animationlead.com/
301 Moved Permanently 178 B IP
ASN #43081 World News PTE. LTD
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET / HTTP/1.1
Host: animationlead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 05 Feb 2023 11:36:12 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://animationlead.com/
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9066
Expires: Sun, 05 Feb 2023 14:07:18 GMT
Date: Sun, 05 Feb 2023 11:36:12 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12282
Expires: Sun, 05 Feb 2023 15:00:54 GMT
Date: Sun, 05 Feb 2023 11:36:12 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 11:33:54 GMT
content-type: application/json
age: 138
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19809
Expires: Sun, 05 Feb 2023 17:06:21 GMT
Date: Sun, 05 Feb 2023 11:36:12 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xTIIFP9GmtAb2w8B7ck83t30aTsjebMJ+A/946vcQ7AwPpBJz6WN4Sm5vcBiomCGsNURxlLz974=
x-amz-request-id: 9AP0GPSC5R2PFXPV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 10:53:14 GMT
age: 2578
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 11:36:13 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e285e816367e36ed145cd9a7ec977beb
ec234e06c8f8ca5a89241ac0f010216d6ecbd25c
f85c4263bef8298afcdb1d9baf27e8e993a179e74de77feeb3be052a1ee8366a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F85C4263BEF8298AFCDB1D9BAF27E8E993A179E74DE77FEEB3BE052A1EE8366A"
Last-Modified: Sun, 05 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 05 Feb 2023 17:36:13 GMT
Date: Sun, 05 Feb 2023 11:36:13 GMT
Connection: keep-alive
animationlead.com/
302 Found 231 B IP
ASN #43081 World News PTE. LTD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cba22f7a37da21f6f99c61733aa9b30c
7f8746aea602be565d0d0d25eabe7a8d97e3ecaa
cf1c1087de2abf6a96e8bb6d0d3c9442316ae569ab599425a0d2fa99b808e1bf
GET / HTTP/1.1
Host: animationlead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Sun, 05 Feb 2023 11:36:13 GMT
content-type: text/html
content-length: 231
location: https://wn.com/Animation_lead?from=animationlead.com
set-cookie: wnTrk=wn.1675596973.207289.wnstatic1.3575.2750; Domain=.animationlead.com; expires=Tue, 06 Feb 2091 00:10:13 GMT
vary: User-Agent
strict-transport-security: max-age=15768000
cache-control: must-revalidate
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 11:07:20 GMT
age: 1733
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 0fda079a9054711308d6c5bc9e9cf9c3
ab312104daf6ed33c2642f81bea3a22e59bc6045
3e61d74606a49679e792af624c97c96bd0bf3782035a4c2bce2a9ed31158a222
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 23:09:47 GMT
Expires: Sat, 11 Feb 2023 23:09:46 GMT
Etag: "ab312104daf6ed33c2642f81bea3a22e59bc6045"
Cache-Control: max-age=559412,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794b58dbfbcd1bfa-OSL
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2940
Expires: Sun, 05 Feb 2023 12:25:13 GMT
Date: Sun, 05 Feb 2023 11:36:13 GMT
Connection: keep-alive
ecdn5.wn.com/or/js/videoplayer-20181002-4.min.js
200 OK 39 kB URL HTTP/2 ecdn5.wn.com/or/js/videoplayer-20181002-4.min.js
IP
File type ASCII text, with very long lines (39336), with no line terminators
Hash bff09a177852fd078d5f6eb1ee513104
1d58099eeb3048ddbeca24e5dadbc86e9c51dc7c
9c3e94dc7b5080fb6a59561f9740ee74bc30d8192de18387254b971c42faf3cc
GET /or/js/videoplayer-20181002-4.min.js HTTP/1.1
Host: ecdn5.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 73099
cache-control: max-age=2592000
content-type: application/javascript
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "5bb34735-99a8"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Tue, 02 Oct 2018 10:23:49 GMT
server: ECS (ska/F70C)
x-cache: HIT
content-length: 39336
X-Firefox-Spdy: h2
ecdn2.wn.com/or/assets/assets/avp/css/font-awesome.min.css
200 OK 7.1 kB URL HTTP/2 ecdn2.wn.com/or/assets/assets/avp/css/font-awesome.min.css
IP
File type ASCII text, with very long lines (31023), with CRLF line terminators
Hash d81cbbdafabafcbc0f8f3b090a4c67d5
568172017f65e1f0dbcf8d45e994133bda08ff8b
a2d72fac4f89e369399d28dfa4179c3317407046b3816e430608d9bc79fc7675
GET /or/assets/assets/avp/css/font-awesome.min.css HTTP/1.1
Host: ecdn2.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: *
age: 2071159
cache-control: max-age=2592000
content-type: text/css
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "60f804eb-79d6+gzip"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Wed, 21 Jul 2021 11:28:43 GMT
server: ECS (ska/F705)
vary: Accept-Encoding
x-cache: HIT
content-length: 7075
X-Firefox-Spdy: h2
ecdn5.wn.com/ph/img/cc/d3/cb15a704ec17a41e3fb931f8a272-medium.jpg
200 OK 16 kB URL HTTP/2 ecdn5.wn.com/ph/img/cc/d3/cb15a704ec17a41e3fb931f8a272-medium.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x201, components 3\012- data
Hash cb3cef56043f530d1676c9f2d37a4676
6ce0d65c630e44d8d0ff0c78b6030a24f5dc3164
528b3213e7923f313d4717ea48f2b79ff0770416a297832820bc83c96da68353
GET /ph/img/cc/d3/cb15a704ec17a41e3fb931f8a272-medium.jpg HTTP/1.1
Host: ecdn5.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 48637
cache-control: max-age=2592000
content-type: image/jpeg
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "63decc6f-3ed9"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Sat, 04 Feb 2023 21:21:51 GMT
server: ECS (ska/F710)
x-cache: HIT
content-length: 16089
X-Firefox-Spdy: h2
ecdn2.wn.com/ph/img/44/d3/175220d24beec85e2ee1874b1f0f-medium.jpg
200 OK 13 kB URL HTTP/2 ecdn2.wn.com/ph/img/44/d3/175220d24beec85e2ee1874b1f0f-medium.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x180, components 3\012- data
Hash fa0329a417b581aa42c1b27aab276327
a841214772e17453b67014bf341c2cc6668f24e5
f4ca8aac3158643e3554281962c7a414729a6ec33f57d89bca31b5804885291a
GET /ph/img/44/d3/175220d24beec85e2ee1874b1f0f-medium.jpg HTTP/1.1
Host: ecdn2.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 49868
cache-control: max-age=2592000
content-type: image/jpeg
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "63decc8d-3382"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Sat, 04 Feb 2023 21:22:21 GMT
server: ECS (ska/F6FE)
x-cache: HIT
content-length: 13186
X-Firefox-Spdy: h2
ecdn7.wn.com/or/assets/assets/avp/img/no-ec.png
200 OK 10 kB URL HTTP/2 ecdn7.wn.com/or/assets/assets/avp/img/no-ec.png
IP
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 9639f4078c347bade80e869710ad797c
3e5d5eea4cc8098ebb59eb41b1bb4f3e42e46a0b
88873aa4a973ad16aa8ac526e00564969e70188775142fce612a80296a625d56
GET /or/assets/assets/avp/img/no-ec.png HTTP/1.1
Host: ecdn7.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 718091
cache-control: max-age=2592000
content-type: image/png
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "5b334331-270d"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Wed, 27 Jun 2018 07:56:33 GMT
server: ECS (ska/F6FC)
x-cache: HIT
content-length: 9997
X-Firefox-Spdy: h2
ecdn2.wn.com/ph/img/66/c3/e70fe6d1f6aca233ef6d5b638b96-medium.jpg
200 OK 16 kB URL HTTP/2 ecdn2.wn.com/ph/img/66/c3/e70fe6d1f6aca233ef6d5b638b96-medium.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash eca1c8f1f45969d1629bedbf70e841a1
07d6cef6e98ea8e0741c7538002650e0cdfa1b1e
0426bbffbb45868fb9ba8c227bf053857acd38ca9879acc199fdbe2e11a5121b
GET /ph/img/66/c3/e70fe6d1f6aca233ef6d5b638b96-medium.jpg HTTP/1.1
Host: ecdn2.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 22264
cache-control: max-age=2592000
content-type: image/jpeg
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "63df322d-3def"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Sun, 05 Feb 2023 04:35:57 GMT
server: ECS (ska/F6FE)
x-cache: HIT
content-length: 15855
X-Firefox-Spdy: h2
