp_nNaixmeZY0FQHPynTErVUQfdEFj4lXco1VMM-NLXqFzF8OnVxtbqwfPR838SQSVfS3ZMpCcVXnmplDUlnQS6asOFArQ2XYR7ZHJvhqSwKsCK8C8MD6B4rt3S3yRFvOVPlL_JfbwJF9krxkkGoHh04ddqoaL5b65l2PWpCfz-D0QMrCZJDbIhzJZVNmbdGVak8UHGelQ-U-G09_hzwp099NJGctH_dROCwr3lE-bqQgS9iYGKZVpiqN4XrgmjRVurMy4gEWLTXuU3ZOWj_dqQd3qSvEu2UqdoLpxBflLRHGvIeOnsDsnTugf2Q0SN1A
IP 178.250.0.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9fd157b14b7ee45ada7ee084e5bbb9a2
e27c3270c3a4ef8fa54d84f238e75349587769c3
a9801e12a8a68c692c8deabd0a160349107e86b1b66fc0d483c889ed15cb8de7
GET /delivery/lg.php?cppv=3&cpp=4faiBfGmlTcJ7C5QPzGxms_Kfbu0juguTVGOimHbbhI8kOZeIRdw0WUFmsg_inSLwZi1nZioS7edI7QLMYAOmAt4BHSB8Rqkh5tQfhKcPtfYOD_1HZ8UYeqmQAMWusKqfpeLqzp_nNaixmeZY0FQHPynTErVUQfdEFj4lXco1VMM-NLXqFzF8OnVxtbqwfPR838SQSVfS3ZMpCcVXnmplDUlnQS6asOFArQ2XYR7ZHJvhqSwKsCK8C8MD6B4rt3S3yRFvOVPlL_JfbwJF9krxkkGoHh04ddqoaL5b65l2PWpCfz-D0QMrCZJDbIhzJZVNmbdGVak8UHGelQ-U-G09_hzwp099NJGctH_dROCwr3lE-bqQgS9iYGKZVpiqN4XrgmjRVurMy4gEWLTXuU3ZOWj_dqQd3qSvEu2UqdoLpxBflLRHGvIeOnsDsnTugf2Q0SN1A HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2398627
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=1200&m=0&partner=91523&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F91523%2F221124%2F38fa9246a8044b9d84346a654df0b3f8_1200x1200_no.png&v=3&w=1200&s=0nrlAVgY0MZUBvNy2SzYbkMm
178.250.1.14200 OK 128 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=1200&m=0&partner=91523&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F91523%2F221124%2F38fa9246a8044b9d84346a654df0b3f8_1200x1200_no.png&v=3&w=1200&s=0nrlAVgY0MZUBvNy2SzYbkMm
IP 178.250.1.14:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 128 kB (128318 bytes)
Hash 9ff2ed9e224d6b96a54afe736c4b0b07
ef6420bcdc5c7b89e892768d26b6156f20896019
3f643c2f2356cf933397bab72e5df5cdec174c7af924d8352390677e56cfbf68
GET /img/img?h=1200&m=0&partner=91523&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F91523%2F221124%2F38fa9246a8044b9d84346a654df0b3f8_1200x1200_no.png&v=3&w=1200&s=0nrlAVgY0MZUBvNy2SzYbkMm HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=29827849
expires: Mon, 11 Mar 2024 01:12:28 GMT
date: Fri, 31 Mar 2023 19:41:39 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 128318
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/animejs/animejs.js
178.250.0.130200 OK 5.7 kB URL HTTP/2 static.criteo.net/animejs/animejs.js
IP 178.250.0.130:0
File type ASCII text, with very long lines (12673), with no line terminators
Hash b38406f1648d18ff34629edc267cef2e
e87131a99cc284e99f97002528db941802f1055f
3eb7cf54084cf59bf4ee14db7271b2600b28e5bf18ec3d80fa58592c83685c37
GET /animejs/animejs.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: text/javascript
last-modified: Tue, 26 Mar 2019 17:44:11 GMT
etag: W/"5c9a64eb-3181"
expires: Mon, 25 Mar 2024 19:41:39 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=9mSMrFJSDm_CgDkieBsT_VnHE8UHa7XrvdukCSL6fSMFemO-TISdQ3Yv34qd-ZGv6dGi4USHp-IQvOnLRa9Nr9DglozJQ2fg8aKOfngQGgGtuwqPLK8Z1Ob5nsBfwqKs0voHmp8Jb83yHnPzNxrdD46uBKQgjrgs2uZLypErW5MRYU5MpimBHtw-EpwQ9NUL5kpyt8XA47abMMxumWaR9iRHEpU6ruuwodiRcDkW3ivPZ_Bn3gc6_JZFMD3XOyFsO0ON8Q&sds=2&rev=85392.3&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=9mSMrFJSDm_CgDkieBsT_VnHE8UHa7XrvdukCSL6fSMFemO-TISdQ3Yv34qd-ZGv6dGi4USHp-IQvOnLRa9Nr9DglozJQ2fg8aKOfngQGgGtuwqPLK8Z1Ob5nsBfwqKs0voHmp8Jb83yHnPzNxrdD46uBKQgjrgs2uZLypErW5MRYU5MpimBHtw-EpwQ9NUL5kpyt8XA47abMMxumWaR9iRHEpU6ruuwodiRcDkW3ivPZ_Bn3gc6_JZFMD3XOyFsO0ON8Q&sds=2&rev=85392.3&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=9mSMrFJSDm_CgDkieBsT_VnHE8UHa7XrvdukCSL6fSMFemO-TISdQ3Yv34qd-ZGv6dGi4USHp-IQvOnLRa9Nr9DglozJQ2fg8aKOfngQGgGtuwqPLK8Z1Ob5nsBfwqKs0voHmp8Jb83yHnPzNxrdD46uBKQgjrgs2uZLypErW5MRYU5MpimBHtw-EpwQ9NUL5kpyt8XA47abMMxumWaR9iRHEpU6ruuwodiRcDkW3ivPZ_Bn3gc6_JZFMD3XOyFsO0ON8Q&sds=2&rev=85392.3&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:41:39 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
