r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5ceaca9fd4ad000cb435820812fc69c8
8168397aaf7b572c89a9c83f46c0b65e4ac509f2
9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19376
Expires: Tue, 06 Dec 2022 16:39:12 GMT
Date: Tue, 06 Dec 2022 11:16:16 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2053
Cache-Control: max-age=85756
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:16 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 11:05:32 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 10:20:23 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3353
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11730
Expires: Tue, 06 Dec 2022 14:31:46 GMT
Date: Tue, 06 Dec 2022 11:16:16 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: pul7tbdMSCJ0yyimy5Opny5e2Rnvj+KHTJCOsZlDIJf29P5SntnM6RCWFziCs6ZKhkSFoBUFxmM=
x-amz-request-id: 3VJ2G2VTCG7437RZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 10:47:04 GMT
age: 1752
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 11:16:16 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
level28-do29a9.eachdotv.co.pl/FORSHOWS/show2f/02dfbd51e4bc557207e533462fc22ef4/
188.226.134.227302 Found 303 B URL HTTP/1.1 level28-do29a9.eachdotv.co.pl/FORSHOWS/show2f/02dfbd51e4bc557207e533462fc22ef4/
IP 188.226.134.227:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2aef8803b6eecaab2aa3621be18cf7e9
146bf26bcd9dc6759de9c0c2a5bce869b735eb96
15451cc60253b32d2aea1e08d09ec73817170cee787e6c6860e697a93afc1e84
Analyzer Verdict Alert fortinet Phishing
GET /FORSHOWS/show2f/02dfbd51e4bc557207e533462fc22ef4/ HTTP/1.1
Host: level28-do29a9.eachdotv.co.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Tue, 06 Dec 2022 11:16:15 GMT
Server: Apache/2.4.18 (Ubuntu)
Location: http://reported.com/lcas
Content-Length: 303
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
reported.com/lcas
195.149.84.100301 Moved Permanently 178 B IP 195.149.84.100:0
ASN #43081 World News PTE. LTD
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /lcas HTTP/1.1
Host: reported.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 06 Dec 2022 11:16:16 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://reported.com/lcas
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 11:11:20 GMT
cache-control: public,max-age=3600
age: 296
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 49b6c6559103cbcd133e29820dd9e315
5c17677b712a3c000453471c9e60cf796b0a55be
e021536e6a1782fd5ec65c4fd29b2a5a24c52db4ea424924e33bd0eaaa22ab20
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E021536E6A1782FD5EC65C4FD29B2A5A24C52DB4EA424924E33BD0EAAA22AB20"
Last-Modified: Sun, 04 Dec 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21556
Expires: Tue, 06 Dec 2022 17:15:32 GMT
Date: Tue, 06 Dec 2022 11:16:16 GMT
Connection: keep-alive
reported.com/lcas
195.149.84.101302 Found 205 B IP 195.149.84.101:0
ASN #43081 World News PTE. LTD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7de00f24df2766ac4b3ee7de36eee09e
ab7d7a755bdeb6995204847f814b6e6513bade29
ac8a1a69337e5906161d1e3f731c49808e342fb15b6e0e817b092f6d4f7137a0
GET /lcas HTTP/1.1
Host: reported.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Tue, 06 Dec 2022 11:16:16 GMT
content-type: text/html
content-length: 205
location: http://reported.com/#/lcas
set-cookie: wnTrk=wn.1670325376.712675.wnstatic2.15410.4635; Domain=.reported.com; expires=Wed, 06 Dec 2090 23:50:16 GMT
vary: User-Agent
strict-transport-security: max-age=15768000
cache-control: must-revalidate
X-Firefox-Spdy: h2
reported.com/
195.149.84.101302 Found 220 B IP 195.149.84.101:0
ASN #43081 World News PTE. LTD
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 63219205f663b2441d186f2f5c59a2db
4b55d717074a312fb93434aa26dc26c88afaeb25
705bd2f92963b5a9ae529cab3c5aa5a40b08d8960c6c082d4fe32d205d4dd9b7
GET / HTTP/1.1
Host: reported.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: wnTrk=wn.1670325376.712675.wnstatic2.15410.4635
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 302 Found
server: nginx
date: Tue, 06 Dec 2022 11:16:16 GMT
content-type: text/html
content-length: 220
location: https://wn.com/Reported?from=reported.com
vary: User-Agent
strict-transport-security: max-age=15768000
cache-control: must-revalidate
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0f7dcaa590e32cfd1c075255188d5f06
d4bb4954fefdb3b59560b54adf500e806e252e39
195795c2511b31519134f5eb4442d8708918ecaff72f8e821a5473ad7c97c448
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2051
Cache-Control: max-age=167085
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:16 GMT
Etag: "638f062a-1d7"
Expires: Thu, 08 Dec 2022 09:41:01 GMT
Last-Modified: Tue, 06 Dec 2022 09:06:50 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 8b6a32761405d4be93b3d00b75211c5f
7e7be55d060984bf5f9087bec5a18eda85a7e882
b2153fe586c5b2200e605a03ef2cb47fa72a141aeef3ebbe4f470e20589a18bb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:16:17 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Dec 2022 23:09:46 GMT
Expires: Sat, 10 Dec 2022 23:09:45 GMT
Etag: "7e7be55d060984bf5f9087bec5a18eda85a7e882"
Cache-Control: max-age=387807,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77549bc59cd50afe-OSL
push.services.mozilla.com/
54.186.169.128101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.169.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Xo1beDI62pmzB7imw8cQiQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QfUS3EeQvcE44x2P7JGaZBGzZBs=
ecdn2.wn.com/or/assets/assets/avp/css/font-awesome.min.css
192.229.133.115200 OK 7.1 kB URL HTTP/2 ecdn2.wn.com/or/assets/assets/avp/css/font-awesome.min.css
IP 192.229.133.115:0
File type ASCII text, with very long lines (31023), with CRLF line terminators
Hash d81cbbdafabafcbc0f8f3b090a4c67d5
568172017f65e1f0dbcf8d45e994133bda08ff8b
a2d72fac4f89e369399d28dfa4179c3317407046b3816e430608d9bc79fc7675
GET /or/assets/assets/avp/css/font-awesome.min.css HTTP/1.1
Host: ecdn2.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: *
age: 1984000
cache-control: max-age=2592000
content-type: text/css
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "60f804eb-79d6+gzip"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Wed, 21 Jul 2021 11:28:43 GMT
server: ECS (ska/F705)
vary: Accept-Encoding
x-cache: HIT
content-length: 7075
X-Firefox-Spdy: h2
ecdn2.wn.com/ph/img/93/3b/e36b1a29da2415f114bcf16b1a3f-medium.jpg
192.229.133.115200 OK 17 kB URL HTTP/2 ecdn2.wn.com/ph/img/93/3b/e36b1a29da2415f114bcf16b1a3f-medium.jpg
IP 192.229.133.115:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash a2629ccf95a8914536ccef08fe42e3ec
2c44758aa5759250413292f85141766c78903ac4
0123abf804904a53ca9dcd8b6a9ed474a5e281649237b9171e5b47badb0c1a4e
GET /ph/img/93/3b/e36b1a29da2415f114bcf16b1a3f-medium.jpg HTTP/1.1
Host: ecdn2.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 86951
cache-control: max-age=2592000
content-type: image/jpeg
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "620e2766-430c"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Thu, 17 Feb 2022 10:45:58 GMT
server: ECS (ska/F715)
x-cache: HIT
content-length: 17164
X-Firefox-Spdy: h2
ecdn2.wn.com/ph/img/93/3f/bbe980ab4a9e64ccf4320af79250-medium.jpg
192.229.133.115200 OK 17 kB URL HTTP/2 ecdn2.wn.com/ph/img/93/3f/bbe980ab4a9e64ccf4320af79250-medium.jpg
IP 192.229.133.115:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x203, components 3\012- data
Hash ca15107aac242eea174f0fa6c185c030
f3a0bbf1bba2ba94a4401c06bac718e134d1a978
f4984391426fcfde7fa8ff39d38c010e983c87c2787a3b9ba8e5ae0552a7b337
GET /ph/img/93/3f/bbe980ab4a9e64ccf4320af79250-medium.jpg HTTP/1.1
Host: ecdn2.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 64457
cache-control: max-age=2592000
content-type: image/jpeg
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "638e1a27-43fe"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Mon, 05 Dec 2022 16:19:51 GMT
server: ECS (ska/F70D)
x-cache: HIT
content-length: 17406
X-Firefox-Spdy: h2
ecdn7.wn.com/or/assets/assets/avp/img/no-ec.png
192.229.133.115200 OK 10 kB URL HTTP/2 ecdn7.wn.com/or/assets/assets/avp/img/no-ec.png
IP 192.229.133.115:0
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 9639f4078c347bade80e869710ad797c
