click.backingamericanow.com/?qs=5885b5a398de5747c06b7acae6a77f58c52968fd441ce7bb6f85675274c27b412d170327cdb7f544f70aa6ae173f99a3dc4f9c702c512c674e66147256c3882f
128.245.145.243301 Moved Permanently 0 B URL HTTP/1.1 click.backingamericanow.com/?qs=5885b5a398de5747c06b7acae6a77f58c52968fd441ce7bb6f85675274c27b412d170327cdb7f544f70aa6ae173f99a3dc4f9c702c512c674e66147256c3882f
IP 128.245.145.243:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?qs=5885b5a398de5747c06b7acae6a77f58c52968fd441ce7bb6f85675274c27b412d170327cdb7f544f70aa6ae173f99a3dc4f9c702c512c674e66147256c3882f HTTP/1.1
Host: click.backingamericanow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://click.backingamericanow.com/?qs=5885b5a398de5747c06b7acae6a77f58c52968fd441ce7bb6f85675274c27b412d170327cdb7f544f70aa6ae173f99a3dc4f9c702c512c674e66147256c3882f
Connection: Keep-Alive
Content-Length: 0
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4849
Expires: Fri, 03 Feb 2023 18:54:49 GMT
Date: Fri, 03 Feb 2023 17:34:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13956
Expires: Fri, 03 Feb 2023 21:26:36 GMT
Date: Fri, 03 Feb 2023 17:34:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 16:36:11 GMT
content-type: application/json
age: 3470
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13142
Expires: Fri, 03 Feb 2023 21:13:03 GMT
Date: Fri, 03 Feb 2023 17:34:01 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 9OCQdv2/2SsBuTruFsrtdPcmFLrE0/ShkFBy3urZuWzVHnR6uhxF/bpigl+b0y1vO72c7yMIfBs=
x-amz-request-id: 78BJ9GEHJ4XHZMNH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 16:52:29 GMT
age: 2492
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 17:34:01 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 16:49:06 GMT
age: 2695
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6a95e8d357eb1d0ca32434570c7c9d2f
ae968e4698813d68440e6b93b75091268ce9744b
d268486b4958655622e8fc2bb2cc39c90e70333287c02017886014724a333c1d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=116440
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:01 GMT
Etag: "63dc6961-1d7"
Expires: Sun, 05 Feb 2023 01:54:41 GMT
Last-Modified: Fri, 03 Feb 2023 01:54:41 GMT
Server: nginx
Content-Length: 471
click.backingamericanow.com/?qs=5885b5a398de5747c06b7acae6a77f58c52968fd441ce7bb6f85675274c27b412d170327cdb7f544f70aa6ae173f99a3dc4f9c702c512c674e66147256c3882f
128.245.145.243302 Found 243 B URL HTTP/1.1 click.backingamericanow.com/?qs=5885b5a398de5747c06b7acae6a77f58c52968fd441ce7bb6f85675274c27b412d170327cdb7f544f70aa6ae173f99a3dc4f9c702c512c674e66147256c3882f
IP 128.245.145.243:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1adfa42846c0da581e1ce108261a654d
e0dd147369b1ebd92696aaff7bc1142ef59c8fc1
91ccf7e6e992ae505ed6457ccfa3cede0b09738a8cb9f013bb662eaff2bc3d62
GET /?qs=5885b5a398de5747c06b7acae6a77f58c52968fd441ce7bb6f85675274c27b412d170327cdb7f544f70aa6ae173f99a3dc4f9c702c512c674e66147256c3882f HTTP/1.1
Host: click.backingamericanow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Date: Fri, 03 Feb 2023 17:34:01 GMT
Connection: close
Content-Length: 243
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5071
Expires: Fri, 03 Feb 2023 18:58:32 GMT
Date: Fri, 03 Feb 2023 17:34:01 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 59705bb9928ac6f1323c409595258a5f
d57c28f8ee76f7279c27626c3191e63b9e6e856e
fc03ed74dd948d84690aa39171896654beb549e2b101e3c161ca94b51acf7c68
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=131940
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:01 GMT
Etag: "63dca5ed-117"
Expires: Sun, 05 Feb 2023 06:13:01 GMT
Last-Modified: Fri, 03 Feb 2023 06:13:01 GMT
Server: nginx
Content-Length: 279
push.services.mozilla.com/
54.186.4.248101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.4.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: RIKBkpdp7lasQh+dN+pjAg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5qQoSBHMDG0W4Ck7rUcyJpPZvy4=
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash e95c1bf02f68100516535e420432d5ae
83f7b7e921096e17c3d2f9eb56ba5b19ac6a354a
28ca90baf6a33eb57a6748c1950f1999889ad8f91244c454b97f7179118087c4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4234
Cache-Control: max-age=102670
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:02 GMT
Etag: "63dc230e-116"
Expires: Sat, 04 Feb 2023 22:05:12 GMT
Last-Modified: Thu, 02 Feb 2023 20:54:38 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash e95c1bf02f68100516535e420432d5ae
83f7b7e921096e17c3d2f9eb56ba5b19ac6a354a
28ca90baf6a33eb57a6748c1950f1999889ad8f91244c454b97f7179118087c4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4234
Cache-Control: max-age=102670
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:02 GMT
Etag: "63dc230e-116"
Expires: Sat, 04 Feb 2023 22:05:12 GMT
Last-Modified: Thu, 02 Feb 2023 20:54:38 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278
pjnewsletter.com/wp-content/plugins/q2w3-fixed-widget/js/frontend.min.js
104.26.3.234200 OK 5.8 kB URL HTTP/2 pjnewsletter.com/wp-content/plugins/q2w3-fixed-widget/js/frontend.min.js
IP 104.26.3.234:0
File type ASCII text, with very long lines (22671)
Hash 5406eda8abb65f49aeea743b8881c261
55fa46470f127861a574b70a36f14b49d8538bf8
37b4a21c78999e1354101d7219d7e1332767ee813d8fac4d45f83c3e9ee24042
GET /wp-content/plugins/q2w3-fixed-widget/js/frontend.min.js HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: application/javascript
cf-ray: 793cea411d8b0b4d-OSL
age: 632854
cache-control: max-age=2592000
etag: W/"633d46f0-5890"
expires: Mon, 13 Feb 2023 13:50:14 GMT
last-modified: Wed, 05 Oct 2022 08:57:20 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cf-cache-status: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=drRpmYqrwPAOX4g7vs%2B3Pz53UXzPVB94mWI%2BATm6NN7%2BZqkQSq6QpkWsCPu1LV9CF20XyB8XIx6xAfYHuk9FH3UDcRpasGKC1ml%2BBIPd7vwkStvWYQw0umXEvG5yMgkG4Nk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash e95c1bf02f68100516535e420432d5ae
83f7b7e921096e17c3d2f9eb56ba5b19ac6a354a
28ca90baf6a33eb57a6748c1950f1999889ad8f91244c454b97f7179118087c4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4234
Cache-Control: max-age=102670
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:02 GMT
Etag: "63dc230e-116"
Expires: Sat, 04 Feb 2023 22:05:12 GMT
Last-Modified: Thu, 02 Feb 2023 20:54:38 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278
assets.revcontent.com/master/delivery.js
151.139.128.10200 OK 51 kB URL HTTP/2 assets.revcontent.com/master/delivery.js
IP 151.139.128.10:0
File type Unicode text, UTF-8 text, with very long lines (65054)
Hash 66b751d61d96e728b145a21ab1c89d6b
8674a20cbc4515079f7c400682ec2171639d7325
7f4ae0a65a2f6c74800175618fdb7fe358fdb02e4acc90f5339bd39c903d3626
GET /master/delivery.js HTTP/1.1
Host: assets.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-encoding: gzip
content-length: 50781
content-type: application/x-javascript
last-modified: Wed, 01 Feb 2023 18:56:37 GMT
accept-ranges: bytes
x-amz-id-2: 3VHKQ8XULGLuDkzWaSSby6E56nYQFAXIULu0xp/jV/IN+YmNHoRdCzIilvAWHcxXPAkXwxVPGio=
x-amz-request-id: 803T0MTEXYYBFSFP
etag: "9d57156b337efd69cd801d4a908fc13e"
cache-control: public,max-age=600
server: AmazonS3
x-hw: 1675445642.cds221.sk1.hn,1675445642.cds226.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-TX6FSMK
142.250.74.40200 OK 49 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TX6FSMK
IP 142.250.74.40:0
File type ASCII text, with very long lines (1849)
Hash 5f47ad136c802d8d11a14d39b2d70972
482c505e8ee7f0fba44e1d211fc5a0dccc0d049c
18c65c6b73910b24c6972e539079f334bac31f9eb9682ee1dc48e128b10958a3
GET /gtm.js?id=GTM-TX6FSMK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Feb 2023 17:34:02 GMT
expires: Fri, 03 Feb 2023 17:34:02 GMT
cache-control: private, max-age=900
last-modified: Fri, 03 Feb 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 48592
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
media.bytesignal.com/www/delivery/spcjs.php?id=22
64.37.109.58404 Not Found 1.2 kB URL HTTP/2 media.bytesignal.com/www/delivery/spcjs.php?id=22
IP 64.37.109.58:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /www/delivery/spcjs.php?id=22 HTTP/1.1
Host: media.bytesignal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 03 Feb 2023 17:34:01 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 53253efc35ba40c1472eafdbf013a254
2eb4ab2473cf73b5c543ee8edce8d4151f9a6953
087b1acc49b7c2041d130c0ad9753da344cad9f97c1cf5ad3766078688ecea89
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2351
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:02 GMT
Last-Modified: Fri, 03 Feb 2023 16:54:51 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 279
pjnewsletter.com/fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
104.26.3.234200 OK 13 kB URL HTTP/2 pjnewsletter.com/fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 104.26.3.234:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Cookie: _ga_6L5Q55KN3H=GS1.1.1675445674.1.0.1675445674.0.0.0; _ga=GA1.1.1904728995.1675445675; _ga_6EDY1BF25J=GS1.1.1675445674.1.0.1675445674.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: font/woff2
content-length: 13036
cf-ray: 793cea43afa90b4d-OSL
accept-ranges: bytes
age: 28617
cache-control: public, max-age=31536000
expires: Fri, 02 Feb 2024 07:28:23 GMT
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
cf-cache-status: HIT
cf-apo-via: proxy
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Scc9FM0bYp47km6H0BkkJ84p3hMREiDawgcUbF%2BRWrk%2Fi0p2UXLGNyMYx7wL0%2FyAg6z7hIYCJ5VJhJVHAP%2FE4%2BzJfOVm0QpEigbr8HZkoqkdnLDGIVeuQAzPplfUD4TCDEE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
pjnewsletter.com/wp-includes/js/jquery/jquery-migrate.min.js
104.26.3.234200 OK 4.6 kB URL HTTP/2 pjnewsletter.com/wp-includes/js/jquery/jquery-migrate.min.js
IP 104.26.3.234:0
File type ASCII text, with very long lines (11126)
Hash 0500d9bc4212cd0fdf3d803f3f50f2ca
63fce967ce4c4960bb5a4f7db04c1aa3b5ba9b36
9ec005091bd382e8fa205341506656081b3954d28cd1c2ccd29376f8e088cbbe
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: application/javascript
cf-ray: 793cea410d7e0b4d-OSL
age: 28618
cache-control: max-age=2592000
etag: W/"60429aa0-2bd8"
expires: Mon, 13 Feb 2023 13:50:14 GMT
last-modified: Fri, 05 Mar 2021 20:54:56 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cf-cache-status: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zSDBykHHt0YyiHw2Ze9M7BQU%2By0SRzrr1FJ6WJ1KVY8b6MCWT9QS5IaNA5qUWUWjw8k%2FMsZu84vwXKRfQ8CNPi12lhR%2F%2FFncamw0DJIMpNdhTSedUnP73jR8ANe0%2FJd5wh0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
pjnewsletter.com/fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
104.26.3.234200 OK 13 kB URL HTTP/2 pjnewsletter.com/fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2
IP 104.26.3.234:0
File type Web Open Font Format (Version 2), TrueType, length 12924, version 1.0\012- data
Hash 4610010f425c140b99c88b6819ce1c02
a7e839aa0452ceeb6228de7c15062fe82cc6d1c3
7348a2eb48c9a681d6178433394c7037144d85b57ee33a11339d3a33fa1001a4
GET /fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Cookie: _ga_6L5Q55KN3H=GS1.1.1675445674.1.0.1675445674.0.0.0; _ga=GA1.1.1904728995.1675445675; _ga_6EDY1BF25J=GS1.1.1675445674.1.0.1675445674.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: font/woff2
content-length: 12924
cf-ray: 793cea43afab0b4d-OSL
accept-ranges: bytes
age: 28617
cache-control: public, max-age=31536000
expires: Thu, 01 Feb 2024 01:07:57 GMT
last-modified: Wed, 27 Apr 2022 16:02:31 GMT
cf-cache-status: HIT
cf-apo-via: proxy
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rP47rOV%2B%2F7o70onW8F9y68F%2FrrOyudgudwR3%2BtP5aXYq9U39xrXhJVONo4FUNUU2BgvxD%2FU93mqRjazhL6SbN9nDlEMmaByNgMrwwldABX22lBpCfUTvklDRcpMlbFXlH90%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
pjnewsletter.com/fonts.gstatic.com/s/sourcesanspro/v21/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7nsDI.woff2
104.26.3.234200 OK 13 kB URL HTTP/2 pjnewsletter.com/fonts.gstatic.com/s/sourcesanspro/v21/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7nsDI.woff2
IP 104.26.3.234:0
File type Web Open Font Format (Version 2), TrueType, length 12580, version 1.0\012- data
Hash eaf55d1d3b7c4a30203d2d5226c49b6d
11b63b740965603ef544f261ef036d24e6bb1fb5
e286a9ef7d2064a4cf7026449941a557c7123aa84ef2a17cf79a38820f5474bc
GET /fonts.gstatic.com/s/sourcesanspro/v21/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7nsDI.woff2 HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Cookie: _ga_6L5Q55KN3H=GS1.1.1675445674.1.0.1675445674.0.0.0; _ga=GA1.1.1904728995.1675445675; _ga_6EDY1BF25J=GS1.1.1675445674.1.0.1675445674.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: font/woff2
content-length: 12580
cf-ray: 793cea43bfb90b4d-OSL
accept-ranges: bytes
age: 28617
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 15:40:09 GMT
last-modified: Wed, 27 Apr 2022 16:19:48 GMT
cf-cache-status: HIT
cf-apo-via: proxy
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KjBC1xjuQC%2FqxBwDF%2BlJbf3KzHJhHm6nvWDO6PnsCuclE9XowJYt3kF28UfjRmxsv1w%2Fm8u4oZlEBdjUV%2FL%2FpRSfyHN25qb0IiOVcbCO4yBxPiFzgYP8u0KJ0vINZRBuY6M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
pjnewsletter.com/fonts.gstatic.com/s/sourceserifpro/v15/neIXzD-0qpwxpaWvjeD0X88SAOeasasatSyqxA.woff2
104.26.3.234200 OK 21 kB URL HTTP/2 pjnewsletter.com/fonts.gstatic.com/s/sourceserifpro/v15/neIXzD-0qpwxpaWvjeD0X88SAOeasasatSyqxA.woff2
IP 104.26.3.234:0
File type Web Open Font Format (Version 2), TrueType, length 20864, version 1.0\012- data
Hash fe8c10a818058a638df99287425dc986
30ce5d31a26c5e00233c2a47ae1dca7e773aa713
6889a7789d4db6452dd58c9f2b0ae003221eae0cfe30e2402d0d941f7f371fe8
GET /fonts.gstatic.com/s/sourceserifpro/v15/neIXzD-0qpwxpaWvjeD0X88SAOeasasatSyqxA.woff2 HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Cookie: _ga_6L5Q55KN3H=GS1.1.1675445674.1.0.1675445674.0.0.0; _ga=GA1.1.1904728995.1675445675; _ga_6EDY1BF25J=GS1.1.1675445674.1.0.1675445674.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: font/woff2
content-length: 20864
cf-ray: 793cea43afb20b4d-OSL
accept-ranges: bytes
age: 28617
cache-control: public, max-age=31536000
expires: Sat, 03 Feb 2024 02:10:03 GMT
last-modified: Wed, 27 Apr 2022 15:27:58 GMT
cf-cache-status: HIT
cf-apo-via: proxy
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FqDp%2B8vgk2f8M9%2BLHheCqWRHk4kRP2Yc74Z4XKn%2FbH22Jpgwvv1cXVrVv0IM4HKSe9Z8c5AXzG4M6qejMY1hy%2BdLrnZdZ1uLAxLRVzsgYb%2FDox5Q2uNn0G1O1Qkn2W0A%2Bpc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
pjnewsletter.com/fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
104.26.3.234200 OK 13 kB URL HTTP/2 pjnewsletter.com/fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
IP 104.26.3.234:0
File type Web Open Font Format (Version 2), TrueType, length 13052, version 1.0\012- data
Hash 7cf79fbd1df848510d7352274efc2401
5540b5a26cc7dfe25294c4eabe011e2c6cd60143
bc9a16cd945457ad9463cdaed95129b01c589466978dfee3d019d9c604b2171a
GET /fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Cookie: _ga_6L5Q55KN3H=GS1.1.1675445674.1.0.1675445674.0.0.0; _ga=GA1.1.1904728995.1675445675; _ga_6EDY1BF25J=GS1.1.1675445674.1.0.1675445674.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: font/woff2
content-length: 13052
cf-ray: 793cea43bfbe0b4d-OSL
accept-ranges: bytes
age: 28617
cache-control: public, max-age=31536000
expires: Fri, 02 Feb 2024 10:05:58 GMT
last-modified: Wed, 27 Apr 2022 16:09:03 GMT
cf-cache-status: HIT
cf-apo-via: proxy
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k70JPMLBOqXckOLox%2B2c8NwX8YHXtdAX708uETPta1b0Io7Yu2zuUJSTaqgbTGb7sRMXAbrmysU4OTO1UwdOKtG%2BbCLJEKzG492rm3Z61pPdjQIt7Ck3e%2BJR%2B9pX6LVXW4A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
pjnewsletter.com/wp-content/themes/patriotjournal/imgs/logo.png
104.26.3.234200 OK 2.2 kB URL HTTP/2 pjnewsletter.com/wp-content/themes/patriotjournal/imgs/logo.png
IP 104.26.3.234:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8c3aba978e233e27dc511e7db4a75184
d32675b456d2b87005f739982924751310bc1beb
7b48ef56ab4189236f85fd7e38260481133e42a631519e3dc9ccdf2e50155035
GET /wp-content/themes/patriotjournal/imgs/logo.png HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Cookie: _ga_6L5Q55KN3H=GS1.1.1675445674.1.0.1675445674.0.0.0; _ga=GA1.1.1904728995.1675445675; _ga_6EDY1BF25J=GS1.1.1675445674.1.0.1675445674.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: image/webp
content-length: 2202
cf-ray: 793cea442ffb0b4d-OSL
accept-ranges: bytes
age: 28617
cache-control: public, max-age=2592000
content-disposition: inline; filename="logo.webp"
etag: "5e4da161-1afa"
expires: Sat, 25 Feb 2023 23:07:51 GMT
last-modified: Wed, 19 Feb 2020 20:58:09 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=6906
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jpC6JVRdWk1s%2F3qmgl3bfmtyy%2BcU3gsgszZK3c05P%2Bu9s1BSD%2BRqpIeDb7hv2sAhAwBnbqcfngQCSMd0u9WiZ8SBDVZ2Vsg3IVQpfa1wx6QjegaK0xve4v3o8oWnmNkOU%2F0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
pjnewsletter.com/wp-content/uploads/2023/01/schiffspecialreport-768x403.png
104.26.3.234200 OK 279 kB URL HTTP/2 pjnewsletter.com/wp-content/uploads/2023/01/schiffspecialreport-768x403.png
IP 104.26.3.234:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 279 kB (278644 bytes)
Hash 4b834bfe3abe9233c850dd272ed44226
a062638f736a72bdd0fc4c328311ff2e70f61fd1
acaa6a2328486b28cad0fcee0206c27de05cfb22b253f030d315dc24fef24edc
GET /wp-content/uploads/2023/01/schiffspecialreport-768x403.png HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Cookie: _ga_6L5Q55KN3H=GS1.1.1675445674.1.0.1675445674.0.0.0; _ga=GA1.1.1904728995.1675445675; _ga_6EDY1BF25J=GS1.1.1675445674.1.0.1675445674.0.0.0; MgidStorage=%7B%220%22%3A%7B%22svspr%22%3A%22%22%2C%22svsds%22%3A1%7D%2C%22C1415859%22%3A%7B%22page%22%3A1%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 278644
cf-ray: 793cea44a8750b4d-OSL
accept-ranges: bytes
age: 252835
cache-control: public, max-age=2592000
content-disposition: inline; filename="schiffspecialreport-768x403.webp"
etag: "63d7fe54-64b0d"
expires: Wed, 01 Mar 2023 22:10:43 GMT
last-modified: Mon, 30 Jan 2023 17:28:52 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=412429
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eyDbFVLtJWPA3%2BTCCrPysjqpOboi6jGVUpX8yXHUkXU2UJ0hZDf83w6HAXSXWd3wExhZT%2Bbn6UPdbNp3VGgYEOfMixr5d26btl7zrpftK4xkCo6fKYzoRzRyEx5YmpyMbQw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
pjnewsletter.com/wp-content/uploads/2023/01/biden-confused-768x403.png
104.26.3.234200 OK 106 kB URL HTTP/2 pjnewsletter.com/wp-content/uploads/2023/01/biden-confused-768x403.png
IP 104.26.3.234:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 106 kB (105466 bytes)
Hash f57472382b9d21a3277db27e4070506b
ff6210be66f5c4e2046d497fe1a326556b5e33cf
b854dd55ad6ef661ea7175b427edebd4fc63f319ace5122ef606dd116c16ec04
GET /wp-content/uploads/2023/01/biden-confused-768x403.png HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Cookie: _ga_6L5Q55KN3H=GS1.1.1675445674.1.0.1675445674.0.0.0; _ga=GA1.1.1904728995.1675445675; _ga_6EDY1BF25J=GS1.1.1675445674.1.0.1675445674.0.0.0; MgidStorage=%7B%220%22%3A%7B%22svspr%22%3A%22%22%2C%22svsds%22%3A1%7D%2C%22C1415859%22%3A%7B%22page%22%3A1%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 105466
