Overview

URLpleasetrack.com/1015951e-b6f3-4f2b-8552-e256f547e64d
IP 18.193.235.10 (Germany)
ASN#16509 AMAZON-02
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Access lock_open
Report completed2022-11-12 22:22:36 UTC
StatusLoading report..
IDS alerts0
Blocklist alert1
urlquery alerts No alerts detected
Tags None

Domain Summary (16)

Fully Qualifying Domain Name Rank First Seen Last Seen Sent bytes Received bytes IP Comment
contile.services.mozilla.com (1) 1114 2021-05-27T20:32:35Z 2023-03-10T05:10:00Z 333 229 34.117.237.239
ocsp.pki.goog (4) 175 2018-07-01T08:43:07Z 2023-03-10T05:11:10Z 1400 2820 142.250.74.35
r3.o.lencr.org (7) 344 2020-12-02T09:52:13Z 2023-03-10T05:09:10Z 2366 6203 23.36.76.226
firefox.settings.services.mozilla.com (2) 867 2020-06-04T22:08:41Z 2023-03-10T05:10:00Z 782 2374 34.102.187.140
fralstamp-genglyric.icu (1) 0 2020-06-03T11:53:36Z 2023-03-10T15:26:13Z 644 683 18.193.235.10
ocsp.sectigo.com (1) 487 2019-11-29T12:50:24Z 2023-03-10T14:35:32Z 340 964 172.64.155.188
widget.trustpilot.com (6) 6018 2017-02-01T20:05:34Z 2023-03-10T15:36:38Z 4252 42678 54.230.111.79
pleasetrack.com (1) 377297 2013-05-18T15:18:07Z 2023-03-10T15:26:13Z 383 1317 18.193.235.10
ocsp.digicert.com (2) 86 2012-05-21T09:02:23Z 2023-03-10T13:49:44Z 682 1594 93.184.220.29
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03T13:26:46Z 2023-03-10T05:12:35Z 413 5843 34.160.144.191
www.googletagmanager.com (1) 75 2013-05-22T04:07:37Z 2023-03-10T13:03:15Z 386 38469 142.250.74.168
www.totaladblock.com (23) 210522 2020-12-20T18:33:35Z 2023-03-10T20:50:01Z 16289 501168 34.107.240.249
url.totaladblock.com (1) 287646 2021-03-04T15:18:49Z 2023-03-10T15:27:12Z 554 1883 35.224.74.90
push.services.mozilla.com (1) 2140 2014-10-24T10:27:06Z 2023-03-10T05:10:02Z 606 127 54.149.219.22
stats.totaladblock.com (1) 0 2021-05-27T16:25:55Z 2023-03-09T07:08:24Z 603 142653 34.120.101.0
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-22T01:36:00Z 2023-03-10T05:10:04Z 3246 50550 34.120.237.76

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-12 medium pleasetrack.com/1015951e-b6f3-4f2b-8552-e256f547e64d Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 18.193.235.10
Date UQ / IDS / BL URL IP
2023-06-05 23:04:59 UTC 0 - 1 - 0 krvtrk.com/f1e936f5-004f-4ed0-8682-96dbc3528a (...) 18.193.235.10
2023-06-05 18:50:46 UTC 0 - 9 - 24 safefrst.com/80089937-dbce-4159-ada3-f3b11347d816 18.193.235.10
2023-06-04 21:44:26 UTC 0 - 0 - 2 furned-mashorses.com/887ca30b-2742-4670-961c- (...) 18.193.235.10
2023-06-04 14:52:48 UTC 0 - 1 - 0 krvtrk.com/5516e969-37c7-43d7-8deb-071ff10970 (...) 18.193.235.10
2023-06-03 23:53:09 UTC 0 - 1 - 0 krvtrk.com/05ebec2f-62b1-4efb-a0ce-9e0032366f (...) 18.193.235.10


Last 5 reports on ASN: AMAZON-02
Date UQ / IDS / BL URL IP
2023-06-05 23:22:05 UTC 0 - 4 - 0 files.uniblue.com/cm/terdwnldppc/speedupmypc/ (...) 199.59.243.223
2023-06-05 23:22:04 UTC 0 - 5 - 0 files.uniblue.com/cm/neuber/pcmechanicpm/aff- (...) 199.59.243.223
2023-06-05 23:20:59 UTC 0 - 2 - 0 banestesempresas.chat/ 15.197.130.221
2023-06-05 23:21:02 UTC 0 - 1 - 0 track.zolles-tundiran.com/0cc1d297-fb1f-468e- (...) 18.195.195.71
2023-06-05 23:16:09 UTC 0 - 50 - 0 trk.klclick1.com/ls/click?upn=haDpiWLOcdBtoEn (...) 54.230.111.109


Last 5 reports on domain: pleasetrack.com
Date UQ / IDS / BL URL IP
2023-04-11 05:07:51 UTC 0 - 1 - 1 pleasetrack.com/604f5fd3-d6ae-409e-86f3-fb43f (...) 18.193.235.10
2023-03-14 22:34:04 UTC 0 - 1 - 1 pleasetrack.com/604f5fd3-d6ae-409e-86f3-fb43f (...) 18.193.235.10
2023-03-14 22:34:02 UTC 0 - 1 - 1 pleasetrack.com/604f5fd3-d6ae-409e-86f3-fb43f (...) 18.193.235.10
2022-11-12 22:22:36 UTC 0 - 0 - 1 pleasetrack.com/1015951e-b6f3-4f2b-8552-e256f (...) 18.193.235.10
2022-11-07 20:42:57 UTC 0 - 0 - 1 pleasetrack.com/604f5fd3-d6ae-409e-86f3-fb43f (...) 18.193.235.10


Last 1 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-11-07 20:42:57 UTC 0 - 0 - 1 pleasetrack.com/604f5fd3-d6ae-409e-86f3-fb43f (...) 18.193.235.10

JavaScript

Executed Scripts (12)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (59)