3e5d5eea4cc8098ebb59eb41b1bb4f3e42e46a0b
88873aa4a973ad16aa8ac526e00564969e70188775142fce612a80296a625d56
GET /or/assets/assets/avp/img/no-ec.png HTTP/1.1
Host: ecdn7.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 630585
cache-control: max-age=2592000
content-type: image/png
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "5b334331-270d"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Wed, 27 Jun 2018 07:56:33 GMT
server: ECS (ska/F6FC)
x-cache: HIT
content-length: 9997
X-Firefox-Spdy: h2
ecdn7.wn.com/vp/m/b3/46fdad8764c144cad1ce9d0549eed6.css
192.229.133.115200 OK 14 kB URL HTTP/2 ecdn7.wn.com/vp/m/b3/46fdad8764c144cad1ce9d0549eed6.css
IP 192.229.133.115:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5c31ea84da61ff825b9f5028942ac28f
17098c839c99f7dd6976bdde91ff761d5296dc6c
0328c940c36272f4585539f2d66ce569295ee975d1ca6dfef52817ad9232d648
GET /vp/m/b3/46fdad8764c144cad1ce9d0549eed6.css HTTP/1.1
Host: ecdn7.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: *
age: 1802596
cache-control: max-age=2592000
content-type: text/css
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "62fcf77b-12bca+gzip"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Wed, 17 Aug 2022 14:13:15 GMT
server: ECS (ska/F71B)
vary: Accept-Encoding
x-cache: HIT
content-length: 13687
X-Firefox-Spdy: h2
ecdn5.wn.com/or/js/videoplayer-20181002-4.min.js
192.229.133.115200 OK 39 kB URL HTTP/2 ecdn5.wn.com/or/js/videoplayer-20181002-4.min.js
IP 192.229.133.115:0
File type ASCII text, with very long lines (39336), with no line terminators
Hash bff09a177852fd078d5f6eb1ee513104
1d58099eeb3048ddbeca24e5dadbc86e9c51dc7c
9c3e94dc7b5080fb6a59561f9740ee74bc30d8192de18387254b971c42faf3cc
GET /or/js/videoplayer-20181002-4.min.js HTTP/1.1
Host: ecdn5.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2577789
cache-control: max-age=2592000
content-type: application/javascript
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "5bb34735-99a8"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Tue, 02 Oct 2018 10:23:49 GMT
server: ECS (ska/F70C)
x-cache: HIT
content-length: 39336
X-Firefox-Spdy: h2
ecdn7.wn.com/ph/img/fe/e9/096d3dce5390d6c2c6e9141bc460-medium.jpg
192.229.133.115200 OK 12 kB URL HTTP/2 ecdn7.wn.com/ph/img/fe/e9/096d3dce5390d6c2c6e9141bc460-medium.jpg
IP 192.229.133.115:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x176, components 3\012- data
Hash 3067bdca788402648ef03894e67d9a03
f25882282e6176b916ac8d88e59e715546d7fd44
d0089fb9fd5e33a58a5be791abfa6de3c203bee550373591e34e8a84f7a63108
GET /ph/img/fe/e9/096d3dce5390d6c2c6e9141bc460-medium.jpg HTTP/1.1
Host: ecdn7.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 26114
cache-control: max-age=2592000
content-type: image/jpeg
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "638eb6ad-2f9b"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Tue, 06 Dec 2022 03:27:41 GMT
server: ECS (ska/F713)
x-cache: HIT
content-length: 12187
X-Firefox-Spdy: h2
ecdn4.wn.com/or/assets/assets/anything/logo.png
192.229.133.115200 OK 1.9 kB URL HTTP/2 ecdn4.wn.com/or/assets/assets/anything/logo.png
IP 192.229.133.115:0
File type PNG image data, 145 x 29, 8-bit/color RGB, non-interlaced\012- data
Hash f11850433376956d7719d988cf100bb6
bfb7785296bd66f02ae9772fe4a0fb70ede60dbf
1c8ab07491173b3eb01d403e09ff7a33c6185997996798dc1d9e8d4ff9c5a279
GET /or/assets/assets/anything/logo.png HTTP/1.1
Host: ecdn4.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 29129
cache-control: max-age=2592000
content-type: image/png
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "5614f0cf-79d"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Wed, 07 Oct 2015 10:15:43 GMT
server: ECS (ska/F704)
x-cache: HIT
content-length: 1949
X-Firefox-Spdy: h2
ecdn4.wn.com/or/assets/assets/wn/img/logo.png
192.229.133.115200 OK 2.8 kB URL HTTP/2 ecdn4.wn.com/or/assets/assets/wn/img/logo.png
IP 192.229.133.115:0
File type PNG image data, 120 x 29, 8-bit/color RGBA, interlaced\012- data
Hash f89fd976b340dccdf5015e78ee081ca8
b0b87cb7c249e0caec9b0ef7a7c08e315f7e49d1
1dc65363fde14ad469dfcc75c9e24f69f2a11d7a5c3b692d7ade889a5854dced
GET /or/assets/assets/wn/img/logo.png HTTP/1.1
Host: ecdn4.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 122540
cache-control: max-age=2592000
content-type: image/png
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "552b7f8b-b05"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Mon, 13 Apr 2015 08:34:19 GMT
server: ECS (ska/F709)
x-cache: HIT
content-length: 2821
X-Firefox-Spdy: h2
ecdn4.wn.com/ph/img/78/d4/fdffc7b8a20df40350450b0e0ccf-medium.jpg
192.229.133.115200 OK 15 kB URL HTTP/2 ecdn4.wn.com/ph/img/78/d4/fdffc7b8a20df40350450b0e0ccf-medium.jpg
IP 192.229.133.115:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash 209c4c76663b81f12935fb79849ade46
d930368a3bd129070f310dbea31d7745a99fb503
de4cf6c7d398e07eab9e1f6b5a4ae4de55803c8b12474c7f251f09c23e9640a5
GET /ph/img/78/d4/fdffc7b8a20df40350450b0e0ccf-medium.jpg HTTP/1.1
Host: ecdn4.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 17470
cache-control: max-age=2592000
content-type: image/jpeg
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "638edb11-3af8"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Tue, 06 Dec 2022 06:02:57 GMT
server: ECS (ska/F708)
x-cache: HIT
content-length: 15096
X-Firefox-Spdy: h2
ecdn4.wn.com/ph/img/e0/94/2148fbe1995ec1fe19b6a14f8f4a-medium.jpg
192.229.133.115200 OK 15 kB URL HTTP/2 ecdn4.wn.com/ph/img/e0/94/2148fbe1995ec1fe19b6a14f8f4a-medium.jpg
IP 192.229.133.115:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash 3fdf2479ffcb0913cfbde3a538ad5ce5
d9b8ddbb4d150cb7f1f08da94534defb58d2785c
6ce235155d11d4cf72a62808f37c7bbdbc8c61045ac6693ab2e37261c2645c89
GET /ph/img/e0/94/2148fbe1995ec1fe19b6a14f8f4a-medium.jpg HTTP/1.1
Host: ecdn4.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 11765
cache-control: max-age=2592000
content-type: image/jpeg
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "638ee12f-3b70"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Tue, 06 Dec 2022 06:29:03 GMT
server: ECS (ska/F707)
x-cache: HIT
content-length: 15216
X-Firefox-Spdy: h2
ecdn5.wn.com/ph/img/8c/6c/e16523c845fdc63ab535731d1a09-medium.jpg
192.229.133.115200 OK 17 kB URL HTTP/2 ecdn5.wn.com/ph/img/8c/6c/e16523c845fdc63ab535731d1a09-medium.jpg
IP 192.229.133.115:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash c76275cef412331cebb0e1523996bef3
522a40905664f19b892d6f9fa199daf17fdb2125
c8737646b9657c5c98fed16134f6111f92dbb6cd5598eeadf38d2f55fbc97fcc
GET /ph/img/8c/6c/e16523c845fdc63ab535731d1a09-medium.jpg HTTP/1.1
Host: ecdn5.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 24588
cache-control: max-age=2592000
content-type: image/jpeg
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "5e31a744-42dc"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Wed, 29 Jan 2020 15:39:48 GMT
server: ECS (ska/F71E)
x-cache: HIT
content-length: 17116
X-Firefox-Spdy: h2
ecdn2.wn.com/vp/m/ae/f10fd2cbad84386e125817a309cd00.js
192.229.133.115200 OK 446 kB URL HTTP/2 ecdn2.wn.com/vp/m/ae/f10fd2cbad84386e125817a309cd00.js
IP 192.229.133.115:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65171)
Size 446 kB (445487 bytes)
Hash 33b01116d94102e37bc2e71510d5b00d
d7ae6f7c397a039c6ef910caf7234400defc4492
a30d4979b19c1de5480f9275190c53dd4a97f58268390e8cfaf363fe1f99b28b
GET /vp/m/ae/f10fd2cbad84386e125817a309cd00.js HTTP/1.1
Host: ecdn2.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1813846
cache-control: max-age=2592000
content-type: application/javascript
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "61714761-6cc2f"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Thu, 21 Oct 2021 10:56:33 GMT
server: ECS (ska/F6FD)
x-cache: HIT
content-length: 445487
X-Firefox-Spdy: h2
cdn.wn.com/or/assets/mw.css
192.229.133.115200 OK 17 kB URL HTTP/2 cdn.wn.com/or/assets/mw.css
IP 192.229.133.115:0
File type Unicode text, UTF-8 text, with very long lines (41832)
Hash 0cf890b01a6daf444c780304bb3c142c
3ec542d83fca9c1fae42d83e73de472fa2f0a6f5
90ef97329dae98c26d0e6866fe0a96350d0038619836dafaa1c12197740a55e6
GET /or/assets/mw.css HTTP/1.1
