Overview

URL thelesbillennial.com/
IP66.96.147.144
ASNBIZLAND-SD
Location United States
Report completed2022-09-09 09:50:50 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-09 2 thelesbillennial.com/ Malware
2022-09-09 2 thelesbillennial.com/lesbillennial.fe58be43.js Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (25)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS ocsp.pki.goog (9) 175 2017-06-14 07:23:31 UTC 2022-09-09 04:41:59 UTC 142.250.74.3
mnemonic passive DNS thelesbillennial.com (2) 0 2022-06-11 08:19:55 UTC 2022-09-07 19:28:24 UTC 66.96.147.144 Unknown ranking
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-08-29 13:43:22 UTC 2022-09-09 04:41:01 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS in-us-east-event-hubs.servicebus.windows.net (1) 84709 2017-01-30 07:44:58 UTC 2022-09-08 23:15:38 UTC 13.92.180.208
mnemonic passive DNS static.cloudflareinsights.com (1) 1294 2019-09-24 14:34:56 UTC 2022-09-09 06:52:00 UTC 172.64.156.26
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-09 04:40:05 UTC 23.36.76.226
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-09 04:47:11 UTC 143.204.55.25
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-09 04:48:21 UTC 34.117.237.239
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-09 04:39:53 UTC 142.250.74.72
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-09 04:43:53 UTC 34.213.140.56
mnemonic passive DNS hostingapi.mywebsitebuilder.com (2) 276363 2019-10-14 12:53:12 UTC 2022-09-08 23:15:37 UTC 104.19.163.10
mnemonic passive DNS scontent.cdninstagram.com (8) 1107 2015-03-24 22:31:41 UTC 2022-09-09 01:24:12 UTC 31.13.72.53
mnemonic passive DNS blog-viewer-api.mywebsitebuilder.com (1) 0 2019-07-29 12:03:15 UTC 2022-09-08 17:41:21 UTC 104.19.163.10 Domain (mywebsitebuilder.com) ranked at: 66025
mnemonic passive DNS components.mywebsitebuilder.com (1) 72103 2018-06-25 11:03:17 UTC 2022-09-08 23:20:52 UTC 35.190.14.35
mnemonic passive DNS ocsp.digicert.com (9) 86 2012-05-21 07:02:23 UTC 2022-09-09 06:05:00 UTC 93.184.220.29
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-09-09 09:00:59 UTC 142.250.74.10
mnemonic passive DNS images.builderservices.io (9) 191988 2019-05-08 22:39:33 UTC 2022-09-08 23:15:37 UTC 104.18.150.9
mnemonic passive DNS snapwidget.com (12) 52354 2012-07-20 15:48:14 UTC 2022-09-09 07:18:32 UTC 104.26.8.123
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-09 04:40:33 UTC 34.120.237.76
mnemonic passive DNS in-app.mywebsitebuilder.com (1) 206727 2019-03-15 07:52:06 UTC 2022-09-08 23:15:38 UTC 104.19.163.10
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-09 05:37:59 UTC 143.204.55.35
mnemonic passive DNS ocsp.sectigo.com (2) 487 2018-12-17 11:31:55 UTC 2022-09-09 08:30:26 UTC 172.64.155.188
mnemonic passive DNS runtime.builderservices.io (1) 168527 2020-05-13 04:28:08 UTC 2022-09-08 23:15:37 UTC 104.18.150.9
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-09 06:20:37 UTC 216.239.34.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS storage.googleapis.com (1) 420 2015-06-18 16:11:52 UTC 2022-09-09 08:30:30 UTC 142.250.74.144


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 66.96.147.144

Date UQ / IDS / BL URL IP
2022-11-23 02:56:15 +0000
0 - 0 - 2 mysocceruniforms.com/system/logs/k1.exe 66.96.147.144
2022-11-08 02:46:19 +0000
0 - 0 - 2 mysocceruniforms.com/system/logs/k1.exe 66.96.147.144
2022-10-26 03:31:04 +0000
0 - 0 - 5 yoursoulsalvation.net/ 66.96.147.144
2022-10-25 17:10:21 +0000
0 - 0 - 5 911criticalcare.com/ 66.96.147.144
2022-10-25 04:29:16 +0000
0 - 0 - 4 mnfashion.net/ 66.96.147.144

Last 5 reports on ASN: BIZLAND-SD

Date UQ / IDS / BL URL IP
2022-12-02 05:25:08 +0000
0 - 0 - 2 cidel.mobi/ 66.96.149.32
2022-12-02 05:15:06 +0000
0 - 0 - 1 lavenderhaze.net/ 66.96.162.136
2022-12-02 05:11:29 +0000
0 - 0 - 2 kerrydevinelaw.com/ 66.96.162.150
2022-12-02 05:11:00 +0000
0 - 0 - 1 dails.tech/ 66.96.162.139
2022-12-02 04:56:32 +0000
0 - 0 - 2 woodstockil.name/ 66.96.149.23

Last 1 reports on domain: thelesbillennial.com

Date UQ / IDS / BL URL IP
2022-09-09 09:50:50 +0000
0 - 0 - 2 thelesbillennial.com/ 66.96.147.144

No other reports with similar screenshot



JavaScript

Executed Scripts (20)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (81)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 09 Sep 2022 09:05:45 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ozU7HNPPe0jTJsc2xoGKeMLK-32qs24V76zeQl6osCsnBIdPRQZZYw==
Age: 2694


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    99b7d23c1748d0526782b9ff9ea45f09
Sha1:   eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
Sha256: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4B09E1D2B887DED061E4EC5F82EC70CE699EEED428ACC6B4FD3EF10ED9233C89"
Last-Modified: Thu, 08 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14560
Expires: Fri, 09 Sep 2022 13:53:20 GMT
Date: Fri, 09 Sep 2022 09:50:40 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 09 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: U1ygtQ_zFZrhlq9fKgxAQs5Rxc4-JcnmJmkXug3gqt48ixiWY4djmQ==
age: 21846
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 09 Sep 2022 09:50:40 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 09:50:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 09:50:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: thelesbillennial.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         66.96.147.144
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Fri, 09 Sep 2022 09:50:40 GMT
Content-Length: 223888
Connection: keep-alive
Server: Apache/2
Last-Modified: Tue, 26 Jul 2022 22:56:34 GMT
ETag: "36a90-5e4bd3652ce9b"
Accept-Ranges: bytes
Cache-Control: max-age=3600
Expires: Fri, 09 Sep 2022 10:50:40 GMT
Vary: User-Agent
X-Generated: t=1662717040077019
Age: 0


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65536), with no line terminators
Size:   223888
Md5:    5956d85f81018b28def9078519be4cbb
Sha1:   c4bd9bd85eae422c42d09b5b2d9ce37c25636571
Sha256: d74e3fc087334fccffaf8aac09378aa1766c2628318758b1d91f87356378f48b

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 09:50:40 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 07 Sep 2022 12:26:33 GMT
Expires: Wed, 14 Sep 2022 12:26:32 GMT
Etag: "d00802269a55b5614fd9e9fe9ad976c3f7b53c78"
Cache-Control: max-age=440751,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 747f055e292e0b69-OSL