Request Response
                                        
                                            GET /1015951e-b6f3-4f2b-8552-e256f547e64d HTTP/1.1 
Host: pleasetrack.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                        
                                             18.193.235.10
HTTP/1.1 200
Content-Type: text/html;charset=UTF-8
                                            
Server: nginx
Date: Sat, 12 Nov 2022 22:22:25 GMT
Content-Length: 581
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Set-Cookie: 1015951e-b6f3-4f2b-8552-e256f547e64d-v4=_lkaIbipi7Y19lMnyZ3-avzuet0JcM1mct_xqTDgK_U; Max-Age=86400; Expires=Sun, 13-Nov-2022 22:22:25 GMT; Domain=pleasetrack.com; Path=/; HttpOnly cc-v4=nL69KUiI%2BH%2Fv1qocusoQ06ZgMSckFnPtts%2FBFQyXEx5uBGew06oymu8RNB4phK0ZP%2BHaTqWmU9Pwj8gmxqztf7zEl2SvlHCcUpJW%2F5jPBHaEGQniaGuIZWP1HZycTpcFKuuLuEXFAhWUUCo3u3Mk5Q%3D%3D; Max-Age=31536000; Expires=Sun, 12-Nov-2023 22:22:25 GMT; Domain=pleasetrack.com; Path=/; HttpOnly


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (581), with no line terminators
Size:   581
Md5:    2bfb5fabbe623c4d5fadaad497dafcdf
Sha1:   cebb5d8c2fafea58e4abf52c706c6e791c8687fe
Sha256: ad9a3886a91de5ca68c898a57a12bfa6015e7f584cb0d52ce5006da61354bd3a

Blocklists:
  - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Server: nginx
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12984
Expires: Sun, 13 Nov 2022 01:58:49 GMT
Date: Sat, 12 Nov 2022 22:22:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Accept-Ranges: bytes
Age: 5310
Cache-Control: max-age=135440
Date: Sat, 12 Nov 2022 22:22:25 GMT
Etag: "636f75f3-1d7"
Expires: Mon, 14 Nov 2022 11:59:45 GMT
Last-Modified: Sat, 12 Nov 2022 10:31:15 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                            
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 12 Nov 2022 21:44:15 GMT
cache-control: public,max-age=3600
age: 2290
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    d130218d0e2841f39c99610fe1a2ab90
Sha1:   29fbe1e177ee55c7a61ae0a206afff271cf5f945
Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Server: nginx
Content-Length: 503
ETag: "ED5C27510100FFC4481BE474EBCB020D147C645BEB110604D5284EEEB8B97C02"
Last-Modified: Fri, 11 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9132
Expires: Sun, 13 Nov 2022 00:54:37 GMT
Date: Sat, 12 Nov 2022 22:22:25 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                            
x-amz-id-2: 8G3Kb3jhBHgE+VvZFVJ6CMInj34MHgDxdIvnANqRXh8uKv1XRbMCrwxtbt8YZ6wINVH7eeI+g60=
x-amz-request-id: AV6XABG35JNBBGJB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 12 Nov 2022 22:13:10 GMT
age: 555
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    67d5a988edcda47bc3b3b3f65d32b4b6
Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f
Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                            
server: nginx
date: Sat, 12 Nov 2022 22:22:25 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /redirect?target=BASE64aHR0cHM6Ly91cmwudG90YWxhZGJsb2NrLmNvbS82MGJmNzI0NzIxNTkzL2NsaWNrLzMxM2I2NDc3LTgxNTAtNDIwNy04NmUwLTcwMmVlYjcwMzA3ZC93aGVrb2RkZjgzOXAyNmVraWszcnB2MW0vMTAxNTk1MWUtYjZmMy00ZjJiLTg1NTItZTI1NmY1NDdlNjRk&ts=1668291745407&hash=z4h4syEa3BRxVyowl5FYqeV89OowIhQ3fd2cjHFSuPs&rm=D HTTP/1.1 
Host: fralstamp-genglyric.icu
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                        
                                             18.193.235.10
HTTP/1.1 200
Content-Type: text/html;charset=UTF-8
                                            
Server: nginx
Date: Sat, 12 Nov 2022 22:22:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (405), with no line terminators
Size:   405
Md5:    008f7acf3a7b0455ac3933392f6bc957
Sha1:   83bbebd767e7c642502b7e92d6fcc512cd48d209
Sha256: f981ab5cf57160538b6b4fe796044be3c7f6e51894956ff3bf900d3af4d46f6f
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                            
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Last-Modified, ETag, Alert, Backoff, Content-Type, Retry-After, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 12 Nov 2022 21:25:00 GMT
cache-control: public,max-age=3600
age: 3446
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Accept-Ranges: bytes
Age: 3659
Cache-Control: max-age=128725
Date: Sat, 12 Nov 2022 22:22:26 GMT
Etag: "636f622c-1d7"
Expires: Mon, 14 Nov 2022 10:07:51 GMT
Last-Modified: Sat, 12 Nov 2022 09:06:52 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Sat, 12 Nov 2022 22:22:26 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2022 01:24:11 GMT
Expires: Sat, 19 Nov 2022 01:24:10 GMT
Etag: "769c95ad4f48bd3d9c9891f55e0dae67a1998068"
Cache-Control: max-age=528703,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7692aa977f52fab8-OSL

                                        
                                            GET /_r/v/packaged-ui/fontawesome/da98d3b1ca48-1/assets/css/all.min.css HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                            
server: nginx
vary: Accept-Encoding, Accept-Encoding, Accept
x-content-type-options: nosniff, nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
content-encoding: gzip
via: 1.1 google
date: Fri, 28 Oct 2022 07:04:54 GMT
expires: Sat, 28 Oct 2023 07:04:54 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
last-modified: Fri, 28 Oct 2022 07:04:54 GMT
etag: W/"e3031e52ec3f87997b60b81322d607c9"
content-length: 16700
age: 1351052
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65394)
Size:   16700
Md5:    4c9b12980bd315cdf7151e8766bae930
Sha1:   a02b4adcd347885ff38ca67c0c99285ae6d5da74
Sha256: 2ee32f2d996c3da4392cb2a1e6d8683dc79ac6de359b9c6e9be87965dc571979
                                        