Host: cdn.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: *
age: 478724
cache-control: max-age=2592000
content-type: text/css
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "579e1270-1463d+gzip"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Sun, 31 Jul 2016 15:00:00 GMT
server: ECS (ska/F710)
vary: Accept-Encoding
x-cache: HIT
content-length: 17053
X-Firefox-Spdy: h2
ecdn9.wn.com/ph/img/8c/94/0a8ce8cf63d4213b119e5b5d77fe-medium.jpg
192.229.133.115200 OK 19 kB URL HTTP/2 ecdn9.wn.com/ph/img/8c/94/0a8ce8cf63d4213b119e5b5d77fe-medium.jpg
IP 192.229.133.115:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x205, components 3\012- data
Hash ff926a4326aebc5d2499c99427bfffe6
b655412c0bd2ceed8ea7676870fbe231d2556002
600106dfdb28f26621a570ea6a990c86d653a2c2b15ab2cd854f1a0dfe219b20
GET /ph/img/8c/94/0a8ce8cf63d4213b119e5b5d77fe-medium.jpg HTTP/1.1
Host: ecdn9.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 13267
cache-control: max-age=2592000
content-type: image/jpeg
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "61ba32c7-4bbb"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Wed, 15 Dec 2021 18:24:07 GMT
server: ECS (ska/F70A)
x-cache: HIT
content-length: 19387
X-Firefox-Spdy: h2
ecdn9.wn.com/or/images/wnblack.png
192.229.133.115200 OK 1.9 kB URL HTTP/2 ecdn9.wn.com/or/images/wnblack.png
IP 192.229.133.115:0
File type PNG image data, 546 x 40, 8-bit/color RGB, non-interlaced\012- data
Hash f9b5503fa323e3db10c06398f9357cdf
73e3afe7c88a16fa3219ea9301ddd18d67e4b5b5
ff3c14b6122732fdb0bf093030ee552f6e8b48f484236628ce3e3c6cff6a630f
GET /or/images/wnblack.png HTTP/1.1
Host: ecdn9.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1608328
cache-control: max-age=2592000
content-type: image/png
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "4f96a08a-743"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Tue, 24 Apr 2012 12:46:02 GMT
server: ECS (ska/F707)
x-cache: HIT
content-length: 1859
X-Firefox-Spdy: h2
ecdn8.wn.com/ph/img/05/18/b049b7b5c61497e1dfe806d45bc9-medium.jpg
192.229.133.115200 OK 14 kB URL HTTP/2 ecdn8.wn.com/ph/img/05/18/b049b7b5c61497e1dfe806d45bc9-medium.jpg
IP 192.229.133.115:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash 9803db292f543be3f198956ae9182cb1
79a606c2298aed9009955e17163016e7efb7eca5
7a4820ccebb76f802e0dc8fd2257990e7edbdc68d892c500b7d57a7a73526694
GET /ph/img/05/18/b049b7b5c61497e1dfe806d45bc9-medium.jpg HTTP/1.1
Host: ecdn8.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 56367
cache-control: max-age=2592000
content-type: image/jpeg
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "638e3d2a-3552"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Mon, 05 Dec 2022 18:49:14 GMT
server: ECS (ska/F713)
x-cache: HIT
content-length: 13650
X-Firefox-Spdy: h2
ecdn6.wn.com/ph/img/62/f8/7123a4abe4df89298f21da47ad23-medium.jpg
192.229.133.115200 OK 23 kB URL HTTP/2 ecdn6.wn.com/ph/img/62/f8/7123a4abe4df89298f21da47ad23-medium.jpg
IP 192.229.133.115:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash 234b0852b89da6455ca1ad8f9e9581de
c3061bddedd098ef0db5c66f1589bbd33ef187d1
6141f9fd2461d171780261cfecc30076b91a64df770aa0dc88095233a5bf8f83
GET /ph/img/62/f8/7123a4abe4df89298f21da47ad23-medium.jpg HTTP/1.1
Host: ecdn6.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 42650
cache-control: max-age=2592000
content-type: image/jpeg
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "62c6f768-590a"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Thu, 07 Jul 2022 15:10:32 GMT
server: ECS (ska/F705)
x-cache: HIT
content-length: 22794
X-Firefox-Spdy: h2
ecdn6.wn.com/ph/img/9b/e1/da83c8eaea674bf32ced5ce94f6b-medium.jpg
192.229.133.115200 OK 24 kB URL HTTP/2 ecdn6.wn.com/ph/img/9b/e1/da83c8eaea674bf32ced5ce94f6b-medium.jpg
IP 192.229.133.115:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash 6ee6aff6d325c231b908fa6f0a16acec
f989bb64ce2bbda0a277d9102cd9364a31bb88a4
44ff72f647e354576a32a238eac7086039fa627ed5bb7dd6a17fb8217172bca4
GET /ph/img/9b/e1/da83c8eaea674bf32ced5ce94f6b-medium.jpg HTTP/1.1
Host: ecdn6.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7060
cache-control: max-age=2592000
content-type: image/jpeg
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "638ef38c-5bd6"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Tue, 06 Dec 2022 07:47:24 GMT
server: ECS (ska/F6FD)
x-cache: HIT
content-length: 23510
X-Firefox-Spdy: h2
ecdn6.wn.com/ph/img/b6/6d/9c0e790024a5922d6b506be73276-medium.jpg
192.229.133.115200 OK 12 kB URL HTTP/2 ecdn6.wn.com/ph/img/b6/6d/9c0e790024a5922d6b506be73276-medium.jpg
IP 192.229.133.115:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash e3317b367e68e5d6a573c9162590c878
b95359e630a2bad137c4fb01d0f37e674becbf8e
737ff65aa743193ac91869e358d9a6543c3cdd4a40dbf2831b0b5341ea68cebe
GET /ph/img/b6/6d/9c0e790024a5922d6b506be73276-medium.jpg HTTP/1.1
Host: ecdn6.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 6235
cache-control: max-age=2592000
content-type: image/jpeg
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "638f01b5-2d07"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Tue, 06 Dec 2022 08:47:49 GMT
server: ECS (ska/F70E)
x-cache: HIT
content-length: 11527
X-Firefox-Spdy: h2
ecdn6.wn.com/ph/img/49/c3/bade58ff81df86563069ee69722f-medium.jpg
192.229.133.115200 OK 14 kB URL HTTP/2 ecdn6.wn.com/ph/img/49/c3/bade58ff81df86563069ee69722f-medium.jpg
IP 192.229.133.115:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash b097f2bfbfc2f82049f93430e3928d42
a88deb1d2a961751d50e2a993dba53f930f7c11d
c65c4401fc682a7a0ea6c5bcd4e7beecc0ba5d7baec4eaf0ad8fe2a98f67b38d
GET /ph/img/49/c3/bade58ff81df86563069ee69722f-medium.jpg HTTP/1.1
Host: ecdn6.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 100667
cache-control: max-age=2592000
content-type: image/jpeg
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "638d95b4-37dc"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Mon, 05 Dec 2022 06:54:44 GMT
server: ECS (ska/F70F)
x-cache: HIT
content-length: 14300
X-Firefox-Spdy: h2
ecdn1.wn.com/ph/img/cf/1d/ea82a959922e4b7e36cdc79bd09b-medium.jpg
192.229.133.115200 OK 14 kB URL HTTP/2 ecdn1.wn.com/ph/img/cf/1d/ea82a959922e4b7e36cdc79bd09b-medium.jpg
IP 192.229.133.115:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x200, components 3\012- data
Hash c12cb2047d4ed6f4afebd61645888024
239e25e3981288954101bdeb8f677588ecfc33e3
3c4a9f0e6f7749e2989c85e6030c11331b24761e7edb204c548263428b111414
GET /ph/img/cf/1d/ea82a959922e4b7e36cdc79bd09b-medium.jpg HTTP/1.1
Host: ecdn1.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2372
cache-control: max-age=2592000
content-type: image/jpeg
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "638f14e4-35bf"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Tue, 06 Dec 2022 10:09:40 GMT
server: ECS (ska/F706)
x-cache: HIT
content-length: 13759
X-Firefox-Spdy: h2
ecdn0.wn.com/ph/img/4a/f2/f30fb1025d1eb12e9ce0e568833e-medium.jpg
192.229.133.115200 OK 14 kB URL HTTP/2 ecdn0.wn.com/ph/img/4a/f2/f30fb1025d1eb12e9ce0e568833e-medium.jpg
IP 192.229.133.115:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x199, components 3\012- data
Hash 5689a06a2f35bacbfdaddde139d1f427
57a19cb8abde6815651e9a25a8fd5c7e12910b7b
b0c534bf53511fafad93ffc251be84dff7d43f28fc67e4edbaaec936727c899d
GET /ph/img/4a/f2/f30fb1025d1eb12e9ce0e568833e-medium.jpg HTTP/1.1
Host: ecdn0.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 25119
cache-control: max-age=2592000
content-type: image/jpeg
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "5b75946b-3673"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Thu, 16 Aug 2018 15:12:43 GMT
server: ECS (ska/F71B)
x-cache: HIT
content-length: 13939
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d0a4298298230aea5ddb15915a28de37
5a9a31ac970f2395aa12cd5038476d0f7ed42e10
1803a1821db5c4478725a6362f5dc7c8f4d4fce436b233e176ff793e5fc76cad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d0a4298298230aea5ddb15915a28de37
5a9a31ac970f2395aa12cd5038476d0f7ed42e10
1803a1821db5c4478725a6362f5dc7c8f4d4fce436b233e176ff793e5fc76cad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d0a4298298230aea5ddb15915a28de37
5a9a31ac970f2395aa12cd5038476d0f7ed42e10