cf-ray: 793cea44b8810b4d-OSL
accept-ranges: bytes
age: 28605
cache-control: public, max-age=2592000
content-disposition: inline; filename="biden-confused-768x403.webp"
etag: "63d80162-1f5f2"
expires: Wed, 01 Mar 2023 21:55:28 GMT
last-modified: Mon, 30 Jan 2023 17:41:54 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=128498
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CvBlosNKMoX5dRy5MbloROS38iUSDwKSKd9kwonUyMb5B0tbzh20A3vcXkQttzC%2Fv8%2BYgo%2FWwl08eSJp%2FlxWGsuCG0n0eySgwEZ1REpjzbNC6FI6rlxY0Dpj66hwmGPOixA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 53253efc35ba40c1472eafdbf013a254
2eb4ab2473cf73b5c543ee8edce8d4151f9a6953
087b1acc49b7c2041d130c0ad9753da344cad9f97c1cf5ad3766078688ecea89
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2352
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:03 GMT
Last-Modified: Fri, 03 Feb 2023 16:54:51 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 279
pjnewsletter.com/wp-content/uploads/2020/12/maxinewaters-768x403.jpg
104.26.3.234200 OK 34 kB URL HTTP/2 pjnewsletter.com/wp-content/uploads/2020/12/maxinewaters-768x403.jpg
IP 104.26.3.234:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 768x403, components 3\012- data
Hash 53f0d81defb6010bc7732519e742d438
4bd1d276df01133b2b18c6fd08c86bc44703508d
70da681d83dba00562f337018e9b0cfecdd5c963828e092143cd015e3902ddb8
GET /wp-content/uploads/2020/12/maxinewaters-768x403.jpg HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Cookie: _ga_6L5Q55KN3H=GS1.1.1675445674.1.0.1675445674.0.0.0; _ga=GA1.1.1904728995.1675445675; _ga_6EDY1BF25J=GS1.1.1675445674.1.0.1675445674.0.0.0; MgidStorage=%7B%220%22%3A%7B%22svspr%22%3A%22%22%2C%22svsds%22%3A1%7D%2C%22C1415859%22%3A%7B%22page%22%3A1%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/jpeg
content-length: 34397
cf-ray: 793cea44b8800b4d-OSL
accept-ranges: bytes
cache-control: public, max-age=2592000
etag: "5fcaa136-865d"
expires: Wed, 01 Mar 2023 22:10:26 GMT
last-modified: Fri, 04 Dec 2020 20:51:02 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wcyZm8HOQpF1%2FKObQBooWcltm8tfhK8UsnFQ04mWZgtycfLkYZz8KfkdbxRkOEhOeQ1RdsH8gFwXQEUNV37%2BO720WzBYcy5VfeblTXtkkzTaY6OUrkmVPEFy1mN7ddre9vs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18533
Expires: Fri, 03 Feb 2023 22:42:56 GMT
Date: Fri, 03 Feb 2023 17:34:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18533
Expires: Fri, 03 Feb 2023 22:42:56 GMT
Date: Fri, 03 Feb 2023 17:34:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3490571dd2de0a747987b9a0e18cccc8
18e9f8f160d3515f1cb31fc7538ac762a6cab344
1c071d7f3b288b29254500f94f19c0db0633c6aa90812f2e92c4f64992f5221a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10796
x-amzn-requestid: 5c9b1a83-c99a-44b9-9a90-5edd7ef1e225
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi0XKG93oAMFtsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76760-01bf754d6c725c3275c02a1b;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 06:44:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XTZJAn0LMAfFtaQ2bN8z58cCsUT5GzxDMnHVB_iw9E_NskHQ-BgbRQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:19:26 GMT
age: 84437
etag: "18e9f8f160d3515f1cb31fc7538ac762a6cab344"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
Hash 6558098266062a2fb1ced6ffe25a413f
d24350e002a87f7d80415a5b48d82ee08ae83140
9400d37d024636a3054f896ff3bf987ab5ffa4fbff8275f3fe57e56a8dfce96f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 71162
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F999ec9b9-96eb-4927-a0d5-3e4a89cca4ad.png
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F999ec9b9-96eb-4927-a0d5-3e4a89cca4ad.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24261df857fd20898ed41615ff44efd2
5ebaae7786e95f6daf7e837ce741f96611a64335
b947696fced12e35736691fb27c5cc4ddb28e4b4781cfbb69b8b4011b84aca5b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F999ec9b9-96eb-4927-a0d5-3e4a89cca4ad.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10971
x-amzn-requestid: 87d6a618-4ddf-4e40-aaeb-f6e38c274c23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: feH0jHisoAMFgpg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d58683-2de413f446505ec44ab2a390;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 20:33:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VpgiTDC8Uyvv5rCHOxGUgIREsLddYA7POpvU5eJSO3_K3zm7Hp3AOg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:43:06 GMT
age: 71457
etag: "5ebaae7786e95f6daf7e837ce741f96611a64335"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b7r7phj8i49RMSuWufxF1L34K9udWa0mJ4dY12izM9ofwAuCFBGEZQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 71162
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4041f3b5316bc84c9e6d88ddbc85b89
4978a4a20836b6f5d863d331bcedad782b7b4ac6
549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5641
x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzpHsXoAMFsuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:57:49 GMT
age: 70574
etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a6aaf87a867f93dc9268a8b27973b97
f52ccbe6cbced1994acb13a00b05436553b6813e
3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10166
x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_4zHEcoAMF1iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hSyEfSDToqgfnFIW68Krz-ANYUNQoUPWhyb-8xDUarI6mnVLXriHDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:59:54 GMT
age: 70449
etag: "f52ccbe6cbced1994acb13a00b05436553b6813e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pjnewsletter.com/wp-content/uploads/2023/02/bidenmanchin-768x403.png
104.26.3.234200 OK 119 kB URL HTTP/2 pjnewsletter.com/wp-content/uploads/2023/02/bidenmanchin-768x403.png
IP 104.26.3.234:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 119 kB (119044 bytes)
Hash 2445553a460f92b420b0ec769539d549
c1eea02fa5047b9a92ed6e04ab512e094d799c51
6b51064db11fe57ce3982c3de1dad3316f24546793ac3b3891a1939cb9b05059
GET /wp-content/uploads/2023/02/bidenmanchin-768x403.png HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Cookie: _ga_6L5Q55KN3H=GS1.1.1675445674.1.0.1675445674.0.0.0; _ga=GA1.1.1904728995.1675445675; _ga_6EDY1BF25J=GS1.1.1675445674.1.0.1675445674.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 119044
cf-ray: 793cea442ffd0b4d-OSL
accept-ranges: bytes
cache-control: public, max-age=2592000
content-disposition: inline; filename="bidenmanchin-768x403.webp"
etag: "63dab7ba-232c2"
expires: Fri, 03 Mar 2023 22:12:46 GMT
last-modified: Wed, 01 Feb 2023 19:04:26 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=144066
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DN3SDkbKvI6MWouWgPnnbDsuHz60Y4p%2F%2BFT9MWsXnOYU8fjkoSlRJObHPkULVWEfy9pKaD8NhxbNeUW%2FmA7ELkOuOCKgifyfb9NSXkSpPvOAfZV%2F334kExNAEyevJpgVDW8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/sizzle/2.3.3/sizzle.min.js
104.17.24.14200 OK 6.7 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/sizzle/2.3.3/sizzle.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (19801)
Hash aa51e6254869b5d1d31dbd0cfa91ad96
82d573d1746ac89c511291b345a81979a3b993c1
e09c5200a46f787b7d3b1e11a7cc8432c8243426deb845223a23cd53da951781
GET /ajax/libs/sizzle/2.3.3/sizzle.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: application/javascript; charset=utf-8
content-length: 6679
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fd4-4dc5"
last-modified: Mon, 04 May 2020 16:16:20 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 20026632
expires: Wed, 24 Jan 2024 17:34:03 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HpZ0WWIhhJUWShx8HDuKfqH85ZRGcy9UCI15og5ZE%2FZRXMxzyLZFlJTpkECDIMiPw7EtlRef0ndyof60eu4vtnbLnDbvIXMGVIOeF2ar3q7IZDGcw1idOoCbLQpP8uaJ2KvGTtyO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 793cea4678f3b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3db37c98524060f3ea91ea9656a1db06
1bbf71b0a46e931d26a69e0e232d335f90252bfe
f8ebd0c5738a09e04e0464df45646b01a813c4fa5be840443be3b5bbbdb47538
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F8EBD0C5738A09E04E0464DF45646B01A813C4FA5BE840443BE3B5BBBDB47538"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2090
Expires: Fri, 03 Feb 2023 18:08:53 GMT
Date: Fri, 03 Feb 2023 17:34:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 867fe78c3b3a0cc89acbf81c2c946a48
ae5311a5c14b535900b6560c6600e519e4442cc4
c03822901114c8e3f1c2794ef4fe55c8c584fca96f6cfd9e7ec48f0984d10758
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C03822901114C8E3F1C2794EF4FE55C8C584FCA96F6CFD9E7EC48F0984D10758"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9762
Expires: Fri, 03 Feb 2023 20:16:45 GMT
Date: Fri, 03 Feb 2023 17:34:03 GMT
Connection: keep-alive
s-img.mgid.com/g/14649859/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0xMC8xMDE5MjQvZGNhNDQ1NGE1MWM1OWFhZTUwN2ZhNmJmYTU5YzhhZjEuanBlZw.webp?v=1675445643-u7a9-aqmmADyGaVp27_I27ciAOmJL6kYEPeI2_aEhxI
104.19.132.78200 OK 31 kB URL HTTP/2 s-img.mgid.com/g/14649859/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0xMC8xMDE5MjQvZGNhNDQ1NGE1MWM1OWFhZTUwN2ZhNmJmYTU5YzhhZjEuanBlZw.webp?v=1675445643-u7a9-aqmmADyGaVp27_I27ciAOmJL6kYEPeI2_aEhxI
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 47bf9cc37acc5e5ba909d0e1757e3397
0f75d1d501fe3b33713cbdd1147d425e35dc7a40
2460718f8e2e6103afa87a53e43515d6cf1dda485a903d069e794d1b065f8962
GET /g/14649859/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0xMC8xMDE5MjQvZGNhNDQ1NGE1MWM1OWFhZTUwN2ZhNmJmYTU5YzhhZjEuanBlZw.webp?v=1675445643-u7a9-aqmmADyGaVp27_I27ciAOmJL6kYEPeI2_aEhxI HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 31172
x-mg-request-uuid: b024b19d-ad2b-4312-8a66-c75c60838eed
access-control-allow-origin: *
last-modified: Wed, 16 Nov 2022 15:38:55 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 4388485
accept-ranges: bytes
set-cookie: __cf_bm=jNMZ6bW7gY6HU3OhcN_II1w70fZAm8Lw.G2UcxFsHvQ-1675445643-0-AYvX4ZMwL6oZDyJdcbYIW5z+WZzw6nBoFWwhiQBI9qE6PWRlhd55MYGc0CQzna6eh4HuCaUSYZBezA1681+l+K4=; path=/; expires=Fri, 03-Feb-23 18:04:03 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea471ee5b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/11533296/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMS0xMC8xMDE5MjQvYzA3MWViOTg1NTNlOGQyZmFmYWNiNTVlYTNjNjgzOGIuanBlZw.webp?v=1675445643-sDWUe2oGgmk1iS4k1X_CrlV3x0lR2Fif6y2X481AzdE
104.19.132.78200 OK 27 kB URL HTTP/2 s-img.mgid.com/g/11533296/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMS0xMC8xMDE5MjQvYzA3MWViOTg1NTNlOGQyZmFmYWNiNTVlYTNjNjgzOGIuanBlZw.webp?v=1675445643-sDWUe2oGgmk1iS4k1X_CrlV3x0lR2Fif6y2X481AzdE
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dd89adbf4a35eb71ce5114171d7f9f7e
d976b623275e9d3507447ed665d807984816869a
0e1510eb3810dff89be65f6853b303116b435ff17420f1553182b8cc94d961ce
GET /g/11533296/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMS0xMC8xMDE5MjQvYzA3MWViOTg1NTNlOGQyZmFmYWNiNTVlYTNjNjgzOGIuanBlZw.webp?v=1675445643-sDWUe2oGgmk1iS4k1X_CrlV3x0lR2Fif6y2X481AzdE HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 26760
x-mg-request-uuid: b3ac5163-c9af-4be0-825f-3af64d107c43
access-control-allow-origin: *
last-modified: Wed, 01 Dec 2021 12:24:06 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8709878
accept-ranges: bytes
set-cookie: __cf_bm=BUqqCmqaCVgw.FRaoxsoYYD77mo0d84Zc1KPZW4ftos-1675445643-0-AWwlhw0GZSEFCWC1yKGTyVOWFiqnHYUbFTjB4QtOohYGyOaKi05j8ynqSj3kJB8I2BwQnr5CABsW9KJlQAxKBQw=; path=/; expires=Fri, 03-Feb-23 18:04:03 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea471ee1b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/3805533/492x277/0x0x492x277/aHR0cDovL2ltZ2hvc3RzLmNvbS90ZW1wLzIwMTctMDQtMTQvMTAxOTI0L2U5M2JkMjcyOGU0ODlhOGJjMTlmNDJhOTYzYzRkMDAwLmpwZw.webp?v=1675445643-1BrlAV4TOb4ndMDdLo2zqQwjJjpWSUlhrUijoDMKvd0
104.19.132.78200 OK 6.6 kB URL HTTP/2 s-img.mgid.com/g/3805533/492x277/0x0x492x277/aHR0cDovL2ltZ2hvc3RzLmNvbS90ZW1wLzIwMTctMDQtMTQvMTAxOTI0L2U5M2JkMjcyOGU0ODlhOGJjMTlmNDJhOTYzYzRkMDAwLmpwZw.webp?v=1675445643-1BrlAV4TOb4ndMDdLo2zqQwjJjpWSUlhrUijoDMKvd0
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a6784a455129f32a2aa39cfb48afdba7
e628d49e3482c4a5a50f88a222ffb53fd9b155cf
0de1c58ad4b0b6e1a678e169ebf6acb541952853ddefe88fb7cb19b951c413a6
GET /g/3805533/492x277/0x0x492x277/aHR0cDovL2ltZ2hvc3RzLmNvbS90ZW1wLzIwMTctMDQtMTQvMTAxOTI0L2U5M2JkMjcyOGU0ODlhOGJjMTlmNDJhOTYzYzRkMDAwLmpwZw.webp?v=1675445643-1BrlAV4TOb4ndMDdLo2zqQwjJjpWSUlhrUijoDMKvd0 HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 6638
x-mg-request-uuid: 7ab939f1-9710-4c64-afa4-f9cb5daa996f
access-control-allow-origin: *
last-modified: Wed, 10 Aug 2022 14:06:00 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 1340938
accept-ranges: bytes
set-cookie: __cf_bm=7d00omwb2EjJAn2hZ3SW5IdPb9IXKd8l5vcR.IGPgW0-1675445643-0-AXTzZtfjGHCDM3jPMIggSofkVAiA8YZb92RzwcetirmIHgfzI3XOO/+zZgYZ2Cz9rrBRag3c8bjeVErgh7WKMUY=; path=/; expires=Fri, 03-Feb-23 18:04:03 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea471ed9b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/11533303/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMS0xMC8xMDE5MjQvZGQxOTJmYmMzM2QxOGI1YzA2MDc4NDMzYTBjN2IzYTYuanBlZw.webp?v=1675445643-Xz8sNPgnRBwWu0Sj_cN3qq0R5MyI4cNXwbw7yn1cA3E
104.19.132.78200 OK 23 kB URL HTTP/2 s-img.mgid.com/g/11533303/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMS0xMC8xMDE5MjQvZGQxOTJmYmMzM2QxOGI1YzA2MDc4NDMzYTBjN2IzYTYuanBlZw.webp?v=1675445643-Xz8sNPgnRBwWu0Sj_cN3qq0R5MyI4cNXwbw7yn1cA3E
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash aa1a13cf41991591f97e0cf47e59e4c5
bea506bdd2db7e55349efcdfbbff1433bb739af0
2b7b08df59ef8bf3dac35d902712b14ad16a76068cb3e5949bb066e09adddc6b
GET /g/11533303/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMS0xMC8xMDE5MjQvZGQxOTJmYmMzM2QxOGI1YzA2MDc4NDMzYTBjN2IzYTYuanBlZw.webp?v=1675445643-Xz8sNPgnRBwWu0Sj_cN3qq0R5MyI4cNXwbw7yn1cA3E HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 22980
x-mg-request-uuid: fd90fb53-3249-4dcd-808c-6d4cf97b3707
access-control-allow-origin: *
last-modified: Wed, 01 Dec 2021 12:23:51 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 4388202
accept-ranges: bytes
set-cookie: __cf_bm=M_zjAP5JZmud7FDilDj.0zI4X0egC54o3fU.LWdcO1Y-1675445643-0-Aa/4uaMKGMcIlicsy0Ompz/WyqrV7zzck02DoARsPlGb0qhKz3QpcEANpSaEJr7o9LIv1onG3i/+7Vd0qlB2F48=; path=/; expires=Fri, 03-Feb-23 18:04:03 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea471ee3b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/14936939/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0xMS8xMDE5MjQvMzY0NzRiNWE4NWRmNjAzYjc3MDc3NGFmMDI4NzdmNGIucG5n.webp?v=1675445643-TBHaI995nc5vdqt05mObqvyX1rRsSc4aNKDGhaIj0Gg
104.19.132.78200 OK 7.1 kB URL HTTP/2 s-img.mgid.com/g/14936939/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0xMS8xMDE5MjQvMzY0NzRiNWE4NWRmNjAzYjc3MDc3NGFmMDI4NzdmNGIucG5n.webp?v=1675445643-TBHaI995nc5vdqt05mObqvyX1rRsSc4aNKDGhaIj0Gg
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0350530e5b681e77e57435e2d60ea24c
76eef58fd25b4169e96f0a8baffb4f2615e1df22
fa50c5187a96369c6dbb6a718e2a5cfb817ed39f80e5f8da62314d35ffec701e
GET /g/14936939/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0xMS8xMDE5MjQvMzY0NzRiNWE4NWRmNjAzYjc3MDc3NGFmMDI4NzdmNGIucG5n.webp?v=1675445643-TBHaI995nc5vdqt05mObqvyX1rRsSc4aNKDGhaIj0Gg HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 7050
x-mg-request-uuid: 0ed09ab1-ae93-48b2-94d4-a4e52bca77b7
access-control-allow-origin: *
last-modified: Fri, 16 Dec 2022 13:46:53 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 4247183
accept-ranges: bytes
set-cookie: __cf_bm=DRuAqEnrATIkCvNqcrFosXhpRwo3Hmnf5GR7H9t9g_I-1675445643-0-ASbr1RXYrbWKEe7WOr1spZqlc5LtMhTtC4eFFzjaeUIzYiAyb9zgmya7MgcYN1Enc4STnj3WntX8ZSFo5JLJcXw=; path=/; expires=Fri, 03-Feb-23 18:04:03 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea471edeb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/14936857/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0xMS8xMDE5MjQvMmU1NjBjNDYwOWRlZDc4NzAzMjI3NmQ2ODFjMDY0YjMuanBn.webp?v=1675445643-K6N_96WlGAMFPt06x82ARkL3e_5p9_juPIQz3cVHtRI
104.19.132.78200 OK 11 kB URL HTTP/2 s-img.mgid.com/g/14936857/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0xMS8xMDE5MjQvMmU1NjBjNDYwOWRlZDc4NzAzMjI3NmQ2ODFjMDY0YjMuanBn.webp?v=1675445643-K6N_96WlGAMFPt06x82ARkL3e_5p9_juPIQz3cVHtRI
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b03c92a70a9f400f5192826a6359548b
6675f581561cfed48822e2269ba4b994320ac6cb
6272d21cbf3b9fd3777a2e3b811a75356a64bd7a90260d080515a33c09bf6c15
GET /g/14936857/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0xMS8xMDE5MjQvMmU1NjBjNDYwOWRlZDc4NzAzMjI3NmQ2ODFjMDY0YjMuanBn.webp?v=1675445643-K6N_96WlGAMFPt06x82ARkL3e_5p9_juPIQz3cVHtRI HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 10612
x-mg-request-uuid: 1dd4354e-59f5-40a3-b08c-28a9f667c068
access-control-allow-origin: *
last-modified: Fri, 16 Dec 2022 13:47:58 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 4247165
accept-ranges: bytes
set-cookie: __cf_bm=4VCSU8iwAh_6QzQ6Gl9NCdmMiTYLcwqdvcdpG6QgcjM-1675445643-0-ASLQOuON03F88JFmdtb6k7YZ+jczL5rX9DRc4mUy8F44/it+YtUXdkSqGkyGTj/Mi9sMRkDYyautfT7VIbEhoB4=; path=/; expires=Fri, 03-Feb-23 18:04:03 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea472efab518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/3805438/492x277/0x0x492x277/aHR0cDovL2ltZ2hvc3RzLmNvbS90ZW1wLzIwMTctMDQtMTIvMTAxOTI0L2NjZDYwZDEzNTFkNTJhMjFiODliYWZjZGM1NzdlM2I4LmpwZw.webp?v=1675445643-hTzRBN779-7nRN_BKxQq1c16feu_8ZuAfgK0sExhD9U
104.19.132.78200 OK 27 kB URL HTTP/2 s-img.mgid.com/g/3805438/492x277/0x0x492x277/aHR0cDovL2ltZ2hvc3RzLmNvbS90ZW1wLzIwMTctMDQtMTIvMTAxOTI0L2NjZDYwZDEzNTFkNTJhMjFiODliYWZjZGM1NzdlM2I4LmpwZw.webp?v=1675445643-hTzRBN779-7nRN_BKxQq1c16feu_8ZuAfgK0sExhD9U
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1afbdae0fe8d7e1f036160a2071dfe60
af609bfed4ea15e1b2d44ca8ea25ab41bbf5b00b
0a409ce3625eb5cc4424d96e6b03850849cefd013d2ef93f3e44a66665bd9e45
GET /g/3805438/492x277/0x0x492x277/aHR0cDovL2ltZ2hvc3RzLmNvbS90ZW1wLzIwMTctMDQtMTIvMTAxOTI0L2NjZDYwZDEzNTFkNTJhMjFiODliYWZjZGM1NzdlM2I4LmpwZw.webp?v=1675445643-hTzRBN779-7nRN_BKxQq1c16feu_8ZuAfgK0sExhD9U HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 26842
x-mg-request-uuid: 6fede0f6-4378-4cb0-87d1-b45bf7dc28a7
access-control-allow-origin: *
last-modified: Wed, 10 Aug 2022 06:40:47 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8709872
accept-ranges: bytes
set-cookie: __cf_bm=Zw2qKODcGRaaZ6140iB3UwIEITkbqH95ClOL.YmDo.4-1675445643-0-AYk3DuDSbMqxTp2c5iUW1rtVRhsjIKLWyeSmUmQ2AxIW2489QsmK7xPlLhtjM1SpF9UKpElQs+psGdR/VzPpE4s=; path=/; expires=Fri, 03-Feb-23 18:04:03 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea471ed5b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
go.automatad.com/geo/zzQ1JM/afihbs.js
172.67.22.191200 OK 50 kB URL HTTP/2 go.automatad.com/geo/zzQ1JM/afihbs.js
IP 172.67.22.191:0
File type ASCII text, with very long lines (58345)
Hash 32963230a94eee3ecd26e7bdad0bef11
ecba3d2b76ec86ee4bf3cfd26f02b85ee3858206
e934017170199ba349fbf53d0d565e43b9f1d85838df72a6b11c233e8a096647
GET /geo/zzQ1JM/afihbs.js HTTP/1.1
Host: go.automatad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: application/javascript
cf-ray: 793cea415f2f1bfe-OSL
cache-control: max-age=14400
last-modified: Mon, 30 Jan 2023 07:36:21 GMT
cf-cache-status: REVALIDATED