ecdn7.wn.com/ph/img/14/02/5d2aab0142089a6521530e853207-medium.jpg
200 OK 20 kB URL HTTP/2 ecdn7.wn.com/ph/img/14/02/5d2aab0142089a6521530e853207-medium.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash abd13ca61552cc34291228db51c21661
a401f4bfb822d472500f93527251ccd46210ee0e
afcbcfa0f42347ca009ba3f1314876170b95f5e1b0849f85a38a49d3b3770b01
GET /ph/img/14/02/5d2aab0142089a6521530e853207-medium.jpg HTTP/1.1
Host: ecdn7.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 48987
cache-control: max-age=2592000
content-type: image/jpeg
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "597ecd2b-4e4e"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Mon, 31 Jul 2017 06:24:43 GMT
server: ECS (ska/F70D)
x-cache: HIT
content-length: 20046
X-Firefox-Spdy: h2
ecdn2.wn.com/ph/img/c8/33/f3c91259725035c9116ec451ae5b-medium.jpg
200 OK 16 kB URL HTTP/2 ecdn2.wn.com/ph/img/c8/33/f3c91259725035c9116ec451ae5b-medium.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash c91d531714fccc5f135f9e6b2acbc70b
cf0cbffcd0f84d4da4d15ddf8caaa1f4f678acac
9d5b15644b06374571e82067d599f7640e5d709ceabd6f819eb2e5db5a4ec9ce
GET /ph/img/c8/33/f3c91259725035c9116ec451ae5b-medium.jpg HTTP/1.1
Host: ecdn2.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 4666
cache-control: max-age=2592000
content-type: image/jpeg
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "63df71eb-3e3f"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Sun, 05 Feb 2023 09:07:55 GMT
server: ECS (ska/F6FC)
x-cache: HIT
content-length: 15935
X-Firefox-Spdy: h2
ecdn4.wn.com/or/assets/assets/anything/logo.png
200 OK 1.9 kB URL HTTP/2 ecdn4.wn.com/or/assets/assets/anything/logo.png
IP
File type PNG image data, 145 x 29, 8-bit/color RGB, non-interlaced\012- data
Hash f11850433376956d7719d988cf100bb6
bfb7785296bd66f02ae9772fe4a0fb70ede60dbf
1c8ab07491173b3eb01d403e09ff7a33c6185997996798dc1d9e8d4ff9c5a279
GET /or/assets/assets/anything/logo.png HTTP/1.1
Host: ecdn4.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 115948
cache-control: max-age=2592000
content-type: image/png
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "5614f0cf-79d"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Wed, 07 Oct 2015 10:15:43 GMT
server: ECS (ska/F704)
x-cache: HIT
content-length: 1949
X-Firefox-Spdy: h2
ecdn4.wn.com/or/assets/assets/wn/img/logo.png
200 OK 2.8 kB URL HTTP/2 ecdn4.wn.com/or/assets/assets/wn/img/logo.png
IP
File type PNG image data, 120 x 29, 8-bit/color RGBA, interlaced\012- data
Hash f89fd976b340dccdf5015e78ee081ca8
b0b87cb7c249e0caec9b0ef7a7c08e315f7e49d1
1dc65363fde14ad469dfcc75c9e24f69f2a11d7a5c3b692d7ade889a5854dced
GET /or/assets/assets/wn/img/logo.png HTTP/1.1
Host: ecdn4.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 210066
cache-control: max-age=2592000
content-type: image/png
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "552b7f8b-b05"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Mon, 13 Apr 2015 08:34:19 GMT
server: ECS (ska/F709)
x-cache: HIT
content-length: 2821
X-Firefox-Spdy: h2
ecdn4.wn.com/ph/img/75/fc/ecf4614710e0f6798589e85031b7-medium.jpg
200 OK 7.4 kB URL HTTP/2 ecdn4.wn.com/ph/img/75/fc/ecf4614710e0f6798589e85031b7-medium.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash e990bef0f0e73b0ef3515b9a9725e053
c5e2ab32638e4004ca83f2d91ec5e7b5671d8840
11194615d0afcd2fb1119256310aa7563f20d5feceef19808bf94847bf7266a5
GET /ph/img/75/fc/ecf4614710e0f6798589e85031b7-medium.jpg HTTP/1.1
Host: ecdn4.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 38386
cache-control: max-age=2592000
content-type: image/jpeg
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "63def8b4-1ce3"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Sun, 05 Feb 2023 00:30:44 GMT
server: ECS (ska/F709)
x-cache: HIT
content-length: 7395
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 643c0fd35dbdc55f750f9444375639a0
e4f3a16766707b744fcf2ac66ff7328203c6b021
7f7564f60e59624680311038e9384b6445967a87b3a3e887a25e2bc0bc83fb19
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 11:36:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 03 Feb 2023 09:57:44 GMT
Expires: Fri, 10 Feb 2023 09:57:43 GMT
Etag: "e4f3a16766707b744fcf2ac66ff7328203c6b021"
Cache-Control: max-age=425489,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794b58debe1c1bfa-OSL
ecdn4.wn.com/ph/img/a4/99/02448ea19c14fb027bdcee26516a-medium.jpg
200 OK 12 kB URL HTTP/2 ecdn4.wn.com/ph/img/a4/99/02448ea19c14fb027bdcee26516a-medium.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x185, components 3\012- data
Hash 8c54796f0a0c88ecd216c8f421be1715
b2f550d4c9bb8e461d11ce190b9942414b8e62e5
02e579e4ea0a58aef79452c6e75eed2dc3bd6130e5d4480ac76c3963606cb2b4
GET /ph/img/a4/99/02448ea19c14fb027bdcee26516a-medium.jpg HTTP/1.1
Host: ecdn4.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 21538
cache-control: max-age=2592000
content-type: image/jpeg
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "5d05ebf0-3000"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Sun, 16 Jun 2019 07:12:48 GMT
server: ECS (ska/F70F)
x-cache: HIT
content-length: 12288
X-Firefox-Spdy: h2
ecdn7.wn.com/vp/m/b3/46fdad8764c144cad1ce9d0549eed6.css
200 OK 14 kB URL HTTP/2 ecdn7.wn.com/vp/m/b3/46fdad8764c144cad1ce9d0549eed6.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5c31ea84da61ff825b9f5028942ac28f
17098c839c99f7dd6976bdde91ff761d5296dc6c
0328c940c36272f4585539f2d66ce569295ee975d1ca6dfef52817ad9232d648
GET /vp/m/b3/46fdad8764c144cad1ce9d0549eed6.css HTTP/1.1
Host: ecdn7.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: *
age: 1889942
cache-control: max-age=2592000
content-type: text/css
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "62fcf77b-12bca+gzip"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Wed, 17 Aug 2022 14:13:15 GMT
server: ECS (ska/F71B)
vary: Accept-Encoding
x-cache: HIT
content-length: 13687
X-Firefox-Spdy: h2
cdn.wn.com/or/assets/mw.css
200 OK 17 kB URL HTTP/2 cdn.wn.com/or/assets/mw.css
IP
File type Unicode text, UTF-8 text, with very long lines (41832)
Hash 0cf890b01a6daf444c780304bb3c142c
3ec542d83fca9c1fae42d83e73de472fa2f0a6f5
90ef97329dae98c26d0e6866fe0a96350d0038619836dafaa1c12197740a55e6
GET /or/assets/mw.css HTTP/1.1
Host: cdn.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: *
age: 565891
cache-control: max-age=2592000
content-type: text/css
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "579e1270-1463d+gzip"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Sun, 31 Jul 2016 15:00:00 GMT
server: ECS (ska/F710)
vary: Accept-Encoding
x-cache: HIT
content-length: 17053
X-Firefox-Spdy: h2
ecdn1.wn.com/ph/img/40/2b/d570383250a20ed5c2dc3b6dbb83-medium.jpg
200 OK 18 kB URL HTTP/2 ecdn1.wn.com/ph/img/40/2b/d570383250a20ed5c2dc3b6dbb83-medium.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash 9877234dace58012747ba9e6ee5ee28b
d789e09a5e588d348628b1f76cc883da10082116
d725909574157882993a468dc294a5d63c037fdc4ac7de032f27deb8f82b8656
GET /ph/img/40/2b/d570383250a20ed5c2dc3b6dbb83-medium.jpg HTTP/1.1
Host: ecdn1.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 19822
cache-control: max-age=2592000
content-type: image/jpeg
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "63df31e3-46ec"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Sun, 05 Feb 2023 04:34:43 GMT
server: ECS (ska/F712)
x-cache: HIT
content-length: 18156
X-Firefox-Spdy: h2
ecdn9.wn.com/or/images/wnblack.png
200 OK 1.9 kB URL HTTP/2 ecdn9.wn.com/or/images/wnblack.png
IP
File type PNG image data, 546 x 40, 8-bit/color RGB, non-interlaced\012- data
Hash f9b5503fa323e3db10c06398f9357cdf
73e3afe7c88a16fa3219ea9301ddd18d67e4b5b5
ff3c14b6122732fdb0bf093030ee552f6e8b48f484236628ce3e3c6cff6a630f
