Overview

URL https://medium.com/@stark89562321/are-you-agree-to-celebrate-new-year-in-goa-by-just-click-travels-a51c50a8a084
IP104.16.121.127
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2018-11-29 14:02:23 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.16.121.127

Date UQ / IDS / BL URL IP
2018-12-08 10:05:12 +0100
0 - 0 - 0 https://medium.com/@claimcashreview/how-to-lo (...) 104.16.121.127
2018-11-29 23:53:05 +0100
0 - 0 - 0 https://medium.com/@abhishekjakhotiya/underst (...) 104.16.121.127
2018-11-27 09:54:28 +0100
0 - 0 - 0 https://medium.com/@eza9153/imdb-watch-fantas (...) 104.16.121.127
2018-11-27 09:45:52 +0100
0 - 0 - 0 https://medium.com/@eza9153/fox-putlockers-bb (...) 104.16.121.127
2018-11-27 09:22:04 +0100
0 - 0 - 0 https://medium.com/@eza9153/watch-online-ralp (...) 104.16.121.127
2018-11-21 16:31:44 +0100
0 - 0 - 0 https://medium.com/rigetti/how-to-write-a-qua (...) 104.16.121.127
2018-11-21 13:13:46 +0100
0 - 0 - 0 https://medium.com/actiondesk/introducing-act (...) 104.16.121.127
2018-11-21 08:57:41 +0100
0 - 0 - 0 https://medium.com/@eza9153/watch-overlord-on (...) 104.16.121.127
2018-11-21 06:43:58 +0100
0 - 0 - 0 https://medium.com/@eza9153/watch-full-doctor (...) 104.16.121.127
2018-11-20 16:31:25 +0100
0 - 0 - 0 https://medium.com/@luckytiwari187/bluehost-b (...) 104.16.121.127

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2018-12-12 11:30:53 +0100
0 - 3 - 1 touramical.be/js/b.exe 104.27.148.119
2018-12-12 11:16:11 +0100
0 - 0 - 1 dl.onlinesubtitles.com/174376d78a662a123cb821 (...) 104.31.77.90
2018-12-12 11:12:18 +0100
0 - 1 - 0 idtalent.com/proforma-invoice-20140207.pdf.exe 104.28.16.185
2018-12-12 11:11:59 +0100
0 - 0 - 1 fastdownloads.info/ds-exe/484/1199/hotspot%20 (...) 104.24.125.44
2018-12-12 11:09:17 +0100
0 - 0 - 1 hotfire.us/clashofclanshack2014.exe 104.27.141.26
2018-12-12 10:54:23 +0100
0 - 0 - 4 nudgeoffer.racing/ 104.27.186.108
2018-12-12 10:53:36 +0100
0 - 0 - 1 cabalbg.com/LauncherEP8/updates/56.exe 104.28.26.57
2018-12-12 10:53:12 +0100
0 - 2 - 0 dl.viracuredownload.net/311002874/lpid:lp-917 (...) 104.27.189.191
2018-12-12 10:48:25 +0100
0 - 0 - 1 l1.pp3.cn/soft/UploadFile/201405/win7/2014051 (...) 162.159.211.34
2018-12-12 10:47:46 +0100
0 - 2 - 1 dl.fixit-softhost.com/371002905/vjj8mty5mjv8n (...) 104.27.148.166

Last 10 reports on domain: medium.com

Date UQ / IDS / BL URL IP
2018-12-10 22:47:06 +0100
0 - 0 - 0 https://medium.com/@8makahk/24bdd868b0d1 104.16.123.127
2018-12-10 21:17:53 +0100
0 - 0 - 0 https://medium.com/@8makahk/live-coverage-afr (...) 104.16.122.127
2018-12-08 10:05:12 +0100
0 - 0 - 0 https://medium.com/@claimcashreview/how-to-lo (...) 104.16.121.127
2018-12-08 06:55:33 +0100
0 - 0 - 0 https://medium.com/@binarycash/the-wealth-com (...) 104.16.123.127
2018-12-07 00:15:01 +0100
0 - 0 - 0 https://medium.com/@KuzineSoba/ 104.16.122.127
2018-12-06 16:35:46 +0100
0 - 0 - 0 https://medium.com/@tazulislam949/day-1-natio (...) 104.16.122.127
2018-12-04 07:37:43 +0100
0 - 0 - 0 https://medium.com/@daumstream/%EC%8A%A4%ED%8 (...) 104.16.124.127
2018-12-03 22:59:06 +0100
0 - 0 - 0 https://medium.com/@getpagespeed/varnish-4-cl (...) 104.16.120.127
2018-12-03 09:46:33 +0100
0 - 0 - 0 https://medium.com/@katejauli/codes-nba-2k19- (...) 104.16.124.127
2018-12-02 09:24:01 +0100
0 - 0 - 0 https://medium.com/p/de407c5d33c4?source=user (...) 104.16.124.127