                                            GET /_r/c/2/_adbw/AdBlockSite/baa2ffe58bcd-1/styles/adblock-global.min.css HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                            
server: nginx
vary: Accept-Encoding,Accept-Encoding, Accept
x-content-type-options: nosniff, nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
content-encoding: gzip
via: 1.1 google
content-length: 36841
date: Fri, 11 Nov 2022 17:30:04 GMT
expires: Sat, 11 Nov 2023 17:30:04 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
age: 103942
last-modified: Fri, 11 Nov 2022 17:30:04 GMT
etag: W/"cdc246be569136476c7d371c5ca5308b"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (64781)
Size:   36841
Md5:    ef585708e2da60e78f81aeaaa340a645
Sha1:   e27823419160e239ab66b1d4338251ea85ea4d4c
Sha256: 6f9634f680f4d5e6102535489cef24a444ef3b634f2ec67e588f563236171422
                                        
                                            GET /_r/c/5/_adbw/Pages/Lander/BuyNow/BuyNow/3964e2e5f914-1/styles/buy-now.min.css HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                            
server: nginx
vary: Accept-Encoding,Accept-Encoding, Accept
x-content-type-options: nosniff, nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
content-encoding: gzip
via: 1.1 google
date: Sun, 06 Nov 2022 15:08:57 GMT
expires: Mon, 06 Nov 2023 15:08:57 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
last-modified: Sun, 06 Nov 2022 15:08:57 GMT
etag: W/"8781097537fb252fb1cbc0ba3f3c1040"
content-length: 661
age: 544409
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2493), with no line terminators
Size:   661
Md5:    0fe279dae8fb62b6a3ae9459283ccb49
Sha1:   f9bf955fb298b37587e436c2cf937df594733fd8
Sha256: 644b7dbd70360554edb63ea344e338c7892ab513924201016e1b5ced3422fe5b
                                        
                                            GET /60bf724721593/click/313b6477-8150-4207-86e0-702eeb70307d/whekoddf839p26ekik3rpv1m/1015951e-b6f3-4f2b-8552-e256f547e64d HTTP/1.1 
Host: url.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                        
                                             35.224.74.90
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
                                            
server: nginx/1.13.12
date: Sat, 12 Nov 2022 22:22:26 GMT
location: https://www.totaladblock.com/block-ads
set-cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; expires=Mon, 12-Dec-2022 22:22:26 GMT; Max-Age=2592000; path=/; domain=.totaladblock.com FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497; expires=Mon, 12-Dec-2022 22:22:26 GMT; Max-Age=2592000; path=/; domain=.totaladblock.com FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; expires=Mon, 12-Dec-2022 22:22:26 GMT; Max-Age=2592000; path=/; domain=.totaladblock.com FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497; expires=Mon, 12-Dec-2022 22:22:26 GMT; Max-Age=2592000; path=/; domain=.totaladblock.com
x-content-type-options: nosniff
access-control-allow-origin: *
x-execution-time: 47.581 ms
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

                                        
                                            GET /_r/c/3/_ptd/TotalBranding/TotalBranding/dedb10a9f69d-1/styles/fonts.min.css HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                            
server: nginx
vary: Accept-Encoding,Accept-Encoding, Accept
x-content-type-options: nosniff, nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
content-encoding: gzip
via: 1.1 google
date: Sat, 12 Nov 2022 14:01:07 GMT
expires: Sun, 12 Nov 2023 14:01:07 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
last-modified: Sat, 12 Nov 2022 14:01:07 GMT
etag: W/"101c99c92f738975af0f31aa2fa616ef"
content-length: 995
age: 30079
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7890), with no line terminators
Size:   995
Md5:    ea76913bd30a950cfbb0b1f4f1444e75
Sha1:   6ffae2fedc8a912c6ac5b0a53b2272561ceacdbc
Sha256: c1edaaae1470ebb632af4949c03d6830d3b6092b367fd0724d363ada4fed08ec
                                        
                                            GET /_r/c/4/_adbw/Layouts/DefaultLayout/DefaultLayout/45bc5d9a1336-1/styles/layout.min.css HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                            
server: nginx
vary: Accept-Encoding,Accept-Encoding, Accept
x-content-type-options: nosniff, nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
content-encoding: gzip
via: 1.1 google
date: Thu, 10 Nov 2022 14:11:06 GMT
expires: Fri, 10 Nov 2023 14:11:06 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
last-modified: Thu, 10 Nov 2022 14:11:06 GMT
etag: W/"80016a80c0dd9eac7004f2c9c4078eff"
content-length: 53
age: 202280
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   53
Md5:    8c1df5eafaf93b45ed03a7ac81eebab2
Sha1:   3b5efb2f2566513c8a1d817003625d09564c30be
Sha256: d557b2d5e33732781e4f616b91f7ea8ce8508c136627087e32c14645fdbacd4e
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: K7RFwDOiDOUMS6op34Zr/g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                        
                                             54.149.219.22
HTTP/1.1 101 Switching Protocols
                                            
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VlXrX640huPkDCJiesSjNmiN6TM=

                                        
                                            GET /_r/c/6/_adbw/Pages/Lander/Partials/LanderFooter/LanderFooter/38fd605026ee-1/styles/lander-footer.min.css HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                            
server: nginx
vary: Accept-Encoding,Accept-Encoding, Accept
x-content-type-options: nosniff, nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
content-encoding: gzip
via: 1.1 google
date: Sat, 12 Nov 2022 22:09:34 GMT
expires: Sun, 12 Nov 2023 22:09:34 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
last-modified: Sat, 12 Nov 2022 22:09:34 GMT
etag: W/"95adafe3d65786e5ad861ccb4f4c6dcc"
content-length: 329
age: 772
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (743), with no line terminators
Size:   329
Md5:    bdf11df89f245d9004f6135ce558501d
Sha1:   1c3f64ad8d3a8831b775930358196d186109dd55
Sha256: 053e30bdad297b7512713035cd5b14ca0e0eb031c02bbd5a9f4fcf714e1fa04f
                                        