GET /or/images/wnblack.png HTTP/1.1
Host: ecdn9.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1473807
cache-control: max-age=2592000
content-type: image/png
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "4f96a08a-743"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Tue, 24 Apr 2012 12:46:02 GMT
server: ECS (ska/F71B)
x-cache: HIT
content-length: 1859
X-Firefox-Spdy: h2
ecdn2.wn.com/vp/m/ae/f10fd2cbad84386e125817a309cd00.js
200 OK 446 kB URL HTTP/2 ecdn2.wn.com/vp/m/ae/f10fd2cbad84386e125817a309cd00.js
IP
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65171)
Size 446 kB (445487 bytes)
Hash 33b01116d94102e37bc2e71510d5b00d
d7ae6f7c397a039c6ef910caf7234400defc4492
a30d4979b19c1de5480f9275190c53dd4a97f58268390e8cfaf363fe1f99b28b
GET /vp/m/ae/f10fd2cbad84386e125817a309cd00.js HTTP/1.1
Host: ecdn2.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1901159
cache-control: max-age=2592000
content-type: application/javascript
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "61714761-6cc2f"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Thu, 21 Oct 2021 10:56:33 GMT
server: ECS (ska/F6FD)
x-cache: HIT
content-length: 445487
X-Firefox-Spdy: h2
cdn.onthe.io/io.js/fMXW9rrR6xmp
200 OK 307 B URL HTTP/1.1 cdn.onthe.io/io.js/fMXW9rrR6xmp
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (545), with no line terminators
Hash 725946ac755596b9c28a222912ee1861
304d528294c6e15d867588244412db98519317f8
aa605abbcf67a371e8bd858e0928eb4bd8a95d3f58259d3e0d2acc8bff97545d
GET /io.js/fMXW9rrR6xmp HTTP/1.1
Host: cdn.onthe.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 05 Feb 2023 11:36:13 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 14 Apr 2020 15:14:06 GMT
ETag: W/"5e95d33e-221"
Expires: Mon, 06 Feb 2023 11:36:13 GMT
Cache-Control: max-age=86400
Content-Encoding: gzip
ecdn9.wn.com/ph/img/58/f4/6f352d3d4fd95be50e5b39f8beaa-medium.jpg
200 OK 7.7 kB URL HTTP/2 ecdn9.wn.com/ph/img/58/f4/6f352d3d4fd95be50e5b39f8beaa-medium.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash 83fd41f67fc79f503198abfc6bc6bfff
a39c8096eebaaa37a3be812df813495c5c518756
22fcf7d87196b871ed32d149134b9c6e839b6a802758912b560b600f85108298
GET /ph/img/58/f4/6f352d3d4fd95be50e5b39f8beaa-medium.jpg HTTP/1.1
Host: ecdn9.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 8359
cache-control: max-age=2592000
content-type: image/jpeg
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "63df6bb5-1dfb"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Sun, 05 Feb 2023 08:41:25 GMT
server: ECS (ska/F715)
x-cache: HIT
content-length: 7675
X-Firefox-Spdy: h2
ecdn9.wn.com/ph/img/54/b1/2be343256b00adfd6fac3f094e04-medium.jpg
200 OK 16 kB URL HTTP/2 ecdn9.wn.com/ph/img/54/b1/2be343256b00adfd6fac3f094e04-medium.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash 6b1d85ea4d71f24b0fc31efa6b6d0550
bc7500d2a87ce7c78a8be2e5830593746aaa16c0
a137a4a615b198246f4d37ff35a090491f6efed6b2a5590b08f915fb2fbc9902
GET /ph/img/54/b1/2be343256b00adfd6fac3f094e04-medium.jpg HTTP/1.1
Host: ecdn9.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 38953
cache-control: max-age=2592000
content-type: image/jpeg
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "63def8a4-3dcb"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Sun, 05 Feb 2023 00:30:28 GMT
server: ECS (ska/F70E)
x-cache: HIT
content-length: 15819
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fOj3YaSvOQClvnapERoJBA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: fI2uyuIaGeUEFuatAiVqCpNboPo=
ecdn3.wn.com/ph/img/10/ee/46568c0d8349b58b07340dd84511-medium.jpg
200 OK 9.7 kB URL HTTP/2 ecdn3.wn.com/ph/img/10/ee/46568c0d8349b58b07340dd84511-medium.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x199, components 3\012- data
Hash e4828f89424143a7e03c4f7f58056d19
bb1976aba7a7bb05bb1bceb6050f993c4c9b8dfa
b7e58d046de7797b6de94345bb1506919c8e4b0c8df2517397b9b02765845aec
GET /ph/img/10/ee/46568c0d8349b58b07340dd84511-medium.jpg HTTP/1.1
Host: ecdn3.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 45036
cache-control: max-age=2592000
content-type: image/jpeg
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "63decc93-260f"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Sat, 04 Feb 2023 21:22:27 GMT
server: ECS (ska/F708)
x-cache: HIT
content-length: 9743
X-Firefox-Spdy: h2
ecdn0.wn.com/ph/img/17/37/cf71edd0bdf6c8413f2355c250d5-medium.jpg
200 OK 22 kB URL HTTP/2 ecdn0.wn.com/ph/img/17/37/cf71edd0bdf6c8413f2355c250d5-medium.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x207, components 3\012- data
Hash 458259e87d26599ce33ba8c3cf3b18af
cc518a22b8f437e3a0991dfb58c76aabde016ac7
177bda5dbdef9ed6f9f51a736cd2956f9b7474d5bdf43d8ea0cd35c57a64faca
GET /ph/img/17/37/cf71edd0bdf6c8413f2355c250d5-medium.jpg HTTP/1.1
Host: ecdn0.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 31435
cache-control: max-age=2592000
content-type: image/jpeg
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "55fd6b89-5707"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Sat, 19 Sep 2015 14:04:57 GMT
server: ECS (ska/F70F)
x-cache: HIT
content-length: 22279
X-Firefox-Spdy: h2
ecdn8.wn.com/ph/img/8c/e8/83172e0da0bac10d13ced3fe33a8-medium.jpg
200 OK 15 kB URL HTTP/2 ecdn8.wn.com/ph/img/8c/e8/83172e0da0bac10d13ced3fe33a8-medium.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash ba37c75926a5c70e8875007544547925
15dccc48df545a9e95219fc1ee8b2318537821cc
76d451841750999e8a933b2b379ed303e7d2962f5080f4ba6aebc493d82bb9eb
GET /ph/img/8c/e8/83172e0da0bac10d13ced3fe33a8-medium.jpg HTTP/1.1
Host: ecdn8.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 37154
cache-control: max-age=2592000
content-type: image/jpeg
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "63def924-3c40"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Sun, 05 Feb 2023 00:32:36 GMT
server: ECS (ska/F70F)
x-cache: HIT
content-length: 15424
X-Firefox-Spdy: h2
ecdn6.wn.com/ph/img/02/94/994ff2f02dde2c5e65f475ef67c1-medium.jpg
200 OK 14 kB URL HTTP/2 ecdn6.wn.com/ph/img/02/94/994ff2f02dde2c5e65f475ef67c1-medium.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x185, components 3\012- data
Hash 9df302f5f4f4f2a38189ac49f8bbb4db
8210801b5c50c4a99bf84b8eb747b0a502a06130
ffef7a7f9062c831c68c7ac6ef073015bce49f02835de0c20b63dc5a7e77459f
GET /ph/img/02/94/994ff2f02dde2c5e65f475ef67c1-medium.jpg HTTP/1.1
Host: ecdn6.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 38953
cache-control: max-age=2592000
content-type: image/jpeg
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "6227edab-3871"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Tue, 08 Mar 2022 23:58:35 GMT
server: ECS (ska/F71C)
x-cache: HIT
content-length: 14449
X-Firefox-Spdy: h2
ecdn6.wn.com/ph/img/3f/3d/d952068211241149682fc3580b14-medium.jpg
200 OK 21 kB URL HTTP/2 ecdn6.wn.com/ph/img/3f/3d/d952068211241149682fc3580b14-medium.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x199, components 3\012- data
Hash f560321cba32ef9a3d94723a2918ed99
9be674ddeaaa78e8d4d27532d2aa2f3a495c73a7
b7243bf0c2b2faddb17e30b3ba6c0b269d615d32e257bade90077e9eceda2e1f
GET /ph/img/3f/3d/d952068211241149682fc3580b14-medium.jpg HTTP/1.1
Host: ecdn6.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead?from=animationlead.com
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 51212
cache-control: max-age=2592000
content-type: image/jpeg
date: Sun, 05 Feb 2023 11:36:13 GMT
etag: "63decc6c-52f8"
expires: Tue, 07 Mar 2023 11:36:13 GMT
last-modified: Sat, 04 Feb 2023 21:21:48 GMT
server: ECS (ska/F70F)
x-cache: HIT
content-length: 21240
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bc3cdd90d0ea01ad8a789b3302c2dc07
7a9c5489f625c470f99c4313b46cac87c986db1f