1.bp.blogspot.com/--L5WM6P6VhA/VgGmGuL99-I/AAAAAAAAEZI/th6U12lF_Ig/s72-c/11880605_778099428965625_7242759597584770044_n.jpg
142.250.74.161200 OK 3.7 kB URL HTTP/1.1 1.bp.blogspot.com/--L5WM6P6VhA/VgGmGuL99-I/AAAAAAAAEZI/th6U12lF_Ig/s72-c/11880605_778099428965625_7242759597584770044_n.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 635fd23a0de4fd38ff75043ec6fc5a18
8324a89df61df10d4c701214af2a67ded05672aa
9819129624b1d857bb35a395cabce8fb2526445f60d9e5294eedda2476d9748f
GET /--L5WM6P6VhA/VgGmGuL99-I/AAAAAAAAEZI/th6U12lF_Ig/s72-c/11880605_778099428965625_7242759597584770044_n.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="11880605_778099428965625_7242759597584770044_n.jpg"
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3696
X-XSS-Protection: 0
Date: Fri, 31 Mar 2023 19:41:38 GMT
Expires: Sat, 01 Apr 2023 19:41:38 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1193"
Content-Type: image/jpeg
Vary: Origin
Age: 2
2.bp.blogspot.com/-Uu4n2zIOw7o/Vf2ldc4oskI/AAAAAAAAEQI/OM_wlldsJNM/s72-c/55e02a44162ba_1440754244.jpg
142.250.74.161200 OK 2.6 kB URL HTTP/1.1 2.bp.blogspot.com/-Uu4n2zIOw7o/Vf2ldc4oskI/AAAAAAAAEQI/OM_wlldsJNM/s72-c/55e02a44162ba_1440754244.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash bf2064095eb5a81d275a83c1a2164094
e5fd553e0a5b67861271297655e037425c2c1617
7fb17c630a00839996fa77ac5e25fe76bcbb3216ede48f8e4c7112d77639597f
GET /-Uu4n2zIOw7o/Vf2ldc4oskI/AAAAAAAAEQI/OM_wlldsJNM/s72-c/55e02a44162ba_1440754244.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="55e02a44162ba_1440754244.jpg"
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2568
X-XSS-Protection: 0
Date: Fri, 31 Mar 2023 19:41:38 GMT
Expires: Sat, 01 Apr 2023 19:41:38 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1103"
Content-Type: image/jpeg
Vary: Origin
Age: 2
4.bp.blogspot.com/-HQMocTIL6-M/Vf1tz2jL3DI/AAAAAAAAEPw/LLAo0ZprA38/s72-c/1368956670_g6.jpg
142.250.74.161200 OK 3.2 kB URL HTTP/1.1 4.bp.blogspot.com/-HQMocTIL6-M/Vf1tz2jL3DI/AAAAAAAAEPw/LLAo0ZprA38/s72-c/1368956670_g6.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 05934aaf977f2e8b0ae9f4d6197ea36d
0d382d99df6387404e6d7138c505c593b080dc4a
f482d42b78db81aad6e5ceb78eab57ad8ca4f1c19027b78cad84c1bfe75190b5
GET /-HQMocTIL6-M/Vf1tz2jL3DI/AAAAAAAAEPw/LLAo0ZprA38/s72-c/1368956670_g6.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="1368956670_g6.jpg"
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3247
X-XSS-Protection: 0
Date: Fri, 31 Mar 2023 19:41:38 GMT
Expires: Sat, 01 Apr 2023 19:41:38 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v10fd"
Content-Type: image/jpeg
Vary: Origin
Age: 2