1803a1821db5c4478725a6362f5dc7c8f4d4fce436b233e176ff793e5fc76cad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d0a4298298230aea5ddb15915a28de37
5a9a31ac970f2395aa12cd5038476d0f7ed42e10
1803a1821db5c4478725a6362f5dc7c8f4d4fce436b233e176ff793e5fc76cad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/9LwHXtPfDQA/0.jpg
142.250.74.22200 OK 16 kB URL HTTP/2 i.ytimg.com/vi/9LwHXtPfDQA/0.jpg
IP 142.250.74.22:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash e6d6d66e31ace22063eeedf470e04396
5aa310b1464ee165c7c428d4e7337cee346cb7bd
824eda992b6fd97c5dfd36feb25b7ec7b55bee59946c7addf7e09b95c123e75c
GET /vi/9LwHXtPfDQA/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 16280
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 11:16:17 GMT
expires: Tue, 06 Dec 2022 13:16:17 GMT
cache-control: public, max-age=7200
etag: "1619908144"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 383096faa06a4acc327748dd9ce105f3
cfa17c421d8268b8fc832eb7656ab0afc281e27a
36b72ee19264071a7f9280d09bd0c317b4d61e13c658e4400c289d44dbde344c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 11:16:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 21:57:40 GMT
Expires: Mon, 12 Dec 2022 21:57:39 GMT
Etag: "cfa17c421d8268b8fc832eb7656ab0afc281e27a"
Cache-Control: max-age=556281,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77549bc8bf380afe-OSL
i.ytimg.com/vi/u5XHA2awMZs/0.jpg
142.250.74.22200 OK 23 kB URL HTTP/2 i.ytimg.com/vi/u5XHA2awMZs/0.jpg
IP 142.250.74.22:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 91eea70d91b169aa6a79a89124896ca4
dc839350edff53597a4780499ae27ee0bf935d3e
5bbdfd3f7398b6bdbcb496a41f551bb4b8ab3c363f93caf9b37235da6ab83f3c
GET /vi/u5XHA2awMZs/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 23163
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 11:16:17 GMT
expires: Tue, 06 Dec 2022 13:16:17 GMT
cache-control: public, max-age=7200
etag: "1667829191"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi/cetrtFDN2Zg/0.jpg
142.250.74.22200 OK 33 kB URL HTTP/2 i.ytimg.com/vi/cetrtFDN2Zg/0.jpg
IP 142.250.74.22:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash e25a5f335c3da7d1cdf402560974da64
d271144a539d6895804191d4a2ad9eb0da377860
ad8e81cccfc0aebdfbabac99f0b6d9f340ad067d9a116ceecf3ed751af82c70d
GET /vi/cetrtFDN2Zg/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 33255
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 11:16:17 GMT
expires: Tue, 06 Dec 2022 13:16:17 GMT
cache-control: public, max-age=7200
etag: "1522235530"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi/ZGdt9apUpqg/0.jpg
142.250.74.22200 OK 44 kB URL HTTP/2 i.ytimg.com/vi/ZGdt9apUpqg/0.jpg
IP 142.250.74.22:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash a4a7783fd2c249e9da146515cf528467
21f649f1c7e8b8dc195bad5e38e386dfae24ba00
4afb75f1d2a7c0b11533c6ecc08da19fdf794e58dddda28b2d2f80c47edd35b8
GET /vi/ZGdt9apUpqg/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 44517
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 11:16:17 GMT
expires: Tue, 06 Dec 2022 13:16:17 GMT
cache-control: public, max-age=7200
etag: "1539324002"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi/95vus_uJQWs/0.jpg
142.250.74.22200 OK 22 kB URL HTTP/2 i.ytimg.com/vi/95vus_uJQWs/0.jpg
IP 142.250.74.22:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 27c488de7d50c330f1220e560010582d
77d7804e8430b9b864e0ddef20249e2c17638a80
232d8c37f9064af7be36eb3722b4d835f0bdc8d591d7d9b2b733165dd22af884
GET /vi/95vus_uJQWs/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 21701
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 11:16:17 GMT
expires: Tue, 06 Dec 2022 13:16:17 GMT
cache-control: public, max-age=7200
etag: "1668026717"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi/lcnVMh0tR9w/0.jpg
142.250.74.22200 OK 39 kB URL HTTP/2 i.ytimg.com/vi/lcnVMh0tR9w/0.jpg
IP 142.250.74.22:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 5952f982a9faa271863ae86b25759268
6986c0dd62f6e638404742b49f262aefd1b8c592
3a494cbc9f2f05b3fc0cf7872d4639348e471d8e6a19eda28ca870da18646fab
GET /vi/lcnVMh0tR9w/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 38709
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 11:16:17 GMT
expires: Tue, 06 Dec 2022 13:16:17 GMT
cache-control: public, max-age=7200
etag: "1436395036"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi/vTJODKuSmBw/0.jpg
142.250.74.22200 OK 40 kB URL HTTP/2 i.ytimg.com/vi/vTJODKuSmBw/0.jpg
IP 142.250.74.22:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 8e6134fc4fd38505807c4112f7461989
27c179145c19a19305a23c3638dcd792a1fa50e2
004cb25eeae7671a6067249ebb192addb7b13a7be8940f8085dfa1305ea9c17a
GET /vi/vTJODKuSmBw/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 40533
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 11:16:17 GMT
expires: Tue, 06 Dec 2022 13:16:17 GMT
cache-control: public, max-age=7200
etag: "1667798222"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi/YBPgHJ7BAD8/0.jpg
142.250.74.22200 OK 36 kB URL HTTP/2 i.ytimg.com/vi/YBPgHJ7BAD8/0.jpg
IP 142.250.74.22:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 10226d7de09032c3e438582de0dc8564
7420bac0da8393f74222de16d236f124cf80d27f
2b2fe13e56bdb3b41e679ba9f9d0694b9c7206f31ca58b171c1b65407a5e92cc
GET /vi/YBPgHJ7BAD8/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 35685
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 11:16:17 GMT
expires: Tue, 06 Dec 2022 13:16:17 GMT
cache-control: public, max-age=7200
etag: "1652390925"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi/MQZpmmyvULw/0.jpg
142.250.74.22200 OK 22 kB URL HTTP/2 i.ytimg.com/vi/MQZpmmyvULw/0.jpg
IP 142.250.74.22:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 4e3fde1bbb7eb8f455c03e1b75a70676
ece25006a9ea34a1dc468c83ca587c7a1fca3712
f2b769409e98a848812e57ce9457ba73c3bb862c2d87a2162e9c190f860e3411
GET /vi/MQZpmmyvULw/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 22207
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 11:16:17 GMT
expires: Tue, 06 Dec 2022 13:16:17 GMT
cache-control: public, max-age=7200
etag: "1663846751"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.onthe.io/io.js/fMXW9rrR6xmp
95.216.194.18200 OK 307 B URL HTTP/1.1 cdn.onthe.io/io.js/fMXW9rrR6xmp
IP 95.216.194.18:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (545), with no line terminators
Hash 725946ac755596b9c28a222912ee1861
304d528294c6e15d867588244412db98519317f8
aa605abbcf67a371e8bd858e0928eb4bd8a95d3f58259d3e0d2acc8bff97545d
GET /io.js/fMXW9rrR6xmp HTTP/1.1
Host: cdn.onthe.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Dec 2022 11:16:17 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 14 Apr 2020 15:14:06 GMT
ETag: W/"5e95d33e-221"
Expires: Wed, 07 Dec 2022 11:16:17 GMT
Cache-Control: max-age=86400
Content-Encoding: gzip
i.ytimg.com/vi/eplQBhE0-Hg/0.jpg
142.250.74.22200 OK 36 kB URL HTTP/2 i.ytimg.com/vi/eplQBhE0-Hg/0.jpg
IP 142.250.74.22:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 4dcf2c3cddf0b274a627f2cfdceba245
3ecd8b25339839420165fb85538c2d5d765bcb7b
0d5d992a36fa2b3ba7f6a0d5fd4caa4c44e9923ba4331b89eab41ed08cc9f4b3
GET /vi/eplQBhE0-Hg/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 35909
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 11:16:17 GMT
expires: Tue, 06 Dec 2022 13:16:17 GMT
cache-control: public, max-age=7200
etag: "1641645257"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.wn.com/or/assets/assets/avp/fonts/fontawesome-webfont.woff2?v=4.7.0
192.229.133.115200 OK 77 kB URL HTTP/2 cdn.wn.com/or/assets/assets/avp/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 192.229.133.115:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /or/assets/assets/avp/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdn.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://wn.com
Connection: keep-alive
Referer: https://ecdn2.wn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1981999
cache-control: max-age=2592000
content-type: application/octet-stream
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "60f8016e-12d68"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Wed, 21 Jul 2021 11:13:50 GMT
server: ECS (ska/F71C)
x-cache: HIT
content-length: 77160