                                        
                                            GET /fonts/font-awesome.css HTTP/1.1 
Host: components.mywebsitebuilder.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         35.190.14.35
HTTP/2 200 OK
content-type: text/css
                                        
x-guploader-uploadid: ADPycdu-61umdufSgKEfM268_TI9PH4tAoWj48aNt8_in95ir2L3WTOxYqSRNSXgHuWOZRcmjo6u0K9zfnezonpq-GFAJ-XU2bUa
x-goog-generation: 1608286413516447
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 30748
x-goog-meta-:
x-goog-custom-time: 1970-01-01T00:00:00Z
x-goog-hash: crc32c=ghVUSQ==, md5=nzr3n6AFCRRskr2RRU1Orw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 30748
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Sat, 27 Aug 2022 12:37:52 GMT
expires: Sun, 27 Aug 2023 12:37:52 GMT
cache-control: Cache-Control:public,max-age=315360001
last-modified: Fri, 18 Dec 2020 10:13:33 GMT
etag: "9f3af79fa00509146c92bd91454d4eaf"
age: 1113168
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30584)
Size:   30748
Md5:    9f3af79fa00509146c92bd91454d4eaf
Sha1:   5d0330dd4eff48533a6dd559fc4eadc611ebb255
Sha256: bd1411968f2f8d6fac8407f679d31f30939345c45bf1df811ba149120d879fb1
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 09 Sep 2022 08:56:07 GMT
Expires: Fri, 09 Sep 2022 09:33:08 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -07ZrKbwiMx7RWGfg3LoGhCVTsDS-L_nSgeN06gdJGC46E-_XopOoQ==
Age: 3273


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5497
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 09:50:40 GMT
Last-Modified: Fri, 09 Sep 2022 08:19:03 GMT
Server: ECS (amb/6B89)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 09:50:40 GMT
Server: ECS (amb/6BBC)
Content-Length: 279

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 09:50:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtag/js?id=G-T7NL4RSLHY HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Sep 2022 09:50:40 GMT
expires: Fri, 09 Sep 2022 09:50:40 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74819
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20189)
Size:   74819
Md5:    73f42e3791d9728b9ec3ae2c435cff2d
Sha1:   81a103b298dd72e578df3acd499a2ca6bacb1b0c
Sha256: 3745a836cc07f3c587feb5e6f9ba94c70529cdb099d9b9d3c1e9e5e85d3a1197
                                        
                                            GET /lesbillennial.fe58be43.js HTTP/1.1 
Host: thelesbillennial.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://thelesbillennial.com/

                                         
                                         66.96.147.144
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Fri, 09 Sep 2022 09:50:40 GMT
Content-Length: 22111
Connection: keep-alive
Server: Apache/2
Last-Modified: Tue, 26 Jul 2022 22:56:33 GMT
ETag: "565f-5e4bd363dfa95"
Accept-Ranges: bytes
Cache-Control: max-age=14400
Expires: Fri, 09 Sep 2022 13:50:40 GMT
Vary: User-Agent
X-Generated: t=1662717040586075
Age: 0


--- Additional Info ---
Magic:  ASCII text, with very long lines (22111), with no line terminators
Size:   22111
Md5:    e65ee8a2275e8651df35cb2745f79467
Sha1:   61203a59781571f702a6c549e40d0015b6490107
Sha256: 99a60378948a6c828887a5d7dafedffde4b74be7c172fa3798305ed81cfbbadb

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /runtime-endurance-21474/bundle.js HTTP/1.1 
Host: runtime.builderservices.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.150.9
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 09 Sep 2022 09:50:40 GMT
cache-control: "max-age=31536000"
content-md5: 1eBhR7qUCUDik8JycCYhyQ==
last-modified: Wed, 06 Jul 2022 09:40:57 GMT
x-ms-request-id: 7583fc64-201e-0003-3ab0-970028000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
cf-cache-status: HIT
age: 2214914
vary: Accept-Encoding
server: cloudflare
cf-ray: 747f05603953b511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   468880
Md5:    e545f0aab753d316988cbf341d3bb297
Sha1:   f6e38302f4dd0bc98fdaed040244bb18850b3ce1
Sha256: ebf2a5e3680e6c1a65249f911306f33c4e4836d5a502d06008c632efbda1a048
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 09:50:40 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 07 Sep 2022 12:26:33 GMT
Expires: Wed, 14 Sep 2022 12:26:32 GMT
Etag: "d00802269a55b5614fd9e9fe9ad976c3f7b53c78"
Cache-Control: max-age=440751,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 747f055fcafb0b69-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3303
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 09:50:40 GMT
Last-Modified: Fri, 09 Sep 2022 08:55:37 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 09:50:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css?display=swap&family=Ubuntu:400,700|Merriweather+Sans:400,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Sep 2022 09:50:40 GMT
date: Fri, 09 Sep 2022 09:50:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   77865
Md5:    90a780ef765d0303f5afd18a7f06ab1c
Sha1:   41bc87d875246c9875e5d0668c5a80e852f5215b
Sha256: edc36fea0383e810417c7d2124c3e863fb755053f75d0f95c2f8127b2d15f998
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 09:50:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://thelesbillennial.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 07:00:19 GMT
expires: Fri, 08 Sep 2023 07:00:19 GMT
cache-control: public, max-age=31536000
age: 96621
last-modified: Wed, 27 Apr 2022 17:05:11 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 29752, version 1.0\012- data
Size:   29752
Md5:    ab1fc8621287e4ea9319a3136812cf80
Sha1:   fb4ed2e52e2a8d7ac50a7618a0c2ea5507a24ef3
Sha256: 7c00752ce82d6abaed0b9766d35b906b16675facdbe24115b410d1fab975effa
                                        
                                            GET /s/merriweathersans/v22/2-c99IRs1JiJN1FRAMjTN5zd9vgsFHX1QjU.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://thelesbillennial.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35520
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 15:27:41 GMT
expires: Sat, 02 Sep 2023 15:27:41 GMT
cache-control: public, max-age=31536000
age: 584579
last-modified: Mon, 11 Jul 2022 19:03:36 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 35520, version 1.0\012- data
Size:   35520
Md5:    51c700f108bd3a8639d845abc5a02462
Sha1:   6d467d623871d39830bca94bc9130d61059c35f3
Sha256: e33e10b8be04e75dfa2658726e85189bf01b986172c16d10b4c0a74332804f58
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 09:50:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rAsnU0OWjO3tc8Rhk7MjpQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.213.140.56
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mBET2oXudjdXWw0snLP7Oi+RGN0=

                                        
                                            GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-ipage-v1-0-2%2F662%2F1402662%2FzWLJKARC%2Fff67bb4e37224d209eeb763eb38f4ecf&methods=resize%2C500%2C5000 HTTP/1.1 
Host: images.builderservices.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.150.9
HTTP/2 200 OK
content-type: image/png
                                        
date: Fri, 09 Sep 2022 09:50:41 GMT
content-length: 9206
cf-ray: 747f05603b31b503-OSL
access-control-allow-origin: *
cache-control: public, max-age=2678400
etag: "cfp20lqRRnGB79lq9Y_2A8wg:2dbc066d384ddccf8f8ed923d155fa6a"
last-modified: Tue, 21 Jun 2022 22:16:19 GMT
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/h q=0 n=5 c=56 v=2022.9.3 l=9206
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 500 x 375, 8-bit/color RGBA, non-interlaced\012- data
Size:   9206
Md5:    d993f79810b80ff389b4db0249634e91
Sha1:   1be0e40136894cf9daa7c7318b1ecf53e00e85f1
Sha256: 350eefbf5a9eb38b67d91fafaa1df6d1a1416900b4db7856e59d421632acd24b
                                        