JavaScript

Executed Scripts (14)


Executed Evals (2)

#1 JavaScript::Eval (size: 97, repeated: 1) - SHA256: d436e13aaa90f6a21f026c23a852b2e9bf6bb05e349e19a3cd49531024b3a008

                                        ({
    "id": "pid=12994720ce42da9124426dacfdef899c",
    "session_count": 1,
    "last_session_ts": 1543496509008
})
                                    

#2 JavaScript::Eval (size: 88, repeated: 3) - SHA256: 68214a3d672fb3899a93ae866d56bc478893b33b5158a189d1af41f9482d530c

                                        ({
    "sid": 1,
    "surl": "https://medium.com/suspended",
    "sref": "",
    "sts": 1543496509008,
    "slts": 0
})
                                    

Executed Writes (1)

#1 JavaScript::Write (size: 738, repeated: 1) - SHA256: 39e5c5410a8dccfaedf6fd4e773f9ec440dbeb686f040baa94f0439638e9a8fc

                                        < style > section.section - image--fullBleed.is - backgrounded {
    padding - top: 829 px;
}
section.section - image--fullScreen.is - backgrounded, section.section - image--coverFade.is - backgrounded {
    min - height: 754 px;
    padding - top: 377 px;
}.u - height100vh {
    height: 754 px!important;
}.u - height110vh {
    height: 829 px!important;
}.u - minHeight100vh {
    min - height: 754 px!important;
}.u - maxHeight100vh {
    max - height: 754 px!important;
}
section.section - image--coverFade {
    height: 754 px;
}.section - aspectRatioViewportPlaceholder, .section - aspectRatioViewportCropPlaceholder {
    max - height: 754 px;
}.section - aspectRatioViewportBottomSpacer, .section - aspectRatioViewportBottomPlaceholder {
    max - height: 377 px;
}.zoomable: before {
    top: -754 px;left: -1176 px;padding: 754 px 1176 px;
} < /style>
                                    


HTTP Transactions (29)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=158107
Date: Thu, 29 Nov 2018 13:01:47 GMT
Etag: "5bfe2329-1d7"
Expires: Sat, 01 Dec 2018 08:56:54 GMT
Last-Modified: Wed, 28 Nov 2018 05:10:01 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    2311be0d2f050a12357c0004fdbd41f9
Sha1:   83598a70c95430af9f74a516193fca1b4b27561f
Sha256: 7725a8da07313b6e90c43f7e85c788ff3a037b3c803d35c8d0010b09929e210f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=141545
Date: Thu, 29 Nov 2018 13:01:47 GMT
Etag: "5bff3ed8-1d7"
Expires: Sat, 01 Dec 2018 04:20:52 GMT
Last-Modified: Thu, 29 Nov 2018 01:20:24 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    a80267b53308c66d5ab3da6ba17693d6
Sha1:   ea0e5636d4c253d83d6c94df5f89f3677c4d70f4
Sha256: 3ded68ba6ef29c7ff0fb13e6aa6dea8f525afb52c53e559cfe4991b114f035ff
                                        
                                            GET /@stark89562321/are-you-agree-to-celebrate-new-year-in-goa-by-just-click-travels-a51c50a8a084 HTTP/1.1 
Host: medium.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.16.120.127
HTTP/1.1 302 Found
Content-Type: application/octet-stream
                                        