1cddee6d073a2f7c726ce28acd4f02efd541847e901ad084f845ef26a6b4171d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bc3cdd90d0ea01ad8a789b3302c2dc07
7a9c5489f625c470f99c4313b46cac87c986db1f
1cddee6d073a2f7c726ce28acd4f02efd541847e901ad084f845ef26a6b4171d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bc3cdd90d0ea01ad8a789b3302c2dc07
7a9c5489f625c470f99c4313b46cac87c986db1f
1cddee6d073a2f7c726ce28acd4f02efd541847e901ad084f845ef26a6b4171d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bc3cdd90d0ea01ad8a789b3302c2dc07
7a9c5489f625c470f99c4313b46cac87c986db1f
1cddee6d073a2f7c726ce28acd4f02efd541847e901ad084f845ef26a6b4171d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bc3cdd90d0ea01ad8a789b3302c2dc07
7a9c5489f625c470f99c4313b46cac87c986db1f
1cddee6d073a2f7c726ce28acd4f02efd541847e901ad084f845ef26a6b4171d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/LmXVxkWjLT8/0.jpg
200 OK 27 kB URL HTTP/2 i.ytimg.com/vi/LmXVxkWjLT8/0.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 5567c29a354a1c0c4373d3551481159d
d2e6b34da6ce6142d8963fcd0431a3d080900568
9243206f60c38d658a6f79a3eb12e008b0fd2cc279cb2754362994fcc52523d2
GET /vi/LmXVxkWjLT8/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 26550
date: Sun, 05 Feb 2023 11:36:14 GMT
expires: Sun, 05 Feb 2023 13:36:14 GMT
cache-control: public, max-age=7200
etag: "1529484143"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi/-Hn-WnGPKVE/0.jpg
200 OK 26 kB URL HTTP/2 i.ytimg.com/vi/-Hn-WnGPKVE/0.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 0501af31bbf0ef3f1b76c3338e7d7315
32407c9f15396e73ca99839d0652e4327bcb13ce
657d1e69296b355232997afa0b2e7a400492a2f79a04c9ec7d1fdec4e854d881
GET /vi/-Hn-WnGPKVE/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 25734
date: Sun, 05 Feb 2023 11:36:14 GMT
expires: Sun, 05 Feb 2023 13:36:14 GMT
cache-control: public, max-age=7200
etag: "1578695976"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi/9MO1aY1xC80/0.jpg
200 OK 16 kB URL HTTP/2 i.ytimg.com/vi/9MO1aY1xC80/0.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash c25fa32eb84de22808302df195219b46
6706a762fc54dbb4d910728c6c45c5665dd5cd32
5c2cac59c561291383bef7863eaaa3d11e7e17342acc27bc79c535929868ce86
GET /vi/9MO1aY1xC80/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 15530
date: Sun, 05 Feb 2023 11:36:14 GMT
expires: Sun, 05 Feb 2023 13:36:14 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi/kwLbSx9BNbU/0.jpg
200 OK 25 kB URL HTTP/2 i.ytimg.com/vi/kwLbSx9BNbU/0.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 090afda944fc898236d2691b542b6a71
9de8726c638a10f5b22082b33ba20b9af448fbd4
5ec2022c097ea6dd4257376802ad13a4116909787d953779921c05e4b0feb304
GET /vi/kwLbSx9BNbU/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 25220
date: Sun, 05 Feb 2023 11:36:14 GMT
expires: Sun, 05 Feb 2023 13:36:14 GMT
cache-control: public, max-age=7200
etag: "1474930321"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi/HhxtfULIO7c/0.jpg
200 OK 32 kB URL HTTP/2 i.ytimg.com/vi/HhxtfULIO7c/0.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 68e5863b26be2aff250a50bbb5f4f897
abfe3358299c57fc372455b7f575126af43a7063
519f75817f7e7b847b1b886e74e58e1e09e12e9f37491ee3c9069198d2d2b0ae
GET /vi/HhxtfULIO7c/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 31809
date: Sun, 05 Feb 2023 11:36:14 GMT
expires: Sun, 05 Feb 2023 13:36:14 GMT
cache-control: public, max-age=7200
etag: "1557410841"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi/uxCL9UdGmF8/0.jpg
200 OK 36 kB URL HTTP/2 i.ytimg.com/vi/uxCL9UdGmF8/0.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 6c432c0e2c749a4db40a2680c3242743
eadc440e3baff0539c1666b1c580b66a83082a65
0efe3f33ded5b7d0d76613c52678eade677626431217a35bf71f784459df3a5d
GET /vi/uxCL9UdGmF8/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 36088
date: Sun, 05 Feb 2023 11:36:14 GMT
expires: Sun, 05 Feb 2023 13:36:14 GMT
cache-control: public, max-age=7200
etag: "1559336505"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi/fFf8EsPC_ws/0.jpg
200 OK 29 kB URL HTTP/2 i.ytimg.com/vi/fFf8EsPC_ws/0.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 52274bc287a7a250b815f429e1ca3ce5
7ca70c5a8123afdd360fa9a60f30dc6c485306b4
77b64a00fbe6ff52fa7e189b3b9623c076841692b6e5cf3b423a8558fd30d3a5
GET /vi/fFf8EsPC_ws/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 28867
date: Sun, 05 Feb 2023 11:36:14 GMT
expires: Sun, 05 Feb 2023 13:36:14 GMT
cache-control: public, max-age=7200
etag: "1539641798"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi/4nTtManGqbw/0.jpg
200 OK 24 kB URL HTTP/2 i.ytimg.com/vi/4nTtManGqbw/0.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash df45992f9dcf5eae111e9d3aa24f8f21
342fa1918797e81185ad92b2f662811ca034461b
589decac482f8a9b0088d06887a7172800d5766f6082001138dec5c065cc8188
GET /vi/4nTtManGqbw/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 23849
date: Sun, 05 Feb 2023 11:36:14 GMT
expires: Sun, 05 Feb 2023 13:36:14 GMT
cache-control: public, max-age=7200
etag: "1639605444"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.wn.com/or/assets/assets/avp/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL HTTP/2 cdn.wn.com/or/assets/assets/avp/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /or/assets/assets/avp/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdn.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://wn.com
Connection: keep-alive
Referer: https://ecdn2.wn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2069524
cache-control: max-age=2592000
content-type: application/octet-stream
date: Sun, 05 Feb 2023 11:36:14 GMT
etag: "60f8016e-12d68"
expires: Tue, 07 Mar 2023 11:36:14 GMT
last-modified: Wed, 21 Jul 2021 11:13:50 GMT
server: ECS (ska/F71C)
x-cache: HIT
content-length: 77160
X-Firefox-Spdy: h2
i.ytimg.com/vi/o99DlQkDUqU/0.jpg
200 OK 36 kB URL HTTP/2 i.ytimg.com/vi/o99DlQkDUqU/0.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 36d7fca786d962a1fbdc6bc590d5e44d
ded2c851587c78a66ac3c75faf6b78cd46437b6e
9aec5c59eb7a5f62c898ed85ad527aaadf391b6c6e25bcba73484ddb3a07face
GET /vi/o99DlQkDUqU/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 35704
date: Sun, 05 Feb 2023 11:36:14 GMT
expires: Sun, 05 Feb 2023 13:36:14 GMT
cache-control: public, max-age=7200
etag: "1533571975"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi/SPeEDP6rzu8/0.jpg
200 OK 23 kB URL HTTP/2 i.ytimg.com/vi/SPeEDP6rzu8/0.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 14e2720a8b8d74b449824ad0b0c84f68
60f9a97271477d362a4ccb8209e26b69bbf72b8d
e084fbab23b4103fcd2b12450fb70c43e7769a6cf967977fdca74232c0d603a2
GET /vi/SPeEDP6rzu8/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 23039
date: Sun, 05 Feb 2023 11:36:14 GMT
expires: Sun, 05 Feb 2023 13:36:14 GMT
cache-control: public, max-age=7200
etag: "1645736805"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bc3cdd90d0ea01ad8a789b3302c2dc07
7a9c5489f625c470f99c4313b46cac87c986db1f
1cddee6d073a2f7c726ce28acd4f02efd541847e901ad084f845ef26a6b4171d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVc.ttf
200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVc.ttf
IP
File type TrueType Font data, 18 tables, 1st "GDEF", 14 names, Microsoft, language 0x409, Copyright 2020 The Open Sans Project Authors (https://github.com/googlefonts/opensans)Open SansR\012- data
Hash 63f124cc58fb3f1e5e04b2961edc0f7b
a7e225ab157af0246fbc151ffe513c0b555032c5
484be1fa4b0ddf5a535046b293963ce7cfe6f2659f50309d7bdb6399a732637d
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVc.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wn.com
Connection: keep-alive
Referer: https://ecdn7.wn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21006