                                            OPTIONS /v1.0/runtime/appmarket/render/107/51460382 HTTP/1.1 
Host: hostingapi.mywebsitebuilder.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://thelesbillennial.com/
Origin: http://thelesbillennial.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.19.163.10
HTTP/2 204 No Content
                                        
date: Fri, 09 Sep 2022 09:50:41 GMT
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: http://thelesbillennial.com
access-control-max-age: 3600
x-builder-tracking-id: b90d075705e441029363737a626e4b51
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 747f056389690b49-OSL
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 09:50:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/vendor/iframeResizer.contentWindow.min.0da4d54c7d115e53.js HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/1000547
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.123
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Fri, 09 Sep 2022 09:50:41 GMT
cf-bgj: minify
etag: W/"62f0b6c4-5452"
last-modified: Mon, 08 Aug 2022 07:09:56 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1389541
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gT6cp2ur%2FJa2MxSwERIXd5D4sEK9ViRpDgMuGYli9ZN58%2FCACEBUSv5eq49pPnYV0JuUEJzlOf9jwzlvFKi8f8fKVfebm9X7aJ4HRFPc2pgrc8dRxR1vKaheLyxcXXGU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 747f05669a52b50f-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21586), with no line terminators
Size:   7081
Md5:    7f8b09a97a4f0045d883872f09745af4
Sha1:   929c4cdc8c798696d64735e45aecf0854efd6f7e
Sha256: 26b1cb61a058b6a906bd559ab6e125e52535122cdadb630406096786a3cf2dda
                                        
                                            GET /embed/1000547 HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelesbillennial.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.8.123
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Fri, 09 Sep 2022 09:50:41 GMT
vary: Accept-Encoding
cache-control: public, max-age=300
expires: Fri, 09 Sep 2022 09:52:41 GMT
x-robots-tag: all
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Fri, 09 Sep 2022 06:02:45 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LjF5kru988sKIkotKd15h7YE1lJJCzygWhgx4HmR72bJMIWCviR5Yh7LZ%2FAtKLvYYzaUNNl5IZCgjFuxLV1ezgss3j6N3OiN7lYV96L2mUISsOJxG9UZYnZoI3VNUFC%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 747f05630df7b50f-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2619)
Size:   14297
Md5:    3636eeefb4f036e58bb19af2b51e1bf8
Sha1:   5c6e3ce793542691d0d3f673354ab8b5796947b2
Sha256: 82050b14f8d1d453cc1a25b76be3499df05a0fe921192b72dc02cba68e5c6313
                                        
                                            GET /images/icons/pinterest.png HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/stylesheets/embed.style.min.307799cd3bc5b2ee.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.123
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 09 Sep 2022 09:50:41 GMT
content-length: 756
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=2467
content-disposition: inline; filename="pinterest.webp"
vary: Accept
etag: "63034179-9a3"
last-modified: Mon, 22 Aug 2022 08:42:33 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 908922
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=shQSQghsTazOQaHVVl0t0Q4ZQP5XAagnXqZnZQgSVHnt2QSoRcGabuD2bYOZ9O1gzGA6pET5ivMXi%2B4I1lFuK10s0e9W2TsDyQa8AeZvUEg7v5hB4jgvn98w4He1bHjA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 747f05670ad2b50f-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   756
Md5:    b30ba1581d3678592f9b6cebd717541b
Sha1:   44b1cb8f9c9cf3538d898b124bcaf82e266b8f42
Sha256: 7dc79f6bdde5b8c889a4f614a1626a609c571105818684c512aa8eb271be73dd
                                        
                                            GET /images/post_type_icons.png HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/stylesheets/embed.style.min.307799cd3bc5b2ee.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.123
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 09 Sep 2022 09:50:41 GMT
content-length: 2288
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=2778
content-disposition: inline; filename="post_type_icons.webp"
vary: Accept
etag: "63034179-ada"
last-modified: Mon, 22 Aug 2022 08:42:33 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 908899
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TfGPD2P4JNF5Y0rNK%2BiQpCCE%2B8aJlw3CNMXZyFi22JcuydwFpG%2F%2BzBc9cHAwsZPSB5Z7nnA0mYQEJNtn%2F%2Bi1j9wT99HAdEhxstWCkg7LgK9TpVYNFqwT62amE41ICHre"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 747f05670ad4b50f-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   2288
Md5:    b1be0c2f033b57b3163449e354d56c58
Sha1:   c85bc26ee45b104a8426e86d735ba37e1f2b233c
Sha256: 367635abeaa40ce11827271d48fd0ae5fa723bd00c398af5d1b8c8f6aa56d479
                                        
                                            GET /js/embed.vendor.min.2f17f0b14ee46c5a.js HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/1000547
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.123
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Fri, 09 Sep 2022 09:50:41 GMT
cf-bgj: minify
etag: W/"62f0b6d6-9e1"
last-modified: Mon, 08 Aug 2022 07:10:14 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 906067
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iItt5LgSAJxQNCdAZ1SlwFXjctTU7okJj3cUb7B%2FVIecdhicSVE8mx%2B8NjN2OBZj1I%2Fi%2Fgpj8k5bYT8gt%2F61xkVEIe01WJ0DcLol3iK5akLHE4pgKj4z%2FC3CVjNDobnh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 747f05669a4db50f-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2529), with no line terminators
Size:   21145
Md5:    44062a2db2e23b31634db60d026b7612
Sha1:   54f6bdba764bffee9f8b54216ac4b43f5fcc431d
Sha256: f891d8908338d64d113380f03ac0101ceb52078d6b62c4e21bcf05e8c246d192
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 09:50:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /g/collect?v=2&tid=G-T7NL4RSLHY&gtm=2oe970&_p=823137902&cid=1348893865.1662717033&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662717032&sct=1&seg=0&dl=http%3A%2F%2Fthelesbillennial.com%2F&dt=Lesbillennial%20-%20The%20Lesbillennial&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://thelesbillennial.com
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: http://thelesbillennial.com
date: Fri, 09 Sep 2022 09:50:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5268
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 09:50:42 GMT
Last-Modified: Fri, 09 Sep 2022 08:22:55 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6594
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 09:50:42 GMT
Last-Modified: Fri, 09 Sep 2022 08:00:48 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6594
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 09:50:42 GMT
Last-Modified: Fri, 09 Sep 2022 08:00:48 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5268
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 09:50:42 GMT
Last-Modified: Fri, 09 Sep 2022 08:22:55 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6594
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 09:50:42 GMT
Last-Modified: Fri, 09 Sep 2022 08:00:48 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v/t51.29350-15/304831022_123099907150937_6852348785692690000_n.jpg?_nc_cat=103&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=H-EMCkEUHPcAX9QP7zM&_nc_ht=scontent.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AT_xCUruXK7hcw5TJ2ckP99wsGBshskWtiNlHpqHSB4dPg&oe=63202C69 HTTP/1.1 
Host: scontent.cdninstagram.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.53
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
content-length: 132270
last-modified: Sat, 03 Sep 2022 23:15:54 GMT
x-haystack-needlechecksum: 3571225911
x-needle-checksum: 2013355113
content-digest: adler32=2013355113
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1512268381
date: Fri, 09 Sep 2022 09:50:42 GMT
x-fb-edge-debug: MmYjF0ZC7pOoQ2s1Ng5nPtKTEXOmx3QalZ_L0KD2CTSNiiA7koBaXJlw5CkA3kxTVB64oidJrC3hJ0YlHnodBA
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size:   132270
Md5:    90596c731b6e7389b96c11af78208056
Sha1:   ba1808323d0397bd722dbf0ed30a3e28a002cc22
Sha256: 44886828b8070037df309f68a02ccc4e7c22fee45702efa276d0ac6287a9d5ab
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6594
Cache-Control: 'max-age=158059'
Date: Fri, 09 Sep 2022 09:50:42 GMT
Last-Modified: Fri, 09 Sep 2022 08:00:48 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /production-ipage-v1-0-2/662/1402662/zWLJKARC/10d6bb61abb84ab0a76c473ce74f3014 HTTP/1.1 
Host: storage.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.144
HTTP/2 200 OK
content-type: image/png
                                        