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d0a4298298230aea5ddb15915a28de37
5a9a31ac970f2395aa12cd5038476d0f7ed42e10
1803a1821db5c4478725a6362f5dc7c8f4d4fce436b233e176ff793e5fc76cad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4f80766922eec261b5eb326b57e9bbce
8317c677f5a344172e2d26be790001006607c803
648437194c0db102b41594c49df18f0402b6872ec78b76f5015339848af2744c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "648437194C0DB102B41594C49DF18F0402B6872EC78B76F5015339848AF2744C"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20242
Expires: Tue, 06 Dec 2022 16:53:39 GMT
Date: Tue, 06 Dec 2022 11:16:17 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e24f2da4ed2e3cd07b0999a67550d634
6e2277e734fd0015849c3554dd2cf2ae289c2cf2
74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVc.ttf
216.58.207.227200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVc.ttf
IP 216.58.207.227:0
File type TrueType Font data, 18 tables, 1st "GDEF", 14 names, Microsoft, language 0x409, Copyright 2020 The Open Sans Project Authors (https://github.com/googlefonts/opensans)Open SansR\012- data
Hash 63f124cc58fb3f1e5e04b2961edc0f7b
a7e225ab157af0246fbc151ffe513c0b555032c5
484be1fa4b0ddf5a535046b293963ce7cfe6f2659f50309d7bdb6399a732637d
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVc.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wn.com
Connection: keep-alive
Referer: https://ecdn7.wn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21006
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 09:56:45 GMT
expires: Wed, 06 Dec 2023 09:56:45 GMT
cache-control: public, max-age=31536000
age: 4772
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
assets.wn.com/wiki/en/d/0a/Dive-Reported-aeac4c.jpg
195.149.84.78200 OK 6.5 kB URL HTTP/1.1 assets.wn.com/wiki/en/d/0a/Dive-Reported-aeac4c.jpg
IP 195.149.84.78:0
ASN #43081 World News PTE. LTD
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 220x215, components 3\012- data
Hash 8deff482d53f715411423638ccb79b6c
8b25445888f6142dc6e0d677f5b227cd5bbbf373
7466b26d0ad4389f5a8098b99e110e2d7229cd4b17ee6ca78f1389660abedf97
GET /wiki/en/d/0a/Dive-Reported-aeac4c.jpg HTTP/1.1
Host: assets.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported?from=reported.com
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Accept-Ranges: bytes
ETag: "3995585517"
Last-Modified: Thu, 28 Apr 2016 07:59:01 GMT
Content-Length: 6485
Date: Tue, 06 Dec 2022 11:16:17 GMT
Server: lighttpd
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e24f2da4ed2e3cd07b0999a67550d634
6e2277e734fd0015849c3554dd2cf2ae289c2cf2
74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
phpadsnew.wn.com/www/delivery/ajs.php?zoneid=464&cb=99519996056&charset=UTF-8&loc=https%3A//wn.com/Reported%23/lcas
195.149.84.37200 OK 0 B URL HTTP/2 phpadsnew.wn.com/www/delivery/ajs.php?zoneid=464&cb=99519996056&charset=UTF-8&loc=https%3A//wn.com/Reported%23/lcas
IP 195.149.84.37:0
ASN #43081 World News PTE. LTD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /www/delivery/ajs.php?zoneid=464&cb=99519996056&charset=UTF-8&loc=https%3A//wn.com/Reported%23/lcas HTTP/1.1
Host: phpadsnew.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 11:16:17 GMT
content-type: application/javascript
content-length: 0
last-modified: Wed, 10 Jan 2018 02:10:23 GMT
etag: "5a55760f-0"
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
ecdn4.wn.com/or/images/search-button.png
192.229.133.115200 OK 1.5 kB URL HTTP/2 ecdn4.wn.com/or/images/search-button.png
IP 192.229.133.115:0
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash b2f119a1b46a6e171837dc51635af8e6
038edd75f773216565e4017853c0f7158565dd80
75e518fdd45541be6d902d2fa6fc70d8228f3eac59935d89d9b77768d6995485
GET /or/images/search-button.png HTTP/1.1
Host: ecdn4.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2046136
cache-control: max-age=2592000
content-type: image/png
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "527a24af-5d7"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Wed, 06 Nov 2013 11:14:55 GMT
server: ECS (ska/F707)
x-cache: HIT
content-length: 1495
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 3b8feb68fd83fa7603a501917b4079a7
1ebb8a47a00f0663e8bf390deb7d5b47f97203bc
af0cb9a4017998c42d74c569472a56d6795007591fe100661aff3c1c66f459a4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AF0CB9A4017998C42D74C569472A56D6795007591FE100661AFF3C1C66F459A4"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11704
Expires: Tue, 06 Dec 2022 14:31:21 GMT
Date: Tue, 06 Dec 2022 11:16:17 GMT
Connection: keep-alive
ecdn7.wn.com/or/images/anything/iconSprite.png
192.229.133.115200 OK 23 kB URL HTTP/2 ecdn7.wn.com/or/images/anything/iconSprite.png
IP 192.229.133.115:0
File type PNG image data, 360 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash f7ab28c297e49d9ce998ef580505a905
57d8a5eddf9d437e87270e660297b6d47de2e806
2e4500bc47341cdc2bf91b165c6f489a65c65c8516dc92877459479a26c79123
GET /or/images/anything/iconSprite.png HTTP/1.1
Host: ecdn7.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecdn7.wn.com/vp/m/b3/46fdad8764c144cad1ce9d0549eed6.css
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1497581
cache-control: max-age=2592000
content-type: image/png
date: Tue, 06 Dec 2022 11:16:17 GMT
etag: "54ca1b8b-59f5"
expires: Thu, 05 Jan 2023 11:16:17 GMT
last-modified: Thu, 29 Jan 2015 11:37:47 GMT
server: ECS (ska/F711)
x-cache: HIT
content-length: 23029
X-Firefox-Spdy: h2
phpadsnew.wn.com/www/delivery/ajs.php?zoneid=465&cb=18178122625&charset=UTF-8&loc=https%3A//wn.com/Reported%23/lcas
195.149.84.37200 OK 0 B URL HTTP/2 phpadsnew.wn.com/www/delivery/ajs.php?zoneid=465&cb=18178122625&charset=UTF-8&loc=https%3A//wn.com/Reported%23/lcas
IP 195.149.84.37:0
ASN #43081 World News PTE. LTD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /www/delivery/ajs.php?zoneid=465&cb=18178122625&charset=UTF-8&loc=https%3A//wn.com/Reported%23/lcas HTTP/1.1
Host: phpadsnew.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 11:16:17 GMT
content-type: application/javascript
content-length: 0
last-modified: Wed, 10 Jan 2018 02:10:23 GMT
etag: "5a55760f-0"
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
login.wn.com/actions/i/?callback=jQuery1607804856850453566_1670325377528&edit=Reported&owner=wn&author=system&atUrl=https%3A%2F%2Fwn.com%2FReported%23%2Flcas&fromUrl=reported.com&built=1670324849.49&_=1670325377574
195.149.84.78200 OK 1.1 kB URL HTTP/1.1 login.wn.com/actions/i/?callback=jQuery1607804856850453566_1670325377528&edit=Reported&owner=wn&author=system&atUrl=https%3A%2F%2Fwn.com%2FReported%23%2Flcas&fromUrl=reported.com&built=1670324849.49&_=1670325377574
IP 195.149.84.78:0
ASN #43081 World News PTE. LTD
File type HTML document, ASCII text, with very long lines (1089), with no line terminators
Hash 287ccaf68ef98a6d82c8b6f8b19e4eab
1f9bba58cf2b2f7155040617307613067bc17f8b
4509a37c009c7d6cb428acc7069643c62da095e7c96b28feb18a86fd34d3ebf9
GET /actions/i/?callback=jQuery1607804856850453566_1670325377528&edit=Reported&owner=wn&author=system&atUrl=https%3A%2F%2Fwn.com%2FReported%23%2Flcas&fromUrl=reported.com&built=1670324849.49&_=1670325377574 HTTP/1.1
Host: login.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Security-Policy: frame-ancestors 'self' wn.com *.wn.com worldnews.com *.worldnews.com;
Vary: Cookie, Accept-Language
Content-Length: 1089
Content-Type: text/html; charset=utf-8
Content-Language: en
Set-Cookie: wnuser=; Domain=.wn.com; expires=Tue, 20-Dec-2022 11:16:17 GMT; Max-Age=1209600; Path=/
Date: Tue, 06 Dec 2022 11:16:17 GMT
Server: lighttpd
phpadsnew.wn.com/www/delivery/ajs.php?zoneid=465&cb=58440009275&charset=UTF-8&loc=https%3A//wn.com/Reported%23/lcas
195.149.84.37200 OK 0 B URL HTTP/2 phpadsnew.wn.com/www/delivery/ajs.php?zoneid=465&cb=58440009275&charset=UTF-8&loc=https%3A//wn.com/Reported%23/lcas
IP 195.149.84.37:0
ASN #43081 World News PTE. LTD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /www/delivery/ajs.php?zoneid=465&cb=58440009275&charset=UTF-8&loc=https%3A//wn.com/Reported%23/lcas HTTP/1.1
Host: phpadsnew.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 11:16:17 GMT
content-type: application/javascript