x-automatad-country: NO
x-automatad-device: W
x-iplb-instance: 45515
x-iplb-request-id: A29EDE98:BC0C_8E2CE366:0050_63DCD5C1_4BA929:20FA2
x-object-meta-mtime: 1675064040.961517673
x-openstack-request-id: tx916ec0e94e8740509fbcc-0063dcd5c1
x-timestamp: 1675064180.00750
x-trans-id: tx916ec0e94e8740509fbcc-0063dcd5c1
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/11533310/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ194eV9jZW50ZXIsd18xMDIwLHhfNTc2LHlfNTM2L2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIxLTEwLzEwMTkyNC85YzZhMTgzNTI1MDVkMjYzODBjMDdmODFkZTI0NmRiNS5qcGVn.webp?v=1675445643-f_GFz7aYCwX22aTclfollEdAGwSLmzjbbLYIKYu8Grw
104.19.132.78200 OK 28 kB URL HTTP/2 s-img.mgid.com/g/11533310/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ194eV9jZW50ZXIsd18xMDIwLHhfNTc2LHlfNTM2L2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIxLTEwLzEwMTkyNC85YzZhMTgzNTI1MDVkMjYzODBjMDdmODFkZTI0NmRiNS5qcGVn.webp?v=1675445643-f_GFz7aYCwX22aTclfollEdAGwSLmzjbbLYIKYu8Grw
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4d6bcf34b3b40c135096d4d65757ae74
089567975d43264e78ebbe3c4dcb1a382dffaa99
551a970dcd88f5f3fb322111523dbd53debd6b59597f3dcfaa58f06b4a14b90f
GET /g/11533310/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ194eV9jZW50ZXIsd18xMDIwLHhfNTc2LHlfNTM2L2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIxLTEwLzEwMTkyNC85YzZhMTgzNTI1MDVkMjYzODBjMDdmODFkZTI0NmRiNS5qcGVn.webp?v=1675445643-f_GFz7aYCwX22aTclfollEdAGwSLmzjbbLYIKYu8Grw HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 28230
x-mg-request-uuid: 8947edc2-f615-488a-a266-27144fecf231
access-control-allow-origin: *
last-modified: Wed, 01 Dec 2021 12:24:38 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8709853
accept-ranges: bytes
set-cookie: __cf_bm=3Dh3uHvTvzNVESSCq7yPdS6FQULz2azPKorhuA8.YU4-1675445643-0-Afjc12sRt1uiwrkudYyAhv5s6O6/xSEGn/Bw7GxwZ0StL3s/sZyGNo6pQXnaQQaNCOqegBhJ5xnIWrAM4bzvSKw=; path=/; expires=Fri, 03-Feb-23 18:04:03 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea472ef8b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/4147868/492x277/108x0x768x432/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMTktMDkvMTAxOTI0L2YwZjcwNTJlNWM4MzMzNDZjY2QxYTc3Nzg2ZDYxN2E3LmpwZWc.webp?v=1675445643-hQykNQtLYxpZJFMaiaClAQoxgyBEISS-QBEbOGI1XXQ
104.19.132.78200 OK 15 kB URL HTTP/2 s-img.mgid.com/g/4147868/492x277/108x0x768x432/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMTktMDkvMTAxOTI0L2YwZjcwNTJlNWM4MzMzNDZjY2QxYTc3Nzg2ZDYxN2E3LmpwZWc.webp?v=1675445643-hQykNQtLYxpZJFMaiaClAQoxgyBEISS-QBEbOGI1XXQ
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 05bec3c3d5a29b2e88c5e2cd0278c994
380136e03af8c00c8860d53101fb59d6b6c902e0
3edb574ece35bddd80897c9947f9ba074ebcf23be1000d4adcfc79d2e87a6cb6
GET /g/4147868/492x277/108x0x768x432/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMTktMDkvMTAxOTI0L2YwZjcwNTJlNWM4MzMzNDZjY2QxYTc3Nzg2ZDYxN2E3LmpwZWc.webp?v=1675445643-hQykNQtLYxpZJFMaiaClAQoxgyBEISS-QBEbOGI1XXQ HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 14766
x-mg-request-uuid: 02e91d7f-72d2-4d0a-bf7c-f0548a02ef88
access-control-allow-origin: *
last-modified: Wed, 24 Aug 2022 22:10:38 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8709857
accept-ranges: bytes
set-cookie: __cf_bm=5vrancSXB1LOV9kKPgjkYizOujLCyOP3lvAfoq7fE5w-1675445643-0-AQxxJ806IzS8QTZ7RgnEOxZG4FtpmpN8bE4+2RHuxJ+nFiwNB4uMr+ZG5uL3V9AmOH9S7W7SQkGV4w1eWRylX9M=; path=/; expires=Fri, 03-Feb-23 18:04:03 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea472f10b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash c186f1639cca4959209ce300881a4316
c374d49f3c2ed06acae01e78d812e7042d5e35dc
a10c6d76aaeded97de1cc895757c8ad7139224dd15dd28ec3537840427ac0c5a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3543
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:03 GMT
Last-Modified: Fri, 03 Feb 2023 16:35:00 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
s-img.mgid.com/g/13268984/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wNi8xMDE5MjQvNWNjNzlkYTk0ZjIzMDZhMWM1Y2M3N2EyZWRhMzdlNWMuanBlZw.webp?v=1675445643-AgoQSfVOTCJDidM-AHPP7nhr8tQ21j5V07mA2hCS3cs
104.19.132.78200 OK 14 kB URL HTTP/2 s-img.mgid.com/g/13268984/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wNi8xMDE5MjQvNWNjNzlkYTk0ZjIzMDZhMWM1Y2M3N2EyZWRhMzdlNWMuanBlZw.webp?v=1675445643-AgoQSfVOTCJDidM-AHPP7nhr8tQ21j5V07mA2hCS3cs
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d72df3736ce60713f5667d022541e66c
f0046ec00b4a7d4422648481d13f217cd62692a1
67a973a7aa9531456f7a0c043f5c144e71733aa7a300df1954d23d2a1e00c887
GET /g/13268984/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wNi8xMDE5MjQvNWNjNzlkYTk0ZjIzMDZhMWM1Y2M3N2EyZWRhMzdlNWMuanBlZw.webp?v=1675445643-AgoQSfVOTCJDidM-AHPP7nhr8tQ21j5V07mA2hCS3cs HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 14314
x-mg-request-uuid: ba8c590a-a23f-4ee3-a88e-af79011c0423
access-control-allow-origin: *
last-modified: Thu, 16 Jun 2022 11:45:24 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8709878
accept-ranges: bytes
set-cookie: __cf_bm=.CvTtl5cDGLQplvHD9.xIfaeBQ370iVFnOW1CxXmXYw-1675445643-0-AQHkrN+DnPKU9fdwBQsBZtuNxUJ42C4loOZbFGzPjkvMDOUnl3syFit5OIE/f5yXOyQbG5jl8et0z+cDSFQ8zzc=; path=/; expires=Fri, 03-Feb-23 18:04:03 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea473f1eb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/12068017/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMS0xMC8xMDE5MjQvN2ZiN2IwYjgwZmQyM2QwYjI5MTVhYTEyMDcxZjE1MGUuanBlZw.webp?v=1675445643-frOUvzfTUZ8gSqoUFXhLFkLr0HusanJWGuAe-w8VHR8
104.19.132.78200 OK 29 kB URL HTTP/2 s-img.mgid.com/g/12068017/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMS0xMC8xMDE5MjQvN2ZiN2IwYjgwZmQyM2QwYjI5MTVhYTEyMDcxZjE1MGUuanBlZw.webp?v=1675445643-frOUvzfTUZ8gSqoUFXhLFkLr0HusanJWGuAe-w8VHR8
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 40ec0e68a2b72cf8554c813aa3d87135
0992f7cb6be552bf1f288f93f7125600a49926a2
e3daaf850d14257687481c74f61386ff5e2bb7cc33bb46d92abfb1c69ade4057
GET /g/12068017/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMS0xMC8xMDE5MjQvN2ZiN2IwYjgwZmQyM2QwYjI5MTVhYTEyMDcxZjE1MGUuanBlZw.webp?v=1675445643-frOUvzfTUZ8gSqoUFXhLFkLr0HusanJWGuAe-w8VHR8 HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 29206
x-mg-request-uuid: 99137445-7bb6-4ce6-90d7-e0b5775f64f9
access-control-allow-origin: *
last-modified: Wed, 26 Jan 2022 14:13:35 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8709873
accept-ranges: bytes
set-cookie: __cf_bm=eNMvwD44Q3ecm_RGMzEQ0UVz74Gw2855jwnoBJKp5ig-1675445643-0-AUyG3+YxlUwuTYNYxe+vETe8Agus4mlDlAqqY4H/niz671ic0jH0CRoqNYmx0AItlvB55F3uxZ5lgBxQtPpuSp8=; path=/; expires=Fri, 03-Feb-23 18:04:03 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea475f73b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/13404787/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wNi8xMDE5MjQvYzU3ZWZmMDA2ZTkxZmIwZTdjZDk3MDA3M2U3MTcyYTMuanBn.webp?v=1675445643-5HjvDREzZV_-o1AALkKEtkn5HlHJJpByulq64qbtTO0
104.19.132.78200 OK 12 kB URL HTTP/2 s-img.mgid.com/g/13404787/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wNi8xMDE5MjQvYzU3ZWZmMDA2ZTkxZmIwZTdjZDk3MDA3M2U3MTcyYTMuanBn.webp?v=1675445643-5HjvDREzZV_-o1AALkKEtkn5HlHJJpByulq64qbtTO0
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8fa4ced229c2968babcc92ab4b11c096
ca98235b757ee7ece35de81e98313f4643041279
5370eed7e0d97305b1d0f4a86ff449ae77e063045a296e158d1e0153cf81ab53
GET /g/13404787/492x277/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzE2OjksY19maWxsLGVfc2hhcnBlbjoxMDAsZl9qcGcsZ19mYWNlczphdXRvLHFfYXV0bzpnb29kLHdfMTAyMC9odHRwOi8vaW1naG9zdHMuY29tL3QvMjAyMi0wNi8xMDE5MjQvYzU3ZWZmMDA2ZTkxZmIwZTdjZDk3MDA3M2U3MTcyYTMuanBn.webp?v=1675445643-5HjvDREzZV_-o1AALkKEtkn5HlHJJpByulq64qbtTO0 HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 11972
x-mg-request-uuid: 94e57117-7820-4c2a-9c5e-933a3e558cf0
access-control-allow-origin: *
last-modified: Fri, 01 Jul 2022 07:15:14 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8709877
accept-ranges: bytes
set-cookie: __cf_bm=GDPWp2y1Y7jN4YfiHD_54C5hqEA42NZL0rY9_ZDf9M0-1675445643-0-AW/45vmQJ63IhPQesnkBmpOVMzqLkDnKAGI/Jb5m7a8xtRM7AFAi7H1/MNXQrd6+G76qpbKTx6hZVbs9WahFMrc=; path=/; expires=Fri, 03-Feb-23 18:04:03 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea477fc6b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s-img.mgid.com/g/5523135/492x277/0x0x2001x1126/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjAtMDMvMTAxOTI0L2QxZjAyMjczY2I4OGMyYjQyZTA5ZTc2MWFlMjllNzUyLmpwZWc.webp?v=1675445643-j-0aQ-WcueKMWbsuZMrTs5Uq6fjhZTJVPIAzOGaphgk
104.19.132.78200 OK 25 kB URL HTTP/2 s-img.mgid.com/g/5523135/492x277/0x0x2001x1126/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjAtMDMvMTAxOTI0L2QxZjAyMjczY2I4OGMyYjQyZTA5ZTc2MWFlMjllNzUyLmpwZWc.webp?v=1675445643-j-0aQ-WcueKMWbsuZMrTs5Uq6fjhZTJVPIAzOGaphgk
IP 104.19.132.78:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 492x277, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0b02a734f6a46a62535539450009a311
ec4d8ab3b3f27914e395964db8e6032cbde847fe
d80f5aa754ea5c6aa30315aff9db05f37a60ee4db60da3eb45dbd1297f978484
GET /g/5523135/492x277/0x0x2001x1126/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjAtMDMvMTAxOTI0L2QxZjAyMjczY2I4OGMyYjQyZTA5ZTc2MWFlMjllNzUyLmpwZWc.webp?v=1675445643-j-0aQ-WcueKMWbsuZMrTs5Uq6fjhZTJVPIAzOGaphgk HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 24602
x-mg-request-uuid: 348fc0f3-4355-46be-a5f4-757b5ac39ad1
access-control-allow-origin: *
last-modified: Tue, 06 Sep 2022 10:35:09 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 8709863
accept-ranges: bytes
set-cookie: __cf_bm=FVty2RVEjX5OBgkiskhkpZRtR17u1zHgPVa2Nv3K47s-1675445643-0-AbMsuZXkSjBaOXhJUrt7qXcKqUwWTuaFpYrAXHTH83sKg/VYjOLUyWe1XDc/aRmPpVnRcjQh6TLyJPYhECoELNM=; path=/; expires=Fri, 03-Feb-23 18:04:03 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea476fc0b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-6L5Q55KN3H>m=45je3210&_p=648545569&cid=1904728995.1675445675&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675445674&sct=1&seg=0&dl=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&dt=Manchin%20Joins%20GOP%20to%20Betray%20President%20Biden%20-%20Joe%20Moves%20to%20Shut%20Down%20Democrats%27%20Woke%20ESG%20Rules&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-6L5Q55KN3H>m=45je3210&_p=648545569&cid=1904728995.1675445675&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675445674&sct=1&seg=0&dl=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&dt=Manchin%20Joins%20GOP%20to%20Betray%20President%20Biden%20-%20Joe%20Moves%20to%20Shut%20Down%20Democrats%27%20Woke%20ESG%20Rules&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-6L5Q55KN3H>m=45je3210&_p=648545569&cid=1904728995.1675445675&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675445674&sct=1&seg=0&dl=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&dt=Manchin%20Joins%20GOP%20to%20Betray%20President%20Biden%20-%20Joe%20Moves%20to%20Shut%20Down%20Democrats%27%20Woke%20ESG%20Rules&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://pjnewsletter.com
date: Fri, 03 Feb 2023 17:34:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-6EDY1BF25J>m=45je3210&_p=648545569&cid=1904728995.1675445675&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675445674&sct=1&seg=0&dl=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&dt=Manchin%20Joins%20GOP%20to%20Betray%20President%20Biden%20-%20Joe%20Moves%20to%20Shut%20Down%20Democrats%27%20Woke%20ESG%20Rules&en=page_view&_fv=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-6EDY1BF25J>m=45je3210&_p=648545569&cid=1904728995.1675445675&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675445674&sct=1&seg=0&dl=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&dt=Manchin%20Joins%20GOP%20to%20Betray%20President%20Biden%20-%20Joe%20Moves%20to%20Shut%20Down%20Democrats%27%20Woke%20ESG%20Rules&en=page_view&_fv=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-6EDY1BF25J>m=45je3210&_p=648545569&cid=1904728995.1675445675&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675445674&sct=1&seg=0&dl=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&dt=Manchin%20Joins%20GOP%20to%20Betray%20President%20Biden%20-%20Joe%20Moves%20to%20Shut%20Down%20Democrats%27%20Woke%20ESG%20Rules&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://pjnewsletter.com
date: Fri, 03 Feb 2023 17:34:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash c186f1639cca4959209ce300881a4316
c374d49f3c2ed06acae01e78d812e7042d5e35dc
a10c6d76aaeded97de1cc895757c8ad7139224dd15dd28ec3537840427ac0c5a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3543
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:03 GMT
Last-Modified: Fri, 03 Feb 2023 16:35:00 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
pjnewsletter.com/wp-content/themes/patriotjournal/imgs/favicon.png
104.26.3.234200 OK 2.1 kB URL HTTP/2 pjnewsletter.com/wp-content/themes/patriotjournal/imgs/favicon.png
IP 104.26.3.234:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a161f7a6efa066e14280b03508204497
ab5ba3c3763907ef9dd384a9836321d9ed8181d9
748cd7e5b13230b3b2dd474205cf18b6cd41776a1055a2068ccbfc3587fc2e86
GET /wp-content/themes/patriotjournal/imgs/favicon.png HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Cookie: _ga_6L5Q55KN3H=GS1.1.1675445674.1.0.1675445674.0.0.0; _ga=GA1.1.1904728995.1675445675; _ga_6EDY1BF25J=GS1.1.1675445674.1.0.1675445674.0.0.0; MgidStorage=%7B%220%22%3A%7B%22svspr%22%3A%22%22%2C%22svsds%22%3A2%7D%2C%22C1415859%22%3A%7B%22page%22%3A1%7D%2C%22C1171406%22%3A%7B%22page%22%3A1%2C%22time%22%3A1675445675133%7D%7D; _pbjs_userid_consent_data=3524755945110770
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 2060
cf-ray: 793cea487bc80b4d-OSL
accept-ranges: bytes
age: 2486914
cache-control: public, max-age=2592000
content-disposition: inline; filename="favicon.webp"
etag: "5e4da161-5b29"
expires: Sat, 07 Jan 2023 04:09:50 GMT
last-modified: Wed, 19 Feb 2020 20:58:09 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=23337
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G58pIl%2FMfcGtBs%2BfvmVx%2Bg7g5MdDgc6XPz4IvnKNJoepvODqC6v81o9F6O5WIKPIHmUl9ifTo17No0NkeVe5oDaNSno%2BWHpf8CJ9Yck8ClnDTMIaolnToM%2BPmt0%2F%2F2%2Fu0NY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash bf7176f53ae48e2937606ec6a3183894
72d62284ef50bfcd25d89230b976e7801aa9fb61
8018ea43e6fb413dbfeef29775f4606cd81178505f36344434da57ec5d728033
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5694
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:03 GMT
Last-Modified: Fri, 03 Feb 2023 15:59:09 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 279
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 03 Feb 2023 15:45:20 GMT
expires: Fri, 03 Feb 2023 17:45:20 GMT
cache-control: public, max-age=7200
age: 6523
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/pwt/161673/7165/pwt.js
2.18.172.200200 OK 79 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/161673/7165/pwt.js
IP 2.18.172.200:0
Hash 38985d59e03baf697398337637756b48
676d0e816dba33c38e2fa2057c3fd583bbb587f0
1e6e836c997c8beb31cc699d95873ca8fec5867be8e71d9428e8c191574c8452
GET /AdServer/js/pwt/161673/7165/pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 23 Sep 2022 12:15:31 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: application/javascript
cache-control: max-age=88657
expires: Sat, 04 Feb 2023 18:11:40 GMT
date: Fri, 03 Feb 2023 17:34:03 GMT
content-length: 73257
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.twitter.com/widgets.js
192.229.233.25200 OK 28 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 192.229.233.25:0
File type Unicode text, UTF-8 text, with very long lines (38752)
Hash 8aa708f5eebf10bd82e942dabf1623a5
326a6d469222302a80ecf29039e7837d8870ee47
fcfdc2930fdd7f4b3c7f0c1308ce2e89fcc5082ae6a0a1e16ecf0f7e417f1368
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 1494
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Fri, 03 Feb 2023 17:34:03 GMT
Etag: "9e99725b7a4cd730a934afba2a438bb5+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:51 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71E)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 27630
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3868
Cache-Control: max-age=141939
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:03 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 08:59:42 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 42f7bb86070a306c0902a2947bfd5db1
679751d86f7520d1e5e30b5bc050015450de75a7
ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 42f7bb86070a306c0902a2947bfd5db1
679751d86f7520d1e5e30b5bc050015450de75a7
ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pjnewsletter.com/wp-content/uploads/2019/09/adamschiffbreak-2-768x403.png
104.26.3.234200 OK 108 kB URL HTTP/2 pjnewsletter.com/wp-content/uploads/2019/09/adamschiffbreak-2-768x403.png
IP 104.26.3.234:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 108 kB (107748 bytes)
Hash 1675d3fb970d29ea7414765faded9174
66be14fc5042f654c38cda0a4df2af2ec8ba5a71
e7f64aa48b173a0d6ef3ee14734948978886823fd212775a1818df834ea9d3c2
GET /wp-content/uploads/2019/09/adamschiffbreak-2-768x403.png HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Cookie: _ga_6L5Q55KN3H=GS1.1.1675445674.1.0.1675445674.0.0.0; _ga=GA1.1.1904728995.1675445675; _ga_6EDY1BF25J=GS1.1.1675445674.1.0.1675445674.0.0.0; MgidStorage=%7B%220%22%3A%7B%22svspr%22%3A%22%22%2C%22svsds%22%3A1%7D%2C%22C1415859%22%3A%7B%22page%22%3A1%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: image/webp
content-length: 107748
cf-ray: 793cea44a86f0b4d-OSL
accept-ranges: bytes
cache-control: public, max-age=2592000
content-disposition: inline; filename="adamschiffbreak-2-768x403.webp"
etag: "5d85470a-217f3"
expires: Sun, 05 Mar 2023 13:27:21 GMT
last-modified: Fri, 20 Sep 2019 21:39:22 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=137203
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PcHxSyQ2HIsNJC2jYJKt8xyOBHJUopNU6NBlzZkI9CHvYRHWVWJ4D3O8c%2FLL0GJrkkJBGnbkPuPIOxTTKT7TQLlAdWYN9GJBYAIr40rJL6uIFf5xO46YBaqqEb7VhtFzLGs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: n1MMUAXBF1ghGrNflr/z6fup2E7HPmCJ7uBxoUNnJoqM+TITCquCVkBnrkSd0mKxrHo6RaY2rStPRhyeUJjPeQ==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1679558926
date: Fri, 03 Feb 2023 17:34:03 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
b2cdn.automatad.com/js/prebid_zzQ1JM.js
194.242.11.186200 OK 99 kB URL HTTP/2 b2cdn.automatad.com/js/prebid_zzQ1JM.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (65423)
Hash a80c4ce6d63187be92da22315a4f988a
c2a6444b888603b99914af418869a5ec1949ee83
40b6fce458b886fcb1c3fbb4b7080908f6f2749986f8f4b23f345d1fe3424c1e
GET /js/prebid_zzQ1JM.js HTTP/1.1
Host: b2cdn.automatad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 87832
cdn-uid: 02ba462e-865f-4abf-a9cd-22f9021b3a43
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=120
content-encoding: br
last-modified: Thu, 01 Dec 2022 06:15:35 GMT
cdn-cachedat: 02/03/2023 01:54:38
x-timestamp: 1669875334.61242
x-object-meta-mtime: 1669875277.242206811
x-trans-id: tx19deda115258489e93487-0063d8ee5b
x-openstack-request-id: tx19deda115258489e93487-0063d8ee5b