x-guploader-uploadid: ADPycdtbi4qJFzuIGJ7x_eHeffPU3tmbZO769cBFuAjLO_J3YIC5cXr3wHvUYWt-rWQFt7NwV5uda5E7WRDlf7-LBHaScQ
expires: Fri, 09 Sep 2022 10:50:41 GMT
date: Fri, 09 Sep 2022 09:50:41 GMT
cache-control: public, max-age=3600
last-modified: Wed, 22 Jun 2022 20:22:55 GMT
etag: "29ef3c018029d77ca3d2b73d9cbb42d7"
x-goog-generation: 1655929375516369
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 159712
x-goog-meta-x-builder-filename: 851C0834-CE99-408C-970D-B34482B079D7.PNG
x-goog-hash: crc32c=mkCgdw==, md5=Ke88AYAp13yj0rc9nLtC1w==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 159712
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, x-goog-meta-x-builder-filename, x-goog-resumable
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1942 x 1352, 8-bit/color RGBA, non-interlaced\012- data
Size:   159712
Md5:    29ef3c018029d77ca3d2b73d9cbb42d7
Sha1:   b07a9391d32b6d0e32a1b63823206eb5f6e664d3
Sha256: d00910a01b5e34722dff4e86828924298d22ab2bbc1fe038ff5e032e8751f974
                                        
                                            GET /v/t51.29350-15/305549264_1118478065758862_5444583348423848903_n.jpg?_nc_cat=104&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=7lfuSKqZN6IAX_kJMoj&_nc_ht=scontent.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AT-5JlLKYD5TXMoD-Lnpe4gS_L7OhysEU5aGTxn9sE7fQQ&oe=631FE26D HTTP/1.1 
Host: scontent.cdninstagram.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         31.13.72.53
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
content-length: 110049
last-modified: Tue, 06 Sep 2022 22:56:50 GMT
x-haystack-needlechecksum: 1658508974
x-needle-checksum: 1747464370
content-digest: adler32=1747464370
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1512268381
date: Fri, 09 Sep 2022 09:50:42 GMT
x-fb-edge-debug: YnyYP2ml4b1wyhBdCsD7RVnC1Z8YnOhFiRUD9TpMElEHXAt2cItkv38AJ6MNXzRrQOkZH1L_5XQtOAT10ivXbg
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1440x1440, components 3\012- data
Size:   110049
Md5:    89748ff07ca299348f5941aeff762d4a
Sha1:   730f607ea3a7128f5ad7bd192516e3147882ac4c
Sha256: a288808c641a72e8addb92358b029d9e38022504cbde1bd8d754af2b2dafa0ee
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 09 Sep 2022 09:50:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v/t51.29350-15/304842135_313199237675290_4364310073661589249_n.jpg?_nc_cat=110&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=-mdmDKQ5c7cAX-e8f-w&_nc_ht=scontent.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AT8TqsmU5EAFfCM7sih2NqncoCHBc3LWaposo6pr1cdWXQ&oe=63205A18 HTTP/1.1 
Host: scontent.cdninstagram.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.53
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
content-length: 127114
last-modified: Sun, 04 Sep 2022 00:33:42 GMT
x-haystack-needlechecksum: 3086789238
x-needle-checksum: 2135806463
content-digest: adler32=2135806463
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1512268381
date: Fri, 09 Sep 2022 09:50:42 GMT
x-fb-edge-debug: TpQJ1sYPNijUQoChMlbac8LXLfdfLSDZaTzvQYEJidzH3AOQifmU4mjBmOT-rLeqGjisTIivsbSb_26SNNbhQA
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size:   127114
Md5:    25ebca9fccd2edb6d47e9fccf5310817
Sha1:   3218cc65eac14f76f97b74ce04aa1bfb8574da77
Sha256: e6826b93729a38dbcf10d3f08feb7b395780e1edfddd76fc22efd484c23ca90f
                                        
                                            GET /v/t51.29350-15/302003785_604865684648578_617772871010582727_n.jpg?_nc_cat=101&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=INkpJzKSgKYAX_YTIIb&_nc_ht=scontent.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AT_5Pp52RY21VeLtS1gRb4JEj3qZkhdOGT1iek52vaGsCw&oe=63207851 HTTP/1.1 
Host: scontent.cdninstagram.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.53
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
content-length: 230262
last-modified: Tue, 30 Aug 2022 18:29:28 GMT
x-haystack-needlechecksum: 4047523402
x-needle-checksum: 4241509322
content-digest: adler32=4241509322
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1512268381
date: Fri, 09 Sep 2022 09:50:42 GMT
x-fb-edge-debug: 3vrnSgcdQFRJzbUM9R05QcTkpxxwpBi33gUvmqGryeHv6_6-XY4FhdgQZsiHJaN4AwV_9kXg9F5AS_r50Sn_XA
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1440x1800, components 3\012- data
Size:   230262
Md5:    227cde5d012d90d326e9246accb59b5b
Sha1:   54df7f15926c9ef8391c25f5a4d067e6452a9d1a
Sha256: 304d68a310ff69d5ff47007b122de8b0f525629ef7de3ece35233427e3dc0f03
                                        