                                            GET /block-ads HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                            
server: nginx
vary: Accept-Encoding
cache-control: no-cache, private
date: Sat, 12 Nov 2022 22:22:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   31928
Md5:    be385d581fdefcbd7b6f0249827b4665
Sha1:   703c99a52e9aadea3f96c2a56cf044be8697da36
Sha256: 3bb83f13d0cf95049f92dcd2c81934391131b4d6d05524a0b95c10707d8cf577
                                        
                                            GET /_r/c/6/_adbw/Pages/Lander/Partials/LanderHeader/LanderHeader/10c92cd0d309-1/styles/lander-header.min.css HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                            
server: nginx
vary: Accept-Encoding,Accept-Encoding, Accept
x-content-type-options: nosniff, nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
content-encoding: gzip
via: 1.1 google
date: Sun, 06 Nov 2022 10:24:03 GMT
expires: Mon, 06 Nov 2023 10:24:03 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
last-modified: Sun, 06 Nov 2022 10:24:03 GMT
etag: W/"8fd51019447b3fe8fc1ed2925eef9b3e"
content-length: 342
age: 561503
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (866), with no line terminators
Size:   342
Md5:    9672224e0ea117456f1e76f7e3432f9e
Sha1:   640491302dab2c626a8ef418e33e498f41f1c3c1
Sha256: 9b2322324844af3ce8e3fc17f8c4c8afe89d18f2fe2311b3666ecc2c8ff5c3da
                                        
                                            GET /_r/c/4/_adbb/Components/Logo/Logo/25f3cf13e7cd-1/img/logo.svg HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: image/svg+xml
                                            
server: nginx
x-content-type-options: nosniff, nosniff
vary: Accept-Encoding, Accept
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
via: 1.1 google
date: Fri, 28 Oct 2022 08:10:32 GMT
expires: Sat, 28 Oct 2023 08:10:32 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
last-modified: Fri, 28 Oct 2022 08:10:32 GMT
etag: "be90ce31d497b394ae1f8583e843d1c4"
content-length: 10164
age: 1347114
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8263)
Size:   10164
Md5:    be90ce31d497b394ae1f8583e843d1c4
Sha1:   2a78fa29a5ce7bf7f377a1374921d8ce749328b5
Sha256: d7f0d8d947533e074584dd4b2380a8374dbcb394a20fcb66756644d3d5629e65
                                        
                                            GET /_r/c/4/_adbw/Components/HeroBanner/HeroBanner/f5bd7a20dff4-1/img/diagonal-bg.png.webp HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: application/octet-stream
                                            
server: nginx
x-content-type-options: nosniff, nosniff
vary: Accept-Encoding, Accept
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
via: 1.1 google
date: Sun, 06 Nov 2022 15:08:57 GMT
expires: Mon, 06 Nov 2023 15:08:57 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
last-modified: Sun, 06 Nov 2022 15:08:57 GMT
etag: "5c4d46429b7e3905fa9e93d8c0298097"
content-length: 7420
age: 544409
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   7420
Md5:    5c4d46429b7e3905fa9e93d8c0298097
Sha1:   1a3ee0ff21ea918b3079140718190d162214257b
Sha256: 4d3f03ad0f7266fb43acc12fcd32c9c15276dfed87dc88afb914426718bb59b9
                                        
                                            GET /_r/c/4/_adbw/Components/BrowserLogos/BrowserLogos/917e4d769e8c-1/img/chrome-color.svg HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: image/svg+xml
                                            
server: nginx
x-content-type-options: nosniff, nosniff
vary: Accept-Encoding, Accept
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
via: 1.1 google
date: Wed, 09 Nov 2022 06:04:41 GMT
expires: Thu, 09 Nov 2023 06:04:41 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
last-modified: Wed, 09 Nov 2022 06:04:41 GMT
etag: "9805157d7fcaad9e59d6ef8b9800700b"
content-length: 2192
age: 317865
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (496)
Size:   2192
Md5:    9805157d7fcaad9e59d6ef8b9800700b
Sha1:   217f2ead831a220dec914644027df441f209d726
Sha256: 1594b665980a499cc6ad4d9eae890e19e7d888554d36e12d0e3fe35cf02bd5e3
                                        
                                            GET /_r/c/4/_adbw/Components/BrowserLogos/BrowserLogos/be43065fc829-1/img/firefox-color.svg HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: image/svg+xml
                                            
server: nginx
x-content-type-options: nosniff, nosniff
vary: Accept-Encoding, Accept
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
via: 1.1 google
date: Wed, 09 Nov 2022 06:04:41 GMT
expires: Thu, 09 Nov 2023 06:04:41 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
last-modified: Wed, 09 Nov 2022 06:04:41 GMT
etag: "1289ceb544c6c6f0b02602c53e2e5fea"
content-length: 20114
age: 317865
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (2519)
Size:   20114
Md5:    1289ceb544c6c6f0b02602c53e2e5fea
Sha1:   10d3b6edea4d394f18c4dafb7bca291ba02c3634
Sha256: cbf122fb5c2f6c7501e6559a2f15dcebdf8e434adebaf1cc44288306ebd189ec
                                        
                                            GET /_r/c/4/_adbw/Components/BrowserLogos/BrowserLogos/d4b7d2ece497-1/img/edge-color.svg HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: image/svg+xml
                                            
server: nginx
x-content-type-options: nosniff, nosniff
vary: Accept-Encoding, Accept
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
via: 1.1 google
date: Wed, 09 Nov 2022 06:04:41 GMT
expires: Thu, 09 Nov 2023 06:04:41 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
last-modified: Wed, 09 Nov 2022 06:04:41 GMT
etag: "ba21347e97f4438bf6140909f632e397"
content-length: 4413
age: 317865
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (568)
Size:   4413
Md5:    ba21347e97f4438bf6140909f632e397
Sha1:   fdd1f03cff09c2de3efd404187f59b0494d63165
Sha256: 77e94dc7fa014d9ad5d6c07f4bf0ccb51914c06bcaaf7f44a763bd8e5217fb26
                                        