csm.eu.criteo.net/all?cppv=3&cpp=91AUaFJSDm_CgDkiJgnmHcgqThB7JTCHWuwhQXvTCdD3nOxKs5bHsVwR3q4gyLLpGR13f-ODpAu0BB9YiG38cwS5ItdhJhXYQzkbjd0hEhGLbheHhhM5R7qdzUT8dsO5B2JAQsepxxT2KEMknF_ry3VS0QPOJcNCA5-V_cE2GvpSoo6nrBKDLhM2F6FohxpFOpZaN6QTM66yNn5Sr9ZDWcV6BC-9ci0trVDszP1FlHuZvtOWcvIJMvxDZD7seSTvTP3Eiw&sds=2&rev=85392.3&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=91AUaFJSDm_CgDkiJgnmHcgqThB7JTCHWuwhQXvTCdD3nOxKs5bHsVwR3q4gyLLpGR13f-ODpAu0BB9YiG38cwS5ItdhJhXYQzkbjd0hEhGLbheHhhM5R7qdzUT8dsO5B2JAQsepxxT2KEMknF_ry3VS0QPOJcNCA5-V_cE2GvpSoo6nrBKDLhM2F6FohxpFOpZaN6QTM66yNn5Sr9ZDWcV6BC-9ci0trVDszP1FlHuZvtOWcvIJMvxDZD7seSTvTP3Eiw&sds=2&rev=85392.3&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=91AUaFJSDm_CgDkiJgnmHcgqThB7JTCHWuwhQXvTCdD3nOxKs5bHsVwR3q4gyLLpGR13f-ODpAu0BB9YiG38cwS5ItdhJhXYQzkbjd0hEhGLbheHhhM5R7qdzUT8dsO5B2JAQsepxxT2KEMknF_ry3VS0QPOJcNCA5-V_cE2GvpSoo6nrBKDLhM2F6FohxpFOpZaN6QTM66yNn5Sr9ZDWcV6BC-9ci0trVDszP1FlHuZvtOWcvIJMvxDZD7seSTvTP3Eiw&sds=2&rev=85392.3&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:41:40 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-56118832-6&cid=2065995160.1680291698&jid=1681064116&_u=IEBAAEAAAAAAACAAI~&z=435402431
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-56118832-6&cid=2065995160.1680291698&jid=1681064116&_u=IEBAAEAAAAAAACAAI~&z=435402431
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-56118832-6&cid=2065995160.1680291698&jid=1681064116&_u=IEBAAEAAAAAAACAAI~&z=435402431 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 31 Mar 2023 19:41:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.criteo.net/design/googlefont/montserrat/montserrat-700italic.css
178.250.0.130200 OK 477 B URL HTTP/2 static.criteo.net/design/googlefont/montserrat/montserrat-700italic.css
IP 178.250.0.130:0
Hash b0fb7ec2799d0d382366616db70844fc
41568cb0417c985580ca6375fc8ba0e4e0c57ef4
6a1b9efa8ece0225447742b25f1138a65d2b4a987a99457226e23760f40b0ce4
GET /design/googlefont/montserrat/montserrat-700italic.css HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: text/css
last-modified: Thu, 08 Dec 2022 14:06:56 GMT
etag: W/"6391ef80-693"
expires: Mon, 25 Mar 2024 19:41:39 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/googlefont/montserrat/montserrat-700.css
178.250.0.130200 OK 80 kB URL HTTP/2 static.criteo.net/design/googlefont/montserrat/montserrat-700.css
IP 178.250.0.130:0
Hash 450562cd00f1acc3f9c08084c9006437
b425ce905920744a8539bb276851f45b63b2ef83
84419937c260acbaeeba0d11f9d184fd3acb05bca9f2131e57b42a0b29020739
GET /design/googlefont/montserrat/montserrat-700.css HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: text/css
last-modified: Thu, 08 Dec 2022 14:06:55 GMT
etag: W/"6391ef7f-675"
expires: Mon, 25 Mar 2024 19:41:39 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=t1J-LN93wCs3txwqPiSRw8TATw7pM603N4jy8fXG1hZlS4v56P3DykG5R8lBEX6DH5jeTrGmZPn4i5sdStlg0KWHlQT9fTRXx1rK1UdgiQcYy4aACK2S17TCnuo0VAik3_9RbI7LvnCdL5PYDK-vMWvgFKFHVvz7xMqjl6kff4Mt-N2Q35JCVdpxueDa8G_X_SX3CsuqECRtMuXzMtIaUHBmym5zI_zL1N4hp6TyoBuLZ4jI--CVVMIx6z6uXLDup7u9P6WH5jrcZ9ke6qhEiGLaRDthVmOekknOI7GYeC893hw6-bnZfqcLakYcHTkZV60nlMCoqsF77USuAbAZmdlTfzXBPbqPGKRCqac2YcQ-pfXVeeR3URZ-8yJzornUt63391bbtbohQPcCgtcuyrW_Nxi0LVDwArzH__u8jUF9Z09VdzNPDWRqL56c7VxlUMoX7A
178.250.0.160200 OK 15 kB URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=t1J-LN93wCs3txwqPiSRw8TATw7pM603N4jy8fXG1hZlS4v56P3DykG5R8lBEX6DH5jeTrGmZPn4i5sdStlg0KWHlQT9fTRXx1rK1UdgiQcYy4aACK2S17TCnuo0VAik3_9RbI7LvnCdL5PYDK-vMWvgFKFHVvz7xMqjl6kff4Mt-N2Q35JCVdpxueDa8G_X_SX3CsuqECRtMuXzMtIaUHBmym5zI_zL1N4hp6TyoBuLZ4jI--CVVMIx6z6uXLDup7u9P6WH5jrcZ9ke6qhEiGLaRDthVmOekknOI7GYeC893hw6-bnZfqcLakYcHTkZV60nlMCoqsF77USuAbAZmdlTfzXBPbqPGKRCqac2YcQ-pfXVeeR3URZ-8yJzornUt63391bbtbohQPcCgtcuyrW_Nxi0LVDwArzH__u8jUF9Z09VdzNPDWRqL56c7VxlUMoX7A
IP 178.250.0.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 31d35b2cfe7f8155c6ed1de044971a40