                                            GET /v/t51.29350-15/302685044_566102091921119_146416939570797109_n.jpg?_nc_cat=105&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=FpBkOwPJx3AAX9Q_zW-&_nc_ht=scontent.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AT-NUDSwWvZsEcQZW118P9QW092kFW88gOt4qGbnkYeB9w&oe=63208CF7 HTTP/1.1 
Host: scontent.cdninstagram.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.53
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
content-length: 62284
last-modified: Sat, 03 Sep 2022 23:28:30 GMT
x-haystack-needlechecksum: 3037557514
x-needle-checksum: 884864665
content-digest: adler32=884864665
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1512268381
date: Fri, 09 Sep 2022 09:50:42 GMT
x-fb-edge-debug: 6d05Yo9lw8aMz2AsIMRacEfSyN-HqSw6sCGl2jeeSwTYO1aFZVwfMdQ2aVAyeTXjQzmLs07-8ECTDmU5XdQxzg
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x720, components 3\012- data
Size:   62284
Md5:    2ab010b0f369dca0763b5f1e4b3efd6b
Sha1:   eb6385f5c3f7dbabf3156cd58207d593a4ea2baa
Sha256: fed76c9b00656acf36fbd02cb16983bcc5ae7715f1a69339f94839b9086616f5
                                        
                                            GET /v/t51.29350-15/302529333_809741043394163_3152136375865140196_n.jpg?_nc_cat=105&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=hqanvH79CsYAX-HiVbe&_nc_ht=scontent.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AT_bkgK-QHJYHRirUZb3SPRJG72HYyyOZiHZLd5quijQUw&oe=63207472 HTTP/1.1 
Host: scontent.cdninstagram.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.53
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
content-length: 233511
last-modified: Fri, 02 Sep 2022 19:31:17 GMT
x-haystack-needlechecksum: 2956493976
x-needle-checksum: 404461598
content-digest: adler32=404461598
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1512268381
date: Fri, 09 Sep 2022 09:50:42 GMT
x-fb-edge-debug: 7TPcSWpsjrTAmePSXztlHlx2jw22S4aF0DB4BPk69mDx4bGE9D_pmBLCFAo7DIZ3wT__dEMwaxCvS73EEIZTcg
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1440x1440, components 3\012- data
Size:   233511
Md5:    39cd8d81b4e2496ab94ffd0062bc2280
Sha1:   6da139a5ab40beb1cb041b906ac942f5b86989df
Sha256: b64e8ad34876e13fe66d6b12029d7b32ff5e817ee86241b8580e818cfed421fd
                                        
                                            GET /v/t51.29350-15/305003300_582821333316882_7578679042647335054_n.jpg?_nc_cat=106&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=M0dUep8BaGsAX_DbdDF&_nc_ht=scontent.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AT_-UiRGx8NWUkSJOdHJ6oGoXmoeLTbWQJ6Yva_0wNSrcA&oe=631FAEF9 HTTP/1.1 
Host: scontent.cdninstagram.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.53
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
content-length: 48411
last-modified: Sat, 03 Sep 2022 20:41:11 GMT
x-haystack-needlechecksum: 650269737
x-needle-checksum: 1411284875
content-digest: adler32=1411284875
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1512268381
date: Fri, 09 Sep 2022 09:50:42 GMT
x-fb-edge-debug: aLazTWxhHn2YRTGvQWcl3BYWDGpD-2flpWPeA4NznIIUJNwqRuOELOs6pF0ePlPQvAlu4roCsTAl4jx5lW_5Yw
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x1280, components 3\012- data
Size:   48411
Md5:    63a00a1a24e41258704dbaae3184f57a
Sha1:   18b53bfae5024a337ca3cc39cf591dc71edf330d
Sha256: 4872721d8d49af98d4aa802e84c0431e600dd34ecb275a53637805309ea6b869
                                        
                                            GET /v/t51.29350-15/304945284_1752897601729290_1945045861850920671_n.jpg?_nc_cat=106&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=1r-uLWm9dEAAX8Y0RzQ&_nc_ht=scontent.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AT9WmX8WyU2ZD7PAlZ6fvg8j7Jhq8w9wd_IrTkZnEgaWYA&oe=631F9DFB HTTP/1.1 
Host: scontent.cdninstagram.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         31.13.72.53
HTTP/2 200 OK
content-type: image/jpeg
                                        
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
content-length: 274585
last-modified: Sun, 04 Sep 2022 01:15:15 GMT
x-haystack-needlechecksum: 3057720262
x-needle-checksum: 202771908
content-digest: adler32=202771908
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1512268381
date: Fri, 09 Sep 2022 09:50:42 GMT
x-fb-edge-debug: 7Upu77cNlETlUCbPqh8mgXiVvSggLIX_YpNVT3EMifpJWTAxozeS7P-c2sFq77E5dm4QZ8WcbDKoWfJq55_pig
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1920, components 3\012- data
Size:   274585
Md5:    92dd0847089062583be272c3e4a96c86
Sha1:   962c4f8da28fe5739af6de880321c5676a3a61cc
Sha256: 837a99ee89c0165b879e5e3c3d9150fe8b05d9e9564c32e8403994931f0fba71
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13506
Expires: Fri, 09 Sep 2022 13:35:48 GMT
Date: Fri, 09 Sep 2022 09:50:42 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13506
Expires: Fri, 09 Sep 2022 13:35:48 GMT
Date: Fri, 09 Sep 2022 09:50:42 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13506
Expires: Fri, 09 Sep 2022 13:35:48 GMT
Date: Fri, 09 Sep 2022 09:50:42 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13506
Expires: Fri, 09 Sep 2022 13:35:48 GMT
Date: Fri, 09 Sep 2022 09:50:42 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c7c5434-1873-4130-a7ce-78209ce54bf0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10950
x-amzn-requestid: 435fc2f4-fbcb-4eec-81d8-a23154dcec61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YFUwZEfvIAMFjCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63186802-2348a4000430702d4e9ea132;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 09:44:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ORlM8dFTc_iThvJghFakY86D3ToJ5TCmP8Ip2PcvXCCkSKKHpWQ0Zw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 22:02:59 GMT
age: 42463
etag: "f930fcb22325e28592bc39b0b1974f5197c19afd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10950
Md5:    15249f3dafdd1690bc87ebb4fa6d518d
Sha1:   f930fcb22325e28592bc39b0b1974f5197c19afd
Sha256: a0b9e88c78e85a037363e0b0e4e03478718f8715fe69e72bfd159922eca28301
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9258cc3-ebbf-4d4c-85d1-6bc185623583.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8354
x-amzn-requestid: e7ec7e84-0924-4f5f-b289-4c750ea99567
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YKQgHHnNIAMFlrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a6133-49565105361ec7f76cb818e0;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 21:40:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: DvCs6zEt1p58iwZaXfuF9YFA-fieE5Y974E07YMNYPiaGbR5iuXK-A==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 79880188a81becf1687ba18c0e064230.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 21:45:51 GMT
age: 43491
etag: "f5348ba99fb8966dded580409108316f4e4e1237"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8354
Md5:    7afe346e3b24ea4388913b449d1ffc42
Sha1:   f5348ba99fb8966dded580409108316f4e4e1237
Sha256: 1d1cafc3e99c20b23212679838567d4d5fc98c45cf902188e44b25ff2982c8ad
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F498f96cc-d02c-4ca3-a7e2-0be324253465.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3125
x-amzn-requestid: 5820e798-6469-40f9-8d70-ee71f1a163b9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLM5GGQAoAMF8eQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ac1d3-3a0e9db848ea7ab145f1cffa;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 04:32:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: eZaKpjBYe3Qn7vs3zF52Cxob-xu3LMFs8esQAu6Lp6bzM0aOEHoXVg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1352c0a623ff0601dd16439f3f225f70.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 04:32:54 GMT
etag: "113393e0dbabb3aff949d19ab6517ba1082b622d"
age: 19068
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3125
Md5:    0078c7a407144a1ede33aef6f734eecf
Sha1:   113393e0dbabb3aff949d19ab6517ba1082b622d
Sha256: 42afcaf15e45dfa9aff14f59f69d60a3de127005e35783d2d35a4cfa652b57b3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe94f950b-af66-4803-868a-b00031195100.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7646
x-amzn-requestid: a1a8ac97-ed7f-4eb3-b704-b553d53f9279
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YEaEoHoAoAMFkwg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63180a1d-34dbcab50e2f495d4acfec54;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 03:03:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: EL9_xDX27FFKUXhp2GUBHaED9grsbgCwxFZWM-O8mNChPPfvdX_2bg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 05:02:31 GMT
age: 17291
etag: "08b4d519a099b04a9f1515377d02e51575f3321f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7646
Md5:    b7d3752fb9bfaa323218e5a7b93aa5c6
Sha1:   08b4d519a099b04a9f1515377d02e51575f3321f
Sha256: fa33f2240aea7395b0be62683743523beb1f0f11cb390f4d532e3474610a812c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F793f20c6-757e-47e5-8ab6-4d73ceae75af.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4002
x-amzn-requestid: ea2f5309-e220-4b7e-b718-9339b9444cc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YKQ6hHM8IAMFeJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a61dc-7d45fd9253b7b7fa732b6f8d;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 21:42:52 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: VD7SlrM2RwFk5cfQvul2bTJA__GPYd5_UPY0D0_5NGLHoBj3yur7PA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 5abfab33f248090bb0f31ca137ce9464.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 22:05:15 GMT
age: 42327
etag: "cec8428d159a5bde29e89c64cfb04146f759d52b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4002
Md5:    c9590b525c8b07a297c8784f02b161a1
Sha1:   cec8428d159a5bde29e89c64cfb04146f759d52b
Sha256: d309772ce79d36f7b1df0a3ea85a01f8278db2909c860721d105b772efed82ed
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ee79a10-bae9-4fae-b19f-8beb6d75a42c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7139
x-amzn-requestid: 5125cc11-410a-4a86-a0cf-68950433b602
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YFBoyHycIAMFxcw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6318496b-5579dee14390c1b63e97e0fc;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 07:34:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 1_B0YRYqe6d5Tkoj4JvvTTArO1I5XfWVMUqFAY3rtPl2T0UenSeaeQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 f62c9ca47e35df5c65764381977823a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 22:02:44 GMT
age: 80164
etag: "b9b1bf8291b6a66f260f82947966fa01ca78c61f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7139
Md5:    706c7ceb40056f848425ca7d994cedc8
Sha1:   b9b1bf8291b6a66f260f82947966fa01ca78c61f
Sha256: 739205893d17a123d2fac165f468314de14a99dc56c9e5b0ac79434f7c38b558
                                        