                                            GET /_r/c/4/_adbw/Components/BrowserLogos/BrowserLogos/eb4e7bffe5c7-1/img/safari-color.svg HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: image/svg+xml
                                            
server: nginx
x-content-type-options: nosniff, nosniff
vary: Accept-Encoding, Accept
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
via: 1.1 google
content-length: 3574
date: Thu, 10 Nov 2022 09:32:00 GMT
expires: Fri, 10 Nov 2023 09:32:00 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
age: 219026
last-modified: Thu, 10 Nov 2022 09:32:00 GMT
etag: "611231196bfde3173d9fcc500dcf812a"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (1544)
Size:   3574
Md5:    611231196bfde3173d9fcc500dcf812a
Sha1:   ee109949e261e8a51ded53a112b007e2ace4107c
Sha256: c2b6152dcda46f81c56a0442d001c516564e534ac8ab11d569e83951ac221ab6
                                        
                                            GET /_r/c/4/_adbw/Components/BrowserLogos/BrowserLogos/2190e73b24b1-1/img/opera-color.svg HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: image/svg+xml
                                            
server: nginx
x-content-type-options: nosniff, nosniff
vary: Accept-Encoding, Accept
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
via: 1.1 google
date: Wed, 09 Nov 2022 06:04:41 GMT
expires: Thu, 09 Nov 2023 06:04:41 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
last-modified: Wed, 09 Nov 2022 06:04:41 GMT
etag: "70a21b9fe72e4d0e8a03559a288ae0bb"
content-length: 1740
age: 317865
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (776)
Size:   1740
Md5:    70a21b9fe72e4d0e8a03559a288ae0bb
Sha1:   83c6876f5d8ba0ede4f75d7f6bbd04f3deec9612
Sha256: d70f10be98d6c1619b6d5d37b2bef1b8d197e6d8436344bcfd599176a06749bc
                                        
                                            GET /_r/c/7/_adbw/Pages/Lander/BuyNow/Partials/HeroBanner/BuyNowHeroBannerContent/1c95f4daf2f2-1/img/brand-hero-banner-image.png.webp HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: application/octet-stream
                                            
server: nginx
x-content-type-options: nosniff, nosniff
vary: Accept-Encoding, Accept
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
via: 1.1 google
date: Fri, 11 Nov 2022 19:52:18 GMT
expires: Sat, 11 Nov 2023 19:52:18 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
last-modified: Fri, 11 Nov 2022 19:52:18 GMT
etag: "39c7d0e4c612a795d2d4f1d196af9a2c"
content-length: 29042
age: 95408
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   29042
Md5:    39c7d0e4c612a795d2d4f1d196af9a2c
Sha1:   f97329bd4449210fd3bb1afedc620aae216ba617
Sha256: 694279824af6d2a8d37c43c8d8c96c245e05a6823b7066865a544ba5fc5436b9
                                        
                                            GET /_r/c/4/_adbw/Components/BrowserLogos/BrowserLogos/03531a2efc25-1/img/chrome-approved-adblocker.svg HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: image/svg+xml
                                            
server: nginx
x-content-type-options: nosniff, nosniff
vary: Accept-Encoding, Accept
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
via: 1.1 google
content-length: 16169
date: Thu, 10 Nov 2022 09:32:00 GMT
expires: Fri, 10 Nov 2023 09:32:00 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
age: 219026
last-modified: Thu, 10 Nov 2022 09:32:00 GMT
etag: "6cfedaf735fee91a68a0a973e4d7cdfd"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (9724)
Size:   16169
Md5:    6cfedaf735fee91a68a0a973e4d7cdfd
Sha1:   1c19e2487ea9ded44f14163bfff078d7f82bb9a1
Sha256: 1a6eafcbe32278a3e696fbfb6760e12375eee0028808abb15b1580352c791ed7
                                        
                                            GET /_r/c/4/_adbb/Components/Logo/Logo/8dd88869357e-1/img/logo-icon.svg HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: image/svg+xml
                                            
server: nginx
x-content-type-options: nosniff, nosniff
vary: Accept-Encoding, Accept
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
via: 1.1 google
date: Sat, 05 Nov 2022 09:25:21 GMT
expires: Sun, 05 Nov 2023 09:25:21 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
last-modified: Sat, 05 Nov 2022 09:25:21 GMT
etag: "439fe130887f5c6b020bcffdc960211e"
content-length: 1345
age: 651425
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (460)
Size:   1345
Md5:    439fe130887f5c6b020bcffdc960211e
Sha1:   48c59719baa3b407684761d7f3017e803d5f80fb
Sha256: 9164f274934323b945c8d69f5e13696e9ff0a342d46c950e167524018f7f8d63
                                        
                                            GET /_r/c/4/_adbw/Partials/TopBarExitModal/TopBarExitModalContent/59b441feab6f-1/img/extension.svg HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: image/svg+xml
                                            
server: nginx
x-content-type-options: nosniff, nosniff
vary: Accept-Encoding, Accept
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
via: 1.1 google
date: Fri, 04 Nov 2022 12:38:00 GMT
expires: Sat, 04 Nov 2023 12:38:00 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
last-modified: Fri, 04 Nov 2022 12:38:00 GMT
etag: "a3c7a4fc95915e4d4dc451ec784db371"
content-length: 198627
age: 726266
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (29836)
Size:   198627
Md5:    a3c7a4fc95915e4d4dc451ec784db371
Sha1:   be0d1e8dac463c7df44cf860d96027e335355065
Sha256: 2bbd91416b051f9dd20fd0605baa67098cbc21c07f12ac74f8de5ab79d370f94
                                        