Date: Thu, 29 Nov 2018 13:01:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d868ef67152bd3da6fc2106ed3aa5dc121543496507; expires=Fri, 29-Nov-19 13:01:47 GMT; path=/; domain=.medium.com; HttpOnly uid=lo_4Mc9toBzv2xt; Expires=Fri, 29-Nov-19 13:01:47 GMT; Domain=.medium.com; Path=/; Secure; HttpOnly sid=1:Hap3DvCP4S85wx0wwIwsAfBE0vdzcw7G9X7g/ZwXsd9hOEyynWyhhCbrNIU+4VC6; path=/; expires=Fri, 29 Nov 2019 13:01:47 GMT; domain=.medium.com; secure; httponly
Content-Security-Policy: default-src 'self'; connect-src https://localhost https://*.instapaper.com https://*.stripe.com https://*.paypal.com https://getpocket.com https://medium.com:443 https://*.medium.com:443 https://*.medium.com https://medium.com https://*.medium.com https://*.algolia.net https://cdn-static-1.medium.com https://dnqgz544uhbo8.cloudfront.net https://cdn-videos-1.medium.com https://cdn-audio-1.medium.com https://*.lightstep.com https://*.branch.io https://app.zencoder.com wss://*.native.ai https://*.native.ai 'self'; font-src data: https://*.amazonaws.com https://*.medium.com https://glyph.medium.com https://medium.com https://*.gstatic.com https://dnqgz544uhbo8.cloudfront.net https://use.typekit.net https://cdn-static-1.medium.com 'self'; frame-src chromenull: https: webviewprogressproxy: medium: 'self'; img-src blob: data: https: 'self'; media-src https://*.cdn.vine.co https://d1fcbxp97j4nb2.cloudfront.net https://d262ilb51hltx0.cloudfront.net https://*.medium.com https://gomiro.medium.com https://miro.medium.com https://pbs.twimg.com 'self' blob:; object-src 'self'; script-src 'unsafe-eval' 'unsafe-inline' about: https: 'self'; style-src 'unsafe-inline' data: https: 'self'; report-uri https://csp.medium.com
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-UA-Compatible: IE=edge, Chrome=1
X-Powered-By: Medium
X-Obvious-Tid: 1543496507668:ab741974a638
X-Obvious-Info: 35901-e29c1b6,e29c1b66005
Link: <https://medium.com/humans.txt>; rel="humans"
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Expires: Thu, 09 Sep 1999 09:09:09 GMT
Pragma: no-cache
Tk: T
Location: /suspended
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 481543d47a594297-OSL


--- Additional Info ---
                                        
                                            GET /suspended HTTP/1.1 
Host: medium.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d868ef67152bd3da6fc2106ed3aa5dc121543496507; uid=lo_4Mc9toBzv2xt; sid=1:Hap3DvCP4S85wx0wwIwsAfBE0vdzcw7G9X7g/ZwXsd9hOEyynWyhhCbrNIU+4VC6