                                            GET /v1.0/runtime/appmarket/render/107/51460382 HTTP/1.1 
Host: hostingapi.mywebsitebuilder.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-us
Accept-Encoding: gzip, deflate, br
Referer: http://thelesbillennial.com/
Content-Type: application/json
Origin: http://thelesbillennial.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.19.163.10
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Fri, 09 Sep 2022 09:50:42 GMT
content-length: 786
access-control-allow-credentials: true
access-control-allow-origin: http://thelesbillennial.com
content-encoding: gzip
vary: Accept-Encoding
x-builder-tracking-id: 07cee817a5f742deb76a2dd47fa787f8
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 747f05647f210b45-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (303), with CRLF line terminators
Size:   786
Md5:    90d12039a40adac9bfa1b5ec0ddd9c91
Sha1:   4d50cf4307c2546ee783d54d9429e4c8f3b992e5
Sha256: 60ebd011e204045b93679d73a61d6d347af91481398366d6f60f152179588d0e
                                        
                                            GET /sdk-insights-tracker?appMarketEnv=prod&debug=true&instanceJwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpbnN0YW5jZUlkIjoiNDE5ODIwMjgzYzJiNGQ0YTkxNmY0NjlhYjM3MzZjN2MiLCJicmFuZCI6ImlwYWdlIiwiZXhwIjoxNjYyODAzNDQyfQ.-v_QwpJNe5NQWic78ECCWmqVihvJjIZfYKdOIfEqHrA HTTP/1.1 
Host: in-app.mywebsitebuilder.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.19.163.10
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 09 Sep 2022 09:50:42 GMT
content-encoding: gzip
etag: 0x8D7592F1FA5BFFC
last-modified: Fri, 25 Oct 2019 09:38:44 GMT
vary: Accept-Encoding
x-builder-tracking-span-id: fcefecf9c3ff4cc6b57c4c5ac49c18fa
x-builder-tracking-id: fcefecf9c3ff4cc6b57c4c5ac49c18fa
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 747f056bbdbd0b45-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20394), with no line terminators
Size:   8981
Md5:    1b7d29758ca56c97f93938f04e8c3836
Sha1:   b372e003fee92152b3f0d6da317a00c50adb77ee
Sha256: 653ef4c105b8acd2d3fef31fe1a17aa70a1abfaed7608e40524bc1fb904e3ede
                                        
                                            POST /in-us-east-event-hub-a1/messages/?timeout=10 HTTP/1.1 
Host: in-us-east-event-hubs.servicebus.windows.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: SharedAccessSignature sr=http%3A%2F%2Fin-us-east-event-hubs.servicebus.windows.net%2Fin-us-east-event-hub-a1&sig=SwRrMKiu4nFL8xK%2FZSZzhEOSc8390CwhRP9bThq7Ee0%3D&se=1662720634.191&skn=Send
Content-Length: 780
Origin: http://thelesbillennial.com
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         13.92.180.208
HTTP/1.1 201 Created
Content-Type: application/xml; charset=utf-8
                                        
Transfer-Encoding: chunked
Server: Microsoft-HTTPAPI/2.0
Access-Control-Allow-Origin: http://thelesbillennial.com
Access-Control-Allow-Credentials: true
Strict-Transport-Security: max-age=31536000
Date: Fri, 09 Sep 2022 09:50:42 GMT

                                        
                                            GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-ipage-v1-0-2%2F662%2F1402662%2FzWLJKARC%2F90a5f18d0cfc41a9b6ba93d7c4875f0f&methods=resize%2C640%2C5000 HTTP/1.1 
Host: images.builderservices.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.150.9
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Fri, 09 Sep 2022 09:50:43 GMT
content-length: 34117
cf-ray: 747f056ff886b503-OSL
access-control-allow-origin: *
cache-control: public, max-age=2678400
etag: "cfBV6Ip1OjAsSp55jM_cQRNw:a9aa90821c2915c3d0c8173f6688f7fc"
last-modified: Tue, 21 Jun 2022 22:53:56 GMT
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/h q=0 n=9 c=53 v=2022.9.3 l=34117
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x360, components 3\012- data
Size:   34117
Md5:    d7678f71621f2c80754cbba019d5ff2d
Sha1:   4cc68bcde89966d703fd13a6b0d937e4a5356467
Sha256: d040f851a236718b6d165f6ad2041906e88d8728d654ac101b376853b2177baf
                                        