                                            GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             54.230.111.79
HTTP/2 200 OK
content-type: application/x-javascript
                                            
content-length: 6124
last-modified: Mon, 30 May 2022 14:38:02 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Sat, 12 Nov 2022 06:47:39 GMT
cache-control: max-age=86400
etag: "5add60196e5f96a414fb4b9586764e5d"
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IGm_C1uO3ouvHkZyM9LlNvvWAfKz7UYHK3JqlZauqBXPJp9LaWxb3A==
age: 56088
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (19239)
Size:   6124
Md5:    5add60196e5f96a414fb4b9586764e5d
Sha1:   633f471b3c2fcedeef9cad90cb5bf56f5fe55588
Sha256: 5370f4ba91dda790c7cae92817b812fcbd1ab367cbb4862f5669960ae4e2c9e0
                                        
                                            GET /_r/c/2/_uib/UiResources/03c8ce65ccee-1/js/libraries.min.js HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                            
server: nginx
vary: Accept-Encoding,Accept-Encoding, Accept
x-content-type-options: nosniff, nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
content-encoding: gzip
via: 1.1 google
date: Sat, 12 Nov 2022 17:12:15 GMT
expires: Sun, 12 Nov 2023 17:12:15 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
last-modified: Sat, 12 Nov 2022 17:12:15 GMT
etag: W/"52336d594a85a74d234255ad4f3eb0c5"
content-length: 31672
age: 18611
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size:   31672
Md5:    9fe3a118c927ba65d75c8c3dfc34427e
Sha1:   d764c93888b1674af0ab60700634844a20710867
Sha256: fd0b002fbcb13b1a6521a5d2f5e8cc822b2ebf69a9e735b2f2089a20f3ca0790
                                        
                                            GET /_r/c/4/_adbw/Components/InlineInstall/InlineInstall/d4d57e89c7b5-1//ts/InlineInstall.c.min.js HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                            
server: nginx
vary: Accept-Encoding,Accept-Encoding, Accept
x-content-type-options: nosniff, nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
content-encoding: gzip
via: 1.1 google
content-length: 10796
date: Wed, 09 Nov 2022 17:40:29 GMT
expires: Thu, 09 Nov 2023 17:40:29 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
age: 276117
last-modified: Wed, 09 Nov 2022 17:40:29 GMT
etag: W/"e6656fd9308ded9532954cddab3e741f"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (23556)
Size:   10796
Md5:    c1e614c1f3a2fb27dccd7f98bae6aa64
Sha1:   3e88ed1d5c911e1a402d52814f80e6d1bd345b01
Sha256: f9b22c72255b77c4b051b7c9b0830775fcac64b5a20a2b486e3ed8ddd830d7f9
                                        
                                            GET /_r/c/4/_adbw/Partials/ForgottenPasswordModalContent/ForgottenPasswordModalContent/bcbf0588e347-1/ts/forgotten-password-form-component.c.min.js HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                            
server: nginx
vary: Accept-Encoding,Accept-Encoding, Accept
x-content-type-options: nosniff, nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
content-encoding: gzip
via: 1.1 google
content-length: 17187
date: Wed, 09 Nov 2022 17:42:26 GMT
expires: Thu, 09 Nov 2023 17:42:26 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
age: 276000
last-modified: Wed, 09 Nov 2022 17:42:26 GMT
etag: W/"ad7366eb9f0e54b6b30fa654c056900f"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (51345)
Size:   17187
Md5:    7c00eea3d5d479d665c62940af303e35
Sha1:   fec8b92f7689af2adbab99d78eecd9339b3aadb8
Sha256: 12709335d20e7b7ee320d914ab215853f25c73b80b79b8426fa669250ce6ba43
                                        
                                            POST /s/gts1d4/x0HpfZK_-Ws HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Sat, 12 Nov 2022 22:22:26 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Sat, 12 Nov 2022 22:22:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtm.js?id=GTM-MSTCSPX HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                            
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 12 Nov 2022 22:22:27 GMT
expires: Sat, 12 Nov 2022 22:22:27 GMT
cache-control: private, max-age=900
last-modified: Sat, 12 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 37706
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1921)
Size:   37706
Md5:    70b1bf107b8816ba5fd5248c889ec448
Sha1:   85e90f96db88448809d64336b01cbcd894053a3a
Sha256: 26b2ac5743c25b5d381659b8b143901b75672bba0494ca45f25ebdeb5a61a2df
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Sat, 12 Nov 2022 22:22:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /s/gts1d4/x0HpfZK_-Ws HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Date: Sat, 12 Nov 2022 22:22:27 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=6021061fe8edca00013d47f1 HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                        
                                             54.230.111.79
HTTP/2 200 OK
content-type: text/html
                                            
content-length: 3267
last-modified: Tue, 04 Oct 2022 10:24:57 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Sat, 12 Nov 2022 05:03:54 GMT
cache-control: max-age=86400
etag: "2922a85ce6caf46f828c097bf7aa1036"
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sE9pxrM-dR94R6FI_61M9Ti_WwmVgPnrgQluruuRlmQhulOuS8LDtg==
age: 63327
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (12963)
Size:   3267
Md5:    2922a85ce6caf46f828c097bf7aa1036
Sha1:   afedbac8e6480a8c59cc6ca3359381731f75795b
Sha256: 12d369c3d585d564678ed15f99b53dad29faa1e05475825ccd0e8f4c50cfb779
                                        
                                            GET /trustboxes/53aa8912dec7e10d38f59f36/main.js HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=6021061fe8edca00013d47f1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             54.230.111.79
HTTP/2 200 OK
content-type: application/x-javascript
                                            
content-length: 29756
last-modified: Tue, 04 Oct 2022 10:24:58 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Sat, 12 Nov 2022 04:22:49 GMT
cache-control: max-age=86400
etag: "5b76b943a9533254775b33e002b1c884"
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FRCnTh-wF_kVhHBjR_qTEpZAunTIek0N9oFCDXnhL-K_FTvrTkGi3w==
age: 64779
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (64281), with no line terminators
Size:   29756
Md5:    5b76b943a9533254775b33e002b1c884
Sha1:   4c884b91ed0762c5380da136c5d09edb9b4fbd14
Sha256: 003b5a563be7a0444ca3be97ace94a5b4ec478009ffa159767c5873ee61e5bdb
                                        