x-iplb-request-id: A996EC63:528F_8E2CE366:01BB_63D8EE59_337520DB:1C7B7
x-iplb-instance: 45516
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 3ce9d304111112e4ca7dc9ce828ae96d
cdn-cache: REVALIDATED
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7666278362879166
142.250.74.130200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7666278362879166
IP 142.250.74.130:0
File type ASCII text, with very long lines (3649)
Hash d0a5a72d096a423caaba4e45553a3a99
f98cefb2a343ea126838d94ffb1517eb0d711c26
4c5ab2bf2bfe47dc2aa77fc02ddbf2968da279862c2cb91dc6dfe22d2c91d67c
GET /pagead/js/adsbygoogle.js?client=ca-pub-7666278362879166 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 03 Feb 2023 17:34:03 GMT
expires: Fri, 03 Feb 2023 17:34:03 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 234883441013224218
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50143
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3868
Cache-Control: max-age=141939
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:03 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 08:59:42 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.engine.4dsply.com/Scripts/infinity.js.aspx?guid=0d94d46c-3cdb-4ae0-a09a-420aae9253fe
104.16.158.17200 OK 151 kB URL HTTP/2 cdn.engine.4dsply.com/Scripts/infinity.js.aspx?guid=0d94d46c-3cdb-4ae0-a09a-420aae9253fe
IP 104.16.158.17:0
File type ASCII text, with very long lines (64095)
Size 151 kB (151089 bytes)
Hash a3ff8a153a8bd3410b4246c7eb867279
d40c39c765b92d10dcf5b619ce73e60a12100c92
02de26212f51a48c37c9e0f7fc44358abc9a3d2cc3ec5718c453684f262815d4
GET /Scripts/infinity.js.aspx?guid=0d94d46c-3cdb-4ae0-a09a-420aae9253fe HTTP/1.1
Host: cdn.engine.4dsply.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: application/x-javascript; charset=utf-8
vary: Accept-Encoding
cache-control: public, max-age=900
p3p: CP="CAO PSA OUR IND"
access-control-allow-origin: *
last-modified: Fri, 03 Feb 2023 17:32:45 GMT
cf-cache-status: HIT
expires: Fri, 03 Feb 2023 17:49:03 GMT
server: cloudflare
cf-ray: 793cea48dd93b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/pagead/ppub_config?ippd=pjnewsletter.com
142.250.74.130200 OK 123 B URL HTTP/2 securepubads.g.doubleclick.net/pagead/ppub_config?ippd=pjnewsletter.com
IP 142.250.74.130:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 328a8029929719bd48dedd0a828d54a4
0189bb119b7170fb7eb115afbb9a45ec628f6394
1bdcef5786fa7e1246597e9d669aa58a711f9e5e304b745501ee24ff86162d77
GET /pagead/ppub_config?ippd=pjnewsletter.com HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
date: Fri, 03 Feb 2023 17:34:04 GMT
expires: Fri, 03 Feb 2023 17:34:04 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 123
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 03-Feb-2023 17:49:04 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 8b804d4fb7d7aeec1dc3afbf239f9158
6a6fa6de8b378f6347a5ad73d3adfeb8aa0426c7
f6d07ded4544396cc2f31c5a7b9ba1227d222175d4c5c510924963f679574f68
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 17:34:04 GMT
Last-Modified: Fri, 03 Feb 2023 15:46:11 GMT
Server: ECS (nyb/1D2B)
X-Cache: Miss from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: g5Ikx5inJamVvCX6XSjR_0fLLoAKFlitFAkQpttzmmeoaNwhqBd_Mw==
Age: 6473
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 8b804d4fb7d7aeec1dc3afbf239f9158
6a6fa6de8b378f6347a5ad73d3adfeb8aa0426c7
f6d07ded4544396cc2f31c5a7b9ba1227d222175d4c5c510924963f679574f68
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 17:34:04 GMT
Last-Modified: Fri, 03 Feb 2023 16:19:25 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: f0vixen3FN9k8XVY4pfovgYUTLkm6oX62nOPXA7K640_l8NCTg-DXQ==
Age: 4479
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 8b804d4fb7d7aeec1dc3afbf239f9158
6a6fa6de8b378f6347a5ad73d3adfeb8aa0426c7
f6d07ded4544396cc2f31c5a7b9ba1227d222175d4c5c510924963f679574f68
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 17:34:04 GMT
Last-Modified: Fri, 03 Feb 2023 17:06:52 GMT
Server: ECS (nyb/1D04)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EjckvzwFiAWJW5ciYSi3d6tOqSYcSO9m3INhlfta5ES2FS4hCUJulA==
Age: 1634
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 8b804d4fb7d7aeec1dc3afbf239f9158
6a6fa6de8b378f6347a5ad73d3adfeb8aa0426c7
f6d07ded4544396cc2f31c5a7b9ba1227d222175d4c5c510924963f679574f68
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 17:34:04 GMT
Last-Modified: Fri, 03 Feb 2023 16:50:31 GMT
Server: ECS (bsa/EB1C)
X-Cache: Miss from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: o2XXlQ2GZPrrAkjClI9kGGVZSRC2vGK5zF00eGr9Qjf9GUbFUC-CNQ==
Age: 2613
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 8b804d4fb7d7aeec1dc3afbf239f9158
6a6fa6de8b378f6347a5ad73d3adfeb8aa0426c7
f6d07ded4544396cc2f31c5a7b9ba1227d222175d4c5c510924963f679574f68
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 17:34:04 GMT
Last-Modified: Fri, 03 Feb 2023 16:30:45 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _8KHUFiBbL4WYMlWjhvKTL68vJzPEAsu97AviNybJyfnAfXYO-5tWQ==
Age: 3800
trends.revcontent.com/sync
52.51.126.33200 OK 62 B URL HTTP/1.1 trends.revcontent.com/sync
IP 52.51.126.33:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 489b41772269dd7499467942aa4168d0
f3b345ebfc2fecf817aed972ce09685406869298
26dbf4c2b0572d7aa97b520ab9177dd45f93c31705b78b429f2e7da90e58deee
GET /sync HTTP/1.1
Host: trends.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 03 Feb 2023 17:34:04 GMT
Content-Type: application/json
Content-Length: 62
Connection: keep-alive
X-RC-Region: eu-west-1c
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-origin: https://pjnewsletter.com
access-control-allow-credentials: true
set-cookie: rcuuid=9fc44b91-2111-4bf0-b6c3-366daadaa8b5; Path=/; Domain=revcontent.com; Max-Age=31536000; Expires=Sat, 03 Feb 2024 17:34:04 GMT
p3p: CP="NOI DSP COR NID ADM DEV OUR NOR CNT"
cache-control: max-age=600, private, s-maxage=0, stale-while-revalidate=1800
etag: "9fc44b91-2111-4bf0-b6c3-366daadaa8b5"
trends.revcontent.com/api/demand/?w=217810
52.51.126.33200 OK 52 B URL HTTP/1.1 trends.revcontent.com/api/demand/?w=217810
IP 52.51.126.33:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f4a5288d29a5acc780b485c0631d904d
9fe1fd9219f6dd986fe1c1269fe429842efaa576
8b4b43fd2629a9ae29c5220a852bbc8ff169c571cdf77798633efec65c934df7
GET /api/demand/?w=217810 HTTP/1.1
Host: trends.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 03 Feb 2023 17:34:04 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 52
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-credentials: true
access-control-allow-origin: https://pjnewsletter.com
Strict-Transport-Security: max-age=931536000; includeSubDomains
trends.revcontent.com/api/demand/?w=113139
52.51.126.33200 OK 52 B URL HTTP/1.1 trends.revcontent.com/api/demand/?w=113139
IP 52.51.126.33:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f4a5288d29a5acc780b485c0631d904d
9fe1fd9219f6dd986fe1c1269fe429842efaa576
8b4b43fd2629a9ae29c5220a852bbc8ff169c571cdf77798633efec65c934df7
GET /api/demand/?w=113139 HTTP/1.1
Host: trends.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 03 Feb 2023 17:34:04 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 52
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-credentials: true
access-control-allow-origin: https://pjnewsletter.com
Strict-Transport-Security: max-age=931536000; includeSubDomains
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4b32d45a75459dc3d6106bdaa187bad2
ac8c14aab07ccf9e2361b6e97dd99533a7cf663c
78d2731715d2c9787631e6e6d3d073b6e96af3e5373a25080d298b8214591bbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 17:34:04 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 00:04:31 GMT
Expires: Thu, 09 Feb 2023 00:04:30 GMT
Etag: "ac8c14aab07ccf9e2361b6e97dd99533a7cf663c"
Cache-Control: max-age=454825,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793cea4c698eb4ff-OSL
trends.revcontent.com/api/demand/?w=217810
52.51.126.33200 OK 52 B URL HTTP/1.1 trends.revcontent.com/api/demand/?w=217810
IP 52.51.126.33:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f4a5288d29a5acc780b485c0631d904d
9fe1fd9219f6dd986fe1c1269fe429842efaa576
8b4b43fd2629a9ae29c5220a852bbc8ff169c571cdf77798633efec65c934df7
GET /api/demand/?w=217810 HTTP/1.1
Host: trends.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 03 Feb 2023 17:34:04 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 52
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-credentials: true
access-control-allow-origin: https://pjnewsletter.com
Strict-Transport-Security: max-age=931536000; includeSubDomains
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4b32d45a75459dc3d6106bdaa187bad2
ac8c14aab07ccf9e2361b6e97dd99533a7cf663c
78d2731715d2c9787631e6e6d3d073b6e96af3e5373a25080d298b8214591bbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 17:34:04 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 00:04:31 GMT
Expires: Thu, 09 Feb 2023 00:04:30 GMT
Etag: "ac8c14aab07ccf9e2361b6e97dd99533a7cf663c"
Cache-Control: max-age=454825,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793cea4cda12b4ff-OSL
adservice.google.com/adsid/integrator.js?domain=pjnewsletter.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=pjnewsletter.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=pjnewsletter.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 03 Feb 2023 17:34:04 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 2fdd4a71f94f887227623bed4f75dcc6
ef9e6c5749f2702c61580fa3e038a16a8bfca94f
7c7d42a969377c086baef4a6f4f6792c7b4dd3c09714876f17fbb39cf6ca8c5e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1918
Cache-Control: max-age=129863
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:04 GMT
Etag: "63dc9655-13a"
Expires: Sun, 05 Feb 2023 05:38:27 GMT
Last-Modified: Fri, 03 Feb 2023 05:06:29 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 314
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=pjnewsletter.com
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=pjnewsletter.com
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=pjnewsletter.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 03 Feb 2023 17:34:04 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
6.adsco.re/
104.17.167.186200 OK 0 B IP 104.17.167.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:04 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://pjnewsletter.com
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea4dbb78b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de88149c85daf1f2f8f183d16f581394
4b88639d92a9defef7e575ff50f00348d7a4fc91
5bcde8fa6ee36e3a745249b5a5d1c583b0b17e1bd37a3d5b83ce9255b818680d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.adsco.re/
162.252.214.5200 OK 62 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash adde5febc7b5b6c2c759ec735cce83a0
77ec17be8a9970ff04663294d41c590d0d24fde4
ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 17:34:04 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://pjnewsletter.com
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 96f7904b22bd10653bc0d4f67215f960
8cd6822ecd4e595745a92156ce72c81dafef9c07
b66e9f9073e01f210a393ee3d55ac5f381d3cc19b16728d797612ffb1bb77273
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B66E9F9073E01F210A393EE3D55AC5F381D3CC19B16728D797612FFB1BB77273"
Last-Modified: Fri, 03 Feb 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5098
Expires: Fri, 03 Feb 2023 18:59:02 GMT
Date: Fri, 03 Feb 2023 17:34:04 GMT
Connection: keep-alive
syndication.twitter.com/settings?session_id=2a0186a0cd1bdb20999953cc25f38b4abb85a480
104.244.42.72200 OK 326 B URL HTTP/2 syndication.twitter.com/settings?session_id=2a0186a0cd1bdb20999953cc25f38b4abb85a480
IP 104.244.42.72:0
File type JSON data\012- , ASCII text, with very long lines (919), with no line terminators
Hash 11f6a2d6bb52340b52d53f9cf72973e8
ea0c3e5d850a2659b3344d84957b691a6f7942b8
a0b2545f4adeaf91f7a23b95f43c682557bdfd1e59d2cf394d10a01f97c886ff
GET /settings?session_id=2a0186a0cd1bdb20999953cc25f38b4abb85a480 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Fri, 03 Feb 2023 17:34:04 GMT
content-length: 326
content-encoding: gzip
x-transaction-id: ab39e2a70f963ece
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 108
x-connection-hash: 58fbf66f20c9987f682967113696fd4bd61c7c07f76623e316e93259ab271c2a
X-Firefox-Spdy: h2
ia1mnhkqtdvm.l4.adsco.re/
185.200.118.90200 OK 0 B URL HTTP/1.1 ia1mnhkqtdvm.l4.adsco.re/
IP 185.200.118.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: ia1mnhkqtdvm.l4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 17:34:04 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Tue, 31 Jul 2018 22:16:15 GMT
Connection: close
ETag: "5b60dfaf-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ead5df3e30e38bb1a739ababb3292302
b5986cff7222999bf19e360ced4a445a2202c82c
768a8260af372a1ca06f826c3a3f84b6bc4523130134b32998baf75b64d7de4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=154908708357560&ev=PageView&dl=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&rl=&if=false&ts=1675445676123&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675445676121.659804316&it=1675445675843&coo=false&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=154908708357560&ev=PageView&dl=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&rl=&if=false&ts=1675445676123&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675445676121.659804316&it=1675445675843&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=154908708357560&ev=PageView&dl=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&rl=&if=false&ts=1675445676123&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675445676121.659804316&it=1675445675843&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 03 Feb 2023 17:34:04 GMT
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=pjnewsletter.com&callback=_gfp_s_&client=ca-pub-7666278362879166
216.58.207.226200 OK 259 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=pjnewsletter.com&callback=_gfp_s_&client=ca-pub-7666278362879166
IP 216.58.207.226:0
File type ASCII text, with very long lines (399), with no line terminators
Hash ab51e96a810d0fadd164a06942ede54a
b104c5f18aeac61b6a170236ac2f145d99d2dac1
3acb14c2bd66d54b4a0121747ab49b0c68f38ba341390bc903066085e6ff31ee
GET /gampad/cookie.js?domain=pjnewsletter.com&callback=_gfp_s_&client=ca-pub-7666278362879166 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 03 Feb 2023 17:34:04 GMT
server: cafe
cache-control: private
content-length: 259
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 795fd8179eb3a8f80fe7a7dad686cffa
2d48d68e87cdbd93d21c104cf2cd1b8e6c1deede
e6f376698b22de940593e0c4b11788f2fbae4b359716170c3408af96c668d576
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E6F376698B22DE940593E0C4B11788F2FBAE4B359716170C3408AF96C668D576"
Last-Modified: Thu, 02 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7735
Expires: Fri, 03 Feb 2023 19:42:59 GMT
Date: Fri, 03 Feb 2023 17:34:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 795fd8179eb3a8f80fe7a7dad686cffa
2d48d68e87cdbd93d21c104cf2cd1b8e6c1deede
e6f376698b22de940593e0c4b11788f2fbae4b359716170c3408af96c668d576
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E6F376698B22DE940593E0C4B11788F2FBAE4B359716170C3408AF96C668D576"
Last-Modified: Thu, 02 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7735
Expires: Fri, 03 Feb 2023 19:42:59 GMT
Date: Fri, 03 Feb 2023 17:34:04 GMT
Connection: keep-alive
cdn.automatad.com/js/iiq_tag.js
194.242.11.186200 OK 31 kB URL HTTP/2 cdn.automatad.com/js/iiq_tag.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (52687), with no line terminators
Hash f0ed2fcde1b794dc4360b98c43f08697
34dba76036d24415444b8a2cb45629df35167ffe
7f4f4b4bac4ad982184c22a43efae1a210e4b3304bdacbbaafc24b328f95f0dd
GET /js/iiq_tag.js HTTP/1.1
Host: cdn.automatad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 50108
cdn-uid: 02ba462e-865f-4abf-a9cd-22f9021b3a43
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=30
etag: W/"635fce69-cdcf"
last-modified: Mon, 31 Oct 2022 13:32:25 GMT
cdn-storageserver: DE-199
cdn-fileserver: 290
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/31/2023 02:43:43
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 6a7b945c8687344b8e56ae60fa9ed9d0
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 576a17ec7fb5f36c6d5bb5f6b279b364
597aa074548b37188e076b4dfbb009a14545765e
aafa5e0c6f850cfefbf0729f539ad905161452f8eda46b9e2eedc287f817d2ce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AAFA5E0C6F850CFEFBF0729F539AD905161452F8EDA46B9E2EEDC287F817D2CE"
Last-Modified: Fri, 03 Feb 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4894
Expires: Fri, 03 Feb 2023 18:55:38 GMT
Date: Fri, 03 Feb 2023 17:34:04 GMT
Connection: keep-alive
lb.eu-1-id5-sync.com/lb/v1
162.19.138.118200 33 B URL HTTP/1.1 lb.eu-1-id5-sync.com/lb/v1
IP 162.19.138.118:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3da64efa44ef4611b776838315d7ff75
3a9186b1596e45c36d1aa6e50108e8d882024fb5
c42ecf7290b0ccf061c4b4ef42ae339898e34fa04bc1ab3897a57e30841e84f9
GET /lb/v1 HTTP/1.1
Host: lb.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://pjnewsletter.com
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Fri, 03 Feb 2023 17:34:04 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
lbs.eu-1-id5-sync.com/lbs/v1
162.19.138.117200 OK 34 B URL HTTP/1.1 lbs.eu-1-id5-sync.com/lbs/v1
IP 162.19.138.117:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 622627b4f14bd7bb14f5c447063891ff
7ba3d287c4d0fd96a6bf7dea94fd08cb336af345
be1beeed0ea2aee42f2bbe71c34f539c1ee35460737f8c874bd112ff686382e5
GET /lbs/v1 HTTP/1.1
Host: lbs.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Fri, 3 Feb 2023 17:34:04 GMT
access-control-allow-origin: https://pjnewsletter.com
vary: Origin
content-type: application/json
content-length: 34
strict-transport-security: max-age=63072000; includeSubDomains; preload
ia1mnhkqtdvm.n4.adsco.re/
38.132.109.186200 OK 0 B URL HTTP/1.1 ia1mnhkqtdvm.n4.adsco.re/
IP 38.132.109.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: ia1mnhkqtdvm.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 17:34:04 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:32:42 GMT
Connection: close
ETag: "5b5f2f9a-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
adsco.re/p
162.252.214.5200 OK 133 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash ea5a7ac7cf1b3bdb4dba1d712fe7de52
c1986eeb30334c88017801d26b3ed3ff19d8a4ee
2a9957fff02a49dad3937981cb9615dc42122b2799a0f4fb53ce97b788a8671b
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2556
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 17:34:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Access-Control-Allow-Origin: https://pjnewsletter.com
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cd20b8e5802898377dba837f6f5b775d
34162008d3de3025378ac930d8cffd0cb4cf0c57
a6e7db76f7ad7706797e494c1f9d85bb01983a28bd112dabd63caa7220b85bb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6E7DB76F7AD7706797E494C1F9D85BB01983A28BD112DABD63CAA7220B85BB1"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5663
Expires: Fri, 03 Feb 2023 19:08:28 GMT
Date: Fri, 03 Feb 2023 17:34:05 GMT
Connection: keep-alive
pjnewsletter.com/cdn-cgi/rum?