be78044f0d497f29404e7a5d17d94397946be9f2
021d9c3871ebb5007f93678614231abe403f4ac952c8c98cf8dddea12ae1b647
GET /delivery/lg.php?cppv=3&cpp=t1J-LN93wCs3txwqPiSRw8TATw7pM603N4jy8fXG1hZlS4v56P3DykG5R8lBEX6DH5jeTrGmZPn4i5sdStlg0KWHlQT9fTRXx1rK1UdgiQcYy4aACK2S17TCnuo0VAik3_9RbI7LvnCdL5PYDK-vMWvgFKFHVvz7xMqjl6kff4Mt-N2Q35JCVdpxueDa8G_X_SX3CsuqECRtMuXzMtIaUHBmym5zI_zL1N4hp6TyoBuLZ4jI--CVVMIx6z6uXLDup7u9P6WH5jrcZ9ke6qhEiGLaRDthVmOekknOI7GYeC893hw6-bnZfqcLakYcHTkZV60nlMCoqsF77USuAbAZmdlTfzXBPbqPGKRCqac2YcQ-pfXVeeR3URZ-8yJzornUt63391bbtbohQPcCgtcuyrW_Nxi0LVDwArzH__u8jUF9Z09VdzNPDWRqL56c7VxlUMoX7A HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2559286
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fecco%2F1300x1700%2Fec207083_cblack_v01001.jpg&v=3&w=800&s=BKk6_f7pAzSksysSs0iTrlUx&b=400
178.250.0.81200 OK 11 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fecco%2F1300x1700%2Fec207083_cblack_v01001.jpg&v=3&w=800&s=BKk6_f7pAzSksysSs0iTrlUx&b=400
IP 178.250.0.81:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x337, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cf81a0fecdd2b1bc5c9c027bfb9935c4
51824dd5566ba30a5424f7c5f6ff6a93656c443d
5bef24791dd8cc985cdcff6245c604053228ca8b6fa39ea8b89e9694d8dad742
GET /img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fecco%2F1300x1700%2Fec207083_cblack_v01001.jpg&v=3&w=800&s=BKk6_f7pAzSksysSs0iTrlUx&b=400 HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 10576
content-type: image/webp
date: Fri, 31 Mar 2023 19:41:39 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Sat, 09 Mar 2024 22:30:38 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/googlefont/montserrat/montserrat-400.css
178.250.0.130200 OK 8.1 kB URL HTTP/2 static.criteo.net/design/googlefont/montserrat/montserrat-400.css
IP 178.250.0.130:0
Hash 0bc82a37bbdf3ed75bade64e0f27b97c
2f3d6ad20038cc4e877ed95494a5c427bd50713d
492904d131e2edab31f344a0849af394d965048182f758404b32871c0561e731
GET /design/googlefont/montserrat/montserrat-400.css HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: text/css
last-modified: Thu, 08 Dec 2022 14:06:54 GMT
etag: W/"6391ef7e-675"
expires: Mon, 25 Mar 2024 19:41:39 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Froyal-republiq%2F1300x1700%2Frrq250186119293_ctan.jpg&v=3&w=800&s=cmtHdGMxskGRN1i4NeeGc7H-&b=400
178.250.0.81200 OK 7.1 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Froyal-republiq%2F1300x1700%2Frrq250186119293_ctan.jpg&v=3&w=800&s=cmtHdGMxskGRN1i4NeeGc7H-&b=400
IP 178.250.0.81:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x369, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 721d32a67085404448600851cb40471a
b384ecf8d5ee491d4d7e3c0710c338b1ed147211
980c4fc4a01540c6009a0569b983444a65778ce34bb39f3726c2fbbb0d71ba4d
GET /img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Froyal-republiq%2F1300x1700%2Frrq250186119293_ctan.jpg&v=3&w=800&s=cmtHdGMxskGRN1i4NeeGc7H-&b=400 HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 7116
content-type: image/webp
date: Fri, 31 Mar 2023 19:41:40 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Sat, 09 Mar 2024 22:30:41 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fbjorn-borg-footwear%2F1300x1700%2Fbbf1642296803_ctan.jpg&v=3&w=800&s=lg_JCZQW722Tsf1NQG53KBwb&b=400
178.250.0.81200 OK 18 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fbjorn-borg-footwear%2F1300x1700%2Fbbf1642296803_ctan.jpg&v=3&w=800&s=lg_JCZQW722Tsf1NQG53KBwb&b=400