                                            POST /cdn-cgi/rum? HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 3904
Origin: https://snapwidget.com
Connection: keep-alive
Referer: https://snapwidget.com/embed/1000547
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.123
HTTP/2 200 OK
content-type: text/plain
                                        
date: Fri, 09 Sep 2022 09:50:41 GMT
access-control-allow-origin: https://snapwidget.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 747f05677b4ab50f-OSL
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   80718
Md5:    27abd17dbada0ad7fbf6c91f0f3d3615
Sha1:   c43e3faa841c04d2263ddf3da0c59332976112c2
Sha256: 2898119ade7674aca90a18a79a5245377e954fc2b102bc74f7e63ee5794727f1
                                        
                                            GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-ipage-v1-0-2%2F662%2F1402662%2FzWLJKARC%2Fc4c7dc219a6f44a0b8e591080b39b155&methods=resize%2C640%2C5000 HTTP/1.1 
Host: images.builderservices.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.150.9
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Fri, 09 Sep 2022 09:50:43 GMT
content-length: 68123
cf-ray: 747f056ff885b503-OSL
access-control-allow-origin: *
cache-control: public, max-age=2678400
etag: "cfNC6tjNUqQgQdHg_fmAkySA:92214f7beafca7a94f33c2e9a8a7fedc"
last-modified: Tue, 21 Jun 2022 22:58:02 GMT
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:85,h2pri
cf-resized: internal=ok/h q=0 n=3 c=120 v=2022.9.3 l=68123
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x640, components 3\012- data
Size:   68123
Md5:    1a1320e5a554ce194dc391e415a0dd00
Sha1:   96688b6b5675d4269fd01d163fd87a03b627752e
Sha256: 34eca1b0c489b061947809daa8bba2d05e77614bc2eeac66eda5080d2f6658ad
                                        
                                            GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-ipage-v1-0-2%2F662%2F1402662%2FzWLJKARC%2Fa75a9e84dd6e42468380d3f0c7e964bc&methods=resize%2C640%2C5000 HTTP/1.1 
Host: images.builderservices.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.150.9
HTTP/2 200 OK
content-type: image/png
                                        
date: Fri, 09 Sep 2022 09:50:43 GMT
content-length: 324070
cf-ray: 747f056ff878b503-OSL
access-control-allow-origin: *
cache-control: public, max-age=2678400
etag: "cfRDupgdl1aDxgksfh2h0NQw:780278f93f5309700baa70fbeebc8b20"
last-modified: Mon, 18 Jul 2022 23:23:50 GMT
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/h q=0 n=8 c=106 v=2022.9.3 l=324070
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 640 x 640, 8-bit/color RGB, non-interlaced\012- data
Size:   324070
Md5:    71321c6bbfa3fe39e31fdb7d148a31d7
Sha1:   62bb17ad18cc79d2c6bb5f017ed16fafdeea4e96
Sha256: 5a2e609c914251fdf62adfc14c6399f4c2c0defb9e6a500e36363fbca98d17d4
                                        
                                            GET /v1.0/ddd5b131359b4b899a730cb6e32ee50d/blog/posts/featured HTTP/1.1 
Host: blog-viewer-api.mywebsitebuilder.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://thelesbillennial.com/
Origin: http://thelesbillennial.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.19.163.10
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Fri, 09 Sep 2022 09:50:43 GMT
access-control-allow-credentials: true
access-control-allow-origin: http://thelesbillennial.com
access-control-expose-headers: X-XSRF-TOKEN
content-encoding: gzip
vary: Accept-Encoding
x-builder-tracking-id: c123e2bc42c74a198d23e6c6431ca35b
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 747f056bbdc20b45-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   522770
Md5:    5002c57a1a2f7aa6ee6a0f86159b2809
Sha1:   f0318905bdccba83618f27e5c88eeaee58fc6691
Sha256: 7f7781969ca2dea92038b254c66eca2efaf705011842f98db9e60feb4c41f552
                                        
                                            GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-ipage-v1-0-2%2F662%2F1402662%2FzWLJKARC%2F7ffb34f85df74a3cb6628d7eaee34826&methods=resize%2C640%2C5000 HTTP/1.1 
Host: images.builderservices.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.150.9
HTTP/2 200 OK
content-type: image/png
                                        
date: Fri, 09 Sep 2022 09:50:44 GMT
content-length: 83246
cf-ray: 747f056fe870b503-OSL
access-control-allow-origin: *
cache-control: public, max-age=2678400
etag: "cfYyZoxwMV5oXagdYtLuVvMw:970755a2ce3119e0f95dc6e659eb7386"
last-modified: Fri, 12 Aug 2022 19:19:48 GMT
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/h q=0 n=6 c=125 v=2022.9.3 l=83246
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 640 x 640, 8-bit/color RGB, non-interlaced\012- data
Size:   83246
Md5:    83e84ecf8f5d08c16b1ead289d089d8d
Sha1:   5d70f229633b9846e9a3701fd3e6679f2fb74109
Sha256: da3be369c54337dd4d186a19a293149903d2d56504c3d8ce850aceea68d3dfdc
                                        
                                            GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-ipage-v1-0-2%2F662%2F1402662%2FzWLJKARC%2Fa3abbed41efa4f4bbb0888dfde8e5d19&methods=resize%2C640%2C5000 HTTP/1.1 
Host: images.builderservices.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.150.9
HTTP/2 200 OK
content-type: image/png
                                        
date: Fri, 09 Sep 2022 09:50:44 GMT
content-length: 469841
cf-ray: 747f056fe877b503-OSL
access-control-allow-origin: *
cache-control: public, max-age=2678400
etag: "cfqEtuOScJ_EyOoJqpnnPBNg:36f38229a3dc18ec1835b0d8dbc27291"
last-modified: Mon, 01 Aug 2022 01:41:33 GMT
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/h q=0 n=10 c=81 v=2022.9.3 l=469841
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 640 x 640, 8-bit/color RGB, non-interlaced\012- data
Size:   469841
Md5:    b5aa5a8727b8ab3be7bcb12bef754d0f
Sha1:   540f19c9db4d7d9409b938d96d5abec74bea139f
Sha256: 8ef47ef13c9895ddcb0515d4c9fc3c7f318b847b4e377efcca7e8af36aa89bcb
                                        