                                         
                                         104.16.120.127
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Thu, 29 Nov 2018 13:01:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Security-Policy: default-src 'self'; connect-src https://localhost https://*.instapaper.com https://*.stripe.com https://*.paypal.com https://getpocket.com https://medium.com:443 https://*.medium.com:443 https://*.medium.com https://medium.com https://*.medium.com https://*.algolia.net https://cdn-static-1.medium.com https://dnqgz544uhbo8.cloudfront.net https://cdn-videos-1.medium.com https://cdn-audio-1.medium.com https://*.lightstep.com https://*.branch.io https://app.zencoder.com wss://*.native.ai https://*.native.ai 'self'; font-src data: https://*.amazonaws.com https://*.medium.com https://glyph.medium.com https://medium.com https://*.gstatic.com https://dnqgz544uhbo8.cloudfront.net https://use.typekit.net https://cdn-static-1.medium.com 'self'; frame-src chromenull: https: webviewprogressproxy: medium: 'self'; img-src blob: data: https: 'self'; media-src https://*.cdn.vine.co https://d1fcbxp97j4nb2.cloudfront.net https://d262ilb51hltx0.cloudfront.net https://*.medium.com https://gomiro.medium.com https://miro.medium.com https://pbs.twimg.com 'self' blob:; object-src 'self'; script-src 'unsafe-eval' 'unsafe-inline' about: https: 'self'; style-src 'unsafe-inline' data: https: 'self'; report-uri https://csp.medium.com
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-UA-Compatible: IE=edge, Chrome=1
X-Powered-By: Medium
X-Obvious-Tid: 1543496507999:a632215075b9
X-Obvious-Info: 35901-e29c1b6,e29c1b66005
Link: <https://medium.com/humans.txt>; rel="humans"
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Expires: Thu, 09 Sep 1999 09:09:09 GMT
Pragma: no-cache
Tk: T
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
Content-Encoding: gzip
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 481543d6ac234297-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9361
Md5:    3f26f9cfd9c474bf0a64134b44b9c14d
Sha1:   83450d1d5f61be145dde523ef6e9bfe59283e6c6
Sha256: 86769a60d418898adee34fc1f3e399fda3b5a66124846a905239b3167cd979c4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=99807
Date: Thu, 29 Nov 2018 13:01:48 GMT
Etag: "5bfdc327-1d7"
Expires: Fri, 30 Nov 2018 16:45:15 GMT
Last-Modified: Tue, 27 Nov 2018 22:20:23 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    35839316f3fd0bfbc45c178af8bf3d11
Sha1:   66d5d0a84568d11210ea72f0e428ab312ee870c6
Sha256: 1f02104ae3d7848d48673a592950120d8bf03d2d0d929396bccd31d598e6ab72
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=169706
Date: Thu, 29 Nov 2018 13:01:48 GMT
Etag: "5bffbb43-1d7"
Expires: Sat, 01 Dec 2018 12:10:14 GMT
Last-Modified: Thu, 29 Nov 2018 10:11:15 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    a93c7479813ba937542600ffdc79f4f1
Sha1:   74fbbfdcd655234c1dfd3d8f04f2c6bff0ff5305
Sha256: dbba307fd8ad9bf29129a09a3f5cd16c4662e0e4c04560f0bc095a094f677f3b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=165416
Date: Thu, 29 Nov 2018 13:01:48 GMT
Etag: "5bffbd8f-1d7"
Expires: Sat, 01 Dec 2018 10:58:44 GMT
Last-Modified: Thu, 29 Nov 2018 10:21:03 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    62cec3992279f1a15af6ca90257d6b00
Sha1:   f25fad62a6725678d84d20489498c60907d9370c
Sha256: 012c52cf65d7dc3c358f6a8fdc9921f2a9a35b1f40c780d7c2fc10badedb7c01
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=141447
Date: Thu, 29 Nov 2018 13:01:48 GMT
Etag: "5bff4124-1d7"
Expires: Sat, 01 Dec 2018 04:19:15 GMT
Last-Modified: Thu, 29 Nov 2018 01:30:12 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    4baafe11966b8454d83bf7f3d2b41792
Sha1:   a80a1ba478a055682ba85a04f66d55b3cb57833b
Sha256: 9dafc96ee4b13d98ce68fa7f76254bba038877dc3055375a28426c168912fc59
                                        
                                            POST / HTTP/1.1 
Host: s.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.12.2
Content-Length: 1754
Content-Transfer-Encoding: binary
Cache-Control: max-age=586776, public, no-transform, must-revalidate
Last-Modified: Thu, 29 Nov 2018 07:58:58 GMT
Expires: Thu, 6 Dec 2018 07:58:58 GMT
Date: Thu, 29 Nov 2018 13:01:48 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1754
Md5:    7fb936d29e33789425f21fe7215a7139
Sha1:   0c682837f5c2fade58311ae14df6c1bbd2115f28
Sha256: 438b0ad43fc2c8404af20293c10af2d770fa30d013ff371329040186650b9b22
                                        
                                            GET /_/fp/css/main-branding-base.-UoGKOCtfYLlKnFmvI-vRQ.css HTTP/1.1 
Host: cdn-static-1.medium.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://medium.com/suspended
Cookie: __cfduid=d868ef67152bd3da6fc2106ed3aa5dc121543496507; uid=lo_4Mc9toBzv2xt; sid=1:Hap3DvCP4S85wx0wwIwsAfBE0vdzcw7G9X7g/ZwXsd9hOEyynWyhhCbrNIU+4VC6

                                         
                                         104.16.121.145
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 29 Nov 2018 13:01:48 GMT
Content-Length: 65230
Connection: keep-alive
x-amz-id-2: GXxwoZRfsjaMyeDccq3wgwd4IEIa6YzVhQTbTUhFD9wd/Rd9g6PQc4SNPecPhzBWWgAg9Zve/fs=
x-amz-request-id: E8A7D63CFF3942CF
Last-Modified: Wed, 28 Nov 2018 19:23:50 GMT
Etag: "121b8895de3bc042507253d6b530dcda"
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
CF-Cache-Status: HIT
Expires: Fri, 29 Nov 2019 13:01:48 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 481543d97b0742c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   65230
Md5:    121b8895de3bc042507253d6b530dcda
Sha1:   a0600dfcd40e21d03cc3daacf767c15220e5cf3a
Sha256: 10ec1c8c9fbacc9da18fefc50a3c109e2dc19adc3816ca03e1a0d5be0e00a3d2
                                        