IP 178.250.0.81:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x363, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5b4a13b8a8ec85ef3115e64989f28acc
86fdc16eb500498a860d989831142d8a7db8c45d
460027e4387b89a7bfba0f0bd47eeb689d7f7b13b87fcbb960bbb9f6bd328c60
GET /img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fbjorn-borg-footwear%2F1300x1700%2Fbbf1642296803_ctan.jpg&v=3&w=800&s=lg_JCZQW722Tsf1NQG53KBwb&b=400 HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 18500
content-type: image/webp
date: Fri, 31 Mar 2023 19:41:39 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Tue, 12 Mar 2024 06:53:51 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fyas%2F1300x1700%2Fyas26027162_cjellybean_v277877.jpg&v=3&w=800&s=3TyUjlxAY-E4sTDzKiJoO7Rd&b=400
178.250.0.81200 OK 15 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fyas%2F1300x1700%2Fyas26027162_cjellybean_v277877.jpg&v=3&w=800&s=3TyUjlxAY-E4sTDzKiJoO7Rd&b=400
IP 178.250.0.81:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 228x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4387bdafcbad1dff14b2a16bf48e2c6e
b370f13c104ac4f3bc42a5b4e86bcca2316b231f
83851debafdd703a7c96a8a19bf6e1f0bda1b177840abe55703f0ad8003a0b2f
GET /img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fyas%2F1300x1700%2Fyas26027162_cjellybean_v277877.jpg&v=3&w=800&s=3TyUjlxAY-E4sTDzKiJoO7Rd&b=400 HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 15288
content-type: image/webp
date: Fri, 31 Mar 2023 19:41:39 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Sat, 09 Mar 2024 22:30:45 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fselected-femme%2F1300x1700%2Fsel16064571_camphora_v234498melange.jpg&v=3&w=800&s=k4qfYlxSP8uZ9vklus9R1o9x&b=400
178.250.0.81200 OK 9.3 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fselected-femme%2F1300x1700%2Fsel16064571_camphora_v234498melange.jpg&v=3&w=800&s=k4qfYlxSP8uZ9vklus9R1o9x&b=400
IP 178.250.0.81:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 248x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d4a8a05d84a86cedee88a808d94c2dfb
8120d9e11749d82ee854c05524bc6320195fe1ea
691fafd4479445ebc45305f24b018c5e978d2b66ac3f6d55a8123396d3ecff80
GET /img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fselected-femme%2F1300x1700%2Fsel16064571_camphora_v234498melange.jpg&v=3&w=800&s=k4qfYlxSP8uZ9vklus9R1o9x&b=400 HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 9322
content-type: image/webp
date: Fri, 31 Mar 2023 19:41:40 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Sat, 16 Mar 2024 06:34:54 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fmoon-boot%2F1300x1700%2Fmbt96514004400_cblack.jpg&v=3&w=800&s=gdlNQAB9gRsEZpTg16NY_I9t&b=400
178.250.0.81200 OK 9.3 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fmoon-boot%2F1300x1700%2Fmbt96514004400_cblack.jpg&v=3&w=800&s=gdlNQAB9gRsEZpTg16NY_I9t&b=400
IP 178.250.0.81:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 276x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 18a0106b3cc388b5cd14f9c98255c636
5bc095c2bd65e84b8f51d80efd8ac7164578b43f
f271172664a66dc928e9de0c8c4061504140abc92e4273d18d75240b221101ea
GET /img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fmoon-boot%2F1300x1700%2Fmbt96514004400_cblack.jpg&v=3&w=800&s=gdlNQAB9gRsEZpTg16NY_I9t&b=400 HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 9252
content-type: image/webp