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:43:13 GMT
expires: Tue, 30 Jan 2024 18:43:13 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/ttf
age: 492781
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 5452c58c07ce8d3cade93b323b271c35
581b1e438daeb32a12feaf50f2aab17dcf3e3171
b99ea2af71e697f45db51732f7d3e8d3e50258c9c96e50a772b8c4638577140a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bf3aac491c68126ac02186621365ae11
a99cb9b521c178fb07b9549e067bea3cc299a6ab
2cc47903d391d58cfe7ae94fe9e30bab60229475bd74745b51ec5456c4d6a1ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CC47903D391D58CFE7AE94FE9E30BAB60229475BD74745B51EC5456C4D6A1EC"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7166
Expires: Sun, 05 Feb 2023 13:35:40 GMT
Date: Sun, 05 Feb 2023 11:36:14 GMT
Connection: keep-alive
login.wn.com/actions/i/?callback=jQuery1605691687605794304_1675597014095&edit=Animation+Lead&owner=wn&author=rechie&atUrl=https%3A%2F%2Fwn.com%2FAnimation_lead&fromUrl=animationlead.com&built=1675596098.26&_=1675597014139
200 OK 1.1 kB URL HTTP/1.1 login.wn.com/actions/i/?callback=jQuery1605691687605794304_1675597014095&edit=Animation+Lead&owner=wn&author=rechie&atUrl=https%3A%2F%2Fwn.com%2FAnimation_lead&fromUrl=animationlead.com&built=1675596098.26&_=1675597014139
IP
ASN #43081 World News PTE. LTD
File type HTML document, ASCII text, with very long lines (1089), with no line terminators
Hash 11220fb80bf6cb8de85439eb31746958
06b0d77e1f3c74535f65f51a56625a18c04fe0ec
347bbe01faa92824a9ae8dccb111fea90f7e19492f6df913468ab6c34170b9dd
GET /actions/i/?callback=jQuery1605691687605794304_1675597014095&edit=Animation+Lead&owner=wn&author=rechie&atUrl=https%3A%2F%2Fwn.com%2FAnimation_lead&fromUrl=animationlead.com&built=1675596098.26&_=1675597014139 HTTP/1.1
Host: login.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Security-Policy: frame-ancestors 'self' wn.com *.wn.com worldnews.com *.worldnews.com;
Vary: Cookie, Accept-Language
Content-Length: 1089
Content-Type: text/html; charset=utf-8
Content-Language: en
Set-Cookie: wnuser=; Domain=.wn.com; expires=Sun, 19-Feb-2023 11:36:14 GMT; Max-Age=1209600; Path=/
Date: Sun, 05 Feb 2023 11:36:14 GMT
Server: lighttpd
phpadsnew.wn.com/www/delivery/ajs.php?zoneid=464&cb=82341946127&charset=UTF-8&loc=https%3A//wn.com/Animation_lead
200 OK 0 B URL HTTP/2 phpadsnew.wn.com/www/delivery/ajs.php?zoneid=464&cb=82341946127&charset=UTF-8&loc=https%3A//wn.com/Animation_lead
IP
ASN #43081 World News PTE. LTD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /www/delivery/ajs.php?zoneid=464&cb=82341946127&charset=UTF-8&loc=https%3A//wn.com/Animation_lead HTTP/1.1
Host: phpadsnew.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 11:36:14 GMT
content-type: application/javascript
content-length: 0
last-modified: Wed, 10 Jan 2018 02:10:23 GMT
etag: "5a55760f-0"
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
ecdn4.wn.com/or/images/search-button.png
200 OK 1.5 kB URL HTTP/2 ecdn4.wn.com/or/images/search-button.png
IP
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash b2f119a1b46a6e171837dc51635af8e6
038edd75f773216565e4017853c0f7158565dd80
75e518fdd45541be6d902d2fa6fc70d8228f3eac59935d89d9b77768d6995485
GET /or/images/search-button.png HTTP/1.1
Host: ecdn4.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650; wnuser=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1473808
cache-control: max-age=2592000
content-type: image/png
date: Sun, 05 Feb 2023 11:36:14 GMT
etag: "527a24af-5d7"
expires: Tue, 07 Mar 2023 11:36:14 GMT
last-modified: Wed, 06 Nov 2013 11:14:55 GMT
server: ECS (ska/F6FC)
x-cache: HIT
content-length: 1495
X-Firefox-Spdy: h2
ecdn7.wn.com/or/images/anything/iconSprite.png
200 OK 23 kB URL HTTP/2 ecdn7.wn.com/or/images/anything/iconSprite.png
IP
File type PNG image data, 360 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash f7ab28c297e49d9ce998ef580505a905
57d8a5eddf9d437e87270e660297b6d47de2e806
2e4500bc47341cdc2bf91b165c6f489a65c65c8516dc92877459479a26c79123
GET /or/images/anything/iconSprite.png HTTP/1.1
Host: ecdn7.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecdn7.wn.com/vp/m/b3/46fdad8764c144cad1ce9d0549eed6.css
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650; wnuser=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1584708
cache-control: max-age=2592000
content-type: image/png
date: Sun, 05 Feb 2023 11:36:14 GMT
etag: "54ca1b8b-59f5"
expires: Tue, 07 Mar 2023 11:36:14 GMT
last-modified: Thu, 29 Jan 2015 11:37:47 GMT
server: ECS (ska/F711)
x-cache: HIT
content-length: 23029
X-Firefox-Spdy: h2
phpadsnew.wn.com/www/delivery/ajs.php?zoneid=465&cb=10033499261&charset=UTF-8&loc=https%3A//wn.com/Animation_lead
200 OK 0 B URL HTTP/2 phpadsnew.wn.com/www/delivery/ajs.php?zoneid=465&cb=10033499261&charset=UTF-8&loc=https%3A//wn.com/Animation_lead
IP
ASN #43081 World News PTE. LTD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /www/delivery/ajs.php?zoneid=465&cb=10033499261&charset=UTF-8&loc=https%3A//wn.com/Animation_lead HTTP/1.1
Host: phpadsnew.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650; wnuser=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 11:36:14 GMT
content-type: application/javascript
content-length: 0
last-modified: Wed, 10 Jan 2018 02:10:23 GMT
etag: "5a55760f-0"
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
phpadsnew.wn.com/www/delivery/ajs.php?zoneid=465&cb=98283478102&charset=UTF-8&loc=https%3A//wn.com/Animation_lead
200 OK 0 B URL HTTP/2 phpadsnew.wn.com/www/delivery/ajs.php?zoneid=465&cb=98283478102&charset=UTF-8&loc=https%3A//wn.com/Animation_lead
IP
ASN #43081 World News PTE. LTD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /www/delivery/ajs.php?zoneid=465&cb=98283478102&charset=UTF-8&loc=https%3A//wn.com/Animation_lead HTTP/1.1
Host: phpadsnew.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650; wnuser=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 11:36:14 GMT
content-type: application/javascript
content-length: 0
last-modified: Wed, 10 Jan 2018 02:10:23 GMT
etag: "5a55760f-0"
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
ecdn3.wn.com/or/images/modal-gloss.png
200 OK 2.9 kB URL HTTP/2 ecdn3.wn.com/or/images/modal-gloss.png
IP
File type PNG image data, 800 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 14ac18a2f0348c88734800f89bba0fdc
b13d3c9a3fa766b2e5bdcf83d314186dd7aeebfc
7d2aab4db2f4758ad052077dde124507d2f84e8c7a0d882853b271b8ea189671
GET /or/images/modal-gloss.png HTTP/1.1
Host: ecdn3.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecdn7.wn.com/
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650; wnuser=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1328466
cache-control: max-age=2592000
content-type: image/png
date: Sun, 05 Feb 2023 11:36:14 GMT
etag: "4d777040-b60"
expires: Tue, 07 Mar 2023 11:36:14 GMT
last-modified: Wed, 09 Mar 2011 12:19:12 GMT
server: ECS (ska/F6FD)
x-cache: HIT
content-length: 2912
X-Firefox-Spdy: h2
ecdn8.wn.com/or/images/anything/wn_logo.png
200 OK 21 kB URL HTTP/2 ecdn8.wn.com/or/images/anything/wn_logo.png
IP
File type PNG image data, 103 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash bf72e190ccfecf3dc63c309c6846e6a1
004e3a54712fdd211a95862f2b07b7193129571d
09a1d4878b57d2213d92b601941bd1e48c28a1b32746aad4d1478e95bb907c4b
GET /or/images/anything/wn_logo.png HTTP/1.1
Host: ecdn8.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecdn7.wn.com/
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650; wnuser=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1311749
cache-control: max-age=2592000
content-type: image/png
date: Sun, 05 Feb 2023 11:36:14 GMT
etag: "5491cdfe-536b"