content-length: 0
last-modified: Wed, 10 Jan 2018 02:10:23 GMT
etag: "5a55760f-0"
strict-transport-security: max-age=15768000
accept-ranges: bytes
X-Firefox-Spdy: h2
ecdn0.wn.com/st/favicon-20131209.ico
192.229.133.115200 OK 5.4 kB URL HTTP/2 ecdn0.wn.com/st/favicon-20131209.ico
IP 192.229.133.115:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 85efd37ab472d135bea2d2637c0a8e6c
871c17eeb9694c1a4d643332815d1cbace72ffdf
caab4b62e57d412908f5f028a315fc768b66032eaf461713ae4bb2386fcec082
GET /st/favicon-20131209.ico HTTP/1.1
Host: ecdn0.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/Reported
Connection: keep-alive
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018; wnuser=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1620087
cache-control: max-age=2592000
content-type: image/x-icon
date: Tue, 06 Dec 2022 11:16:18 GMT
etag: "52aafabe-1536"
expires: Thu, 05 Jan 2023 11:16:18 GMT
last-modified: Fri, 13 Dec 2013 12:17:02 GMT
server: ECS (ska/F705)
x-cache: HIT
content-length: 5430
X-Firefox-Spdy: h2
ecdn8.wn.com/or/images/anything/wn_logo.png
192.229.133.115200 OK 21 kB URL HTTP/2 ecdn8.wn.com/or/images/anything/wn_logo.png
IP 192.229.133.115:0
File type PNG image data, 103 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash bf72e190ccfecf3dc63c309c6846e6a1
004e3a54712fdd211a95862f2b07b7193129571d
09a1d4878b57d2213d92b601941bd1e48c28a1b32746aad4d1478e95bb907c4b
GET /or/images/anything/wn_logo.png HTTP/1.1
Host: ecdn8.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecdn7.wn.com/
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018; wnuser=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1224478
cache-control: max-age=2592000
content-type: image/png
date: Tue, 06 Dec 2022 11:16:18 GMT
etag: "5491cdfe-536b"
expires: Thu, 05 Jan 2023 11:16:18 GMT
last-modified: Wed, 17 Dec 2014 18:39:58 GMT
server: ECS (ska/F705)
x-cache: HIT
content-length: 21355
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a179b3b6ab78e29169af8cc2363d6280
501cd2871c5b70c56852c6cd0c87f383504ca933
ceecf34d673dd0d910e3622aa0fa8d84fea748592acc796286c4ec5e76fbc170
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3027
Cache-Control: max-age=100386
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:18 GMT
Etag: "638dfdd1-1d7"
Expires: Wed, 07 Dec 2022 15:09:24 GMT
Last-Modified: Mon, 05 Dec 2022 14:18:57 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4gaVc.ttf
216.58.207.227200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4gaVc.ttf
IP 216.58.207.227:0
File type TrueType Font data, 18 tables, 1st "GDEF", 16 names, Microsoft, language 0x409, Copyright 2020 The Open Sans Project Authors (https://github.com/googlefonts/opensans)Open Sans \012- data
Hash ead36ae9b8f3825b43f1a85f6cfe9878
fa9dd17c86d42e27e5a26a03b99c4fa465ece38a
80891f3a33b7c5edeff83dfa379d079cecae7f771e18fc48c532a46d80c3d19c
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4gaVc.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wn.com
Connection: keep-alive
Referer: https://ecdn7.wn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 11:47:42 GMT
expires: Thu, 30 Nov 2023 11:47:42 GMT
cache-control: public, max-age=31536000
age: 516516
last-modified: Mon, 15 Aug 2022 18:16:21 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3ba864a4daffd79d4639e98e35cf5a8f
4e2dfdbff3ce773c1c39031bdf854e2b0a31131c
73a684466e34cc6ab4250dbab0c6afb73a92c4239e37076020b9e1c446b69b7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ee6bfe50f8e4b9c142f971a55496ac26
8c3fd42aaa7fa3ebdedc4f7b0271b8caae166e64
4582e8e1ada92a279cbc5d82904c7fd27b9d4b95bc06c7a8b3c13168978f0b33
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.google-analytics.com/ga.js
142.250.74.136200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP 142.250.74.136:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Tue, 06 Dec 2022 10:17:12 GMT
expires: Tue, 06 Dec 2022 12:17:12 GMT
cache-control: public, max-age=7200
age: 3546
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
157.240.200.14200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1957)
Hash a19b9c7dfb26d35527048873f9f42ef3
3e66b7120c601dcd84b5c178ad4791900f902154
b1773958707a6664f619bd436ed0140bfcde51b6f47c8229948cf715a88f0402
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: f41a12eba88f53e22b4480b58019892e
etag: "4bf2bcb9c03cbc7520d296570ad7ba0e"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 06 Dec 2022 11:33:46 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: oZucffsm01UnBIhz+fQu8w==
x-fb-debug: e5/D1gF3nKRYmBm+tn3LZX2HVJJ51LNJnnMyfkUS08/MGxGX0RmvBBjE8iI+4oeS+VGJeltD8CwcE2DfIOvoNg==
priority: u=3,i
content-length: 1685
x-fb-trip-id: 1679558926
date: Tue, 06 Dec 2022 11:16:18 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVc.ttf
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVc.ttf
IP 216.58.207.227:0
File type TrueType Font data, 18 tables, 1st "GDEF", 16 names, Microsoft, language 0x409, Copyright 2020 The Open Sans Project Authors (https://github.com/googlefonts/opensans)Open Sans \012- data
Hash 2f87912f32610d35d085a5d3d2359652
485f9615b8ab947d504ca2497462354fd46fddcf
c632bd9c762bc146066f2ccf9ec7e37b71fa26df06345845e2e189b5f7e2990a
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsgH1x4gaVc.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://wn.com
Connection: keep-alive
Referer: https://ecdn7.wn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31416
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 17:11:22 GMT
expires: Wed, 29 Nov 2023 17:11:22 GMT
cache-control: public, max-age=31536000
age: 583496
last-modified: Mon, 15 Aug 2022 18:16:22 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
142.250.74.174200 OK 12 kB URL HTTP/2 www.youtube.com/iframe_api
IP 142.250.74.174:0
File type ASCII text, with very long lines (509)
Hash 5304c7226db9d19fdfc9caf0cfc426be
b48fbb8988a52b6aab9148ac6786d4d560a7858c
dc7b5458a91a608356515b4186a741845ac0d462c5ea8536fc7d7e3ce8743092
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Tue, 06 Dec 2022 11:16:18 GMT
date: Tue, 06 Dec 2022 11:16:18 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=qQ9FdYKs7yI; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=U95ZC7hnEQc; Domain=.youtube.com; Expires=Sun, 04-Jun-2023 11:16:18 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+785; expires=Thu, 05-Dec-2024 11:16:18 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a020f64fea80cefdee3833231b62ed32
934f5206a482c5c02f4ed31717b7de4d7a4d5105
3ba0c6659d7753189961c649bc889e6823a77dd64400e13cd74aca5fc90e2704
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1579
Cache-Control: max-age=112609
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:18 GMT
Etag: "638e3338-1d7"
Expires: Wed, 07 Dec 2022 18:33:07 GMT
Last-Modified: Mon, 05 Dec 2022 18:06:48 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a179b3b6ab78e29169af8cc2363d6280
501cd2871c5b70c56852c6cd0c87f383504ca933
ceecf34d673dd0d910e3622aa0fa8d84fea748592acc796286c4ec5e76fbc170
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3027
Cache-Control: max-age=100386
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:18 GMT
Etag: "638dfdd1-1d7"
Expires: Wed, 07 Dec 2022 15:09:24 GMT
Last-Modified: Mon, 05 Dec 2022 14:18:57 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ecdn3.wn.com/or/images/modal-gloss.png
192.229.133.115200 OK 2.9 kB URL HTTP/2 ecdn3.wn.com/or/images/modal-gloss.png
IP 192.229.133.115:0
File type PNG image data, 800 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 14ac18a2f0348c88734800f89bba0fdc
b13d3c9a3fa766b2e5bdcf83d314186dd7aeebfc
7d2aab4db2f4758ad052077dde124507d2f84e8c7a0d882853b271b8ea189671
GET /or/images/modal-gloss.png HTTP/1.1
Host: ecdn3.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecdn7.wn.com/
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018; wnuser=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1241120
cache-control: max-age=2592000
content-type: image/png
date: Tue, 06 Dec 2022 11:16:18 GMT
etag: "4d777040-b60"
expires: Thu, 05 Jan 2023 11:16:18 GMT
last-modified: Wed, 09 Mar 2011 12:19:12 GMT
server: ECS (ska/F6FD)
x-cache: HIT
content-length: 2912