date: Fri, 31 Mar 2023 19:41:40 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Sat, 09 Mar 2024 22:30:50 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=buM8DLHvV44WWWAi_61BXHNm7olPSYpMzsOYq87tHhbJeLj8PNKJyCv_S-ZqP48acWw7p2P_mwE_hcmR0Ra5ApcJja-AKqeeAt51LpNqEjrzvFmt-GHfivR29CpQeQMMg_zdxkMdQW9Ww2fchI24j_0rFB5ZuVlwvqWkmy6WfeACmnEWE7LPGIIlpWZmMaXtMu6DWnVxMRzhPxPj2OM0WcYt9utTiNMntjPDWD6bUqIyyX3DG9FRqFF46wGiviCyGadhbeABDUGDyKPUsET6L-0xY_ixHeKq3SaObo1CHikYISDJ7y8C1q0g4Qiwd67AXzd2xbr57_Pr5lFvTZPL92pDbDOVmxdgYIISzCvGOKExTvtMl4yMKbfaXjV7Cu6lt_HnyVY58j_BRT5RBCEdy931rmQko5Ctygv3Oe643McMmdzE05RPe_HnA8xPy4eBSCeM-w
178.250.0.160200 OK 2.1 kB URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=buM8DLHvV44WWWAi_61BXHNm7olPSYpMzsOYq87tHhbJeLj8PNKJyCv_S-ZqP48acWw7p2P_mwE_hcmR0Ra5ApcJja-AKqeeAt51LpNqEjrzvFmt-GHfivR29CpQeQMMg_zdxkMdQW9Ww2fchI24j_0rFB5ZuVlwvqWkmy6WfeACmnEWE7LPGIIlpWZmMaXtMu6DWnVxMRzhPxPj2OM0WcYt9utTiNMntjPDWD6bUqIyyX3DG9FRqFF46wGiviCyGadhbeABDUGDyKPUsET6L-0xY_ixHeKq3SaObo1CHikYISDJ7y8C1q0g4Qiwd67AXzd2xbr57_Pr5lFvTZPL92pDbDOVmxdgYIISzCvGOKExTvtMl4yMKbfaXjV7Cu6lt_HnyVY58j_BRT5RBCEdy931rmQko5Ctygv3Oe643McMmdzE05RPe_HnA8xPy4eBSCeM-w
IP 178.250.0.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 22839692f416667764b62a410aacce26
89df86248ca12c7b783522b4d883ead712c61e67
f7b7818fb861028275fcbe3c0c95c8fd901878494f4a7a8f0897e326accde797
GET /delivery/lg.php?cppv=3&cpp=buM8DLHvV44WWWAi_61BXHNm7olPSYpMzsOYq87tHhbJeLj8PNKJyCv_S-ZqP48acWw7p2P_mwE_hcmR0Ra5ApcJja-AKqeeAt51LpNqEjrzvFmt-GHfivR29CpQeQMMg_zdxkMdQW9Ww2fchI24j_0rFB5ZuVlwvqWkmy6WfeACmnEWE7LPGIIlpWZmMaXtMu6DWnVxMRzhPxPj2OM0WcYt9utTiNMntjPDWD6bUqIyyX3DG9FRqFF46wGiviCyGadhbeABDUGDyKPUsET6L-0xY_ixHeKq3SaObo1CHikYISDJ7y8C1q0g4Qiwd67AXzd2xbr57_Pr5lFvTZPL92pDbDOVmxdgYIISzCvGOKExTvtMl4yMKbfaXjV7Cu6lt_HnyVY58j_BRT5RBCEdy931rmQko5Ctygv3Oe643McMmdzE05RPe_HnA8xPy4eBSCeM-w HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2411871
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fbjorn-borg-footwear%2F1300x1700%2Fbbf1741394803_ctan.jpg&v=3&w=800&s=6HAoq4wJay3wMy4rFViERj1S&b=400
178.250.0.81200 OK 14 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fbjorn-borg-footwear%2F1300x1700%2Fbbf1741394803_ctan.jpg&v=3&w=800&s=6HAoq4wJay3wMy4rFViERj1S&b=400
IP 178.250.0.81:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x342, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 41e86e7babfdc9633e201a0d0a405b43
0a2867287dc1680f15db235b1ed27f9fba2681a8
9d6a19cd6ea17d063f9d71ff76abad01adb5786f87489a83465b5df6c4f1540e
GET /img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fbjorn-borg-footwear%2F1300x1700%2Fbbf1741394803_ctan.jpg&v=3&w=800&s=6HAoq4wJay3wMy4rFViERj1S&b=400 HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 13836
content-type: image/webp
date: Fri, 31 Mar 2023 19:41:40 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Sat, 09 Mar 2024 22:30:38 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Froyal-republiq%2F1300x1700%2Frrq250186119211_cbrown.jpg&v=3&w=800&s=ybI0ldyPg-sW4JqhOloWZIbD&b=400
178.250.0.81200 OK 6.9 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Froyal-republiq%2F1300x1700%2Frrq250186119211_cbrown.jpg&v=3&w=800&s=ybI0ldyPg-sW4JqhOloWZIbD&b=400
IP 178.250.0.81:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x373, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 66bfb646e7717870a018c6ef6e2b5160
710e8ed4b6ed8ca2d748b84fef7a02ecf5e75f0d
ce7702247926f82bcd8a6fe064c131b59bba2e4d7c000e5f327f316e48025ce8
GET /img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Froyal-republiq%2F1300x1700%2Frrq250186119211_cbrown.jpg&v=3&w=800&s=ybI0ldyPg-sW4JqhOloWZIbD&b=400 HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 6896