                                            GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-ipage-v1-0-2%2F662%2F1402662%2FzWLJKARC%2F7bb8349ebb2a494fb5a21c9fec9bc4f3&methods=resize%2C640%2C5000 HTTP/1.1 
Host: images.builderservices.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.150.9
HTTP/2 200 OK
content-type: image/png
                                        
date: Fri, 09 Sep 2022 09:50:44 GMT
content-length: 331878
cf-ray: 747f056ff880b503-OSL
access-control-allow-origin: *
cache-control: public, max-age=2678400
etag: "cfVWsKGo1yvHFNTZEfx_OycA:d0329fee5fb76988b933b11b7fe4df23"
last-modified: Tue, 28 Jun 2022 23:31:54 GMT
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/h q=0 n=8 c=96 v=2022.9.3 l=331878
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 640 x 640, 8-bit/color RGB, non-interlaced\012- data
Size:   331878
Md5:    78452e7916c573ed5d82c0a970f59ea8
Sha1:   66380f18de096ee4ae13fe6865817694d1161879
Sha256: e786f909b5d353d8257496f82df2840d9f95ffe10f80b215d9cfb79200762e99
                                        
                                            GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-ipage-v1-0-2%2F662%2F1402662%2FzWLJKARC%2Ff137b15dbbb149a28facca482541d3fd&methods=resize%2C640%2C5000 HTTP/1.1 
Host: images.builderservices.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.150.9
HTTP/2 200 OK
content-type: image/png
                                        
date: Fri, 09 Sep 2022 09:50:44 GMT
content-length: 420552
cf-ray: 747f056ff87ab503-OSL
access-control-allow-origin: *
cache-control: public, max-age=2678400
etag: "cfrexVUT2QCxbViTsYtPoPSQ:6dfce935a84b15c41cbf115083c29ed0"
last-modified: Wed, 29 Jun 2022 22:49:21 GMT
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/h q=0 n=7 c=89 v=2022.9.3 l=420552
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 640 x 640, 8-bit/color RGB, non-interlaced\012- data
Size:   420552
Md5:    d27e364d6680153557947b0946cbbdac
Sha1:   f1af8f224407ebae71909d233638610ad04f6150
Sha256: 623372a0425ece3579311f7b3b7aacbea3e9f5158174465845cea6330aee8254
                                        
                                            GET /s/cdn/v1.0/i/m?url=https%3A%2F%2Fstorage.googleapis.com%2Fproduction-ipage-v1-0-2%2F662%2F1402662%2FzWLJKARC%2F25d52fe5967a41cab480eef38acf76af&methods=resize%2C640%2C5000 HTTP/1.1 
Host: images.builderservices.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.18.150.9
HTTP/2 200 OK
content-type: image/png
                                        
date: Fri, 09 Sep 2022 09:50:44 GMT
content-length: 234163
cf-ray: 747f056ff883b503-OSL
access-control-allow-origin: *
cache-control: public, max-age=2678400
etag: "cfNo_3F1dWUnfgHWJr1jZIwQ:73c922787a81844e0468bb5a27797301"
last-modified: Tue, 21 Jun 2022 23:03:16 GMT
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/h q=0 n=14 c=180 v=2022.9.3 l=234163
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-engine: cloud
server: cloudflare
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 640 x 640, 8-bit/color RGB, non-interlaced\012- data
Size:   234163
Md5:    bfe367f631a519bb9e737d8344ed3fc1
Sha1:   4e42db7f874a266e42839d2ab7b2840a9719de63
Sha256: a0de6514ad775955e54ab2bfb3c786c84e0b7173b14e6f92f6011386ba08a4bb
                                        
                                            GET /js/snapwidget.js HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://thelesbillennial.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.26.8.123
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Fri, 09 Sep 2022 09:50:40 GMT
cf-bgj: minify
etag: W/"630341e7-560f"
last-modified: Mon, 22 Aug 2022 08:44:23 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 903579
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ovX2lyX59WajU0UudeO0MvI7zxfkn1V2k8fxqexIZ7VbGrD%2Bk2SjjWlGZmtVouxwovVhUSnVYwmnQFTJewM%2Fs0hmc5%2FzdGArvp2ktgsvQ0QTsuwY7s0cQgZ%2Fz%2BRyqSxa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 747f055f89aab50f-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /stylesheets/embed.style.min.307799cd3bc5b2ee.css HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/1000547
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.123
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 09 Sep 2022 09:50:41 GMT
cf-bgj: minify
cf-polished: origSize=15975
etag: W/"62f0b6a9-3e67"
last-modified: Mon, 08 Aug 2022 07:09:29 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1389563
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EPkN5HCWLC%2Fz12tcOP748MWSo8RAMyP1KvjePVkTnA1PN3ZApkEaYtwVkwp%2BLGX40UaPuVLTZx9fF34tEBZwQlxAwOTuxL6i6OUzD42tt5kH6%2FX65foGP8VI4eJa7lnA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 747f05669a46b50f-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /stylesheets/embed.grid.min.4069f6f840f9102b.css HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/1000547
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.123
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 09 Sep 2022 09:50:41 GMT
cf-bgj: minify
etag: W/"63034249-899"
last-modified: Mon, 22 Aug 2022 08:46:01 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1389542
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aJGGmWapFOwfYJ3wCkLvuBlU%2BKmFOIlTNnEWUP%2Bv%2FWpKroUBX4WtbuAIkxj1Xb1%2FGdK8wohN79NMI2%2BClXdXyKUlPHKVsC%2BgjlstaoAVevjbUByAr5oQX7dY%2BcGHFXpF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 747f05669a48b50f-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /stylesheets/embed.vendor.min.760717b3f565c387.css HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/1000547
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.123
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 09 Sep 2022 09:50:41 GMT
cf-bgj: minify
etag: W/"62f0b6de-937"
last-modified: Mon, 08 Aug 2022 07:10:22 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1389563
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yT8SPqUuQLhskfu4SaZ4RNRfRJLpRfbF1HEqNTEyBwWGb1udvs9T1OzIAPewUwLJRDSZ3u6WcXp9sDCgbLfkJ%2Bupa%2Bor6RT9uJ2X2LJSKm08NwwtDFTiKWnzjWul2eUP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 747f05669a44b50f-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/embed.main.min.b61fafc5de1ae792.js HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://snapwidget.com/embed/1000547
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.123
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Fri, 09 Sep 2022 09:50:41 GMT
cf-bgj: minify
etag: W/"63034249-b2e"
last-modified: Mon, 22 Aug 2022 08:46:01 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=31536000
cf-cache-status: HIT
age: 922675
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YnOVkLt4yCgwSoqIjntTusHBvYY3z87FH1kW8b7e%2FaPi22yId94XOQX08z9IeC1NB5ioDXa4onY2wOE3VMFU3bZ4Zkw6eUysXAPabIM09lOuh9o%2BzOb%2BRvj1ncR7cGgu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000
server: cloudflare
cf-ray: 747f05669a4fb50f-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1 
Host: static.cloudflareinsights.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://snapwidget.com
Connection: keep-alive
Referer: https://snapwidget.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.156.26
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
                                        
date: Fri, 09 Sep 2022 09:50:41 GMT
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 747f0566bacd0b02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            POST /cdn-cgi/rum? HTTP/1.1 
Host: snapwidget.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 382
Origin: https://snapwidget.com
Connection: keep-alive
Referer: https://snapwidget.com/embed/1000547
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.26.8.123
HTTP/2 200 OK
content-type: text/plain
                                        
date: Fri, 09 Sep 2022 09:50:49 GMT
access-control-allow-origin: https://snapwidget.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 747f0594688ab50f-OSL
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---