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3ba864a4daffd79d4639e98e35cf5a8f
4e2dfdbff3ce773c1c39031bdf854e2b0a31131c
73a684466e34cc6ab4250dbab0c6afb73a92c4239e37076020b9e1c446b69b7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ee6bfe50f8e4b9c142f971a55496ac26
8c3fd42aaa7fa3ebdedc4f7b0271b8caae166e64
4582e8e1ada92a279cbc5d82904c7fd27b9d4b95bc06c7a8b3c13168978f0b33
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6410
Expires: Tue, 06 Dec 2022 13:03:08 GMT
Date: Tue, 06 Dec 2022 11:16:18 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6410
Expires: Tue, 06 Dec 2022 13:03:08 GMT
Date: Tue, 06 Dec 2022 11:16:18 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6410
Expires: Tue, 06 Dec 2022 13:03:08 GMT
Date: Tue, 06 Dec 2022 11:16:18 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6410
Expires: Tue, 06 Dec 2022 13:03:08 GMT
Date: Tue, 06 Dec 2022 11:16:18 GMT
Connection: keep-alive
ecdn5.wn.com/or/images/anything/playPrev-button.png
192.229.133.115200 OK 1.2 kB URL HTTP/2 ecdn5.wn.com/or/images/anything/playPrev-button.png
IP 192.229.133.115:0
File type PNG image data, 40 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash d40e721bb45540c731cd069549c45859
cf7840cc906d96b44a7e39ff70b6a77abdd45626
d8a99f8f9e3b8687de480656020524b6b082d7c53f312d2e6bd7b6de1ec4f551
GET /or/images/anything/playPrev-button.png HTTP/1.1
Host: ecdn5.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecdn7.wn.com/
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018; wnuser=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 1530178
cache-control: max-age=2592000
content-type: image/png
date: Tue, 06 Dec 2022 11:16:18 GMT
etag: "52823ee9-4ce"
expires: Thu, 05 Jan 2023 11:16:18 GMT
last-modified: Tue, 12 Nov 2013 14:44:57 GMT
server: ECS (ska/F6FC)
x-cache: HIT
content-length: 1230
X-Firefox-Spdy: h2
ecdn7.wn.com/or/images/anything/playNext-button.png
192.229.133.115200 OK 1.2 kB URL HTTP/2 ecdn7.wn.com/or/images/anything/playNext-button.png
IP 192.229.133.115:0
File type PNG image data, 40 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash ebf2ea4fe56d77d2aaefb640fd531903
d185d902bb6c9fd4a6f9ad7e4a5cae6b2f025b31
00bf6fba58238d4276a3b6696ec6c433a774e1e0d4c847dccd2abd2e0d4443bf
GET /or/images/anything/playNext-button.png HTTP/1.1
Host: ecdn7.wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecdn7.wn.com/vp/m/b3/46fdad8764c144cad1ce9d0549eed6.css
Cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018; wnuser=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 365475
cache-control: max-age=2592000
content-type: image/png
date: Tue, 06 Dec 2022 11:16:18 GMT
etag: "52823eef-4cc"
expires: Thu, 05 Jan 2023 11:16:18 GMT
last-modified: Tue, 12 Nov 2013 14:45:03 GMT
server: ECS (ska/F710)
x-cache: HIT
content-length: 1228
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e1b54923ba506fde6b21c5bfb51ccc8
366aa3ab0790c496ea51bc08d1f2ff3358530d9e
a993ca6dc9a1f854f4542f9221e4f90060825ea863974b5163a9d3e284dc4663
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10594
x-amzn-requestid: eee9f193-eef5-44bf-997a-877fa206749e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSyIHpGoAMF1fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64da-0a9190f7698dbf2f73bb1575;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T28mItwomGU8iDJ18lUF7ZrFuyh_P3ZTwUtA4AC5qZ5C5FQurDMgmQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:54:01 GMT
age: 48137
etag: "366aa3ab0790c496ea51bc08d1f2ff3358530d9e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 38b97436af942d5eb1111ca7043259a0
0234fe32c84c4711f0619714f3ac6d3db1b717d3
a76a7721355abbaecd5c8cb5218e7e4626dc345eb26e7541c71bf4ceaa7ae5d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11175
x-amzn-requestid: 9c93ddca-1247-44af-a364-e617f69ace26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSzYEnEoAMFa2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e2-7d38ea383725901524bc2ca0;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fNsYsKfPUM8QaG7-F1tSBDdsNit1BfYpWddNssXwyFO2HgdA0RpjAQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:54:21 GMT
age: 48117
etag: "0234fe32c84c4711f0619714f3ac6d3db1b717d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b9928a3-5708-47a4-8d92-f3af8d54a81d.png
34.120.237.76200 OK 18 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b9928a3-5708-47a4-8d92-f3af8d54a81d.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4bbfe2037fd1658cad81b5b8e4d885c
9487451d24db59cc0f426410da2b55f94f3bb34b
2a124c75c6c90c5633f3538c8b84422262f81cb35d8f4cf4ed0032cc897a5ab9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b9928a3-5708-47a4-8d92-f3af8d54a81d.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 18490
x-amzn-requestid: f01c056f-b0bc-4833-9934-d0c37f4d701c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csS4wE5NIAMFQmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6504-1111ee0221c3c4165a9ef2ab;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:39:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: L83k-5N1ntWkhPbKsReH19NWajYEVyQSBQIKM6aSZSovDKHTYeXhUQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:30:52 GMT
age: 45926
etag: "9487451d24db59cc0f426410da2b55f94f3bb34b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGtiCE9C3j0BUruNaFN2j1mKxCSouLmocmTXpmLMBJaLNyVwkXu1gQ==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:09:28 GMT
age: 47210
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
91.228.74.166200 OK 15 kB URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.166:0
Hash 63283657577957db367947223dc46e3d
2ad279be205d3cd2a373989c09158a6a2988a02f
f621543f936ccd6a2918d31cd6a35538dab4206070980b4aadad7616cddfc935
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 11:16:18 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "nAbmxtqHqaYrwBiADJAeFg=="
expires: Tue, 13 Dec 2022 11:16:18 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 99d1ff8fa2e095dcf2bda3d1e1af1221
f914f04a0e1fb45a221d31d2105bfc73015b03e6
90325d4299a44dbd213857ada6f6880db8c33ad61685cfcb60c4a2455a84cf87
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7663e5fc-37de-4be8-9be7-49805622f85d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10183
x-amzn-requestid: 0cdea572-aab4-4d52-948b-976170a787a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_uLHQZoAMF4hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1327-7948052f39c4f6071b4a0e0d;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WDqUFMBT59kulx4WLxNh5XTsHzr4_u524juvZJnGMYBH-mUaJclnTg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:49:44 GMT
age: 48394
etag: "f914f04a0e1fb45a221d31d2105bfc73015b03e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-69LMgINxZpq8g.js
143.204.55.84200 OK 160 B URL HTTP/2 rules.quantcount.com/rules-p-69LMgINxZpq8g.js
IP 143.204.55.84:0
Hash fe96e03f7c0d362c88679871f1033b46
7c0833d6c505158372b2ca5dc128e50272e0aa28
2d6c593d43f105a41a1a7542f0761e4f1e10f3b3be40ad6e662d3c227980bfe5
GET /rules-p-69LMgINxZpq8g.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 160
last-modified: Thu, 13 Oct 2022 16:28:03 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Tue, 06 Dec 2022 11:01:26 GMT
cache-control: max-age=3600
etag: "fe96e03f7c0d362c88679871f1033b46"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kNOWzx7w08R_b7mmVE2GLmcm7M6PVnKFtFX6tEwF1_qGQNoYBJRM4A==
age: 1599
X-Firefox-Spdy: h2
pixel.quantserve.com/pixel;r=890310875;labels=wn.anything.main;rf=0;a=p-69LMgINxZpq8g;url=https%3A%2F%2Fwn.com%2FReported%2Fnews%2Flcas;uht=2;fpan=1;fpa=P0-1897426404-1670325378226;pbc=;ns=0;ce=1;qjs=1;qv=48c6ea86-20221121114006;cm=;gdpr=0;ref=;d=wn.com;dst=0;et=1670325378294;tzo=0;ogl=title.Reported%2Curl.https%3A%2F%2Fwn%252Ecom%2FReported%2Cimage.https%3A%2F%2Fi%252Eytimg%252Ecom%2Fvi%2FZGdt9apUpqg%2F0%252Ejpg%2Csite_name.World%20News%2Cvideo.http%3A%2F%2Fwww%252Eyoutube-nocookie%252Ecom%2Fv%2FZGdt9apUpqg%2Cvideo%3Aheight.240%2Cvideo%3Awidth.320%2Cvideo%3Atype.application%2Fx-shockwave-flash;ses=35df9354-f67a-4cac-904f-52e1c21ecc28