content-type: image/webp
date: Fri, 31 Mar 2023 19:41:40 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Sat, 09 Mar 2024 22:30:29 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fmatinique%2F1300x1700%2Fme30206029_colivenight_v190515.jpg&v=3&w=800&s=AWGkSm6A9USiDYlTOVqk_TVr&b=400
178.250.0.81200 OK 4.4 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fmatinique%2F1300x1700%2Fme30206029_colivenight_v190515.jpg&v=3&w=800&s=AWGkSm6A9USiDYlTOVqk_TVr&b=400
IP 178.250.0.81:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 343x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 55066524480be08e9b806d67c307e2d2
12d0be253413fc906c21e71a03a42c52ffd56213
baf5c9bebde8e048e26cc45e54e53d4481d3471ba60f897643a16eef4860142b
GET /img/img?c=3&cq=256&h=800&m=0&partner=91523&q=80&r=0&u=https%3A%2F%2Fean-images.booztcdn.com%2Fmatinique%2F1300x1700%2Fme30206029_colivenight_v190515.jpg&v=3&w=800&s=AWGkSm6A9USiDYlTOVqk_TVr&b=400 HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 4352
content-type: image/webp
date: Fri, 31 Mar 2023 19:41:39 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Tue, 19 Mar 2024 06:20:47 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?h=1200&m=0&partner=91523&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F91523%2F221124%2Fb91def91807e4ab9b1978f405683072d_1200x628_no.png&v=3&w=1200&s=4H6kNYBeO6YF_jtG_qhUVEal
178.250.0.81200 OK 60 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?h=1200&m=0&partner=91523&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F91523%2F221124%2Fb91def91807e4ab9b1978f405683072d_1200x628_no.png&v=3&w=1200&s=4H6kNYBeO6YF_jtG_qhUVEal
IP 178.250.0.81:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash bae5a441da8414ca3d39b7be668410e1
3e38aeb01b75c4797931bc6c78139eb976fc6eb2
5ac2800ac4df83f215d7be46dc96d42361f871463062e23cd41bee6848bbac8d
GET /img/img?h=1200&m=0&partner=91523&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F91523%2F221124%2Fb91def91807e4ab9b1978f405683072d_1200x628_no.png&v=3&w=1200&s=4H6kNYBeO6YF_jtG_qhUVEal HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 60414
content-type: image/webp
date: Fri, 31 Mar 2023 19:41:39 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Sat, 09 Mar 2024 22:31:25 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=q6ypVFJSDm_CgDkixzyEquYYIiC6kee0_BWauf0IoVNeXhdfSEukx6v2QhtAMVGmt5Xv0JkHv_5lyoHeHfoV4fY-_E1YtTBn9_18p7xYS4QIld8O9XIN3zHuCLNgcMg4TUopkC_LgNPRIYzWI2K6DlLrirvGfZ-s1jSzHmA4W4YrfUNFiXiL0cym93-YO-LegcX51utt2pfz9OlBKrh0WvgF_ExEpjZFcVU0xXOTDIDh4d9ulc57MO7fmEiZrtEEavjUlA&sds=2&rev=85392.3&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=q6ypVFJSDm_CgDkixzyEquYYIiC6kee0_BWauf0IoVNeXhdfSEukx6v2QhtAMVGmt5Xv0JkHv_5lyoHeHfoV4fY-_E1YtTBn9_18p7xYS4QIld8O9XIN3zHuCLNgcMg4TUopkC_LgNPRIYzWI2K6DlLrirvGfZ-s1jSzHmA4W4YrfUNFiXiL0cym93-YO-LegcX51utt2pfz9OlBKrh0WvgF_ExEpjZFcVU0xXOTDIDh4d9ulc57MO7fmEiZrtEEavjUlA&sds=2&rev=85392.3&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=q6ypVFJSDm_CgDkixzyEquYYIiC6kee0_BWauf0IoVNeXhdfSEukx6v2QhtAMVGmt5Xv0JkHv_5lyoHeHfoV4fY-_E1YtTBn9_18p7xYS4QIld8O9XIN3zHuCLNgcMg4TUopkC_LgNPRIYzWI2K6DlLrirvGfZ-s1jSzHmA4W4YrfUNFiXiL0cym93-YO-LegcX51utt2pfz9OlBKrh0WvgF_ExEpjZFcVU0xXOTDIDh4d9ulc57MO7fmEiZrtEEavjUlA&sds=2&rev=85392.3&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:41:40 