104.26.3.234204 No Content 0 B URL HTTP/2 pjnewsletter.com/cdn-cgi/rum?
IP 104.26.3.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
content-type: application/json
Content-Length: 40312
Origin: https://pjnewsletter.com
Connection: keep-alive
Cookie: _ga_6L5Q55KN3H=GS1.1.1675445674.1.0.1675445674.0.0.0; _ga=GA1.2.1904728995.1675445675; _ga_6EDY1BF25J=GS1.1.1675445674.1.0.1675445674.0.0.0; MgidStorage=%7B%220%22%3A%7B%22svspr%22%3A%22%22%2C%22svsds%22%3A2%7D%2C%22C1415859%22%3A%7B%22page%22%3A1%7D%2C%22C1171406%22%3A%7B%22page%22%3A1%2C%22time%22%3A1675445675133%7D%7D; _pbjs_userid_consent_data=3524755945110770; _gid=GA1.2.1960694191.1675445676; _gat_UA-71705037-13=1; _fbp=fb.1.1675445676121.659804316; a=3HVkqGrNEZMOXLDNXgT8cJaycut8ue8M; __gads=ID=129f920d8408c536-22a90dc783db00ea:T=1675445644:RT=1675445644:S=ALNI_MbdJS6tZ56lzSPEW5NYsJovDsO4Qg; __gpi=UID=00000baf63b95497:T=1675445644:RT=1675445644:S=ALNI_MYwk3GsXuZJuJNNVo48wF_KGAJBsA; token_QlJAAAAAAAAArRMIRsGBk-hpXXMDyS9EWV8qBEI=BAYAY91FjQFj3UWNgAGBAcAAIP7v7v6T47uYoQdnqC9FoVarV5eYft94mosvcvX-8TDDwQAgipcrNI6e1eTRoypxVzRWAUEBA9fkmk-UEBoWhlvA_V8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 17:34:05 GMT
access-control-allow-origin: https://pjnewsletter.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 793cea52ed760b4d-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
4.adsco.re/
162.252.214.5200 OK 62 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash adde5febc7b5b6c2c759ec735cce83a0
77ec17be8a9970ff04663294d41c590d0d24fde4
ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 17:34:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
trends.revcontent.com/api/delivery/?is_blocked=undefined&w=113139&width=1280&rev_allow_cookies=undefined&site_url=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&icr_url=&va=0&user_uuid=undefined&time=1675445677010&up=pc&bn=firefox&bv=105&widget_width=590&style_id=0&an=false
52.51.126.33200 OK 5.6 kB URL HTTP/1.1 trends.revcontent.com/api/delivery/?is_blocked=undefined&w=113139&width=1280&rev_allow_cookies=undefined&site_url=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&icr_url=&va=0&user_uuid=undefined&time=1675445677010&up=pc&bn=firefox&bv=105&widget_width=590&style_id=0&an=false
IP 52.51.126.33:0
File type JSON data\012- , ASCII text, with very long lines (12104), with no line terminators
Hash b298e62b12f9efa3ea0071ad04d2b6a2
6bb0aa72fcc2e5729e4b6e0fcea28af222811402
e4d2eaf1407ab3db611c78c155efffdf6cbc9e6b05e78c0bd7b0825344bb7ae9
GET /api/delivery/?is_blocked=undefined&w=113139&width=1280&rev_allow_cookies=undefined&site_url=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&icr_url=&va=0&user_uuid=undefined&time=1675445677010&up=pc&bn=firefox&bv=105&widget_width=590&style_id=0&an=false HTTP/1.1
Host: trends.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5621
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-credentials: true
access-control-allow-origin: https://pjnewsletter.com
vary: Accept-Encoding
content-encoding: gzip
Strict-Transport-Security: max-age=931536000; includeSubDomains
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 37c26fb09f8a09fdc910d20b97d6f079
5d7848dc1152b81bf53c10fee9e26e20a01b0f02
740e3d2348357db713554ff75471d18ad9d2a2e810f71b3bab61984b026295fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "740E3D2348357DB713554FF75471D18AD9D2A2E810F71B3BAB61984B026295FD"
Last-Modified: Thu, 02 Feb 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7206
Expires: Fri, 03 Feb 2023 19:34:11 GMT
Date: Fri, 03 Feb 2023 17:34:05 GMT
Connection: keep-alive
trends.revcontent.com/api/delivery/?is_blocked=undefined&w=217810&width=1280&rev_allow_cookies=undefined&site_url=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&icr_url=&va=0&user_uuid=undefined&time=1675445677007&up=pc&bn=firefox&bv=105&widget_width=300&style_id=0&an=false
52.51.126.33200 OK 5.7 kB URL HTTP/1.1 trends.revcontent.com/api/delivery/?is_blocked=undefined&w=217810&width=1280&rev_allow_cookies=undefined&site_url=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&icr_url=&va=0&user_uuid=undefined&time=1675445677007&up=pc&bn=firefox&bv=105&widget_width=300&style_id=0&an=false
IP 52.51.126.33:0
File type JSON data\012- , ASCII text, with very long lines (12445), with no line terminators
Hash 3247114211b0e4d6920b827b42e771d1
d60abc6d88b97b76a3a6dc2a2fa1982fc51f32f5
441c55a74f6a3092125d1090ca0524a22bb7760e31680ef4648f274d5efd738c
GET /api/delivery/?is_blocked=undefined&w=217810&width=1280&rev_allow_cookies=undefined&site_url=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&icr_url=&va=0&user_uuid=undefined&time=1675445677007&up=pc&bn=firefox&bv=105&widget_width=300&style_id=0&an=false HTTP/1.1
Host: trends.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5662
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-credentials: true
access-control-allow-origin: https://pjnewsletter.com
vary: Accept-Encoding
content-encoding: gzip
Strict-Transport-Security: max-age=931536000; includeSubDomains
trends.revcontent.com/api/delivery/?is_blocked=undefined&w=217810&width=1280&rev_allow_cookies=undefined&site_url=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&icr_url=&va=0&user_uuid=undefined&time=1675445677011&up=pc&bn=firefox&bv=105&widget_width=0&style_id=0&an=false
52.51.126.33200 OK 5.6 kB URL HTTP/1.1 trends.revcontent.com/api/delivery/?is_blocked=undefined&w=217810&width=1280&rev_allow_cookies=undefined&site_url=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&icr_url=&va=0&user_uuid=undefined&time=1675445677011&up=pc&bn=firefox&bv=105&widget_width=0&style_id=0&an=false
IP 52.51.126.33:0
File type JSON data\012- , ASCII text, with very long lines (12497), with no line terminators
Hash d3f549c70a616abe9a988649c629c570
83d2344b719be224f14fd933f78a71749b25b24a
a6e54e6573b20945693f25c53e14ae3d9053e5b4d45e49feef8dc236e94bdb52
GET /api/delivery/?is_blocked=undefined&w=217810&width=1280&rev_allow_cookies=undefined&site_url=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&icr_url=&va=0&user_uuid=undefined&time=1675445677011&up=pc&bn=firefox&bv=105&widget_width=0&style_id=0&an=false HTTP/1.1
Host: trends.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5586
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-credentials: true
access-control-allow-origin: https://pjnewsletter.com
vary: Accept-Encoding
content-encoding: gzip
Strict-Transport-Security: max-age=931536000; includeSubDomains
id5-sync.com/g/v2/231.json
162.19.138.120200 216 B URL HTTP/1.1 id5-sync.com/g/v2/231.json
IP 162.19.138.120:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6c8189c4ce24c9b0ccede8feabcad3b0
452ac9316abc1d5da8d6365f9f153e0a287482c0
43100b6326013bf6c675945c66a4d118df79a7b336f4e0c4eabda41dd26bde5e
POST /g/v2/231.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 602
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://pjnewsletter.com
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Fri, 03 Feb 2023 17:34:04 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
yeet.revcontent.com/yeet/events/api-errors
99.81.25.188200 OK 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/api-errors
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pjnewsletter.com/
Origin: https://pjnewsletter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Content-Length: 0
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: *
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
yeet.revcontent.com/yeet/events/api-errors
99.81.25.188200 OK 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/api-errors
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pjnewsletter.com/
Origin: https://pjnewsletter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Content-Length: 0
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: *
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
yeet.revcontent.com/yeet/events/api-errors
99.81.25.188200 OK 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/api-errors
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pjnewsletter.com/
Origin: https://pjnewsletter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Content-Length: 0
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: *
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yeet.revcontent.com/yeet/events/api-errors
99.81.25.188200 OK 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/api-errors
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pjnewsletter.com/
Origin: https://pjnewsletter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Content-Length: 0
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: *
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e096628e9e3427964a3f2219b8d02e88
efaff2eaaf4925badc429f10970a3b7f729da488
8ea3785e4b28aec4b87a314581fb1e3018ba0238bcd59515d14a5abe0a8095d0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EA3785E4B28AEC4B87A314581FB1E3018BA0238BCD59515D14A5ABE0A8095D0"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3096
Expires: Fri, 03 Feb 2023 18:25:41 GMT
Date: Fri, 03 Feb 2023 17:34:05 GMT
Connection: keep-alive
yeet.revcontent.com/yeet/events/api-errors
99.81.25.188200 OK 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/api-errors
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pjnewsletter.com/
Origin: https://pjnewsletter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Content-Length: 0
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: *
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
yeet.revcontent.com/yeet/events/api-errors
99.81.25.188200 OK 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/api-errors
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pjnewsletter.com/
Origin: https://pjnewsletter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Content-Length: 0
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: *
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash da3beb9cdc6505327a8aa019852b0553
31096ce2624631fbbabb0a9692beb6aaeb6f2a30
2d3d3e32082cf7785814aec2d4c33eb2b25530590c69ccfbc4e2247aca46c71c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3312
Cache-Control: max-age=147454
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:05 GMT
Etag: "63dcd59b-1d7"
Expires: Sun, 05 Feb 2023 10:31:39 GMT
Last-Modified: Fri, 03 Feb 2023 09:36:27 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ib.adnxs.com/ut/v3/prebid
37.252.171.53200 OK 255 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 37.252.171.53:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d6813ec33b7c990dca594be793fb5e26
fc5e16529e60fd4fa6e988030032c4c2912984c4
02714d0b45b91090832182601b7a5470762b057955b56535667826885e7bdc3b
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 989
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Fri, 03 Feb 2023 17:34:05 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 255
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://pjnewsletter.com
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 9db63eca-79e4-42b3-aaf3-4f36f5a87ce0
Set-Cookie: icu=ChgIkpN6EAoYASABKAEwjYv1ngY4AUABSAEQjYv1ngYYAA..; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 04-May-2023 17:34:05 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=5631559313617065367; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 04-May-2023 17:34:05 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
yeet.revcontent.com/yeet/events/api-errors
99.81.25.188204 No Content 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/api-errors
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://pjnewsletter.com
Content-Length: 255
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-origin: *
vary: Origin
yeet.revcontent.com/yeet/events/api-errors
99.81.25.188204 No Content 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/api-errors
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://pjnewsletter.com
Content-Length: 257
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-origin: *
vary: Origin
yeet.revcontent.com/yeet/events/api-errors
99.81.25.188204 No Content 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/api-errors
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://pjnewsletter.com
Content-Length: 255
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-origin: *
vary: Origin
yeet.revcontent.com/yeet/events/api-errors
99.81.25.188204 No Content 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/api-errors
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://pjnewsletter.com
Content-Length: 257
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-origin: *
vary: Origin
yeet.revcontent.com/yeet/events/api-errors
99.81.25.188204 No Content 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/api-errors
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://pjnewsletter.com
Content-Length: 255
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-origin: *
vary: Origin
yeet.revcontent.com/yeet/events/api-errors
99.81.25.188204 No Content 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/api-errors
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://pjnewsletter.com
Content-Length: 257
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-origin: *
vary: Origin
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pbjs.e-planning.net/hb/1/5b083/1/pjnewsletter.com/ROS?ct=1&r=pbjs&rnd=0.7912196965875259&e=160x600_0%3A160x600%2B728x90_0%3A728x90&ur=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&pbv=6.28.0&ncb=1&vs=FF&crs=UTF-8&fr=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891
185.172.90.252200 OK 80 B URL HTTP/2 pbjs.e-planning.net/hb/1/5b083/1/pjnewsletter.com/ROS?ct=1&r=pbjs&rnd=0.7912196965875259&e=160x600_0%3A160x600%2B728x90_0%3A728x90&ur=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&pbv=6.28.0&ncb=1&vs=FF&crs=UTF-8&fr=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891
IP 185.172.90.252:0
ASN #49981 WorldStream B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash 917ac019e1ed1e47576f812cd4d899a2
a7481e4c0e8767152a5e3b64ed2cf913370fb2f3
669ffc725ca58de8f86bc8099a737ad661ad0fc43febbfbed9b21a5a05efa08a
GET /hb/1/5b083/1/pjnewsletter.com/ROS?ct=1&r=pbjs&rnd=0.7912196965875259&e=160x600_0%3A160x600%2B728x90_0%3A728x90&ur=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&pbv=6.28.0&ncb=1&vs=FF&crs=UTF-8&fr=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891 HTTP/1.1
Host: pbjs.e-planning.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Content-Type: text/plain
Referer: https://pjnewsletter.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Fri, 03 Feb 2023 17:34:05 GMT
content-type: application/json
access-control-allow-origin: https://pjnewsletter.com
access-control-allow-credentials: true
cache-control: max-age=0, no-cache
p3p: policyref="http://ads.us.e-planning.net/p3p/eplanning.p3p", CP="NOI DSP COR NID CURa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
expires: Fri, 03 Feb 2023 17:34:05 GMT
content-length: 80
x-sid: AMS-928
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.189.112204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.189.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1016
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://pjnewsletter.com
cache-control: no-cache, no-store, must-revalidate
date: Fri, 03 Feb 2023 17:34:05 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
142.250.74.35200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 15:38:44 GMT
expires: Tue, 30 Jan 2024 15:38:44 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
age: 352521
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 6accc88e204f5fac973918b6cedf4601
80bddc0f2f4c6b0ebef55b986700067847074b3d
3b70788213178c925f7aa07d32a8d386ad0300d71517a75d533528c26a3799d6
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=90664
Date: Fri, 03 Feb 2023 17:34:05 GMT
Etag: "63dbf207-1d7"
Expires: Sat, 04 Feb 2023 18:45:09 GMT
Last-Modified: Thu, 02 Feb 2023 17:25:27 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: saRu5vDPVwBCCOvO2oVCTqJ046CrkqgLGDhrnhAoj1QvQt98M52KUA==
Age: 4782
fonts.gstatic.com/s/sourceserifpro/v15/neIXzD-0qpwxpaWvjeD0X88SAOeasasatSyqxA.woff2
142.250.74.35200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/sourceserifpro/v15/neIXzD-0qpwxpaWvjeD0X88SAOeasasatSyqxA.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 20864, version 1.0\012- data
Hash fe8c10a818058a638df99287425dc986
30ce5d31a26c5e00233c2a47ae1dca7e773aa713
6889a7789d4db6452dd58c9f2b0ae003221eae0cfe30e2402d0d941f7f371fe8
GET /s/sourceserifpro/v15/neIXzD-0qpwxpaWvjeD0X88SAOeasasatSyqxA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20864
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:42:13 GMT
expires: Fri, 02 Feb 2024 00:42:13 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:27:58 GMT
content-type: font/woff2
age: 147112
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
142.250.74.35200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 13052, version 1.0\012- data
Hash 7cf79fbd1df848510d7352274efc2401
5540b5a26cc7dfe25294c4eabe011e2c6cd60143
bc9a16cd945457ad9463cdaed95129b01c589466978dfee3d019d9c604b2171a
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:02 GMT
expires: Mon, 29 Jan 2024 22:02:02 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:09:03 GMT
content-type: font/woff2
age: 415923
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ia1mnhkqtdvm.s4.adsco.re/
185.200.116.90200 OK 0 B URL HTTP/1.1 ia1mnhkqtdvm.s4.adsco.re/
IP 185.200.116.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: ia1mnhkqtdvm.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 17:34:05 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
pbjs.e-planning.net/pbjs/1/5b083/1/pjnewsletter.com/ROS?rnd=0.7912196965875259&e=160x600_0%3A160x600%2B728x90_0%3A728x90&ur=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&pbv=6.28.0&ncb=1&vs=FF&crs=UTF-8&fr=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891
185.172.90.252302 Found 7.7 kB URL HTTP/2 pbjs.e-planning.net/pbjs/1/5b083/1/pjnewsletter.com/ROS?rnd=0.7912196965875259&e=160x600_0%3A160x600%2B728x90_0%3A728x90&ur=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&pbv=6.28.0&ncb=1&vs=FF&crs=UTF-8&fr=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891
IP 185.172.90.252:0
ASN #49981 WorldStream B.V.
Hash 2ba34248f3d25b4615d42549206bfc18
4bb0d22e79ac09f81f79f2159a78b07fcfb7882c
89f8b8056fdb45c1aa33a364370b99d0492d1e01daaf419d6271c33c10dc17b3
GET /pbjs/1/5b083/1/pjnewsletter.com/ROS?rnd=0.7912196965875259&e=160x600_0%3A160x600%2B728x90_0%3A728x90&ur=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&pbv=6.28.0&ncb=1&vs=FF&crs=UTF-8&fr=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891 HTTP/1.1
Host: pbjs.e-planning.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Fri, 03 Feb 2023 17:34:05 GMT
content-type: text/html; charset=iso-8859-1
access-control-allow-origin: https://pjnewsletter.com
access-control-allow-credentials: true
location: /hb/1/5b083/1/pjnewsletter.com/ROS?ct=1&r=pbjs&rnd=0.7912196965875259&e=160x600_0%3A160x600%2B728x90_0%3A728x90&ur=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891&pbv=6.28.0&ncb=1&vs=FF&crs=UTF-8&fr=https%3A%2F%2Fpjnewsletter.com%2Fmanchin-joins-gop-biden-esg%2F%3Futm_source%3DBA01%26utm_medium%3Demail%26utm_id%3D3506%26sfmc_id%3D7298891
p3p: policyref="http://ads.us.e-planning.net/p3p/eplanning.p3p", CP="NOI DSP COR NID CURa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
set-cookie: CT=1; path=/; SameSite=None; Secure
x-sid: AMS-928
X-Firefox-Spdy: h2
assets.revcontent.com/master/defaultWidget.delivery.js
151.139.128.10200 OK 6.2 kB URL HTTP/2 assets.revcontent.com/master/defaultWidget.delivery.js
IP 151.139.128.10:0
File type ASCII text, with very long lines (17209)
Hash c0fc7b34d57105f87477946a3e576fc8
6d0a47321c28707c17ba5bd09b5698c0065f5ec0
a02a707b7fca86f46481e15c1939d84f7fdb33d55b0764407c4c61ae27dd6fda
GET /master/defaultWidget.delivery.js HTTP/1.1
Host: assets.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:05 GMT
content-encoding: gzip
content-length: 6223
content-type: application/x-javascript
last-modified: Wed, 01 Feb 2023 18:56:38 GMT
accept-ranges: bytes
x-amz-id-2: Ii0upmz9AP/ZxqgtUpRLrovqiDbJFV1pfLNM+2uvaBuC+T+oL5wwjkoxtwgsrKF2lJhhNqtmLT0=
x-amz-request-id: 803ZDWF2WWTFVNWC
etag: "2af34eeb308c7a477d744220730a37a2"
cache-control: public,max-age=600
server: AmazonS3
x-hw: 1675445645.cds221.sk1.hn,1675445645.cds228.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
assets.revcontent.com/master/commonModal.delivery.js
151.139.128.10200 OK 1.7 kB URL HTTP/2 assets.revcontent.com/master/commonModal.delivery.js
IP 151.139.128.10:0
File type ASCII text, with very long lines (3480)
Hash 3a3454cfd4bcdbe3530b5be69abaec8a
58e12542c05f89a6c16361862eea50b2b1a6cf72
500b5fa71b171742f299d7523fd5acde7db575ecf0753fdf884df62ae22dcbbc
GET /master/commonModal.delivery.js HTTP/1.1
Host: assets.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:05 GMT
content-encoding: gzip
content-length: 1672
content-type: application/x-javascript
last-modified: Wed, 01 Feb 2023 18:56:38 GMT
accept-ranges: bytes
x-amz-id-2: ocDoShUngJLKobiSQ5xAbuc6KW4QwOEU8OR7RryNffyFHftBr5QLYrvRWQzMJzIcVNgbTQFDBY0=
x-amz-request-id: 803YB3Q7DP1S84C2
etag: "f0d1fcc18cb3b9bce36668b12f881505"
cache-control: public,max-age=600
server: AmazonS3
x-hw: 1675445645.cds221.sk1.hn,1675445645.cds245.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 832775a408c718892e82db29cfd714ee
4b05adbde482a9d0e8290326273c8cc52b051123
2e24e9ddbdb9326d57ee324b8b8280d7fb51266af3109226a95f866149090062
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img.revcontent.com/?url=https://cdn.revcontent.com/assets/img/full_color.png&static=true
151.139.128.10200 OK 1.4 kB URL HTTP/2 img.revcontent.com/?url=https://cdn.revcontent.com/assets/img/full_color.png&static=true
IP 151.139.128.10:0
File type PNG image data, 64 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 624cba89d4a9bbe9c882fdbe4c11621d
a798d6ed9b193888fbc8a4a5bd7b51c236f8aa33
94d3b3f21c82e9004e1a95aba77f256573a3406d0782d451d50ac8e4bb4df7c5
GET /?url=https://cdn.revcontent.com/assets/img/full_color.png&static=true HTTP/1.1
Host: img.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:05 GMT
etag: "1654183362"
cache-control: max-age=31536000
content-length: 1351
content-type: image/png
last-modified: Thu, 02 Jun 2022 15:22:42 GMT
accept-ranges: bytes
x-hw: 1675445645.cds067.sk1.hn,1675445645.cds242.sk1.c
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2.js
172.217.21.161200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 172.217.21.161:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Fri, 03 Feb 2023 17:34:05 GMT
expires: Fri, 03 Feb 2023 17:34:05 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
trends.revcontent.com/event/impression
52.51.126.33204 No Content 0 B URL HTTP/1.1 trends.revcontent.com/event/impression
IP 52.51.126.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /event/impression HTTP/1.1
Host: trends.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Origin: https://pjnewsletter.com
Content-Length: 2288
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-origin: *
vary: Origin
Strict-Transport-Security: max-age=931536000; includeSubDomains
trends.revcontent.com/event/impression
52.51.126.33204 No Content 0 B URL HTTP/1.1 trends.revcontent.com/event/impression
IP 52.51.126.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /event/impression HTTP/1.1
Host: trends.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Origin: https://pjnewsletter.com
Content-Length: 1980
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-origin: https://pjnewsletter.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
Strict-Transport-Security: max-age=931536000; includeSubDomains
trends.revcontent.com/event/impression
52.51.126.33204 No Content 0 B URL HTTP/1.1 trends.revcontent.com/event/impression
IP 52.51.126.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /event/impression HTTP/1.1
Host: trends.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Origin: https://pjnewsletter.com
Content-Length: 2136
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-origin: https://pjnewsletter.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
Strict-Transport-Security: max-age=931536000; includeSubDomains
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4cf0ccf2909be74efd7a89dbe4228ffb
b4993da334b48312584d116a3de4be4cd71962cf
e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 514 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash a7651f232cac303b9d70e0a6f22aec07
425e964f8cad6d970ff081b97f8997c78e41d387
0859a8a32538fff938e980373d2cfc2e981aa436c80c96875c439f92d36f8040
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 03 Feb 2023 17:34:05 GMT
date: Fri, 03 Feb 2023 17:34:05 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-TKqLyWQAxDEPOp095Yy2yw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 514
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ads.servenobid.com/adreq?cb=5759
54.220.195.205200 OK 14 kB URL HTTP/2 ads.servenobid.com/adreq?cb=5759
IP 54.220.195.205:0
Hash 83f2c67abf23bd98d53b0e350bb3c968
297a81486d3b024c9f7689377fbd0bd81b085cc2
d67353b60876e28860f29d62163eccc41ec66f4989d2192147d7c3a8facebc19
POST /adreq?cb=5759 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 748
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:05 GMT
content-type: application/json
access-control-allow-origin: https://pjnewsletter.com
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
yeet.revcontent.com/yeet/events/widget-loaded
99.81.25.188200 OK 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/widget-loaded
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /yeet/events/widget-loaded HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pjnewsletter.com/
Origin: https://pjnewsletter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Content-Length: 0
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: *
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
yeet.revcontent.com/yeet/events/page-view
99.81.25.188200 OK 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/page-view
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /yeet/events/page-view HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pjnewsletter.com/
Origin: https://pjnewsletter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Content-Length: 0
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: *
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
yeet.revcontent.com/yeet/events/widget-loaded
99.81.25.188200 OK 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/widget-loaded
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /yeet/events/widget-loaded HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pjnewsletter.com/