expires: Tue, 07 Mar 2023 11:36:14 GMT
last-modified: Wed, 17 Dec 2014 18:39:58 GMT
server: ECS (ska/F705)
x-cache: HIT
content-length: 21355
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4gaVc.ttf
200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4gaVc.ttf
IP
File type TrueType Font data, 18 tables, 1st "GDEF", 16 names, Microsoft, language 0x409, Copyright 2020 The Open Sans Project Authors (https://github.com/googlefonts/opensans)Open Sans \012- data
Hash ead36ae9b8f3825b43f1a85f6cfe9878
fa9dd17c86d42e27e5a26a03b99c4fa465ece38a
80891f3a33b7c5edeff83dfa379d079cecae7f771e18fc48c532a46d80c3d19c
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4gaVc.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wn.com
Connection: keep-alive
Referer: https://ecdn7.wn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 Feb 2023 10:20:37 GMT
expires: Sun, 04 Feb 2024 10:20:37 GMT
cache-control: public, max-age=31536000
age: 90937
last-modified: Mon, 15 Aug 2022 18:16:21 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVc.ttf
200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVc.ttf
IP
File type TrueType Font data, 18 tables, 1st "GDEF", 16 names, Microsoft, language 0x409, Copyright 2020 The Open Sans Project Authors (https://github.com/googlefonts/opensans)Open Sans \012- data
Hash fd816bf7723bd214d5066c1672245b9d
8a9f574374e65484bb793991b42ff7e84304aceb
a1e818be945b050af4a1e52b23f58df6f188f1585ffedcaf58550d9751147efd
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVc.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wn.com
Connection: keep-alive
Referer: https://ecdn7.wn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20969
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 19:35:11 GMT
expires: Thu, 01 Feb 2024 19:35:11 GMT
cache-control: public, max-age=31536000
age: 316863
last-modified: Mon, 15 Aug 2022 18:16:22 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ecdn0.wn.com/st/favicon-20131209.ico
200 OK 5.4 kB URL HTTP/2 ecdn0.wn.com/st/favicon-20131209.ico
IP
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 85efd37ab472d135bea2d2637c0a8e6c
871c17eeb9694c1a4d643332815d1cbace72ffdf
caab4b62e57d412908f5f028a315fc768b66032eaf461713ae4bb2386fcec082
GET /st/favicon-20131209.ico HTTP/1.1
Host: ecdn0.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Animation_lead
Connection: keep-alive
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650; wnuser=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1706401
cache-control: max-age=2592000
content-type: image/x-icon
date: Sun, 05 Feb 2023 11:36:14 GMT
etag: "52aafabe-1536"
expires: Tue, 07 Mar 2023 11:36:14 GMT
last-modified: Fri, 13 Dec 2013 12:17:02 GMT
server: ECS (ska/F705)
x-cache: HIT
content-length: 5430
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 721c3f2797fcac86eff0c208d119cba7
d9f8bc5796e32c8679f440a4ed55b2e389cc7345
fc2c30fe66b2dd2d05f7a2d76b5ad9b3689c2f8439d14921fc70b190e9944c37
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6289
Cache-Control: max-age=170461
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:14 GMT
Etag: "63df72fa-1d7"
Expires: Tue, 07 Feb 2023 10:57:15 GMT
Last-Modified: Sun, 05 Feb 2023 09:12:26 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 153d0de36959c722c00df71ba86daca2
305f56a3134879ebf0828e169e903e560540c070
0cf533a798d42d1e97fb6619a411afadf9a68c92302ba852869b0c0555a47987
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c7d887fc3e3b7a68b7872c76802085c0
eb26f820776e7d87a00489eb14f918e5f6945835
915e873e95d8f0276f4763e5596b03cac487f6f8a36c65577c6622fc8560d929
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ecdn4.wn.com/or/images/anything/iconSprite01.png
200 OK 12 kB URL HTTP/2 ecdn4.wn.com/or/images/anything/iconSprite01.png
IP
File type PNG image data, 160 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e8bcaec57099e10dd5c11c6abb99f1f
812c2f4a499ab52db22395f1904308ca36453f68
833cd1b4ba4bec28f8f6df2ae860401ded67c60d3f4eb74183330aac2ebd34cc
GET /or/images/anything/iconSprite01.png HTTP/1.1
Host: ecdn4.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecdn7.wn.com/
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650; wnuser=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1077705
cache-control: max-age=2592000
content-type: image/png
date: Sun, 05 Feb 2023 11:36:14 GMT
etag: "52dd0bb1-2e16"
expires: Tue, 07 Mar 2023 11:36:14 GMT
last-modified: Mon, 20 Jan 2014 11:42:41 GMT
server: ECS (ska/F70F)
x-cache: HIT
content-length: 11798
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP
File type ASCII text, with very long lines (1957)
Hash 76866d4562a57015654216b33685fa9a
03cafabb490c102c89881243fda9ff86681e9f41
fdd6f41d3d36b748c20caf1f2b4d8befaa1186b882174a3f9c25ab30bbe48546
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 7615a9ecfd85f8f4aa3fbeef3e0143ba
etag: "5152a03a4d4d51adeb6e9e033de3ce60"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 05 Feb 2023 11:43:18 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: doZtRWKlcBVlQhazNoX6mg==
x-fb-debug: k4IpnJc6UHON+dk8EfZoMz/+ETJMpLUJ/PZRBS/eYDcZ+tm8dujyokFmGf1zKOvPWtqJHTG7a+7kwwNQFgh0CA==
content-length: 1688
x-fb-trip-id: 1904183273
date: Sun, 05 Feb 2023 11:36:14 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ssl.google-analytics.com/ga.js
200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Sun, 05 Feb 2023 09:43:07 GMT
expires: Sun, 05 Feb 2023 11:43:07 GMT
cache-control: public, max-age=7200
age: 6787
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 13445df27c5946c36783669a3417a5fa
650b82bef702b6f9cb428b1bfcb78ed6ffde305a
46f9aaa584df5a324426eb0e3effc01b7d0a93c285d4d7060ec39dba2b5b06ff
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3831
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:14 GMT
Last-Modified: Sun, 05 Feb 2023 10:32:23 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 721c3f2797fcac86eff0c208d119cba7
d9f8bc5796e32c8679f440a4ed55b2e389cc7345
fc2c30fe66b2dd2d05f7a2d76b5ad9b3689c2f8439d14921fc70b190e9944c37
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6289
Cache-Control: max-age=170461
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:14 GMT
Etag: "63df72fa-1d7"
Expires: Tue, 07 Feb 2023 10:57:15 GMT
Last-Modified: Sun, 05 Feb 2023 09:12:26 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
www.youtube.com/iframe_api
200 OK 960 B URL HTTP/2 www.youtube.com/iframe_api
IP
File type ASCII text, with very long lines (509)
Hash b5ac36e70fadde2354b0319d467357a2
69337c6c914491acab76d676f7a6e352c9e7aa9e
53f51ee8cd0e2c84b392423cc3f93ef1c3f45f6e5e43900cd44c341dc9e9340f
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Sun, 05 Feb 2023 11:36:14 GMT
date: Sun, 05 Feb 2023 11:36:14 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=ZaTY6D2uXXY; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TmpZek5ESXdORGswTXpVMU9Ua3dOdz09EK6p/p4GGK6p/p4G; Domain=.youtube.com; Expires=Fri, 04-Aug-2023 11:36:14 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=u45Am9YW5cM; Domain=.youtube.com; Expires=Fri, 04-Aug-2023 11:36:14 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+406; expires=Tue, 04-Feb-2025 11:36:14 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c7d887fc3e3b7a68b7872c76802085c0
eb26f820776e7d87a00489eb14f918e5f6945835
915e873e95d8f0276f4763e5596b03cac487f6f8a36c65577c6622fc8560d929
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ecdn5.wn.com/or/images/anything/playPrev-button.png
200 OK 1.2 kB URL HTTP/2 ecdn5.wn.com/or/images/anything/playPrev-button.png
IP
File type PNG image data, 40 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash d40e721bb45540c731cd069549c45859
cf7840cc906d96b44a7e39ff70b6a77abdd45626