                                            GET /keys/medium.com/p.js HTTP/1.1 
Host: d1z2jf7jlzjs58.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://medium.com/suspended

                                         
                                         143.204.51.119
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Tue, 07 Aug 2018 00:43:09 GMT
Last-Modified: Tue, 07 Aug 2018 00:27:38 GMT
Etag: W/"5b68e77a-9c11"
Content-Encoding: gzip
Age: 44209
X-Cache: Hit from cloudfront
Via: 1.1 a850dff1d0f5a90907784efc0c02a4fc.cloudfront.net (CloudFront)
X-Amz-Cf-Id: XDeqM6xk7e3Wiqa8adu1jnsDs9XSCvnPHLMUS7BBGR4mvcHGIfI2rg==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   15262
Md5:    73cf72f043a322cf60426749b0819c51
Sha1:   05970b66fb6b712129abb0901e268bca757863a0
Sha256: ff998d914cb73671c692860d98059a7c9f6c03d7b37fe634706e8c3b34eee34a
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Nov 2018 13:01:49 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    c48c615f864c9e3941ca126ce9e6dfc2
Sha1:   e919a4e31837605bb929490424ab63a8826e3065
Sha256: 9e8f29dfbd2233ff8cf1adc7e0ef8ae3a06838d5f32581de671601bc670a680f
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 29 Nov 2018 13:01:49 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /_/stat?event=pixel.load&origin=undefined HTTP/1.1 
Host: medium.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://medium.com/suspended
Cookie: __cfduid=d868ef67152bd3da6fc2106ed3aa5dc121543496507; uid=lo_4Mc9toBzv2xt; sid=1:Hap3DvCP4S85wx0wwIwsAfBE0vdzcw7G9X7g/ZwXsd9hOEyynWyhhCbrNIU+4VC6

                                         
                                         104.16.120.127
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Thu, 29 Nov 2018 13:01:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Security-Policy: default-src 'self'; connect-src https://localhost https://*.instapaper.com https://*.stripe.com https://*.paypal.com https://getpocket.com https://medium.com:443 https://*.medium.com:443 https://*.medium.com https://medium.com https://*.medium.com https://*.algolia.net https://cdn-static-1.medium.com https://dnqgz544uhbo8.cloudfront.net https://cdn-videos-1.medium.com https://cdn-audio-1.medium.com https://*.lightstep.com https://*.branch.io https://app.zencoder.com wss://*.native.ai https://*.native.ai 'self'; font-src data: https://*.amazonaws.com https://*.medium.com https://glyph.medium.com https://medium.com https://*.gstatic.com https://dnqgz544uhbo8.cloudfront.net https://use.typekit.net https://cdn-static-1.medium.com 'self'; frame-src chromenull: https: webviewprogressproxy: medium: 'self'; img-src blob: data: https: 'self'; media-src https://*.cdn.vine.co https://d1fcbxp97j4nb2.cloudfront.net https://d262ilb51hltx0.cloudfront.net https://*.medium.com https://gomiro.medium.com https://miro.medium.com https://pbs.twimg.com 'self' blob:; object-src 'self'; script-src 'unsafe-eval' 'unsafe-inline' about: https: 'self'; style-src 'unsafe-inline' data: https: 'self'; report-uri https://csp.medium.com
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-UA-Compatible: IE=edge, Chrome=1
X-Powered-By: Medium
X-Obvious-Tid: 1543496508994:7143071d8024
X-Obvious-Info: 35901-e29c1b6,e29c1b66005
Link: <https://medium.com/humans.txt>; rel="humans"
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Expires: Thu, 09 Sep 1999 09:09:09 GMT
Pragma: no-cache
Tk: T
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 481543dcc8db4297-OSL


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
                                        
                                            GET /_/fp/gen-js/main-base.bundle.uxGznf4bS8uxa4Zd4CP_cg.js HTTP/1.1 
Host: cdn-static-1.medium.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://medium.com/suspended
Cookie: __cfduid=d868ef67152bd3da6fc2106ed3aa5dc121543496507; uid=lo_4Mc9toBzv2xt; sid=1:Hap3DvCP4S85wx0wwIwsAfBE0vdzcw7G9X7g/ZwXsd9hOEyynWyhhCbrNIU+4VC6