Origin: https://pjnewsletter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Content-Length: 0
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: *
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
yeet.revcontent.com/yeet/events/widget-loaded
99.81.25.188200 OK 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/widget-loaded
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /yeet/events/widget-loaded HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pjnewsletter.com/
Origin: https://pjnewsletter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 03 Feb 2023 17:34:05 GMT
Content-Length: 0
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: *
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/5fccab736759d9-91522255.jpg
151.139.128.10200 OK 7.5 kB URL HTTP/2 images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/5fccab736759d9-91522255.jpg
IP 151.139.128.10:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 150x150, segment length 16, baseline, precision 8, 300x225, components 3\012- data
Hash a76d5870bf4eab2d8e228b17f6537e16
c27d2cb7c8c6904fe49a2aa16fa179aa61e4ef8d
bef4a5bb398d5ed05ec9427baa2ca70a0c5154f054d1de5497aa213474147479
GET /revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/5fccab736759d9-91522255.jpg HTTP/1.1
Host: images.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:06 GMT
content-length: 7542
content-type: image/jpeg
last-modified: Thu, 11 Nov 2021 17:41:11 GMT
accept-ranges: bytes
etag: "a76d5870bf4eab2d8e228b17f6537e16"
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=604800
server-timing: fastly;dur=2;cpu=1;start=2022-10-14T07:35:27.184Z;desc=hit,rtt;dur=0
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
x-hw: 1675445646.cds014.sk1.hn,1675445646.cds067.sk1.c
X-Firefox-Spdy: h2
images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/602e2ca2badd89-69137814.jpg
151.139.128.10200 OK 8.0 kB URL HTTP/2 images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/602e2ca2badd89-69137814.jpg
IP 151.139.128.10:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 150x150, segment length 16, baseline, precision 8, 300x225, components 3\012- data
Hash 9519c4e1bead9bb026ee104d9c42c83a
3408f59e884c296efe6b88e8ba175e1ecadd3c00
9941d75727b38022108c03b853ee1579a991eb1f880b7e1099bd56e88aa2ff21
GET /revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/602e2ca2badd89-69137814.jpg HTTP/1.1
Host: images.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:06 GMT
content-length: 7981
content-type: image/jpeg
last-modified: Thu, 11 Nov 2021 18:02:22 GMT
accept-ranges: bytes
etag: "9519c4e1bead9bb026ee104d9c42c83a"
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=604800
server-timing: fastly;dur=1;cpu=0;start=2023-01-18T22:45:54.594Z;desc=hit,rtt;dur=0
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
x-hw: 1675445646.cds014.sk1.hn,1675445646.cds263.sk1.c
X-Firefox-Spdy: h2
cdn.revcontent.com/assets/img/rc-logo.png
151.139.128.10200 OK 2.1 kB URL HTTP/2 cdn.revcontent.com/assets/img/rc-logo.png
IP 151.139.128.10:0
File type PNG image data, 250 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash 4405c6e8202f91988ee39d113f8fb197
7915a09abe40508407ddcca88050b43c0e570bc1
f4241710e57486ad91102e31823e855469608e1aea362f1f0e059609c9eb9a56
GET /assets/img/rc-logo.png HTTP/1.1
Host: cdn.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:06 GMT
etag: "1674863583"
cache-control: max-age=14599
content-length: 2091
content-type: image/png
last-modified: Fri, 27 Jan 2023 23:53:03 GMT
accept-ranges: bytes
x-hw: 1675445646.cds255.sk1.hn,1675445646.cds204.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/63dcc7d7d4abd2-76429635.jpg
151.139.128.10200 OK 9.3 kB URL HTTP/2 images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/63dcc7d7d4abd2-76429635.jpg
IP 151.139.128.10:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 150x150, segment length 16, baseline, precision 8, 300x225, components 3\012- data
Hash 24e90bfc921f9f8063e96dddab226d17
2d9fbb665482c64de45186d39ba74b778bb6bc1a
e02ef3c24065633debe4af625eb87c64cfb7d78df1bfb16527d5ccc6c50fe4ac
GET /revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/63dcc7d7d4abd2-76429635.jpg HTTP/1.1
Host: images.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:06 GMT
content-length: 9336
content-type: image/jpeg
last-modified: Fri, 03 Feb 2023 08:39:05 GMT
accept-ranges: bytes
etag: "24e90bfc921f9f8063e96dddab226d17"
x-request-id: 369501badaef055a47f37bd2a9885da9
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=604800
server-timing: fastly;dur=2;cpu=0;start=2023-02-03T09:15:45.587Z;desc=hit,rtt;dur=1
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
x-hw: 1675445646.cds014.sk1.hn,1675445646.cds067.sk1.c
X-Firefox-Spdy: h2
images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/602e2c936d86e6-71609334.jpg
151.139.128.10200 OK 6.5 kB URL HTTP/2 images.revcontent.com/revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/602e2c936d86e6-71609334.jpg
IP 151.139.128.10:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 150x150, segment length 16, baseline, precision 8, 300x225, components 3\012- data
Hash 7e70ed82b29f8e51ae84397330e5882b
4e53fb3872123ea01932c09e2a8283d92fc3eee5
0426d2ded190bca6aa004f5c68d49cc6da461e8a732f36928c3629d7426a6597
GET /revcontent/image/fetch/f_jpg,q_50,h_225,w_300,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/602e2c936d86e6-71609334.jpg HTTP/1.1
Host: images.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:06 GMT
content-length: 6526
content-type: image/jpeg
last-modified: Thu, 11 Nov 2021 17:40:26 GMT
accept-ranges: bytes
etag: "7e70ed82b29f8e51ae84397330e5882b"
strict-transport-security: max-age=604800
cache-control: public, no-transform, immutable, max-age=604800
server-timing: fastly;dur=2;cpu=1;start=2023-01-18T22:41:43.753Z;desc=hit,rtt;dur=0
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,X-Content-Type-Options
x-hw: 1675445646.cds014.sk1.hn,1675445646.cds208.sk1.c
X-Firefox-Spdy: h2
yeet.revcontent.com/yeet/events/widget-loaded
99.81.25.188204 No Content 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/widget-loaded
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yeet/events/widget-loaded HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://pjnewsletter.com
Content-Length: 273
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 03 Feb 2023 17:34:06 GMT
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-origin: *
vary: Origin
yeet.revcontent.com/yeet/events/widget-loaded
99.81.25.188204 No Content 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/widget-loaded
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yeet/events/widget-loaded HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://pjnewsletter.com
Content-Length: 267
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 03 Feb 2023 17:34:06 GMT
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-origin: *
vary: Origin
yeet.revcontent.com/yeet/events/widget-loaded
99.81.25.188204 No Content 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/widget-loaded
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yeet/events/widget-loaded HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://pjnewsletter.com
Content-Length: 273
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 03 Feb 2023 17:34:06 GMT
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-origin: *
vary: Origin
yeet.revcontent.com/yeet/events/page-view
99.81.25.188204 No Content 0 B URL HTTP/1.1 yeet.revcontent.com/yeet/events/page-view
IP 99.81.25.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /yeet/events/page-view HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://pjnewsletter.com
Content-Length: 254
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: openresty
Date: Fri, 03 Feb 2023 17:34:06 GMT
Connection: keep-alive
X-RC-Region: eu-west-1c
access-control-allow-origin: *
vary: Origin
404088471334a63c58c5a4be02b1c58a.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html?n=1
142.250.74.97200 OK 2.7 kB URL HTTP/2 404088471334a63c58c5a4be02b1c58a.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html?n=1
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html?n=1 HTTP/1.1
Host: 404088471334a63c58c5a4be02b1c58a.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Fri, 03 Feb 2023 17:34:06 GMT
expires: Sat, 03 Feb 2024 17:34:06 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=160148
2.18.172.200200 OK 5.6 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=160148
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15889), with no line terminators
Hash 18a6bc0e051c0767f814f63ff07e65f9
8fbe4eb399d8501b90276723d38c9ffb4ab483fa
26341482a8d6c8384b2cb91aba95833ac2002bd284ff690adbd2009bf76cb95b
GET /AdServer/js/user_sync.html?kdntuid=1&p=160148 HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 06:36:49 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5554
content-type: text/html
cache-control: max-age=77395
expires: Sat, 04 Feb 2023 15:04:03 GMT
date: Fri, 03 Feb 2023 17:34:08 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
acdn.adnxs.com/dmp/async_usersync.html
151.101.193.108200 OK 17 kB URL HTTP/1.1 acdn.adnxs.com/dmp/async_usersync.html
IP 151.101.193.108:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52990)
Hash 9c6b5ce6b3452e98573e6409c34dd73c
de607fadef62e36945a409a838eb8fc36d819b42
cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc
GET /dmp/async_usersync.html HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 17053
Server: nginx/1.18.0 (Ubuntu)
Content-Type: text/html
Last-Modified: Fri, 25 Mar 2022 16:06:02 GMT
ETag: W/"623de86a-cf34"
Expires: Wed, 18 Jan 2023 06:44:40 GMT
Cache-Control: max-age=86402
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 03 Feb 2023 17:34:09 GMT
Age: 49896
X-Served-By: cache-lga13626-LGA, cache-bma1663-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 20, 147618
X-Timer: S1675445649.033379,VS0,VE0
Vary: Accept-Encoding
ads.pubmatic.com/AdServer/js/user_sync.html?p=162412&userIdMacro=PM_UID&gdpr=0&gdpr_consent=&us_privacy=1YN-&&predirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID
2.18.172.200200 OK 5.6 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?p=162412&userIdMacro=PM_UID&gdpr=0&gdpr_consent=&us_privacy=1YN-&&predirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15889), with no line terminators
Hash 18a6bc0e051c0767f814f63ff07e65f9
8fbe4eb399d8501b90276723d38c9ffb4ab483fa
26341482a8d6c8384b2cb91aba95833ac2002bd284ff690adbd2009bf76cb95b
GET /AdServer/js/user_sync.html?p=162412&userIdMacro=PM_UID&gdpr=0&gdpr_consent=&us_privacy=1YN-&&predirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 06:36:49 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5554
content-type: text/html
cache-control: max-age=77394
expires: Sat, 04 Feb 2023 15:04:03 GMT
date: Fri, 03 Feb 2023 17:34:09 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=duration_media&endpoint=us-east
104.110.14.155301 Moved Permanently 0 B URL HTTP/2 secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=duration_media&endpoint=us-east
IP 104.110.14.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utils/xapi/multi-sync.html?p=duration_media&endpoint=us-east HTTP/1.1
Host: secure-assets.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=duration_media&endpoint=us-east
date: Fri, 03 Feb 2023 17:34:09 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash b203d3ea1988ed23dc3940d0c4c76536
4a445af838fe9df7a03c9c0b46d6b5f170d4e233
79ce7df2897669d38bbd746eb8325df8bc5992999aa085f3379cb10977662b68
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6151
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:09 GMT
Last-Modified: Fri, 03 Feb 2023 15:51:38 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash c20cf2947b23f54c08faaa69e2becdec
ae4c5c126002479cecc0a53dd8700e7e46a347f0
81000272aee9625ace4c21b43649f780bf3422150b0e2e169eb35711f7aa33ec
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4742
Cache-Control: max-age=163690
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:09 GMT
Etag: "63dd0f75-139"
Expires: Sun, 05 Feb 2023 15:02:19 GMT
Last-Modified: Fri, 03 Feb 2023 13:43:17 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 313
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e825fa17a623e7dfc3a144c1fbefb7fe
50d637cac8808b59196ff18040db1369cad9d51e
dfe2a451b1389c328ed0867dd6cff4fcec3f17c5444d206c902956792aa721a8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DFE2A451B1389C328ED0867DD6CFF4FCEC3F17C5444D206C902956792AA721A8"
Last-Modified: Thu, 02 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7600
Expires: Fri, 03 Feb 2023 19:40:49 GMT
Date: Fri, 03 Feb 2023 17:34:09 GMT
Connection: keep-alive
ib.adnxs.com/async_usersync?cbfn=queuePixels
37.252.171.53307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/async_usersync?cbfn=queuePixels
IP 37.252.171.53:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 03 Feb 2023 17:34:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: ee4e5fee-22ff-4109-a453-eac5c49a44e0
Set-Cookie: uuid2=2157439606546864869; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 04-May-2023 17:34:09 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
51.89.9.254204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D
IP 51.89.9.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.html?p=duration_media&endpoint=us-east
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?p=duration_media&endpoint=us-east
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?p=duration_media&endpoint=us-east HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Fri, 03 Feb 2023 17:34:09 GMT
Connection: keep-alive
Vary: Accept-Encoding
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
147.75.85.234302 Found 0 B URL HTTP/2 prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D
IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Fri, 03 Feb 2023 17:34:08 GMT
location: https://ads.servenobid.com/sync?pid=327&uid=144468ca-a0f5-472c-9dd8-59fdeaf9b31a&gdpr=0&gdpr_consent=&us_privacy=1YN-
server: envoy
x-envoy-upstream-service-time: 1
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?s=195491&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D
104.18.33.19302 Found 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?s=195491&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D
IP 104.18.33.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch?s=195491&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 17:34:09 GMT
content-length: 0
location: /usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1
cf-ray: 793cea6b5a160b41-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y91FkQua0yysUir..PDP0gAA; Path=/; Domain=casalemedia.com; Expires=Sat, 03 Feb 2024 17:34:09 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=698; Path=/; Domain=casalemedia.com; Expires=Thu, 04 May 2023 17:34:09 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=698; Path=/; Domain=casalemedia.com; Expires=Thu, 04 May 2023 17:34:09 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DE9w4OKxqb1EyDoGuWALN9i2yKXw02p3jpSWU%2BC7KVlkMF1EpcoaYtf9a%2BDNVChu641ET3hbd63affP4RLKXLriEFXqRg50txU%2FAf2ZzzgItuT%2Bl0EGq217d5jE%2BtI%2BYZzs0Cb4hIBQWEA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
37.252.171.53200 OK 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP 37.252.171.53:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Fri, 03 Feb 2023 17:34:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: f5f0ca34-c429-4a92-ab64-ebbdb9e116e6
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
185.64.190.78200 OK 60 B URL HTTP/2 image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
IP 185.64.190.78:0
File type ASCII text, with no line terminators
Hash 4ed1d7253064fcfcbda795fafbf81919
6ddf912887dad45eb8b302d62ed3536317d835db
0083bff99e7bec0ff69569f2e990efd160b88e57cceebb7b2f984cf0c75926c9
GET /AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB HTTP/1.1
Host: image6.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=UTF-8
expires: Thu, 4 May 2023 09:36:45 GMT
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
date: Fri, 03 Feb 2023 17:34:09 GMT
content-length: 60
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.js
104.88.9.101200 OK 10 kB URL HTTP/1.1 eus.rubiconproject.com/usync.js
IP 104.88.9.101:0
File type ASCII text, with very long lines (18426)
Hash 91c99d1245adc13a3b97fb9c01da015e
4045545b0965eac555888e3ddcc4e48aa7f5180a
365f59b6872d619ad6c2156589c0274dd084d1b26df5a38b896851ab66eae7be
GET /usync.js HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/usync.html?p=duration_media&endpoint=us-east
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.3.3
p3p: CP="NOI CURa ADMa DEVa TAIa OUR # BUS IND UNI COM NAV INT"
Last-Modified: Fri, 03 Feb 2023 10:59:31 GMT
Content-Encoding: gzip
Content-Length: 10010
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=62729
Expires: Sat, 04 Feb 2023 10:59:38 GMT
Date: Fri, 03 Feb 2023 17:34:09 GMT
Connection: keep-alive
Vary: Accept-Encoding
ib.adnxs.com/getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID
37.252.171.53307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID
IP 37.252.171.53:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D312%26uid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 03 Feb 2023 17:34:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
AN-X-Request-Uuid: 3dd8326f-47a3-4861-bbbf-3471d742eeeb
Set-Cookie: uuid2=8499824409587666866; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 04-May-2023 17:34:09 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash b203d3ea1988ed23dc3940d0c4c76536
4a445af838fe9df7a03c9c0b46d6b5f170d4e233
79ce7df2897669d38bbd746eb8325df8bc5992999aa085f3379cb10977662b68
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6151
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:09 GMT
Last-Modified: Fri, 03 Feb 2023 15:51:38 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
ads.servenobid.com/sync?pid=327&uid=144468ca-a0f5-472c-9dd8-59fdeaf9b31a&gdpr=0&gdpr_consent=&us_privacy=1YN-
54.220.195.205200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=327&uid=144468ca-a0f5-472c-9dd8-59fdeaf9b31a&gdpr=0&gdpr_consent=&us_privacy=1YN-
IP 54.220.195.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=327&uid=144468ca-a0f5-472c-9dd8-59fdeaf9b31a&gdpr=0&gdpr_consent=&us_privacy=1YN- HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:09 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_327=144468ca-a0f5-472c-9dd8-59fdeaf9b31a; domain=servenobid.com; SameSite=None; Expires=Fri, 10 Feb 2023 17:34:09 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 2700b071f605e4e0814566207ff5f41b
c0b49938580e7f610ca433ef0b3c46b68df97a8e
ed1f568d3b8059d8f9f003c6abf858dd6da733f2f0fe5a4686117dfd48e8d8ac
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121979
Date: Fri, 03 Feb 2023 17:34:09 GMT
Etag: "63dc6af0-1d7"
Expires: Sun, 05 Feb 2023 03:27:08 GMT
Last-Modified: Fri, 03 Feb 2023 02:01:20 GMT
Server: ECS (nyb/1D34)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: sA9THsu7Q3jD39L3zDrYctUjpdUTLsdHlsJy3M5qscLxe4Q9aFakDA==
Age: 5148
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash c950978b4936b4cf9e55f8d096659397
f29ed621b2af55b13a09df5e24988a54b89f8dbf
79e5bb5dee2b9cd2f03022df4419472e3b78be32b7dfb5c7cc7c147f5fe1994e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 17:34:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 01:55:55 GMT
Expires: Wed, 08 Feb 2023 01:55:54 GMT
Etag: "f29ed621b2af55b13a09df5e24988a54b89f8dbf"
Cache-Control: max-age=375104,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793cea6be878b4ff-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash b4c7f61557aabbbc5a9905ee5ef984f2
eb474300858289d87afc27ee73e9de6e2f4ec13d
a329312a49a60656374192aafea83e8cf7849883af61e50a2dc3f0fe9718ac34
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 17:34:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 02:15:48 GMT
Expires: Wed, 08 Feb 2023 02:15:47 GMT
Etag: "eb474300858289d87afc27ee73e9de6e2f4ec13d"
Cache-Control: max-age=376297,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793cea6c0bef0b02-OSL
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
37.252.171.53302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID
IP 37.252.171.53:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fads.servenobid.com%252Fsync%253Fpid%253D312%2526uid%253D%2524UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Fri, 03 Feb 2023 17:34:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ads.servenobid.com/sync?pid=312&uid=0
AN-X-Request-Uuid: ff811e68-d153-438f-ac27-3d7ae2aaeb93
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ads.servenobid.com/sync?pid=333&uid=0
54.220.195.205200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=333&uid=0
IP 54.220.195.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=333&uid=0 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssum-sec.casalemedia.com/
Cookie: pid_327=144468ca-a0f5-472c-9dd8-59fdeaf9b31a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:09 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_333=0; domain=servenobid.com; SameSite=None; Expires=Fri, 10 Feb 2023 17:34:09 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
p.rfihub.com/cm?pub=44007&in=1
193.0.160.129302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=44007&in=1
IP 193.0.160.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=44007&in=1 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Fri, 03 Feb 2023 17:34:09 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: ruds=H4sIAAAAAAAA_-MSNjU0MTG1sDA1Mja0tLA0MjQ2MxLiM9SND3H1N0j38_OLigoCAH790solAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_zslzmtoZm5qYmJqZmJpbGIOAJS8eAoQAAAA; Path=/; Domain=.rfihub.com; Expires=Wed, 28 Feb 2024 17:34:09 GMT; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0MTG1sDA1Mja0tLA0MjQ2MxLiM9SND3H1N0j38_OLigoCAH790solAAAA; Path=/; Domain=.rfihub.com; Expires=Wed, 28 Feb 2024 17:34:09 GMT; Secure; SameSite=None
Location: https://ads.servenobid.com/sync?pid=324&uid=5144588523198921362
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
ads.pubmatic.com/AdServer/js/user_sync.html?predirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpbm%26i%3D&gdpr=0&gdprConsent=
2.18.172.200200 OK 5.6 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?predirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpbm%26i%3D&gdpr=0&gdprConsent=
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15889), with no line terminators
Hash 18a6bc0e051c0767f814f63ff07e65f9
8fbe4eb399d8501b90276723d38c9ffb4ab483fa
26341482a8d6c8384b2cb91aba95833ac2002bd284ff690adbd2009bf76cb95b
GET /AdServer/js/user_sync.html?predirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dpbm%26i%3D&gdpr=0&gdprConsent= HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 06:36:49 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5554
content-type: text/html
cache-control: max-age=77394
expires: Sat, 04 Feb 2023 15:04:03 GMT
date: Fri, 03 Feb 2023 17:34:09 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
cl.imghosts.com/imgh/video/upload/ar_16:9,c_fill,w_680/videos/t/2022-12/101924/376c45e13dde2be965bba8cbe430c349.mp4?v=1675445643-7faw6a1o6YWjNFiA_6-TN1yeAqAXTb-kJxqKs0CDc4E
172.64.144.64200 OK 81 kB URL HTTP/2 cl.imghosts.com/imgh/video/upload/ar_16:9,c_fill,w_680/videos/t/2022-12/101924/376c45e13dde2be965bba8cbe430c349.mp4?v=1675445643-7faw6a1o6YWjNFiA_6-TN1yeAqAXTb-kJxqKs0CDc4E
IP 172.64.144.64:0
File type ISO Media, MP4 Base Media v6 \012- data
Hash 47b825b111f79c2144eb6bdd913e7069
041e141ee9ee87609ca95ec8f11e8842ecb7a67e
7498d5b2d450a5d0b6f7fd10e55ea98238c641c5ad70efd1903f8ba4d930df49
GET /imgh/video/upload/ar_16:9,c_fill,w_680/videos/t/2022-12/101924/376c45e13dde2be965bba8cbe430c349.mp4?v=1675445643-7faw6a1o6YWjNFiA_6-TN1yeAqAXTb-kJxqKs0CDc4E HTTP/1.1
Host: cl.imghosts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: video/mp4;codecs=avc1
last-modified: Tue, 20 Dec 2022 22:24:34 GMT
x-request-id: bc7d98e04697ef91523b043d36c519e4
cache-control: public, max-age=31536000
server-timing: fastly;dur=1355;cpu=1;start=2022-12-20T22:24:33.354Z;desc=miss,rtt;dur=0,cloudinary;dur=1347;start=2022-12-20T22:24:33.360Z,cld-id;desc=bc7d98e04697ef91523b043d36c519e4
timing-allow-origin: *
access-control-allow-origin: *
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Server-Timing,X-Content-Type-Options
cf-cache-status: HIT
age: 1371282
expires: Sat, 03 Feb 2024 17:34:03 GMT
server: cloudflare
cf-ray: 793cea47af070afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=gumgum
104.110.14.155301 Moved Permanently 0 B URL HTTP/2 secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=gumgum
IP 104.110.14.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utils/xapi/multi-sync.html?p=gumgum HTTP/1.1
Host: secure-assets.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://eus.rubiconproject.com/usync.html?p=gumgum
date: Fri, 03 Feb 2023 17:34:09 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 5d4268e85c85b72f64e9d1ac0d11f4ff
2cafe158bc3c73d37e86d6c04a33ccbfe09954cd
b0dc22daf18a31b6872fd375c47eeb133d745b6967b6880a668b8ff5d203681e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2898
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:09 GMT
Last-Modified: Fri, 03 Feb 2023 16:45:51 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 313
ads.servenobid.com/sync?pid=309&uid=e_941b0030-515f-46fc-9cac-0518cc1ef402
54.220.195.205200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=309&uid=e_941b0030-515f-46fc-9cac-0518cc1ef402
IP 54.220.195.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=309&uid=e_941b0030-515f-46fc-9cac-0518cc1ef402 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Cookie: pid_327=144468ca-a0f5-472c-9dd8-59fdeaf9b31a; pid_333=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:09 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_309=e_941b0030-515f-46fc-9cac-0518cc1ef402; domain=servenobid.com; SameSite=None; Expires=Fri, 10 Feb 2023 17:34:09 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash fe01cc1b056d4af5e7adf70d36cab0db
2e9b996f8df56b5a675b275ae138013d6bd61a6e
8790ce38494d8f24b026b34a394f105a45fce3a9fd9075bfda436175dae3235c
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 03 Feb 2023 17:34:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 02 Feb 2023 21:40:42 GMT
Expires: Fri, 03 Feb 2023 21:40:42 GMT
ETag: "2e9b996f8df56b5a675b275ae138013d6bd61a6e"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ads.servenobid.com/sync?pid=312&uid=0
54.220.195.205200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=312&uid=0