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=q6ypVFJSDm_CgDkixzyEquYYIiC6kee0_BWauf0IoVNeXhdfSEukx6v2QhtAMVGmt5Xv0JkHv_5lyoHeHfoV4fY-_E1YtTBn9_18p7xYS4QIld8O9XIN3zHuCLNgcMg4TUopkC_LgNPRIYzWI2K6DlLrirvGfZ-s1jSzHmA4W4YrfUNFiXiL0cym93-YO-LegcX51utt2pfz9OlBKrh0WvgF_ExEpjZFcVU0xXOTDIDh4d9ulc57MO7fmEiZrtEEavjUlA&sds=2&rev=85392.3&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=q6ypVFJSDm_CgDkixzyEquYYIiC6kee0_BWauf0IoVNeXhdfSEukx6v2QhtAMVGmt5Xv0JkHv_5lyoHeHfoV4fY-_E1YtTBn9_18p7xYS4QIld8O9XIN3zHuCLNgcMg4TUopkC_LgNPRIYzWI2K6DlLrirvGfZ-s1jSzHmA4W4YrfUNFiXiL0cym93-YO-LegcX51utt2pfz9OlBKrh0WvgF_ExEpjZFcVU0xXOTDIDh4d9ulc57MO7fmEiZrtEEavjUlA&sds=2&rev=85392.3&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=q6ypVFJSDm_CgDkixzyEquYYIiC6kee0_BWauf0IoVNeXhdfSEukx6v2QhtAMVGmt5Xv0JkHv_5lyoHeHfoV4fY-_E1YtTBn9_18p7xYS4QIld8O9XIN3zHuCLNgcMg4TUopkC_LgNPRIYzWI2K6DlLrirvGfZ-s1jSzHmA4W4YrfUNFiXiL0cym93-YO-LegcX51utt2pfz9OlBKrh0WvgF_ExEpjZFcVU0xXOTDIDh4d9ulc57MO7fmEiZrtEEavjUlA&sds=2&rev=85392.3&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:41:42 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41f0baa1423dbd529f6c47bd51fe708f
f09b44f30b63f5e29dd247f592147ffc6b308e72
313b769259453565919ab14410faea927a23ad75636abc57851dfe67d43ea156
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4370
x-amzn-requestid: 5791c184-d5eb-4666-bc94-f838cd0183af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllHrcIAMFSWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-15fb3d2f67359d6837df5d0d;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: opMjAWEDBvz7pKcnuQrmD_7njQ0X28fR3Ngnoe7WI96zNNNt9oQL5A==
via: 1.1 99db15345b0e5e7ad9c267ae999b8cf4.cloudfront.net (CloudFront), 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 09:17:34 GMT
age: 37452
etag: "f09b44f30b63f5e29dd247f592147ffc6b308e72"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yV/r/YRHI-akXoZl.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 0 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yV/r/YRHI-akXoZl.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
GET /rsrc.php/v3/yV/r/YRHI-akXoZl.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 30 Mar 2024 14:53:35 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: zWVo1WIyqeyeqtBSy9ejoA==
x-fb-debug: HiEWi1glAvGuRvtCiDYyBkOwSsh00hASVhlmBlTa6Kr+T8wKg/l+zR7tiAWstuaPER3JbyWb5+8mski49tv18g==
content-length: 83383
x-fb-trip-id: 1679558926
date: Fri, 31 Mar 2023 19:41:38 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/adchoices_en.svg
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/adchoices_en.svg
IP 178.250.0.130:0
GET /flash/icon/adchoices_en.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:27:58 GMT
etag: W/"5e42b9ee-759"
expires: Mon, 25 Mar 2024 19:41:39 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400,300&subset=cyrillic,latin
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400,300&subset=cyrillic,latin
IP 142.250.74.74:0
GET /css?family=Roboto:400,300&subset=cyrillic,latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ibrandstory.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 31 Mar 2023 19:41:38 GMT
date: Fri, 31 Mar 2023 19:41:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy.svg
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/privacy.svg
IP 178.250.0.130:0
GET /flash/icon/privacy.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:41:39 GMT
content-type: image/svg+xml
last-modified: Wed, 19 Feb 2020 10:57:21 GMT
etag: W/"5e4d1491-646"
expires: Mon, 25 Mar 2024 19:41:39 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2