                                         
                                         104.16.121.145
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 29 Nov 2018 13:01:48 GMT
Content-Length: 337562
Connection: keep-alive
x-amz-id-2: giXm6HRyoKbn6qEm52GA0zjmlKtZZKdULBQcnPT4dwXOl0WK3+CapcRz0Dt51/hz5TTxal2TUiw=
x-amz-request-id: 86650088330C1B70
Last-Modified: Wed, 28 Nov 2018 22:38:56 GMT
Etag: "d6c58accc438ae9ae07a280c33703914"
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
CF-Cache-Status: HIT
Expires: Fri, 29 Nov 2019 13:01:48 GMT
Accept-Ranges: bytes
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 481543d97ac44273-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   337562
Md5:    d6c58accc438ae9ae07a280c33703914
Sha1:   25b8518ae051d6735239547642bdb70ac7de353b
Sha256: 086c0257d03da7534ce05db11313adcf4a88b3cc757d0486c6bf6e02e3c13101
                                        
                                            GET /_/fp/icons/favicon-rebrand-medium.3Y6xpZ-0FSdWDnPM3hSBIA.ico HTTP/1.1 
Host: cdn-static-1.medium.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d868ef67152bd3da6fc2106ed3aa5dc121543496507; uid=lo_4Mc9toBzv2xt; sid=1:Hap3DvCP4S85wx0wwIwsAfBE0vdzcw7G9X7g/ZwXsd9hOEyynWyhhCbrNIU+4VC6

                                         
                                         104.16.121.145
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Thu, 29 Nov 2018 13:01:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
x-amz-id-2: UMif/Mf2eidebYT9ZrIun6p9jt2GJhxCBDxdGMfz6heF/CuVjMDdPo7YZk+1+T89lXhXuAe0W+A=
x-amz-request-id: D50AB4BA8395B54E
Last-Modified: Sat, 19 Aug 2017 00:25:31 GMT
Etag: W/"dd8eb1a59fb41527560e73ccde148120"
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Expires: Fri, 29 Nov 2019 13:01:48 GMT
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 481543dcce9242c1-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   788
Md5:    50594f97a83cc68aa5b1b64f4b2b1c50
Sha1:   dce5ec6cdfe8fd06704d83059156f15a9ff24cf9
Sha256: 00380dedc868a00178f805005e401a9c288c811940ca11815c1ee480a94f52c4
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         143.204.51.176
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=166549
Date: Thu, 29 Nov 2018 13:01:50 GMT
Etag: "5bffbd58-1d7"
Expires: Sat, 01 Dec 2018 11:17:39 GMT
Last-Modified: Thu, 29 Nov 2018 10:20:08 GMT
Server: ECS (lga/13A0)
X-Cache: Miss from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Id: BLD4mLvpgqBadTfk7a1KG1v41ycE1jQaoc1A1f3wqoJUdrcrOuyRpA==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    c4f71fe155d010e1fb2a51e2390bc63d
Sha1:   9980f68735fd9c4cfba0736bf9a24a8204b3be4e
Sha256: 5ef500f4828af68e28e564e6cc1b1bd3832864ad86f40844f172d7de8f911138
                                        
                                            POST / HTTP/1.1 
Host: ocsp.rootca1.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         143.204.51.149
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1426
Connection: keep-alive
Date: Thu, 29 Nov 2018 13:01:50 GMT
Server: WEBrick/1.3.1 (Ruby/2.3.7/2018-03-28)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c7.cloudfront.net (CloudFront)
X-Amz-Cf-Id: JDzFFknw6kiehJKDvkfNDo6bBAkknpY2LnulDDrFTn0MKQsmuM1ALQ==


--- Additional Info ---
Magic:  data
Size:   1426
Md5:    8be213bb15b0cf4a372243aa7c827f86
Sha1:   d5a585f5d8e872f913bacfad48b915494dcdace2
Sha256: f9cd56b68d84be1c5480103fb5346d6c990fffeb6a242a943a43b54055dd981c
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://medium.com/suspended

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Thu, 29 Nov 2018 12:01:54 GMT
Expires: Thu, 29 Nov 2018 14:01:54 GMT
Last-Modified: Mon, 05 Nov 2018 21:10:09 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17404
Cache-Control: public, max-age=7200
Age: 3596
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17404
Md5:    33586531225d561faadda61de818c510
Sha1:   9a3b5ffbdc4071557def3d9609eee6ad3c52d1e1
Sha256: 521d2fb506ca60463e914fd138e092f935579d31436dcff3cc6a1d216d06ef82
                                        