IP 54.220.195.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=312&uid=0 HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_327=144468ca-a0f5-472c-9dd8-59fdeaf9b31a; pid_333=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:09 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_312=0; domain=servenobid.com; SameSite=None; Expires=Fri, 10 Feb 2023 17:34:09 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ssbsync.smartadserver.com/api/sync?callerId=9&gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D317%26uid%3D%24UID
185.86.138.154200 OK 703 B URL HTTP/1.1 ssbsync.smartadserver.com/api/sync?callerId=9&gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D317%26uid%3D%24UID
IP 185.86.138.154:0
ASN #201081 SmartAdServer SAS
File type HTML document text\012- HTML document, ASCII text
Hash ebf5a7908538fb0a0cce781050b9ed6c
cc1c3c40c1934f0174559c61d29c262271252ed2
968f5979051bb64b5a505c29d07f45e2da7e1cb5eb5cbd851f77c743ac7d21d4
GET /api/sync?callerId=9&gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D317%26uid%3D%24UID HTTP/1.1
Host: ssbsync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 703
content-type: text/html
date: Fri, 03 Feb 2023 17:34:09 GMT
set-cookie: pid=5390190777304530470; expires=Tue, 05 Mar 2024 17:33:09 GMT; domain=smartadserver.com; path=/; secure; samesite=none
g2.gumgum.com/usync/13926?gdpr=0&gdpr_consent=&us_privacy=1---&r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D309%26uid%3D
34.249.131.14200 OK 112 kB URL HTTP/2 g2.gumgum.com/usync/13926?gdpr=0&gdpr_consent=&us_privacy=1---&r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D309%26uid%3D
IP 34.249.131.14:0
File type ASCII text, with very long lines (64471)
Size 112 kB (111690 bytes)
Hash d0846feb9a4a881436ea0d773e7d84ed
1b3a6e8a4ef7e2ff7d9e04d97d196f1b40ab0877
6291100d0790df84c907ab631ae2ddb9eb0e9d9ca0226928c7f2ce709e5b6f47
GET /usync/13926?gdpr=0&gdpr_consent=&us_privacy=1---&r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D309%26uid%3D HTTP/1.1
Host: g2.gumgum.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:09 GMT
content-type: text/html;charset=UTF-8
server: nginx
set-cookie: vst=e_941b0030-515f-46fc-9cac-0518cc1ef402; Domain=.gumgum.com; Expires=Sat, 03 Feb 2024 17:34:09 GMT; Path=/; Secure; SameSite=None
etag: W/"00c2f06beee9d98186386bae06d07e1eb"
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DD167D013-62A3-43D8-AA2A-D18C99AFECE5%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
2.18.172.200200 OK 953 B URL HTTP/2 ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DD167D013-62A3-43D8-AA2A-D18C99AFECE5%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (1720), with no line terminators
Hash 499546dec064c08e4c7c354bab138f7f
f155d071d071e4e7c1d45e22943915df9d9f2b75
1a9219bc3962479cfa6ff0ca64e2f810aab8b816ae4f937b252d0ca044d693b4
GET /AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DD167D013-62A3-43D8-AA2A-D18C99AFECE5%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://simage4.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2016 09:36:32 GMT
etag: "fa18f0-6b8-53a413358bd01"
server: Apache/2.2.15 (CentOS)
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 953
content-type: text/html; charset=UTF-8
cache-control: max-age=66616
expires: Sat, 04 Feb 2023 12:04:25 GMT
date: Fri, 03 Feb 2023 17:34:09 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DD167D013-62A3-43D8-AA2A-D18C99AFECE5%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
2.18.172.200200 OK 953 B URL HTTP/2 ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DD167D013-62A3-43D8-AA2A-D18C99AFECE5%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
IP 2.18.172.200:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (1720), with no line terminators
Hash 499546dec064c08e4c7c354bab138f7f
f155d071d071e4e7c1d45e22943915df9d9f2b75
1a9219bc3962479cfa6ff0ca64e2f810aab8b816ae4f937b252d0ca044d693b4
GET /AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3DD167D013-62A3-43D8-AA2A-D18C99AFECE5%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://simage4.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2016 09:36:32 GMT
etag: "fa18f0-6b8-53a413358bd01"
server: Apache/2.2.15 (CentOS)
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 953
content-type: text/html; charset=UTF-8
cache-control: max-age=66616
expires: Sat, 04 Feb 2023 12:04:25 GMT
date: Fri, 03 Feb 2023 17:34:09 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D
216.52.2.19302 Found 0 B URL HTTP/1.1 ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D
IP 216.52.2.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D HTTP/1.1
Host: ce.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Fri, 03 Feb 2023 17:34:09 GMT
Set-Cookie: ljt_reader=GGI-sRZHY4tEY4KLRVmi0Pit; Path=/; Domain=.lijit.com; Expires=Sat, 03-Feb-2024 17:34:09 GMT; Max-Age=31536000;Secure;SameSite=None
Expires: Fri, 20 Mar 2009 00:00:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
P3P: CP="CUR ADM OUR NOR STA NID"
Location: https://ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1
Content-Length: 0
X-Sovrn-Pod: ad_ap4ams1
simage4.pubmatic.com/AdServer/SPug?o=1&p=162412&sc=1&pr=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID&umc=PM_UID&u=D167D013-62A3-43D8-AA2A-D18C99AFECE5&rs=3&gdpr=0&gdpr_consent=&us_privacy=1YN-
198.47.127.20200 OK 378 B URL HTTP/2 simage4.pubmatic.com/AdServer/SPug?o=1&p=162412&sc=1&pr=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID&umc=PM_UID&u=D167D013-62A3-43D8-AA2A-D18C99AFECE5&rs=3&gdpr=0&gdpr_consent=&us_privacy=1YN-
IP 198.47.127.20:0
File type ASCII text, with very long lines (468)
Hash 4a8029d2f95a43e6ba5323be7ded15ec
18e637decdad469bea8c9a7bf7cab0f624254523
fa0266c9eadaf60b69ad52427443f43e6aac8392dec9cd2138ce61241d9377be
GET /AdServer/SPug?o=1&p=162412&sc=1&pr=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D316%26uid%3DPM_UID&umc=PM_UID&u=D167D013-62A3-43D8-AA2A-D18C99AFECE5&rs=3&gdpr=0&gdpr_consent=&us_privacy=1YN- HTTP/1.1
Host: simage4.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 17:34:08 GMT
content-type: text/html; charset=utf-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
eus.rubiconproject.com/usync.html?p=gumgum
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html?p=gumgum
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html?p=gumgum HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Fri, 03 Feb 2023 17:34:09 GMT
Connection: keep-alive
Vary: Accept-Encoding
ads.servenobid.com/sync?pid=321&uid=OPTOUT
54.220.195.205200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=321&uid=OPTOUT
IP 54.220.195.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=321&uid=OPTOUT HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_327=144468ca-a0f5-472c-9dd8-59fdeaf9b31a; pid_333=0; pid_309=e_941b0030-515f-46fc-9cac-0518cc1ef402; pid_312=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:09 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_321=OPTOUT; domain=servenobid.com; SameSite=None; Expires=Fri, 10 Feb 2023 17:34:09 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 8f05a0e5b9a8cc869dd406f7e7da8465
4088974052476dc3649730ed21ebf134b442f33b
d252fb3a0433818d00e82c89c31c58208dee33b82cf1747b937fec7760a0d2da
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 17:34:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 07 Feb 2023 16:07:44 GMT
ETag: "4088974052476dc3649730ed21ebf134b442f33b"
Last-Modified: Fri, 03 Feb 2023 16:07:45 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 872
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793cea6d9cfb0b55-OSL
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash d4d7bad292931b894ae20bb4032cb7e8
aef7612ce483c0d0deaf3e5b971ce7cd19c34526
3702cc8cde09782a0be2dbe9accb0d6e1c257fc5ca2b28be83718f243f48a29e
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 03 Feb 2023 17:34:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 02 Feb 2023 21:18:18 GMT
Expires: Fri, 03 Feb 2023 21:18:18 GMT
ETag: "aef7612ce483c0d0deaf3e5b971ce7cd19c34526"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7d70c748b9288211c05eab1f436670ee
91fefada5e7642002e08a1443dc8829f883279bd
8c91d5490eb51f272bc017a0c025995cf1243ba3dc2ba9a5fd58aad4d35ccec9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5376
Cache-Control: max-age=169672
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:09 GMT
Etag: "63dd2459-1d7"
Expires: Sun, 05 Feb 2023 16:42:01 GMT
Last-Modified: Fri, 03 Feb 2023 15:12:25 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 94e8977e051ad005b7311296ee851274
f190a1ad7c8f8d26fc51b698a360a2ca2b77d146
25ffe4764d27842df585c4e24105eba4a55c5282ada475da3d899bca7a494c32
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=156605
Date: Fri, 03 Feb 2023 17:34:09 GMT
Etag: "63dcf78f-1d7"
Expires: Sun, 05 Feb 2023 13:04:14 GMT
Last-Modified: Fri, 03 Feb 2023 12:01:19 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mBTGsCAY4nnoKkHQMm8kbZ3mP42PpWKucJNTk1u9NdjHeeqb1q8jvQ==
Age: 3775
ads.servenobid.com/sync?pid=317&uid=5390190777304530470&gdpr=0&gdpr_consent=
54.220.195.205200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=317&uid=5390190777304530470&gdpr=0&gdpr_consent=
IP 54.220.195.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=317&uid=5390190777304530470&gdpr=0&gdpr_consent= HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ssbsync.smartadserver.com/
Cookie: pid_327=144468ca-a0f5-472c-9dd8-59fdeaf9b31a; pid_333=0; pid_309=e_941b0030-515f-46fc-9cac-0518cc1ef402; pid_312=0; pid_324=5144588523198921362; pid_316=D167D013-62A3-43D8-AA2A-D18C99AFECE5; pid_321=OPTOUT
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:09 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_317=5390190777304530470; domain=servenobid.com; SameSite=None; Expires=Fri, 10 Feb 2023 17:34:09 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
sync-tm.everesttech.net/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=
151.101.194.49302 Found 0 B URL HTTP/2 sync-tm.everesttech.net/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=
IP 151.101.194.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent= HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: CP="NOI DSP COR LAW PSAo PSDo IVAo IVDo OUR BUS UNI DEM"
access-control-allow-origin: *
set-cookie: everest_g_v2=g_surferid~Y91FkQAAARr8GgAb; Path=/; Domain=.everesttech.net; Expires=Sat, 03-Feb-2024 17:34:09 GMT; Max-Age=31536000
location: https://sync-tm.everesttech.net/ct/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=&_test=Y91FkQAAARr8GgAb
server: Jetty(9.4.35.v20201120)
accept-ranges: bytes
date: Fri, 03 Feb 2023 17:34:09 GMT
via: 1.1 varnish
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675445650.510087,VS0,VE91
cache-control: no-cache
pragma: no-cache
content-length: 0
X-Firefox-Spdy: h2
match.adsrvr.org/track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent=
52.223.40.198200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent=
IP 52.223.40.198:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=gumgum&ttd_tpi=1&gdpr=0&gdpr_consent= HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:09 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1
216.52.2.19204 No Content 0 B URL HTTP/1.1 ce.lijit.com/merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1
IP 216.52.2.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge?pid=273657&3pid=273657&gdpr=0&gdpr_consent=&us_privacy=1YN-&location=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D310%26uid%3D%5BSOVRNID%5D&dnr=1 HTTP/1.1
Host: ce.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Fri, 03 Feb 2023 17:34:09 GMT
Set-Cookie: ljt_reader=GGI-sRZHKc8i7ZBaQxSSqlw7; Path=/; Domain=.lijit.com; Expires=Sat, 03-Feb-2024 17:34:09 GMT; Max-Age=31536000;Secure;SameSite=None
Expires: Fri, 20 Mar 2009 00:00:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
P3P: CP="CUR ADM OUR NOR STA NID"
X-Sovrn-Pod: ad_ap4ams1
sync-tm.everesttech.net/ct/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=&_test=Y91FkQAAARr8GgAb
151.101.194.49200 OK 85 B URL HTTP/2 sync-tm.everesttech.net/ct/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=&_test=Y91FkQAAARr8GgAb
IP 151.101.194.49:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 5bec6606b8392065f9da9898ca6f7b14
73ac5b01b5e3293fb792179626e7f8369cdb944d
acccc501aa6afa3cfac15e8ddccf1561deed2ed08c2f7d652abbdbe9aa71609a
GET /ct/upi/pid/URnmbSKM?redir=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Datm%26i%3D%24%7BTM_USER_ID%7D&gdpr=0&gdpr_consent=&_test=Y91FkQAAARr8GgAb HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
server: Jetty(9.4.35.v20201120)
accept-ranges: bytes
date: Fri, 03 Feb 2023 17:34:09 GMT
via: 1.1 varnish
age: 1786
x-served-by: cache-bma1644-BMA
x-cache: HIT
x-cache-hits: 4147
x-timer: S1675445650.623702,VS0,VE0
cache-control: no-cache
pragma: no-cache
content-length: 85
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 95d865f28544d39fce52a3928e927f81
84625ad14aae664bae5ef7a3c3f0adb50a56bef2
698ce49c0e36b16805bdf5e8afc320f743450190367f9b06c666154c4bdb0ff7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3829
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:09 GMT
Last-Modified: Fri, 03 Feb 2023 16:30:20 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ups.analytics.yahoo.com/ups/58632/occ
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58632/occ
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58632/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 17:34:09 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58632/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBJFF3WMCEJwII6BobFo5ZFI46-TyiZQFEgEBAQGX3mPnYwAAAAAA_eMAAA&S=AQAAAnB_wHo90x1u28JzESU_qcE; Expires=Sat, 3 Feb 2024 23:34:09 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
secure.adnxs.com/getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID
37.252.171.21307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID
IP 37.252.171.21:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://usersync.gumgum.com/usersync?b=apn&i=$UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 03 Feb 2023 17:34:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID
AN-X-Request-Uuid: 6559eabf-a083-44e6-88c7-7389b1c0cda0
Set-Cookie: uuid2=4318710035314418460; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 04-May-2023 17:34:09 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1004.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
creativecdn.com/cm-notify?pi=gumgum
185.184.8.90302 Found 0 B URL HTTP/2 creativecdn.com/cm-notify?pi=gumgum
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm-notify?pi=gumgum HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 17:34:09 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=FAZ550Gxb7qXkkiWmAS0;Path=/;Domain=.creativecdn.com;Expires=Sat, 03-Feb-2024 17:34:09 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1675445649;Path=/;Domain=.creativecdn.com;Expires=Sat, 03-Feb-2024 17:34:09 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://creativecdn.com/cm-notify?pi=gumgum&tc=1
content-length: 0
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58632/occ?verify=true
3.126.56.137204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58632/occ?verify=true
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58632/occ?verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 17:34:09 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBJFF3WMCEP1zm63xpwOVXg8jLiyOd5cFEgEBAQGX3mPnYwAAAAAA_eMAAA&S=AQAAAiG-qub-u0ADt_wv-GuWMpI; Expires=Sat, 3 Feb 2024 23:34:09 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
sync.go.sonobi.com/usa?loc=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D332%26uid%3D
69.166.1.10302 Found 0 B URL HTTP/1.1 sync.go.sonobi.com/usa?loc=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D332%26uid%3D
IP 69.166.1.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usa?loc=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D332%26uid%3D HTTP/1.1
Host: sync.go.sonobi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Fri, 03 Feb 2023 17:34:09 GMT
Content-Type: text/plain; charset=utf8
Content-Length: 0
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-cache, no-store, private
P3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Pragma: no-cache
Tcn: Choice
Vary: negotiate,Accept-Encoding
X-Go-Server: go-iad-2-5-37
X-Xss-Protection: 0
Location: https://ads.servenobid.com/sync?pid=332&uid=18e90366-3731-443d-ab9c-d70701af999e
Server: sonobi-go
Set-Cookie: __uis=18e90366-3731-443d-ab9c-d70701af999e; expires=Sun, 05 Mar 2023 17:34:08 GMT; domain=.go.sonobi.com; path=/; secure; SameSite=None
HAPLB8S=s8537|Y91Fl; path=/; domain=.go.sonobi.com; SameSite=None; secure
creativecdn.com/cm-notify?pi=gumgum&tc=1
185.184.8.90200 OK 42 B URL HTTP/2 creativecdn.com/cm-notify?pi=gumgum&tc=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cm-notify?pi=gumgum&tc=1 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:09 GMT
content-type: image/gif
content-length: 42
X-Firefox-Spdy: h2
ads.servenobid.com/sync?pid=332&uid=18e90366-3731-443d-ab9c-d70701af999e
54.220.195.205200 OK 0 B URL HTTP/2 ads.servenobid.com/sync?pid=332&uid=18e90366-3731-443d-ab9c-d70701af999e
IP 54.220.195.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?pid=332&uid=18e90366-3731-443d-ab9c-d70701af999e HTTP/1.1
Host: ads.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Cookie: pid_327=144468ca-a0f5-472c-9dd8-59fdeaf9b31a; pid_333=0; pid_309=e_941b0030-515f-46fc-9cac-0518cc1ef402; pid_312=0; pid_324=5144588523198921362; pid_316=D167D013-62A3-43D8-AA2A-D18C99AFECE5; pid_321=OPTOUT; pid_317=5390190777304530470
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:09 GMT
content-type: image/avif;charset=ISO-8859-1
content-length: 0
set-cookie: pid_332=18e90366-3731-443d-ab9c-d70701af999e; domain=servenobid.com; SameSite=None; Expires=Fri, 10 Feb 2023 17:34:09 GMT; secure
access-control-allow-origin: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7d70c748b9288211c05eab1f436670ee
91fefada5e7642002e08a1443dc8829f883279bd
8c91d5490eb51f272bc017a0c025995cf1243ba3dc2ba9a5fd58aad4d35ccec9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5376
Cache-Control: max-age=169672
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:09 GMT
Etag: "63dd2459-1d7"
Expires: Sun, 05 Feb 2023 16:42:01 GMT
Last-Modified: Fri, 03 Feb 2023 15:12:25 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ssbsync.smartadserver.com/api/sync?callerId=15&redirectUri=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsad%26i%3D%5Bssb_sync_pid%5D&gdpr=0&gdpr_consent=
185.86.138.154302 Found 0 B URL HTTP/1.1 ssbsync.smartadserver.com/api/sync?callerId=15&redirectUri=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsad%26i%3D%5Bssb_sync_pid%5D&gdpr=0&gdpr_consent=
IP 185.86.138.154:0
ASN #201081 SmartAdServer SAS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/sync?callerId=15&redirectUri=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dsad%26i%3D%5Bssb_sync_pid%5D&gdpr=0&gdpr_consent= HTTP/1.1
Host: ssbsync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
content-length: 0
date: Fri, 03 Feb 2023 17:34:09 GMT
location: https://usersync.gumgum.com/usersync?b=sad&i=3623616882454740688
set-cookie: pid=3623616882454740688; expires=Tue, 05 Mar 2024 17:33:09 GMT; domain=smartadserver.com; path=/; secure; samesite=none
sync.inmobi.com/oRTB?gdpr_consent=&gdpr=0&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dinm%26i%3D%7BID5UID%7D
20.127.253.7302 Found 332 B URL HTTP/2 sync.inmobi.com/oRTB?gdpr_consent=&gdpr=0&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dinm%26i%3D%7BID5UID%7D
IP 20.127.253.7:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, ASCII text, with very long lines (332), with no line terminators
Hash 9b0879cc5d9cfcc64039207d554789f1
e8b69271be0206e9f7d6fdd438d3e2cb13fc6684
272e9cc0135ac34b40fc5db87e52026ff9ae90f611108490268cc1c9ab6fb4fd
GET /oRTB?gdpr_consent=&gdpr=0&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dinm%26i%3D%7BID5UID%7D HTTP/1.1
Host: sync.inmobi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 17:34:09 GMT
content-type: text/html; charset=utf-8
content-length: 332
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
x-dns-prefetch-control: off
expect-ct: max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
location: https://id5-sync.com/i/495/0.gif?gdpr_consent=&gdpr=0&callback=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dinm%26i%3D%7BID5UID%7D
vary: Accept
X-Firefox-Spdy: h2
secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID
37.252.171.21302 Found 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID
IP 37.252.171.21:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Dapn%26i%3D%24UID HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://g2.gumgum.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Fri, 03 Feb 2023 17:34:09 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://usersync.gumgum.com/usersync?b=apn&i=0
AN-X-Request-Uuid: 0f38ce2d-c096-4b23-951d-d5f4ca590817
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1004.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 82362ba59cdeacf9f11dae5d7c687803
39811b931d9d9e1f0c1fd97032c92acf103fa633
8db1e4ba4cdc6b308111a9f180387bf38584c15b6d42157c0514da7ba57b40ae
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 03 Feb 2023 17:34:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 02 Feb 2023 21:30:43 GMT
Expires: Fri, 03 Feb 2023 21:30:43 GMT
ETag: "39811b931d9d9e1f0c1fd97032c92acf103fa633"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7a37d5f14346f4c2d32067a67ed9cbf2
9364052ccda00fe675fe8cc3f2f244161f2a2f69
c0f55cbfc7ce76856115b4557edefe0c45f2b2979ed89b39fd92d185fddb8682
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 17:34:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 13:56:49 GMT
Expires: Tue, 07 Feb 2023 13:56:48 GMT
Etag: "9364052ccda00fe675fe8cc3f2f244161f2a2f69"
Cache-Control: max-age=331958,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793cea6f7cd5b4ff-OSL
ups.analytics.yahoo.com/ups/58559/occ
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58559/occ
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58559/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 17:34:09 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58559/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBJFF3WMCECeatoxjm6BWWcDdlBci7G4FEgEBAQGX3mPnYwAAAAAA_eMAAA&S=AQAAAkBDOcZDK0sP7USSA5YHhbA; Expires=Sat, 3 Feb 2024 23:34:09 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
x.bidswitch.net/sync?ssp=gumgum2&user_id=e_941b0030-515f-46fc-9cac-0518cc1ef402&gdpr=0&gdpr_consent=&us_privacy=1---
18.198.121.65302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?ssp=gumgum2&user_id=e_941b0030-515f-46fc-9cac-0518cc1ef402&gdpr=0&gdpr_consent=&us_privacy=1---
IP 18.198.121.65:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=gumgum2&user_id=e_941b0030-515f-46fc-9cac-0518cc1ef402&gdpr=0&gdpr_consent=&us_privacy=1--- HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 17:34:09 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?ssp=gumgum2&user_id=e_941b0030-515f-46fc-9cac-0518cc1ef402&gdpr=0&gdpr_consent=&us_privacy=1---
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=f5e458c1-e826-476e-9192-f66937504b97; path=/; expires=Sat, 03-Feb-2024 17:34:09 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675445649; path=/; expires=Sat, 03-Feb-2024 17:34:09 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675445649; path=/; expires=Sat, 03-Feb-2024 17:34:09 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675445649; path=/; expires=Sat, 03-Feb-2024 17:34:09 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7a37d5f14346f4c2d32067a67ed9cbf2
9364052ccda00fe675fe8cc3f2f244161f2a2f69
c0f55cbfc7ce76856115b4557edefe0c45f2b2979ed89b39fd92d185fddb8682
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 17:34:09 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 13:56:49 GMT
Expires: Tue, 07 Feb 2023 13:56:48 GMT
Etag: "9364052ccda00fe675fe8cc3f2f244161f2a2f69"
Cache-Control: max-age=331958,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793cea6fdd44b4ff-OSL
ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID
34.239.224.189302 Found 0 B URL HTTP/2 ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID
IP 34.239.224.189:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID HTTP/1.1
Host: ssp.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 17:34:09 GMT
content-length: 0
location: https://cs.admanmedia.com/45f6616f8301569fb3628edffa5edae8.gif?puid=ua-bd93c5a6-a48a-3062-a9eb-49db1b2d204a&redir=https%3A%2F%2Fssp.disqus.com%2Fmatch%3Fbidder%3D24%26buyeruid%3D%5BUID%5D%26r%3DCid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpTaHR0cHM6Ly9hZHMuc2VydmVub2JpZC5jb20vc3luYz9waWQ9MzQ2JnVpZD11YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEyAhgMOAE=&gdpr=&gdpr_consent=
cache-control: no-store
pragma: no-cache
expires: 0
set-cookie: zeta-ssp-user-id=ua-bd93c5a6-a48a-3062-a9eb-49db1b2d204a; Max-Age=31536000; Expires=Sat, 03 Feb 2024 17:34:09 GMT; Path=/; Domain=disqus.com; Secure; SameSite=None
X-Firefox-Spdy: h2
cs.emxdgt.com/um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent=
3.71.169.66302 Found 0 B URL HTTP/2 cs.emxdgt.com/um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent=
IP 3.71.169.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /um?redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24UID&gdpr=0&gdpr_consent= HTTP/1.1
Host: cs.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://g2.gumgum.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html
date: Fri, 03 Feb 2023 17:34:09 GMT
location: https://ib.adnxs.com/getuid?https://cs.emxdgt.com/umcheck?apnxid=$UID&redirect=https%3A%2F%2Fusersync.gumgum.com%2Fusersync%3Fb%3Demx%26i%3D%24EMXUID&b64_redirect=aHR0cHM6Ly91c2Vyc3luYy5ndW1ndW0uY29tL3VzZXJzeW5jP2I9ZW14Jmk9JEVNWFVJRA==
set-cookie: euid=51181675445649920686f1; Max-Age=2592000; Expires=Sun, 05 Mar 2023 17:34:09 GMT; Domain=.emxdgt.com; Path=/; HttpOnly
content-length: 0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash b8fd8b4fb96f779a2d7ecf902a81e19c
acf652b114f0347b039e28b303d48e93c4382661
35414b5b9d65b803bb8d93cdf5d565e4b4173d3301adb05accf97932d494db8e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 17:34:09 GMT
Last-Modified: Fri, 03 Feb 2023 16:25:04 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kr541D5RIe-d8HGz5ljvBdDrq_VL-oRlU3pwk6PEQpC2WfPiasOMEA==
Age: 4146
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c11f0c0346b891128d1772c9e0263baf
3d1f3201075de5d0b3a0e1c5ab1a01853c7bbd50
5d7f4adc08aa921962a1b101003a6cd96793d4b1a9a0f6294778ff1cd4d7855d
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6244
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:10 GMT
Last-Modified: Fri, 03 Feb 2023 15:50:06 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
pjnewsletter.com/cdn-cgi/rum?