d8a99f8f9e3b8687de480656020524b6b082d7c53f312d2e6bd7b6de1ec4f551
GET /or/images/anything/playPrev-button.png HTTP/1.1
Host: ecdn5.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecdn7.wn.com/
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650; wnuser=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1617331
cache-control: max-age=2592000
content-type: image/png
date: Sun, 05 Feb 2023 11:36:14 GMT
etag: "52823ee9-4ce"
expires: Tue, 07 Mar 2023 11:36:14 GMT
last-modified: Tue, 12 Nov 2013 14:44:57 GMT
server: ECS (ska/F6FC)
x-cache: HIT
content-length: 1230
X-Firefox-Spdy: h2
ecdn7.wn.com/or/images/anything/playNext-button.png
200 OK 1.2 kB URL HTTP/2 ecdn7.wn.com/or/images/anything/playNext-button.png
IP
File type PNG image data, 40 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash ebf2ea4fe56d77d2aaefb640fd531903
d185d902bb6c9fd4a6f9ad7e4a5cae6b2f025b31
00bf6fba58238d4276a3b6696ec6c433a774e1e0d4c847dccd2abd2e0d4443bf
GET /or/images/anything/playNext-button.png HTTP/1.1
Host: ecdn7.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecdn7.wn.com/vp/m/b3/46fdad8764c144cad1ce9d0549eed6.css
Cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650; wnuser=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 452896
cache-control: max-age=2592000
content-type: image/png
date: Sun, 05 Feb 2023 11:36:14 GMT
etag: "52823eef-4cc"
expires: Tue, 07 Mar 2023 11:36:14 GMT
last-modified: Tue, 12 Nov 2013 14:45:03 GMT
server: ECS (ska/F710)
x-cache: HIT
content-length: 1228
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-69LMgINxZpq8g.js
200 OK 160 B URL HTTP/2 rules.quantcount.com/rules-p-69LMgINxZpq8g.js
IP
Hash fe96e03f7c0d362c88679871f1033b46
7c0833d6c505158372b2ca5dc128e50272e0aa28
2d6c593d43f105a41a1a7542f0761e4f1e10f3b3be40ad6e662d3c227980bfe5
GET /rules-p-69LMgINxZpq8g.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 160
last-modified: Thu, 13 Oct 2022 16:28:03 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Sun, 05 Feb 2023 11:12:54 GMT
cache-control: max-age=3600
etag: "fe96e03f7c0d362c88679871f1033b46"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -vVosJsMbALs4nlYzU7Mm7cdkUxyVCUdYjsdn5FcwRfDCcfWaC96Fw==
age: 1497
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5ac5aaa2dd1a2ab697244f3c0fe3b5b5
bb8a9aeb28cc645435760f3a9a57d85e295de419
d42327bb295e41a2b04efa1c2ad6094a3480d0010de10bb32600f4d17fe9f0d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-5075628-13&cid=1613867570.1675597015&jid=1712859603&_v=5.7.2&z=2032380546
302 Found 369 B URL HTTP/2 stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-5075628-13&cid=1613867570.1675597015&jid=1712859603&_v=5.7.2&z=2032380546
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash f87ee835caf5412d68ef92a7a3f42888
bb95e9dd988c9c18895f590db08c3e55a9f1fb96
b3c84afc2179a7a4f0f19fa70c805aa2ca7ac98af3cd179e60e88fc29cbf2f20
GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-5075628-13&cid=1613867570.1675597015&jid=1712859603&_v=5.7.2&z=2032380546 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-5075628-13&cid=1613867570.1675597015&jid=1712859603&_v=5.7.2&z=2032380546
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 05 Feb 2023 11:36:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 369
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pixel.quantserve.com/pixel;r=723614327;labels=wn.anything.main;rf=0;a=p-69LMgINxZpq8g;url=https%3A%2F%2Fwn.com%2Fanimation_lead%2Fnews;uht=2;fpan=1;fpa=P0-789637171-1675597014879;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20230203135208;cm=;gdpr=0;ref=;d=wn.com;dst=0;et=1675597014951;tzo=0;ogl=title.Animation%20Lead%2Curl.https%3A%2F%2Fwn%252Ecom%2FAnimation_Lead%2Cimage.https%3A%2F%2Fi%252Eytimg%252Ecom%2Fvi%2Fo99DlQkDUqU%2F0%252Ejpg%2Csite_name.World%20News%2Cvideo.http%3A%2F%2Fwww%252Eyoutube-nocookie%252Ecom%2Fv%2Fo99DlQkDUqU%2Cvideo%3Aheight.240%2Cvideo%3Awidth.320%2Cvideo%3Atype.application%2Fx-shockwave-flash;ses=ae000449-a804-4b1a-a003-6b436ee2d309
200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=723614327;labels=wn.anything.main;rf=0;a=p-69LMgINxZpq8g;url=https%3A%2F%2Fwn.com%2Fanimation_lead%2Fnews;uht=2;fpan=1;fpa=P0-789637171-1675597014879;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20230203135208;cm=;gdpr=0;ref=;d=wn.com;dst=0;et=1675597014951;tzo=0;ogl=title.Animation%20Lead%2Curl.https%3A%2F%2Fwn%252Ecom%2FAnimation_Lead%2Cimage.https%3A%2F%2Fi%252Eytimg%252Ecom%2Fvi%2Fo99DlQkDUqU%2F0%252Ejpg%2Csite_name.World%20News%2Cvideo.http%3A%2F%2Fwww%252Eyoutube-nocookie%252Ecom%2Fv%2Fo99DlQkDUqU%2Cvideo%3Aheight.240%2Cvideo%3Awidth.320%2Cvideo%3Atype.application%2Fx-shockwave-flash;ses=ae000449-a804-4b1a-a003-6b436ee2d309
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=723614327;labels=wn.anything.main;rf=0;a=p-69LMgINxZpq8g;url=https%3A%2F%2Fwn.com%2Fanimation_lead%2Fnews;uht=2;fpan=1;fpa=P0-789637171-1675597014879;pbc=;ns=0;ce=1;qjs=1;qv=bf501fc4-20230203135208;cm=;gdpr=0;ref=;d=wn.com;dst=0;et=1675597014951;tzo=0;ogl=title.Animation%20Lead%2Curl.https%3A%2F%2Fwn%252Ecom%2FAnimation_Lead%2Cimage.https%3A%2F%2Fi%252Eytimg%252Ecom%2Fvi%2Fo99DlQkDUqU%2F0%252Ejpg%2Csite_name.World%20News%2Cvideo.http%3A%2F%2Fwww%252Eyoutube-nocookie%252Ecom%2Fv%2Fo99DlQkDUqU%2Cvideo%3Aheight.240%2Cvideo%3Awidth.320%2Cvideo%3Atype.application%2Fx-shockwave-flash;ses=ae000449-a804-4b1a-a003-6b436ee2d309 HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 11:36:14 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=63df94ae-ed61d-7ddb6-8d6ea; expires=Thu, 07-Mar-2024 11:36:14 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 28 kB IP
Hash b628e188ba50d0307fe27b3ef87f65da
191a22ce5d84a9c16c894d472e99849f30b6302a
17abe5d2c98313c592cce6e642fd041ceaf5d80309c5b9e18725d7064bc6971b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a78b06ca527ce7542b24b349e0485d8b
6f5e5126c1c9d40c9ba09d58e1755d2ca39d02ab
bc7dc156ab8b2b33422fff0922e219246eb1d12469d10ac8007416fed41ac473
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3734
Expires: Sun, 05 Feb 2023 12:38:29 GMT
Date: Sun, 05 Feb 2023 11:36:15 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3734
Expires: Sun, 05 Feb 2023 12:38:29 GMT
Date: Sun, 05 Feb 2023 11:36:15 GMT
Connection: keep-alive
www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-5075628-13&cid=1613867570.1675597015&jid=1712859603&_v=5.7.2&z=2032380546
302 Found 0 B URL HTTP/2 www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-5075628-13&cid=1613867570.1675597015&jid=1712859603&_v=5.7.2&z=2032380546
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-5075628-13&cid=1613867570.1675597015&jid=1712859603&_v=5.7.2&z=2032380546 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 05 Feb 2023 11:36:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-5075628-13&cid=1613867570.1675597015&jid=1712859603&_v=5.7.2&z=2032380546&slf_rd=1&random=1336675673
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 013fa296-a431-410b-b3fb-7417b3e877eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpIQAFCMIAMF0Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9ed99-2e1daa8b75977de07c48b8fc;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 04:42:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UzQGDCYe_8AuYYLaLSAWzHQhwJMpzpXWbjE5AwukevW6G6SLDxDjmA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:42:59 GMT
age: 28396
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0def934-b27d-4612-bab8-84bfb73a9960.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0def934-b27d-4612-bab8-84bfb73a9960.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5beaead015b2b4fb6d36009926ba0378
67e7c49ea7648fc6d1dffc22588862c993b785b7