                                            GET /r/collect?v=1&_v=j72&a=2134858364&t=pageview&_s=1&dl=https%3A%2F%2Fmedium.com%2Fsuspended&ul=en-us&de=UTF-8&dt=Suspended%20%E2%80%93%20Medium&sd=24-bit&sr=1176x885&vp=1159x754&je=1&fl=10.0%20r45&_u=IEBAAEQ~&jid=150409735&gjid=1753053668&cid=611202907.1543496511&tid=UA-24232453-2&_gid=149263118.1543496511&_r=1&z=944383635 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://medium.com/suspended

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Thu, 29 Nov 2018 13:01:51 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="44,43,39,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /start/?rand=1543496509014&plid=26200397&idsite=medium.com&url=https%3A%2F%2Fmedium.com%2Fsuspended&urlref=&screen=1176x885%7C1176x855%7C24&data=%7B%7D&sid=1&surl=https%3A%2F%2Fmedium.com%2Fsuspended&sref=&sts=1543496509008&slts=0&title=Suspended+%E2%80%93+Medium&date=Thu+Nov+29+2018+14%3A01%3A49+GMT%2B0100&action=pageview&callback=parselyStartCallback HTTP/1.1 
Host: srv-2018-11-29-13.pixel.parsely.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://medium.com/suspended

                                         
                                         34.199.191.153
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Date: Thu, 29 Nov 2018 13:01:51 GMT
P3P: CP="CUR ADM OUR NOR STA NID"
Server: nginx
Set-Cookie: pid=12994720ce42da9124426dacfdef899c; expires=Fri, 29-Nov-19 13:01:51 GMT; domain=pixel.parsely.com; path=/
Content-Length: 77
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   77
Md5:    725b8a642808cdae67b04ab85d607a50
Sha1:   7dc09ecdc3f32a089610a2e9eb8e6725dd15fa06
Sha256: f990cf98c65c447c9afcb6be2bad0d6de4dff89aa9856e07fc4a9ea8e4e1ceb6
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=146953
Date: Thu, 29 Nov 2018 13:01:51 GMT
Etag: "5bff6b52-1d7"
Expires: Sat, 01 Dec 2018 05:51:04 GMT
Last-Modified: Thu, 29 Nov 2018 04:30:10 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    f78e548a049002bba5eb2a3325e9475a
Sha1:   28c437f4805c98b932eac61531c7df3ef91b8747
Sha256: 685b95b9602444fe59b252b5d0687b1ba73700432dfa02b3322effaef32516cb
                                        
                                            GET /branch-latest.min.js HTTP/1.1 
Host: cdn.branch.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://medium.com/suspended

                                         
                                         143.204.47.82
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Content-Length: 21234
Connection: keep-alive
Date: Mon, 26 Nov 2018 08:53:01 GMT
Cache-Control: max-age=300
Content-Encoding: gzip
Last-Modified: Tue, 18 Sep 2018 21:07:20 GMT
x-amz-version-id: mNTfVhEnx32undHGMDgVWco4_EqaZ.NM
Etag: "8342e31a6e2df3a9ad677e9770a07451"
Server: AmazonS3
Age: 230
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b91.cloudfront.net (CloudFront)
X-Amz-Cf-Id: O21Fgl_ZzB7FKS8syePUTuXMIV21_qP07VthdgX1cI7T2GHo618K6g==


--- Additional Info ---
Magic:  gzip compressed data, was "build.min.js", from Unix, last modified: Tue Sep 18 23:06:56 2018
Size:   21234
Md5:    8342e31a6e2df3a9ad677e9770a07451
Sha1:   35fab1aaa3a7b08b248b3a989f060eeec7ef1866
Sha256: a829ac244ae1e403ce1511b2e3efddfdb874bcdceb28c4f6da142ad4a0316423
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         143.204.51.176
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=104326
Date: Thu, 29 Nov 2018 13:01:51 GMT
Etag: "5bfdc0c5-1d7"
Expires: Fri, 30 Nov 2018 18:00:37 GMT
Last-Modified: Tue, 27 Nov 2018 22:10:13 GMT
Server: ECS (lga/1395)
X-Cache: Miss from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 3MPvypsU-R7GnNKUVYoETFUc3aFtMxPibbvNZ4tKKAf4zhmeDMJjfA==


--- Additional Info ---
Magic:  data
Size:   471
Md5:    1d6824e7aec06703731e55e92e6f01fe
Sha1:   0f7b747dbfa203519e8d6f0204ba8959eb85efd8
Sha256: ae9c58cf9683668d971c9b857f3b9e074710a7cf3479488371895d9c7f87cf8c
                                        