                                            GET /piwik.js HTTP/1.1 
Host: stats.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                        
                                             34.120.101.0
HTTP/2 200 OK
content-type: application/javascript
                                            
date: Sat, 12 Nov 2022 22:22:00 GMT
content-length: 142327
last-modified: Fri, 23 Jul 2021 09:55:28 GMT
etag: "60fa9210-22bf7"
x-server: ss-prod-matamo
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1404)
Size:   142327
Md5:    44717d107a73517ff8ac8297b280b493
Sha1:   bced89aead5153b4dbee481d15e3c45104ed9342
Sha256: 8e9752c25db74020ce134e3bdeefbe26c1143bf665188713117dfa48bf6ef397
                                        
                                            GET /stats/TrustboxImpression?locale=en-EN&styleHeight=140px&styleWidth=100%25&theme=light&stars=5&reviewLanguages=en&noReviews=hide&scrollToList=true&url=https%3A%2F%2Fwww.totaladblock.com%2Fblock-ads&referrer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=6021061fe8edca00013d47f1&widgetId=53aa8912dec7e10d38f59f36 HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=6021061fe8edca00013d47f1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             54.230.111.79
HTTP/2 204 No Content
                                            
cache-control: no-store,no-cache
date: Sat, 12 Nov 2022 22:22:27 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8VLdIB0DLEXVA6LKTgbDOo46P9RqsepnbluR52wZKnyu0jEgTopqRw==
X-Firefox-Spdy: h2

                                        
                                            GET /stats/TrustboxView?locale=en-EN&styleHeight=140px&styleWidth=100%25&theme=light&stars=5&reviewLanguages=en&noReviews=hide&scrollToList=true&url=https%3A%2F%2Fwww.totaladblock.com%2Fblock-ads&referrer=&userAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=6021061fe8edca00013d47f1&widgetId=53aa8912dec7e10d38f59f36 HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=6021061fe8edca00013d47f1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             54.230.111.79
HTTP/2 204 No Content
                                            
cache-control: no-store,no-cache
date: Sat, 12 Nov 2022 22:22:26 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Phh3P-22OlDh2cMkaZ75-dB5NTjGbOf-gBaP2r0f7oHJHgofig796w==
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Server: nginx
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4010
Expires: Sat, 12 Nov 2022 23:29:17 GMT
Date: Sat, 12 Nov 2022 22:22:27 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Server: nginx
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4010
Expires: Sat, 12 Nov 2022 23:29:17 GMT
Date: Sat, 12 Nov 2022 22:22:27 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Server: nginx
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4010
Expires: Sat, 12 Nov 2022 23:29:17 GMT
Date: Sat, 12 Nov 2022 22:22:27 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Server: nginx
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4010
Expires: Sat, 12 Nov 2022 23:29:17 GMT
Date: Sat, 12 Nov 2022 22:22:27 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        
                                             23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                            
Server: nginx
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4010
Expires: Sat, 12 Nov 2022 23:29:17 GMT
Date: Sat, 12 Nov 2022 22:22:27 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe8955e1-907b-43ed-a437-d4ad1f5fe742.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                            
server: nginx
content-length: 5478
x-amzn-requestid: c06e47c6-da2a-4a70-af2a-c1268557b913
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdM67FEEIAMF-pA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec1df-0628d00244323ddf727e0b80;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:42:55 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: jQIBERZ9Wm17Fd6Tjtw0cV2fQFvzF3rCrTqKf_oC14H_xwB6oPQS8g==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 21:45:17 GMT
age: 2230
etag: "c76588ccaf97fdfd6e73833083200cb49a01a4af"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5478
Md5:    38e32fc94c445ff47da5d2907e61e3a4
Sha1:   c76588ccaf97fdfd6e73833083200cb49a01a4af
Sha256: e4e3947b2248206c9dacfd35ff5619ca3b3ae56a7bcd565d40ed048839ffa075
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                            
server: nginx
content-length: 5583
x-amzn-requestid: e844f42a-e87e-4e61-8c97-137c07c5ae28
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNeQ9Ho7IAMF5_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63687739-62c44d2f7d23632e74895bd8;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 03:10:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uHlIN1IVGCFUVl5lx5pFSux0YncseT2HQjiwFDL9eaEaBa9CdnCl8g==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 04:50:44 GMT
age: 63103
etag: "691f59b65ca9fde4f59bbf96b37071e07351f190"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5583
Md5:    85c6f450b38f41a2fb924d6d9a9cbff8
Sha1:   691f59b65ca9fde4f59bbf96b37071e07351f190
Sha256: c8f877488a2cf65f0d9829384fd4113847722a1b4df94b6b1d5788699689722c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                            
server: nginx
content-length: 9012
x-amzn-requestid: 83eac9e7-5387-4e11-9769-182fa3f7fffb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdNC6FxzoAMF80w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec212-5ca277b90a5a9a4c437edc1e;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PrJoEROPymrtc0egNlWRoOMjohiCo3zReD01qAHwByaSiXarfRS0XQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 22:00:44 GMT
age: 1303
etag: "0cc22d7bf9092fb30f31e2ca8f242c197b891669"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9012
Md5:    516f1bfefb1c1a737ea2441f85343b32
Sha1:   0cc22d7bf9092fb30f31e2ca8f242c197b891669
Sha256: 733824d4f6f7c5b54ce4e02ecaf152cfc1e10f3f6a801d7e2c55a02460e40087
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5720fc8-63c5-4f5e-bb64-33809e0069fe.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                            
server: nginx
content-length: 8953
x-amzn-requestid: 2a2d20f4-3aa5-475e-8ec2-fc569766335e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhQGAhIAMFrjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-26dc0259793ec94814f3d41a;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: OKFzEoCVITStAPxYzhksarrlTkVeATx6AzBnEK32WLFaOeEIwLMu_Q==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 21:45:17 GMT
age: 2230
etag: "fa34520e849bf746ff43aec3d28beb9e4be44f4d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8953
Md5:    f09e254cd6f2e29b3bf198cc5d58a46f
Sha1:   fa34520e849bf746ff43aec3d28beb9e4be44f4d
Sha256: 2e29eace95fd8cb5b6d77df880d2044ecab4206cba47931c3a95e77c1b4e9d9a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facfcee70-832e-4f2d-8fc7-55d2bfff651e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                            
server: nginx
content-length: 8633
x-amzn-requestid: 8bdfbfbb-5193-4c62-ba1b-c906f7548676
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhSEC1oAMF8tw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-39b4c2954dbc8e4c40a2c9d8;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uOmwGlJCumDmuVyp1T0YkwwQn8tJ7xMml78eEKaOcaaaIkqgQAdCIA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 21:45:26 GMT
age: 2221
etag: "2d90ff66079e8ffbaaa367a6bfc08927e7cc424d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8633
Md5:    eac2ed4bece6282c8273a58a88371e2e
Sha1:   2d90ff66079e8ffbaaa367a6bfc08927e7cc424d
Sha256: aea97fd7d90302edcb3e0c08507d682e02166e8ddd4d082fc4f5435af438594c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F073ec866-b693-4f96-82bf-76ba051797c9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                            
server: nginx
content-length: 6577
x-amzn-requestid: b4587cfb-6041-453c-9e74-fa35ecd31448
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMjIGHRoAMF26g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec147-29e7ec741b0e6f6f674aef75;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:23 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hsMmHIBEt_4cL455goPqDKQVQA75u4oGFbSxsGP_e_0uG7SZmSLBhQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 12 Nov 2022 22:00:57 GMT
age: 1290
etag: "ccc1ec5ebb5090c6255dcb1e8899e95cdd91e12f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6577
Md5:    faa8e3cf2ab3c1d53a1735def5bb7476
Sha1:   ccc1ec5ebb5090c6255dcb1e8899e95cdd91e12f
Sha256: e81a8fa312ec478871427f1d04ba7fe563573c683809153f75dec8df979d6efe
                                        