104.26.3.234204 No Content 0 B URL HTTP/2 pjnewsletter.com/cdn-cgi/rum?
IP 104.26.3.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Content-Type: application/json
Content-Length: 796
Origin: https://pjnewsletter.com
Connection: keep-alive
Cookie: _ga_6L5Q55KN3H=GS1.1.1675445674.1.0.1675445681.0.0.0; _ga=GA1.2.1904728995.1675445675; _ga_6EDY1BF25J=GS1.1.1675445674.1.0.1675445681.0.0.0; MgidStorage=%7B%220%22%3A%7B%22svspr%22%3A%22%22%2C%22svsds%22%3A2%7D%2C%22C1415859%22%3A%7B%22page%22%3A1%7D%2C%22C1171406%22%3A%7B%22page%22%3A1%2C%22time%22%3A1675445675133%7D%7D; _pbjs_userid_consent_data=3524755945110770; _gid=GA1.2.1960694191.1675445676; _gat_UA-71705037-13=1; _fbp=fb.1.1675445676121.659804316; a=3HVkqGrNEZMOXLDNXgT8cJaycut8ue8M; __gads=ID=129f920d8408c536-22a90dc783db00ea:T=1675445644:S=ALNI_MbdJS6tZ56lzSPEW5NYsJovDsO4Qg; __gpi=UID=00000baf63b95497:T=1675445644:RT=1675445644:S=ALNI_MYwk3GsXuZJuJNNVo48wF_KGAJBsA; token_QlJAAAAAAAAArRMIRsGBk-hpXXMDyS9EWV8qBEI=BAYAY91FjQFj3UWNgAGBAcAAIP7v7v6T47uYoQdnqC9FoVarV5eYft94mosvcvX-8TDDwQAgipcrNI6e1eTRoypxVzRWAUEBA9fkmk-UEBoWhlvA_V8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 17:34:10 GMT
access-control-allow-origin: https://pjnewsletter.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 793cea70b8340b4d-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4815d6c9dac8985229fceea388fadc0f
6b0cbd1759b89f68ef46a41e45db7bda5886ee84
dc2946fb1cd23ccdcac42e0d68740942849df5cd45857a47b2168d563a790afb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4118
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:10 GMT
Last-Modified: Fri, 03 Feb 2023 16:25:32 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4b6fe13fad93b04a4f4c3322e63e0efa
46c5ca80b165df0fb0d31c7d7c57963de40e4b0b
c39774242ac9a604a199150e7ad6b0e52201b35ce3219db914aa49de03d2214b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 285
Cache-Control: max-age=101977
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:34:10 GMT
Etag: "63dc2fcf-1d7"
Expires: Sat, 04 Feb 2023 21:53:47 GMT
Last-Modified: Thu, 02 Feb 2023 21:49:03 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
c.adsco.re/
104.17.166.186200 OK 0 B IP 104.17.166.186:0
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:04 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Mon, 06 Mar 2023 17:34:04 GMT
etag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
cf-cache-status: HIT
age: 2835605
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea4cbf5fb4e8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
simage4.pubmatic.com/AdServer/SPug?o=1&p=160148&sc=1&u=D167D013-62A3-43D8-AA2A-D18C99AFECE5&rs=3&gdpr=0&gdpr_consent=&us_privacy=
198.47.127.20200 OK 0 B URL HTTP/2 simage4.pubmatic.com/AdServer/SPug?o=1&p=160148&sc=1&u=D167D013-62A3-43D8-AA2A-D18C99AFECE5&rs=3&gdpr=0&gdpr_consent=&us_privacy=
IP 198.47.127.20:0
GET /AdServer/SPug?o=1&p=160148&sc=1&u=D167D013-62A3-43D8-AA2A-D18C99AFECE5&rs=3&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: simage4.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 17:34:09 GMT
content-type: text/html; charset=utf-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
pjnewsletter.com/wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js
104.26.3.234200 OK 0 B URL HTTP/2 pjnewsletter.com/wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js
IP 104.26.3.234:0
GET /wp-content/plugins/w3-total-cache/pub/js/lazyload.min.js HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: application/javascript
cf-ray: 793cea40fd6b0b4d-OSL
age: 632854
cache-control: max-age=2592000
etag: W/"63298790-1883"
expires: Thu, 09 Feb 2023 07:29:59 GMT
last-modified: Tue, 20 Sep 2022 09:27:44 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cf-cache-status: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jcYrjry3HqpoFPdXou%2Fl4EoEG0bSgrAYvbsKKjcX%2B989sUYU4h1F4r9Z7V5COVYyxKTkEcx7biDpjcyQ2yR8jLzllgahZptGJW3WikmdkHa9SZwiGmCpJtaBqd27mE45cDM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ruamupr.com/13376
172.64.168.15200 OK 0 B IP 172.64.168.15:0
GET /13376 HTTP/1.1
Host: ruamupr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: text/javascript; charset=utf-8
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
etag: W/"7ebf0cd07cff663d5891e0a3b34d4fc2c4abd8aa"
access-control-allow-origin: *
x-tornado: yes
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L4OzMgddnJEgmjTSa8gQbi4vQEKgmeIAIUVgrPNdlTbFBYJbSFjuR9nfqCN8%2FEWsDlHxiDFoX38ZtgKyb7miFuIX9rts%2BESSm5A%2BU2NMVRdHSID%2BesaM%2FdF689FtaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea43cb8b76cb-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
jsc.mgid.com/p/j/pjnewsletter.com.1171406.js
104.19.135.78200 OK 0 B URL HTTP/2 jsc.mgid.com/p/j/pjnewsletter.com.1171406.js
IP 104.19.135.78:0
GET /p/j/pjnewsletter.com.1171406.js HTTP/1.1
Host: jsc.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=2664
etag: W/"a3d029d4d2526103298a86d434e26ffd"
last-modified: Fri, 20 Jan 2023 15:46:06 GMT
x-amz-id-2: bA0hB3QJszbTqh6Gt2R1e8tQIx5tIg6VY5Sd/UucDBI2RSg1o11GCezpimjYZqfO5Anxad6vm/c=
x-amz-request-id: B7TH0EBF4RX6Y46V
x-amz-version-id: taayM5f6Zt702BpnE65RyT1UnoxXA9dn
cf-cache-status: HIT
expires: Fri, 03 Feb 2023 20:34:02 GMT
cache-control: public, max-age=10800
set-cookie: __cf_bm=ugVsGXdzvRY.J4OzBJbwOJqwMMKdt7B6bxXiGM2DgFg-1675445642-0-Abh1n2B31SwmLGEB1QZ9ufYKdeHSnZGOXbLyjZd8H1mnEfkz38hd7ZxQvuXdoL1DW6zEiGv/pnO0/FyrTM9qaJQ=; path=/; expires=Fri, 03-Feb-23 18:04:02 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea416af1b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ruamupr.com/easylist/13376
172.64.168.15200 OK 0 B URL HTTP/2 ruamupr.com/easylist/13376
IP 172.64.168.15:0
GET /easylist/13376 HTTP/1.1
Host: ruamupr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:03 GMT
content-type: text/javascript; charset=utf-8
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
etag: W/"da642e4a940b6fc269f615cfeabd5ee08653bf7f"
access-control-allow-origin: *
x-tornado: yes
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7%2FSb%2BTVMH4Y%2Fta1NlQDFas%2F8pPdMFJGa12OEZ42w3DG0lblhENFOAoZO1kExSFJ5aXNhy9zUqAAZ10LOHUehIKl3rWh%2BkSlvP4Bx5oP902wrFJt%2BEm9rglK2XOWfgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea43dbb576cb-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/rmpssp?sub=duration&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/rmpssp?sub=duration&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D
IP 213.19.147.44:0
GET /usersync2/rmpssp?sub=duration&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://public.servenobid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 17:34:09 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _rxuuid=%7B%22rx_uuid%22%3A%22RX-883bfcac-c9a1-4c7a-b1dd-dcd40924d0dd-003%22%2C%22zdxidn%22%3A%222069.26%22%2C%22nxtrdr%22%3A%22https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D%22%7D; path=/; expires=Sat, 03 Feb 2024 17:34:09 GMT; domain=.1rx.io; samesite=none; secure; httponly
p3p: CP="This is not a P3P policy! See https://www.rhythmone.com/p3p to learn why"
location: https://sync.1rx.io/usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1675445649330
etag: RX883bfcacc9a14c7ab1dddcd40924d0dd003
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Source+Sans+Pro:wght@400;600&family=Source+Serif+Pro:wght@600&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Source+Sans+Pro:wght@400;600&family=Source+Serif+Pro:wght@600&display=swap
IP 142.250.74.106:0
GET /css2?family=Source+Sans+Pro:wght@400;600&family=Source+Serif+Pro:wght@600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Feb 2023 17:34:05 GMT
date: Fri, 03 Feb 2023 17:34:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/pwt/160835/4933/pwt.js
2.18.172.200200 OK 0 B URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/160835/4933/pwt.js
IP 2.18.172.200:0
GET /AdServer/js/pwt/160835/4933/pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 28 Nov 2022 20:34:20 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: application/javascript
content-length: 65523
cache-control: max-age=92670
expires: Sat, 04 Feb 2023 19:18:33 GMT
date: Fri, 03 Feb 2023 17:34:03 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
pjnewsletter.com/wp-content/cache/minify/1fb50.css
104.26.3.234200 OK 0 B URL HTTP/2 pjnewsletter.com/wp-content/cache/minify/1fb50.css
IP 104.26.3.234:0
GET /wp-content/cache/minify/1fb50.css HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: text/css; charset=utf-8
cf-ray: 793cea409d100b4d-OSL
age: 634879
cache-control: public, max-age=31536000
etag: W/"pub1631261816;gz"
expires: Wed, 15 Nov 2023 13:48:56 GMT
last-modified: Fri, 10 Sep 2021 08:16:56 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-edge-cache: cache,platform=wordpress
cf-polished: origSize=24129
pragma: public
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=75fFQEeYHiv8HgboQtQyXhI6vpiyvL%2BvfzwhabiQJl5gUnmrsmg6zTM0edlqPhA6c0DxZs3TYT%2Fk0imLQevx%2B%2BB1pbQaAtjnHz6bxwPWyqXkQcaOKeHqhklPwWDnpsuvwQ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
pjnewsletter.com/wp-content/cache/minify/a5ff7.css
104.26.3.234200 OK 0 B URL HTTP/2 pjnewsletter.com/wp-content/cache/minify/a5ff7.css
IP 104.26.3.234:0
GET /wp-content/cache/minify/a5ff7.css HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: text/css; charset=utf-8
cf-ray: 793cea409d120b4d-OSL
age: 634879
cache-control: public, max-age=31536000
etag: W/"pub1663666093;gz"
expires: Wed, 15 Nov 2023 13:48:56 GMT
last-modified: Tue, 20 Sep 2022 09:28:13 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-edge-cache: cache,platform=wordpress
cf-polished: origSize=88915
pragma: public
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oUJB%2BkaqFHGc14%2BDxwRgRXPXkp0uTeVBy3H4VL7BG0Mn2Stnv2KzmGe%2F2Hf42aOHoWp5MfjQ6VZPBlZyKbuBXlwNMxDqZ2BohKIuu7w2wsFN5aLKt0HsmPeiABIlKLKA5Wk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
pjnewsletter.com/wp-content/cache/minify/21a21.css
104.26.3.234200 OK 0 B URL HTTP/2 pjnewsletter.com/wp-content/cache/minify/21a21.css
IP 104.26.3.234:0
GET /wp-content/cache/minify/21a21.css HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: text/css
cf-ray: 793cea409d140b4d-OSL
age: 634879
cache-control: max-age=2592000
etag: W/"637398c8-412"
expires: Fri, 15 Dec 2023 13:48:59 GMT
last-modified: Tue, 15 Nov 2022 13:48:56 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=1042
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FQSyx%2BECOz8vXDgAwO4v3gH6LrWv3xqSzP6baXBFEprPMBFrSQaHlJbBruRoMa4O5bEf9ONDjmUHOOoIZIkwl%2BIFFJWcw4LfkHS0w1JaIe8pLKsWnTyaNcWxN3u3rQzOetI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
pjnewsletter.com/wp-includes/js/jquery/jquery.min.js
104.26.3.234200 OK 0 B URL HTTP/2 pjnewsletter.com/wp-includes/js/jquery/jquery.min.js
IP 104.26.3.234:0
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: application/javascript
cf-ray: 793cea410d7b0b4d-OSL
age: 632854
cache-control: max-age=2592000
etag: W/"61b6f6d4-15db1"
expires: Thu, 09 Feb 2023 07:19:41 GMT
last-modified: Mon, 13 Dec 2021 07:31:32 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cf-cache-status: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6xsbg7gxC1RBUhR6IzolEEIlkeD93KXuHE%2Fwz2UXnwc2h0Po%2BCI0FmU5rJyHxZ4Im%2B4zDsP25hzC7xEAlgHlYow%2F4KUquEAa3WbS6eKS2%2FsCxCKIn6HHMFXqVELTuC%2BxcJY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
jsc.mgid.com/p/j/pjnewsletter.com.1415859.js
104.19.135.78200 OK 0 B URL HTTP/2 jsc.mgid.com/p/j/pjnewsletter.com.1415859.js
IP 104.19.135.78:0
GET /p/j/pjnewsletter.com.1415859.js HTTP/1.1
Host: jsc.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=2664
etag: W/"d2e4e55361917dfb961fb3548ce5e6d0"
last-modified: Thu, 02 Feb 2023 11:26:52 GMT
x-amz-id-2: Tz7UNhIqM5WPjzCjHXc6NydwrjlBBtXCzEULkhrxrtE/WcMgwk3901CDkf8aj8l7m9TMEkpoNAY=
x-amz-request-id: 4HXVTMN0CVCMK68H
x-amz-version-id: 3xlO9LN_rXg5RpqAaQ6zdoSyeKUcS7tx
cf-cache-status: HIT
age: 3544
expires: Fri, 03 Feb 2023 20:34:02 GMT
cache-control: public, max-age=10800
set-cookie: __cf_bm=7ObIp0r6S7nCufFNcQ63Fjh8sb3bNCfmUqOZPgPPjyI-1675445642-0-AUDjaJ8WXYxxG8GxTcmPQKmdB6yWVf6MyLYRsj9a4acnjGRKDrC7sDq2LH+faYpIE2vyCA0l+qIBY4ysV8nZV7k=; path=/; expires=Fri, 03-Feb-23 18:04:02 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea415ad8b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1675445649330
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1675445649330
IP 213.19.147.44:0
GET /usersync2/rmpssp?sub=duration&zcc=1&redir=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D321%26uid%3D%5BRX_UUID%5D&cb=1675445649330 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 03 Feb 2023 17:34:09 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
location: https://ads.servenobid.com/sync?pid=321&uid=OPTOUT
etag: OPTOUT
X-Firefox-Spdy: h2
public.servenobid.com/sync.html
54.230.111.59200 OK 0 B URL HTTP/2 public.servenobid.com/sync.html
IP 54.230.111.59:0
GET /sync.html HTTP/1.1
Host: public.servenobid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
date: Fri, 03 Feb 2023 12:59:51 GMT
last-modified: Thu, 01 Dec 2022 19:37:41 GMT
etag: W/"500c31eb3dcfb8f2a7dc0893b86a487a"
cache-control: max-age=86400
x-amz-meta-codebuild-content-sha256: 7a0197b444a3c5a5c4f92ccd56438fcf44932f5518b7cae8f7a5ec6b1a094ad5
x-amz-meta-codebuild-buildarn: arn:aws:codebuild:us-east-1:559734745816:build/adserver-public-prod:5838c8c3-64c9-4519-918a-548b86a0fef3
x-amz-meta-codebuild-content-md5: 86c7b5baa8ca6b64006191aa90b9f19a
server: AmazonS3
content-encoding: br
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ge7B-zvtL45dtn2VQ4wBMGtTMMrxRMTK0rFKnEQe8FaVmT0aybASMw==
age: 16459
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
104.26.3.234200 OK 0 B URL HTTP/2 pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
IP 104.26.3.234:0
GET /manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891 HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: text/html; charset=UTF-8
cf-ray: 793cea3edaab0b4d-OSL
cache-control: max-age=3594, public
expires: Fri, 03 Feb 2023 18:33:56 GMT
last-modified: Fri, 03 Feb 2023 17:33:56 GMT
link: <https://pjnewsletter.com/wp-json/>; rel="https://api.w.org/", <https://pjnewsletter.com/wp-json/wp/v2/posts/20928931>; rel="alternate"; type="application/json", <https://pjnewsletter.com/?p=20928931>; rel=shortlink, </wp-content/cache/minify/1fb50.css>; rel=preload; as=style, </wp-content/cache/minify/a5ff7.css>; rel=preload; as=style, </wp-content/cache/minify/21a21.css>; rel=preload; as=style
strict-transport-security: max-age=31536000
vary: Accept-Encoding
cf-cache-status: BYPASS
cf-apo-via: origin,qs
pragma: public
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9PeBLcBGJ2742ZUfa6lxIhf%2BaUxQ%2B5e3%2BSZOzYy%2BCl5zI88YYGULv6Pw5JywUb8i0mxjzHWBsaSks%2FN3vFK%2BwSn6U6O74ljAV8fOomncCxf%2B0fG0qjBfcbqjBvbUBDAPgb4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
cf-h2-pushed: </wp-content/cache/minify/1fb50.css>,</wp-content/cache/minify/a5ff7.css>,</wp-content/cache/minify/21a21.css>
X-Firefox-Spdy: h2
pjnewsletter.com/cdn-cgi/apps/head/x__A-NG1ubb43gGQYZyDF6ijfWI.js
104.26.3.234200 OK 0 B URL HTTP/2 pjnewsletter.com/cdn-cgi/apps/head/x__A-NG1ubb43gGQYZyDF6ijfWI.js
IP 104.26.3.234:0
GET /cdn-cgi/apps/head/x__A-NG1ubb43gGQYZyDF6ijfWI.js HTTP/1.1
Host: pjnewsletter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pjnewsletter.com/manchin-joins-gop-biden-esg/?utm_source=BA01&utm_medium=email&utm_id=3506&sfmc_id=7298891
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 2TOyxAtJygync/Dkevr6458H2Az+8Z36RJW4TzsOOc0te2kZE4iJbiFxIHKjHxkXy24U9jRzq8Y=
x-amz-request-id: HA10ABR51Z6GF30F
cache-control: public, max-age=31536000
last-modified: Sat, 14 Aug 2021 22:08:08 GMT
x-amz-version-id: 1GoXfJ800GvzExjwgI_09FZrVKok9SbF
etag: W/"eaffdbf2f8d4900996b5bc92fdf0ac84"
cf-cache-status: HIT
age: 1879972
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BnTYQ4XEVj9ilI3k9SGk%2FjWfcqDXvnvo5qz3%2FmROAhI5mX9ftnYNfbsfOFgJevz0MLN4vtd9%2FkJaCxGPqjHYmyQGsDDwTzW9zYDGPSV59mZYlaBeIzk8g1rpeo25yKwYaUU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea40fd6a0b4d-OSL
content-encoding: br
X-Firefox-Spdy: h2
labs-cdn.revcontent.com/build/revexit.min.js?w=217811&p=14529&k=5b6b328d0e719626bc789ee9fe559b34c7354f8d&d=pjnewsletter.com&t=false&i=none&x=both&z=10
151.139.128.10200 OK 0 B URL HTTP/2 labs-cdn.revcontent.com/build/revexit.min.js?w=217811&p=14529&k=5b6b328d0e719626bc789ee9fe559b34c7354f8d&d=pjnewsletter.com&t=false&i=none&x=both&z=10
IP 151.139.128.10:0
GET /build/revexit.min.js?w=217811&p=14529&k=5b6b328d0e719626bc789ee9fe559b34c7354f8d&d=pjnewsletter.com&t=false&i=none&x=both&z=10 HTTP/1.1
Host: labs-cdn.revcontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
etag: "1671032994"
cache-control: must-revalidate, max-age=600
content-length: 271374
content-type: application/javascript
last-modified: Wed, 14 Dec 2022 15:49:54 GMT
accept-ranges: bytes
x-hw: 1675445642.cds022.sk1.hn,1675445642.cds227.sk1.c
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
104.16.57.101200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP 104.16.57.101:0
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pjnewsletter.com
Connection: keep-alive
Referer: https://pjnewsletter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:02 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 793cea418d53b4ed-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1
104.18.33.19200 OK 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1
IP 104.18.33.19:0
GET /usermatch?cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D333%26uid%3D&s=195491&C=1 HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://public.servenobid.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:34:09 GMT
content-type: text/html
cf-ray: 793cea6bca7b0b41-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DO8WYkCG%2F0FAJXEa96D%2B%2FD0k%2B30z8sLQFts7VpGRkXI4XpWoQdei62tpb%2BMX6VAZlwb3%2FSbOrqWturK0Zn4rwvc1jEWgXEvByM1dtjVqV50Ea%2F7O7P9jCiNvw%2F76foWTCslDaVEc%2ByndoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2