91.228.74.166200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=890310875;labels=wn.anything.main;rf=0;a=p-69LMgINxZpq8g;url=https%3A%2F%2Fwn.com%2FReported%2Fnews%2Flcas;uht=2;fpan=1;fpa=P0-1897426404-1670325378226;pbc=;ns=0;ce=1;qjs=1;qv=48c6ea86-20221121114006;cm=;gdpr=0;ref=;d=wn.com;dst=0;et=1670325378294;tzo=0;ogl=title.Reported%2Curl.https%3A%2F%2Fwn%252Ecom%2FReported%2Cimage.https%3A%2F%2Fi%252Eytimg%252Ecom%2Fvi%2FZGdt9apUpqg%2F0%252Ejpg%2Csite_name.World%20News%2Cvideo.http%3A%2F%2Fwww%252Eyoutube-nocookie%252Ecom%2Fv%2FZGdt9apUpqg%2Cvideo%3Aheight.240%2Cvideo%3Awidth.320%2Cvideo%3Atype.application%2Fx-shockwave-flash;ses=35df9354-f67a-4cac-904f-52e1c21ecc28
IP 91.228.74.166:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=890310875;labels=wn.anything.main;rf=0;a=p-69LMgINxZpq8g;url=https%3A%2F%2Fwn.com%2FReported%2Fnews%2Flcas;uht=2;fpan=1;fpa=P0-1897426404-1670325378226;pbc=;ns=0;ce=1;qjs=1;qv=48c6ea86-20221121114006;cm=;gdpr=0;ref=;d=wn.com;dst=0;et=1670325378294;tzo=0;ogl=title.Reported%2Curl.https%3A%2F%2Fwn%252Ecom%2FReported%2Cimage.https%3A%2F%2Fi%252Eytimg%252Ecom%2Fvi%2FZGdt9apUpqg%2F0%252Ejpg%2Csite_name.World%20News%2Cvideo.http%3A%2F%2Fwww%252Eyoutube-nocookie%252Ecom%2Fv%2FZGdt9apUpqg%2Cvideo%3Aheight.240%2Cvideo%3Awidth.320%2Cvideo%3Atype.application%2Fx-shockwave-flash;ses=35df9354-f67a-4cac-904f-52e1c21ecc28 HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 11:16:18 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=638f2482-58f91-2eca2-6948d; expires=Sat, 06-Jan-2024 11:16:18 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d9339bfb0393ef6575db48a0481f2556
351fa573fc3ea6626f3258061743cad65e0c4fce
5890254c4fac81ab169d788b9e5f9100f36e1ea2a2a6fe9036c45122aff062b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-5075628-13&cid=605622877.1670325378&jid=1712564037&_v=5.7.2&z=360122995
108.177.14.154302 Found 367 B URL HTTP/2 stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-5075628-13&cid=605622877.1670325378&jid=1712564037&_v=5.7.2&z=360122995
IP 108.177.14.154:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash d2d1600ab7b39ce2355296bdaf71f20f
22d4ca2692a53c8068ac30bfe52f01bc53025df1
3350d76898671f914d617c0a5d257a4b8e01f4cd4e6a43c1a223e9554d843f53
GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-5075628-13&cid=605622877.1670325378&jid=1712564037&_v=5.7.2&z=360122995 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-5075628-13&cid=605622877.1670325378&jid=1712564037&_v=5.7.2&z=360122995
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 06 Dec 2022 11:16:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 367
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d9339bfb0393ef6575db48a0481f2556
351fa573fc3ea6626f3258061743cad65e0c4fce
5890254c4fac81ab169d788b9e5f9100f36e1ea2a2a6fe9036c45122aff062b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5006b8e985c5838b7fd2f2b558a65bc4
183ff15e0faedf346305fd6fe1c70c9c7a1eef4a
fcbfec9f5fd0e10d44778c1df64d8612281cd39881cdfd0aa8ca30d13655655a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-5075628-13&cid=605622877.1670325378&jid=1712564037&_v=5.7.2&z=360122995
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-5075628-13&cid=605622877.1670325378&jid=1712564037&_v=5.7.2&z=360122995
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-5075628-13&cid=605622877.1670325378&jid=1712564037&_v=5.7.2&z=360122995 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Dec 2022 11:16:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-5075628-13&cid=605622877.1670325378&jid=1712564037&_v=5.7.2&z=360122995&slf_rd=1&random=1678769331
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 013b65c5b52bb7855158194ff2024fb8
94eae308d8338735898e90536fc6ba076ff28cdd
bb5ab17efd81056c5f0ab03312011b63acb099c0e249364464391af52428098e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-5075628-13&cid=605622877.1670325378&jid=1712564037&_v=5.7.2&z=360122995&slf_rd=1&random=1678769331
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-5075628-13&cid=605622877.1670325378&jid=1712564037&_v=5.7.2&z=360122995&slf_rd=1&random=1678769331
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-5075628-13&cid=605622877.1670325378&jid=1712564037&_v=5.7.2&z=360122995&slf_rd=1&random=1678769331 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://wn.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Dec 2022 11:16:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 013b65c5b52bb7855158194ff2024fb8
94eae308d8338735898e90536fc6ba076ff28cdd
bb5ab17efd81056c5f0ab03312011b63acb099c0e249364464391af52428098e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 82dc811a8b106183fe1a3c92caca7a67
6f91d328a356a18d85a192a057f8bb0f12bd310d
618addad95581f04d48245ca12062d5b959e236b7fbf12d4966471abb4b1e834
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
142.250.74.130302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Tue, 06 Dec 2022 11:16:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.doubleclick.net/instream/ad_status.js
142.250.74.134200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.134:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 11:06:04 GMT
expires: Tue, 06 Dec 2022 11:21:04 GMT
cache-control: public, max-age=900
age: 615
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 82dc811a8b106183fe1a3c92caca7a67
6f91d328a356a18d85a192a057f8bb0f12bd310d
618addad95581f04d48245ca12062d5b959e236b7fbf12d4966471abb4b1e834
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c10bc583c46449dc192a809398b4e814
ff0f7ad905d32d7f3d01e4054552d0ad551503a5
defd2b2559e55c9c6c0f8be9b23c53c4e781a736feae3dd73b4d203b69cfcc57
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c10bc583c46449dc192a809398b4e814
ff0f7ad905d32d7f3d01e4054552d0ad551503a5
defd2b2559e55c9c6c0f8be9b23c53c4e781a736feae3dd73b4d203b69cfcc57
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 06 Dec 2022 11:16:19 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.42:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 63882cdd19f94e549ebf067e692ea431
4e130cd7dff0f221f34db822b5a4a8239897bc2d
c5a2bb209ea7231d998769744b178da0edd051c77258e47efcd4698392164be2
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 06 Dec 2022 11:16:19 GMT
server: ESF
cache-control: private
content-length: 30935
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c10bc583c46449dc192a809398b4e814
ff0f7ad905d32d7f3d01e4054552d0ad551503a5
defd2b2559e55c9c6c0f8be9b23c53c4e781a736feae3dd73b4d203b69cfcc57
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 007f06d0a9f50d66be88b3ddf28ecd8b
214ecccda1994c59b0b4e19f05435cb482148e7f
14e4152570b9c55d6cb83965c52a4eb6048d7df7db6b892c770ab66f4700fb51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AMLnZu9CLT19xl7jkYmUaMdv9C3462O77ifd2d_Hx8ex=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 4.2 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu9CLT19xl7jkYmUaMdv9C3462O77ifd2d_Hx8ex=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash b36120b5cfa8f7a75d2d3b180fe614a9
275e3a14d01f39c581b1dce8d8b34fa717988eae
9e83c88d31e8ddce3842678cd54655149640752c9ee51a66c11cf3c1d2f655b9
GET /ytc/AMLnZu9CLT19xl7jkYmUaMdv9C3462O77ifd2d_Hx8ex=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4186
x-xss-protection: 0
date: Tue, 06 Dec 2022 08:16:56 GMT
expires: Thu, 10 Nov 2022 08:19:06 GMT
cache-control: public, max-age=86400, no-transform
age: 10763
etag: "v8"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 007f06d0a9f50d66be88b3ddf28ecd8b
214ecccda1994c59b0b4e19f05435cb482148e7f
14e4152570b9c55d6cb83965c52a4eb6048d7df7db6b892c770ab66f4700fb51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 11:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.42200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 06 Dec 2022 11:16:19 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
wn.com/Reported?from=reported.com
195.149.84.101200 OK 0 B URL HTTP/2 wn.com/Reported?from=reported.com
IP 195.149.84.101:0
ASN #43081 World News PTE. LTD
GET /Reported?from=reported.com HTTP/1.1
Host: wn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 11:16:17 GMT
content-type: text/html; charset=utf-8
set-cookie: wnTrk=wn.1670325377.117938.wnstatic2.15410.5018; Domain=.wn.com; expires=Wed, 06 Dec 2090 23:50:17 GMT
vary: Accept-Encoding, User-Agent
cache-control: must-revalidate
strict-transport-security: max-age=15768000
content-encoding: gzip
X-Firefox-Spdy: h2