                                            GET /_r?sdk=web2.46.0&branch_key=key_live_ofxXr2qTrrU9NqURK8ZwEhknBxiI6KBm&callback=branch_callback__0 HTTP/1.1 
Host: app.link
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://medium.com/suspended

                                         
                                         143.204.47.45
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Content-Length: 90
Connection: keep-alive
Server: openresty/1.13.6.2
Date: Thu, 29 Nov 2018 13:01:51 GMT
X-Powered-By: Express
Set-Cookie: _s=1mQTCVqQH0IpX%2F9jtzoLdbCJhJlar%2FlaL44S%2B1laf%2BM6%2FFrpQ%2FuJvfMBnJbMjy33; Max-Age=31536000; Domain=.app.link; Path=/; Expires=Fri, 29 Nov 2019 13:01:51 GMT
X-Content-Type-Options: nosniff
Etag: W/"5a-dr9Ro4nICVKvvOeJ/DL7vdGDS9k"
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 4hpEsOxVRhME0OQERNQwr0ERHEbge6BhfqFFhaJeg0Z11fG48fqMNQ==


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   90
Md5:    73aef672bcefb52d451ed38870ebab45
Sha1:   76bf51a389c80952afbce789fc32fbbdd1834bd9
Sha256: 18054d6b7f812ad405ba090da4824d938d57329fddc89fe0873b0af8e1fe297c
                                        
                                            OPTIONS /v1/open HTTP/1.1 
Host: api.branch.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Origin: https://medium.com
Access-Control-Request-Method: POST

                                         
                                         143.204.55.75
HTTP/1.1 204 No Content
Content-Type: text/plain charset=UTF-8
                                        
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 1728000
Date: Thu, 29 Nov 2018 13:01:51 GMT
Server: openresty/1.13.6.2
X-Content-Type-Options: nosniff
X-Cache: Miss from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Id: sgS_WZLgQLxaiaB5iBn4dfQzbhwW61VSpm4Js91FOtO2aHPSl0IWLw==


--- Additional Info ---
                                        
                                            POST /v1/open HTTP/1.1 
Host: api.branch.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Referer: https://medium.com/suspended
Content-Length: 224
Origin: https://medium.com
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.55.75
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 312
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: no-cache
Date: Thu, 29 Nov 2018 13:01:52 GMT
Server: openresty/1.13.6.2
X-Cache: Miss from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Id: VyFGcHGucQjYmTlvc8sJuWB69imqCMuD73OxDXkqCwipK3xtjG7vLw==


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   312
Md5:    20ab6ca73737e6bc253e9b99b6043590
Sha1:   e55eff39d0e161ba015dc5ee0d60c500173a15e6
Sha256: 44a4d0040b9027e59db9094e9ccbc4d418d68c566ff7102e549c830e63ae6057
                                        
                                            OPTIONS /v1/pageview HTTP/1.1 
Host: api.branch.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Origin: https://medium.com
Access-Control-Request-Method: POST

                                         
                                         143.204.55.75
HTTP/1.1 204 No Content
Content-Type: text/plain charset=UTF-8
                                        
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 1728000
Date: Thu, 29 Nov 2018 13:01:52 GMT
Server: openresty/1.13.6.2
X-Content-Type-Options: nosniff
X-Cache: Miss from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Id: GWkz5BhkR6WvtaQVxUYSt3aw92Tq7BBNt3GZtLBx2PM6VuZwdZCRQw==


--- Additional Info ---
                                        
                                            POST /v1/pageview HTTP/1.1 
Host: api.branch.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Referer: https://medium.com/suspended
Content-Length: 1487
Origin: https://medium.com
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.55.75
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Content-Length: 28
Connection: keep-alive
Access-Control-Allow-Origin: *
Date: Thu, 29 Nov 2018 13:01:52 GMT
Etag: W/"1c-KRZWpHfIKyIHGKJ9mp9lAyX+vFY"
Server: openresty/1.13.6.2
X-Powered-By: Express
X-Cache: Miss from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Id: gXDZvQNS7gmNr-nHLKm2laPJowrnOS3nkO442LPLNl0zTxVlqQnDEA==


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   28
Md5:    40ad459cb59514b4661cb0f8372dad3c
Sha1:   291656a477c82b220718a27d9a9f650325febc56
Sha256: a82dc28d43942326b346f92907df3bea5e38b2325ef97176f3b6234966bf19eb