6ae0cec9ade23fd53e9c1407b0324a8060892a65a6b675ccffa4a4c82b66f1ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0def934-b27d-4612-bab8-84bfb73a9960.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7589
x-amzn-requestid: 280f7003-2696-4a82-bd50-82b0a2b66faf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fsSpoEA0oAMFSBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db3170-35dcb9513c891af201b973d1;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 03:43:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: IxfTibTq6T_wq9a5YCIBZLBb70BI7AOLEAYMYYuMZPhvVKjDbFfrvA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:52:08 GMT
etag: "67e7c49ea7648fc6d1dffc22588862c993b785b7"
content-type: image/jpeg
age: 49447
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d53279-1206-40a7-be9b-b504e0748218.jpeg
200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d53279-1206-40a7-be9b-b504e0748218.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7fff69db25a1c7a3fbe154a3c80ac5aa
638e08807f73b70ab87b804816f9eb3e8dd2aa74
be96b347ba90dda9c39975077d963ff875831a14a4269e28edc0d2f80928bba6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d53279-1206-40a7-be9b-b504e0748218.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: af4c4533-48b8-4b02-951a-3e61933fb126
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3fyFrMoAMFr_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c64-0346b30d0ded67912070f671;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:06:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IJBXK8DSlmaj48MVSTo-8A69jOe3x2cvnZYRLfyXZ7jZWqsMbTZsEg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:43:26 GMT
age: 49969
etag: "638e08807f73b70ab87b804816f9eb3e8dd2aa74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a4eed23b240d04a3cd6b085cfa93375
f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00
93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10905
x-amzn-requestid: 093778fc-231c-452f-a6fc-15f4eb41ade0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmNJCEDzIAMFmxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8c239-7f56d6e56392f373541db219;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:24:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WVfpilnwhnRXBhJkHBWjxxoP09f7SqlRk8CdWRWOubIIwe0CX89bUA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:09:58 GMT
age: 48377
etag: "f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 251f1a5d671fb797fb98e9a71754c341
335425603d9eec146a3c03422dbca91134272e53
74932f07561287e33302aabcf9c639e9df7ae0fbc4bf71f5467310aabafea208
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6202
x-amzn-requestid: 01b85fcd-69a0-49da-8640-32a3ef19378a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bUFEJoAMFapg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c48-14817e717361e09170714e9d;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1_1mEN4j5cciWEiimz4PRjx3PNGnrSRib9oEJAdYLrrtyjqnz_zvcQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 11:30:31 GMT
age: 344
etag: "335425603d9eec146a3c03422dbca91134272e53"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b6c30ad03669b66bf2f63b3edd69882
e630bd132b52b965a5ade646ea8a165d1abf6d7b
f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 11:24:01 GMT
age: 734
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8077210062c315b98902cb06c74d485b
808e94ac31f1b45185103ce25c1bc2afd056b17a
78871f45de0c58bffa6a86b50f6bd0db61932bf6a2b7d8191dba0f0eaab628b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-5075628-13&cid=1613867570.1675597015&jid=1712859603&_v=5.7.2&z=2032380546&slf_rd=1&random=1336675673
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-5075628-13&cid=1613867570.1675597015&jid=1712859603&_v=5.7.2&z=2032380546&slf_rd=1&random=1336675673
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-5075628-13&cid=1613867570.1675597015&jid=1712859603&_v=5.7.2&z=2032380546&slf_rd=1&random=1336675673 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 05 Feb 2023 11:36:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8077210062c315b98902cb06c74d485b
808e94ac31f1b45185103ce25c1bc2afd056b17a
78871f45de0c58bffa6a86b50f6bd0db61932bf6a2b7d8191dba0f0eaab628b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 185b62fe607d5d833cc1717b68f3f7b7
ab6b571fdfcd1d1cdb923c48f53df4ecd74d85c2
656d98d306ebfcdea0dff590c34a6ce1496faa95ba05fb86f72a5e57e295f61b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sun, 05 Feb 2023 11:36:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.doubleclick.net/instream/ad_status.js
200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 11:28:12 GMT
expires: Sun, 05 Feb 2023 11:43:12 GMT
cache-control: public, max-age=900
age: 483
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 185b62fe607d5d833cc1717b68f3f7b7
ab6b571fdfcd1d1cdb923c48f53df4ecd74d85c2
656d98d306ebfcdea0dff590c34a6ce1496faa95ba05fb86f72a5e57e295f61b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 05 Feb 2023 11:36:15 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 378adbc3f4f33350c182d815aa1a33ec
0fa2f8d223cd7107426e767a64918e98e9181c45
99f4e400d8571d7f2258f699d5b54457c18442e50513fdeb601685ce41ed108f
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 05 Feb 2023 11:36:15 GMT
server: ESF
cache-control: private
content-length: 31261
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4b89c5c00cc87658461f2b7f7b4286d7
4ebc7969c342e80d97cbc96c397f9f90789d6124
93ced48af967cdfd78f47bb15ee0ac4c4600754a9cfc984dd268b9a7d1ac2451
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/kjKsRMN3r_rQtYdVLAvv8CrAJVOMuXrFqscZb2HJ5h1qvabIVKyurqty6YOovOC_v9cffLcNlA=s68-c-k-c0x00ffffff-no-rj
200 OK 1.7 kB URL HTTP/2 yt3.ggpht.com/kjKsRMN3r_rQtYdVLAvv8CrAJVOMuXrFqscZb2HJ5h1qvabIVKyurqty6YOovOC_v9cffLcNlA=s68-c-k-c0x00ffffff-no-rj
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash a608a9a0a3370f8dc8e225c96ef867ec
79fe21b49650240642ac14e84dbffbd0fab6bf55
366e60c70caa724b968c9ffdece8af22d2cd31e0e50c716e337aebbc0304870e
GET /kjKsRMN3r_rQtYdVLAvv8CrAJVOMuXrFqscZb2HJ5h1qvabIVKyurqty6YOovOC_v9cffLcNlA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Mon, 06 Feb 2023 11:36:15 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="channels4_profile.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 05 Feb 2023 11:36:15 GMT
server: fife
content-length: 1715
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4b89c5c00cc87658461f2b7f7b4286d7
4ebc7969c342e80d97cbc96c397f9f90789d6124
93ced48af967cdfd78f47bb15ee0ac4c4600754a9cfc984dd268b9a7d1ac2451
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 11:36:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 05 Feb 2023 11:36:16 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
wn.com/Animation_lead?from=animationlead.com
200 OK 0 B URL HTTP/2 wn.com/Animation_lead?from=animationlead.com
IP
ASN #43081 World News PTE. LTD
GET /Animation_lead?from=animationlead.com HTTP/1.1
Host: wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 11:36:13 GMT
content-type: text/html; charset=utf-8
set-cookie: wnTrk=wn.1675596973.647162.wnstatic2.15410.6650; Domain=.wn.com; expires=Tue, 06 Feb 2091 00:10:13 GMT
vary: Accept-Encoding, User-Agent
cache-control: must-revalidate
strict-transport-security: max-age=15768000
content-encoding: gzip
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
200 OK 0 B URL HTTP/2 secure.quantserve.com/quant.js
IP
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 11:36:14 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "u+riIbpeWSVolXo4r+dT2g=="
expires: Sun, 12 Feb 2023 11:36:14 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
195.149.84.100
35.241.9.150
95.217.0.30
31.13.72.12
23.33.119.27
0.0.0.0