                                            GET /_r/c/2/_adbw/AdBlockSite/d3c806f6c7ca-1/ts/index.b.min.js HTTP/1.1 
Host: www.totaladblock.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.totaladblock.com/
Connection: keep-alive
Cookie: FRT:ADVTD=FID%3AAFF%3A1505227218%3Ak1HbevuQJqVLs%2F60bf724721593%2F313b6477-8150-4207-86e0-702eeb70307d%2Fwhekoddf839p26ekik3rpv1m%2F1015951e-b6f3-4f2b-8552-e256f547e64d; FRT:VIS=VIS%3A22111291904215463701ca259e9e4.04720497
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             34.107.240.249
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                            
server: nginx
vary: Accept-Encoding,Accept-Encoding, Accept
x-content-type-options: nosniff, nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: strict-origin
feature-policy: accelerometer 'none';camera 'none';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';payment 'none';usb 'none'
content-security-policy: default-src 'self'; media-src 'self' 'unsafe-inline' https://chat.fortifi.io/ https://bat.bing.com/ https://player.vimeo.com/ https://vod-progressive.akamaized.net/; img-src 'self' 'unsafe-inline' https://i.ytimg.com/ https://chat.fortifi.io/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://bat.bing.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.facebook.com/ https://connect.facebook.net/ data: https://storage.googleapis.com/ https://stats.totaladblock.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://chat.fortifi.io/; font-src 'self' https://fonts.gstatic.com https://chat.fortifi.io/; script-src 'self' 'unsafe-inline' https://stats.totaladblock.com https://googletagmanager.com/ https://googleadservices.com/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net/ https://bat.bing.com/ https://www.google.com/ https://www.google.co.uk/ https://www.google.pl/ https://widget.trustpilot.com/ https://chat.fortifi.io/ https://cfgchat.fortifi.io/ https://www.facebook.com/ https://connect.facebook.net/ https://url.totaladblock.com http://url.totaladblock.com/px/init/fortifi.js; frame-src 'self' blob: https://chat.fortifi.io/ https://player.vimeo.com https://www.youtube.com/ https://widget.trustpilot.com/ https://vod-progressive.akamaized.net/ https://my.totaladblock.com; connect-src 'self' https://ajax.totaladblock.com https://login.totaladblock.com https://signup.totaladblock.com https://bat.bing.com/ wss://chat.fortifi.io/ https://stats.totaladblock.com; frame-ancestors 'self'
content-encoding: gzip
via: 1.1 google
content-length: 101938
date: Wed, 09 Nov 2022 17:42:26 GMT
expires: Thu, 09 Nov 2023 17:42:26 GMT
cache-control: immutable, max-age=31536000, public, s-maxage=31536000
age: 276000
last-modified: Wed, 09 Nov 2022 17:42:26 GMT
etag: W/"2a72296bdb77752da7f62b2139ac580b"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    
Sha1:   
Sha256: 
                                        
                                            GET /trustbox-data/53aa8912dec7e10d38f59f36?businessUnitId=6021061fe8edca00013d47f1&locale=en-EN&reviewLanguages=en&reviewStars=5&includeReviews=true&reviewsPerPage=15 HTTP/1.1 
Host: widget.trustpilot.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/53aa8912dec7e10d38f59f36/index.html?templateId=53aa8912dec7e10d38f59f36&businessunitId=6021061fe8edca00013d47f1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        
                                             54.230.111.79
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                            
content-encoding: gzip
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-fallback-status: BYPASS
x-skip-cache-cookie: 0
x-xss-protection: 1; mode=block
date: Sat, 12 Nov 2022 22:13:24 GMT
cache-control: public,max-age=1800
etag: "20d9151a60d0bba6e40b26bf7f32b29a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -G_9WF7ektG9JHwfJ4tM-lr9j2QyVAM5-qLvyZll_CBjA4m8lzOMJQ==
age: 600
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  
Size:   0
Md5:    
Sha1:   
Sha256: