huffpost.netblogpro.com/
213.232.235.193301 Moved Permanently 162 B IP 213.232.235.193:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: huffpost.netblogpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 08 Sep 2022 18:36:33 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://huffpost.netblogpro.com/
Server: tino-panel
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7387
Expires: Thu, 08 Sep 2022 20:40:01 GMT
Date: Thu, 08 Sep 2022 18:36:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 08 Sep 2022 18:05:21 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CrU7M68jy4DJBeI4npVZ6TtSdH5nkO7PATR9dzGjp9DaLkHAVBbBew==
Age: 1893
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LVVc7pv4FV1N7cBBGZ9eCSi_GhFvUOJWVnVcQCRZzxB9N-Iif_EDeg==
age: 53419
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2dd23ca5aa1a6bfd75b281141374c9f2
bf628e13ef76598d3009e85e6c7a99fafedf440a
e21e81df6ee636f821391d00a0d4610e154bba0e72c1514196bf8771a2aae863
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E21E81DF6EE636F821391D00A0D4610E154BBA0E72C1514196BF8771A2AAE863"
Last-Modified: Tue, 06 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21524
Expires: Fri, 09 Sep 2022 00:35:38 GMT
Date: Thu, 08 Sep 2022 18:36:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 08 Sep 2022 17:38:18 GMT
Expires: Thu, 08 Sep 2022 18:28:51 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lvZSpmMuTb0n7HijWq_9J6Y1INchF6zh8HygYBrvEOlpaI9LzLaJgw==
Age: 3516
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 042105f89c8d64b470d84e052cd412d1
a26c7e2559b3760ea2765b16a3f8d1be27f5dcf4
fadb8cdd22f4d7773d5c20d576f6400ab25e20e1efe3e3fe50d2ae39ca6f2725
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4836
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:54 GMT
Last-Modified: Thu, 08 Sep 2022 17:16:18 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
huffpost.netblogpro.com/
213.232.235.193200 OK 64 kB IP 213.232.235.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (16534)
Hash 19b3fd44cbfd25924bcf12c721720a6c
97c88389105812708d5efe64c845d7fe12ab7075
5475c1e98a08a34b5d21a890aa4db4e2c903ab788f264ebfed4b90d9a2674ce4
GET / HTTP/1.1
Host: huffpost.netblogpro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.40
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-Control: max-age=10, s-maxage=10, public
Content-Security-Policy: sandbox allow-forms allow-same-origin allow-scripts allow-popups allow-popups-to-escape-sandbox allow-presentation allow-top-navigation-by-user-activation; frame-ancestors 'self' *.huffpost.com *.huffingtonpost.com *.huffpost.net *.buzzfeed.com clients.opinary.com compass.pressekompass.net *.newsbreak.com *.newsbreakapp.com; report-uri https://huffpost.report-uri.com/r/d/csp/enforce;
Link: <https://fonts.googleapis.com/css?family=Alfa+Slab+One&display=fallback>; rel=preload; as=style
Server: tino-panel
X-Cambria-Cache-Control: max-age=10, s-maxage=10, public
X-Hp-Page-Version: 198091
X-Hp-Trace-Id: b6f17c91751565d31776f3e4011c802fb7e6040f
X-Hp-Webp: false
X-Request-Id: a01af1a7948a18501d74538b796a2ee8
Date: Thu, 08 Sep 2022 18:36:54 GMT
Via: 1.1 varnish
Age: 4
X-Served-By: cache-sof1510056-SOF
X-Cache: HIT
X-Cache-Hits: 2
X-Timer: S1662662215.583783,VS0,VE0
Strict-Transport-Security: max-age=31536000
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
Set-Cookie: ccpa=true; expires=Thu, 22 Sep 2022 18:36:54 GMT; path=/; domain=www.huffpost.com;
Vary: Accept-Encoding, Accept-Encoding
X-Content-Type-Options: nosniff, nosniff
Content-Encoding: br
tagan.adlightning.com/buzzfeed/op.js
143.204.55.90200 OK 15 kB URL HTTP/2 tagan.adlightning.com/buzzfeed/op.js
IP 143.204.55.90:0
File type ASCII text, with very long lines (36971)
Hash b39295fb6372acad9ef1a17fb335ec4c
ccbf0f55b54526707bc229aa19d05a731c2073c0
5a2e19901bb274c1da47afacebaed84a7b3ff94a166b8bd4b10a20fd360daca3
GET /buzzfeed/op.js HTTP/1.1
Host: tagan.adlightning.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 14783
date: Thu, 08 Sep 2022 17:40:59 GMT
last-modified: Thu, 08 Sep 2022 16:40:52 GMT
cache-control: max-age=3600
x-amz-meta-git_commit: 0514814
content-encoding: gzip
x-amz-version-id: Vwui76gUDQ34IuswccAbMAjObbA5Vp46
accept-ranges: bytes
server: AmazonS3
etag: "b39295fb6372acad9ef1a17fb335ec4c"
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: J-TNefTmBLPaWAEto5_lAZP78OAvpd6HcbsomxNwhK6psy7wBYlmEg==
age: 3357
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b63f97bc3dce37e8ee6a0c9fcae468fe
cc70326582c0016d7434d0553486734266e57e71
6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3416e997abda30e7f714cbfd6f30a43e
a88af7a6dfa27d58bd720a0d4554553d04fd155b
fcad93933cef9da01f30a05c893ea8f60ab15e3f7cbb8f5d98826f1cd96a42f0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCAD93933CEF9DA01F30A05C893EA8F60AB15E3F7CBB8F5D98826F1CD96A42F0"
Last-Modified: Wed, 07 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6712
Expires: Thu, 08 Sep 2022 20:28:47 GMT
Date: Thu, 08 Sep 2022 18:36:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2cb90a707822e707e5f7b1f91248e6f4
67fbbb968930b83eaeb082662a67a8d781293caa
36aff03cca6066d2d6f3eceeb81cdd257581d1b62859bfc92568847db2e2fb56
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36AFF03CCA6066D2D6F3ECEEB81CDD257581D1B62859BFC92568847DB2E2FB56"
Last-Modified: Wed, 07 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11940
Expires: Thu, 08 Sep 2022 21:55:55 GMT
Date: Thu, 08 Sep 2022 18:36:55 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 54f9e2ed11c19f565afc5d45d2f1e499
5c933cf89e4be594a152d7b1aa7bed6ab42169df
1deae88857366dba09c5e498d9067529377741b3c51b711b4adb88d861f58718
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 55362bc853c99806e54641de1e0fdb0c
1c84425554ce994c84fd4d3b95833fed9bf16023
936a1c711aea3c55e6e270aec23f72818b7bbfed28b1c9859697050ebe9aaf4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.scroll.com/js/scroll.js
151.101.86.217200 OK 6.2 kB URL HTTP/2 static.scroll.com/js/scroll.js
IP 151.101.86.217:0
File type ASCII text, with very long lines (17144)
Hash 1e95949e7c12b7ee6c5f4dd56d15b476
00a262d9d6a0f96514f6ca7d67af669eb6fcc618
d518afff75e0bceb56cc527a2a051135cd498b7c03ab16a6ddc443281055438c
GET /js/scroll.js HTTP/1.1
Host: static.scroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtuG-12IIsWpUwouC_gJI9hHI6SnJyoCAhnL_dQdZhu24oCAzlYiC7VMfFOcbIzUQIu7VrqrlE1Z38dHiQETY8G
cache-control: public, max-age=0, s-maxage=86400
expires: Wed, 27 Jul 2022 00:50:57 GMT
last-modified: Thu, 17 Mar 2022 19:00:06 GMT
etag: "1e95949e7c12b7ee6c5f4dd56d15b476"
x-goog-generation: 1647543606481892
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6181
content-type: application/javascript
content-encoding: gzip
x-goog-hash: crc32c=S/xPEw==, md5=HpWUnnwSt+5sX03VbRW0dg==
x-goog-storage-class: STANDARD
server: UploadServer
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 63069
x-served-by: cache-bma1666-BMA
x-cache: HIT
x-cache-hits: 321
x-timer: S1662662215.115625,VS0,VE0
x-scrolljs: 2
vary: Origin
access-control-allow-credentials: true
content-length: 6181
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/news.ad1b0b24a4a753231e6e.css
151.101.86.114200 OK 9.0 kB URL HTTP/2 cambria.assets.huffpost.com/news.ad1b0b24a4a753231e6e.css
IP 151.101.86.114:0
File type ASCII text, with very long lines (60686)
Hash a40227e1aa07beacaa9d1c27600595a7
6b5865c9abe0c40e45055608e3ba14a3aadcd9f4
b951195b661533681260ed1f671fa11633d592702b4e3720dd01258f47d8e78a
GET /news.ad1b0b24a4a753231e6e.css HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 29 Aug 2022 20:12:25 GMT
etag: "91cafd90d62917d214cef5908fd88193"
cache-control: public, max-age=31536000, immutable
content-type: text/css
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 858200
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 12
x-timer: S1662662215.130435,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 8970
X-Firefox-Spdy: h2
modulous.huffpost.com/2022/09/07/1662563973-bundle-gam-oo-a776ad6.min.js
151.101.86.114200 OK 44 kB URL HTTP/2 modulous.huffpost.com/2022/09/07/1662563973-bundle-gam-oo-a776ad6.min.js
IP 151.101.86.114:0
File type Unicode text, UTF-8 text, with very long lines (65442)
Hash 732d7656f01c42b55ac0b6ad2e78dda5
ecb41827a173f11e3f5e4b90e30133492a2418f3
cdbc9e974bd83c27b2f8f3cfebed099b54c2a9c32a2776d2721362d83fcf6165
GET /2022/09/07/1662563973-bundle-gam-oo-a776ad6.min.js HTTP/1.1
Host: modulous.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 15:19:34 GMT
etag: "50c5e4019e422765d58a8ac2620c3dca"
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 11679
x-served-by: cache-bma1683-BMA
x-cache: HIT
x-cache-hits: 23
x-timer: S1662662215.127185,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: max-age=86400
strict-transport-security: max-age=31536000
content-length: 43974
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/news.e3b788c1c8787fd01845.js
151.101.86.114200 OK 31 kB URL HTTP/2 cambria.assets.huffpost.com/news.e3b788c1c8787fd01845.js
IP 151.101.86.114:0
File type Unicode text, UTF-8 text, with very long lines (65520), with no line terminators
Hash 311ae26b5578ef15852660f8ebf6c0e6
28bcce66bfa7b7f6510dc50190862906c5cf8243
8206fbbbea670d0f2ab74e09fe8271f4c908926bd87fb2507976abed5775af11
GET /news.e3b788c1c8787fd01845.js HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 18:46:39 GMT
etag: "ff465fd4da5412a246a6a4b7a83e45bb"
cache-control: public, max-age=31536000, immutable
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 604151
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 10
x-timer: S1662662215.135031,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 31342
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-1740781-82
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-1740781-82
IP 142.250.74.72:0
File type ASCII text, with very long lines (1615)
Hash b1f9afe19283a187280d5e5ac8b116c1
3bf0c97951517952643e2e0a43d9fdcdd829a93c
c08c40bd6b90d1c18d86a5df513d21b2175fd45ee5ec48f788b787c22566122b
GET /gtag/js?id=UA-1740781-82 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 Sep 2022 18:36:55 GMT
expires: Thu, 08 Sep 2022 18:36:55 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41954
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/vendors~LeftNavTop~SubNav~embed~featured~highline~life~news~opinion~react-intl~spoils~video~voices.c12993c9dbfbf9c92170.js
151.101.86.114200 OK 18 kB URL HTTP/2 cambria.assets.huffpost.com/vendors~LeftNavTop~SubNav~embed~featured~highline~life~news~opinion~react-intl~spoils~video~voices.c12993c9dbfbf9c92170.js
IP 151.101.86.114:0
File type Unicode text, UTF-8 text, with very long lines (24716), with LF, NEL line terminators
Hash 3bbe57f8905d240153e0a8ba878b5814
e27f5d4d7a78440480f610b0f4950de7c1f3b6fe
1da0f9313d6503afbcde4db28bbbefeda81006bb8ea21e3818e72847f3115c9d
GET /vendors~LeftNavTop~SubNav~embed~featured~highline~life~news~opinion~react-intl~spoils~video~voices.c12993c9dbfbf9c92170.js HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 16 Aug 2022 19:16:14 GMT
etag: "1eff889c754c1cd33ff2f60c42a0231e"
cache-control: public, max-age=31536000, immutable
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 1984743
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 92
x-timer: S1662662215.139234,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 17624
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.43.61.95101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.61.95:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: y0fY6r6P/8b9KiqOKxwiLw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6+KG09/rtnOU6ela+HeXOlZSkRM=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 652bdaaaca09a66fc9a260163eee7aeb
f59f82dd2c189cdff5c641ff7c53c5f257e1f2d2
bbaf18a14748bb922b9bd19125c78310a564b1aebb7de8f30af0be6fa390e7da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jouteetu.net/zone?pub=0&zone_id=5294809&is_mobile=false&domain=huffpost.netblogpro.com&var=&ymid=&var_3=
139.45.197.251200 OK 695 B URL HTTP/2 jouteetu.net/zone?pub=0&zone_id=5294809&is_mobile=false&domain=huffpost.netblogpro.com&var=&ymid=&var_3=
IP 139.45.197.251:0
File type JSON data\012- , ASCII text, with very long lines (694)
Hash 492daad2e43b2ead1c2930e23a361616
408553145c4d1122053a0e348fb2be0d67acef77
bb0b9fa45a9fd67b146b94f3d8f6742021eae4ac3172aa08467fc85163fbb0ea
GET /zone?pub=0&zone_id=5294809&is_mobile=false&domain=huffpost.netblogpro.com&var=&ymid=&var_3= HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:55 GMT
content-type: application/json; charset=utf-8
content-length: 695
x-trace-id: 3dc47d97d8c04401cf48ad7e489a9024
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/fonts/proxima-nova-bold.hash-c5b5d29cb016c8df27f6fc56fb8d9a84.woff
151.101.86.114200 OK 43 kB URL HTTP/2 cambria.assets.huffpost.com/fonts/proxima-nova-bold.hash-c5b5d29cb016c8df27f6fc56fb8d9a84.woff
IP 151.101.86.114:0
File type Web Open Font Format, CFF, length 42620, version 1.0\012- data
Hash c5b5d29cb016c8df27f6fc56fb8d9a84
be0e244129e5028bcd039392f01052750aa38396
fdd6552ac32daa7083e2391eaf1b59a51b5ae9ab97d6fce71ed06823dd351376
GET /fonts/proxima-nova-bold.hash-c5b5d29cb016c8df27f6fc56fb8d9a84.woff HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 18:56:38 GMT
etag: "c5b5d29cb016c8df27f6fc56fb8d9a84"
cache-control: public, max-age=31536000, immutable
content-type: font/woff
server: AmazonS3
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 756418
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 83
x-timer: S1662662215.340758,VS0,VE0
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 42620
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/fonts/proxima-nova-condensed-extrabold-italic.hash-24b1689c592ff6ef8fb7159cac1e1f44.woff
151.101.86.114200 OK 150 kB URL HTTP/2 cambria.assets.huffpost.com/fonts/proxima-nova-condensed-extrabold-italic.hash-24b1689c592ff6ef8fb7159cac1e1f44.woff
IP 151.101.86.114:0
File type Web Open Font Format, TrueType, length 149704, version 3.18\012- data
Size 150 kB (149704 bytes)
Hash 24b1689c592ff6ef8fb7159cac1e1f44
d980dc9da0310ab61f79036520979b1a4c5c3f7e
7bd49f71b6c7ad6d9bea266e8fce6f5cb434a0afab15ce2ad285a3abbeedae86
GET /fonts/proxima-nova-condensed-extrabold-italic.hash-24b1689c592ff6ef8fb7159cac1e1f44.woff HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 23 Aug 2022 11:44:21 GMT
etag: "24b1689c592ff6ef8fb7159cac1e1f44"
cache-control: public, max-age=31536000, immutable
content-type: font/woff
server: AmazonS3
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 1361664
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1662662215.344982,VS0,VE0
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 149704
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/fonts/proxima-nova-condensed-extrabld.hash-53d46674e35ddb8196de9e7306ac61f9.woff
151.101.86.114200 OK 112 kB URL HTTP/2 cambria.assets.huffpost.com/fonts/proxima-nova-condensed-extrabld.hash-53d46674e35ddb8196de9e7306ac61f9.woff
IP 151.101.86.114:0
File type Web Open Font Format, TrueType, length 112376, version 3.1\012- data
Size 112 kB (112376 bytes)
Hash 53d46674e35ddb8196de9e7306ac61f9
a3395f1bed44e649c369937a43e27d0707262c07
9da82f58ff0e764593f023fcf21b3b9a2549021175fb5f691f8e98cacda47b9c
GET /fonts/proxima-nova-condensed-extrabld.hash-53d46674e35ddb8196de9e7306ac61f9.woff HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 01 Jul 2022 17:33:39 GMT
etag: "53d46674e35ddb8196de9e7306ac61f9"
cache-control: public, max-age=31536000, immutable
content-type: font/woff
server: AmazonS3
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 5687615
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 83
x-timer: S1662662215.348624,VS0,VE0
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 112376
X-Firefox-Spdy: h2
jouteetu.net/pfe/current/universal.min.js?v=3.1.392
139.45.197.251200 OK 122 kB URL HTTP/2 jouteetu.net/pfe/current/universal.min.js?v=3.1.392
IP 139.45.197.251:0
Size 122 kB (121500 bytes)
Hash 2c6ceecd75db1ed330f0d97087deea1b
d46b1cd5017b53437d0a810395dca434d7c144d7
1239a65ffd860ac6d91eef5eac8a0638cf583e0cef5181672b928cd03d11c3c5
GET /pfe/current/universal.min.js?v=3.1.392 HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:55 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 12:32:41 GMT
etag: W/"6315ec69-20481"
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/fonts/proxima-nova-regular.hash-79c14ea7490af62fc90c4c91a9ebdc4e.woff
151.101.86.114200 OK 42 kB URL HTTP/2 cambria.assets.huffpost.com/fonts/proxima-nova-regular.hash-79c14ea7490af62fc90c4c91a9ebdc4e.woff
IP 151.101.86.114:0
File type Web Open Font Format, CFF, length 42096, version 1.101\012- data
Hash 79c14ea7490af62fc90c4c91a9ebdc4e
3d698b194972323f672b5fe9533a583a196c2327
22976edc250ce86fcd8ed5fa6c36e58724a1786ebb4a602277fa7247e8afd357
GET /fonts/proxima-nova-regular.hash-79c14ea7490af62fc90c4c91a9ebdc4e.woff HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 29 Aug 2022 20:12:25 GMT
etag: "79c14ea7490af62fc90c4c91a9ebdc4e"
cache-control: public, max-age=31536000, immutable
content-type: font/woff
server: AmazonS3
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 834021
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 102
x-timer: S1662662215.387364,VS0,VE0
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 42096
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/fonts/proxima-nova-condensed-bold-italic.hash-22dfcf1417067b49e8c1e5304f3e60b5.woff2
151.101.86.114200 OK 46 kB URL HTTP/2 cambria.assets.huffpost.com/fonts/proxima-nova-condensed-bold-italic.hash-22dfcf1417067b49e8c1e5304f3e60b5.woff2
IP 151.101.86.114:0
File type Web Open Font Format (Version 2), TrueType, length 45608, version 1.0\012- data
Hash 22dfcf1417067b49e8c1e5304f3e60b5
3b283d924f204df9fefea54279d6b949ff84cecf
e38308f7b64620547e11e2aeb09c1c5062fccae2fa530832077e7c9b1f1b2b5b
GET /fonts/proxima-nova-condensed-bold-italic.hash-22dfcf1417067b49e8c1e5304f3e60b5.woff2 HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 14:02:15 GMT
etag: "22dfcf1417067b49e8c1e5304f3e60b5"
cache-control: public, max-age=31536000, immutable
content-type: font/woff2
server: AmazonS3
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 156006
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 85
x-timer: S1662662215.394797,VS0,VE0
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 45608
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash db3d2d40f373a7ef445874e65d7f0397
087a4802f28647e830222fafc67bda30dec5fc31
4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 16:40:18 GMT
expires: Fri, 08 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 6997
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/alfaslabone/v17/6NUQ8FmMKwSEKjnm5-4v-4Jh2dJhew.woff2
142.250.74.163200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/alfaslabone/v17/6NUQ8FmMKwSEKjnm5-4v-4Jh2dJhew.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 17896, version 1.0\012- data
Hash 8c51df773fcb996de5b83b44683523fc
391827c9816713bc5343cd33456ed78eeca640e8
a9374de123126424cc9576c36c508f12954bb9c1da8a23d035bf8a0131f7113f
GET /s/alfaslabone/v17/6NUQ8FmMKwSEKjnm5-4v-4Jh2dJhew.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17896
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 20:03:52 GMT
expires: Tue, 05 Sep 2023 20:03:52 GMT
cache-control: public, max-age=31536000
age: 253983
last-modified: Tue, 19 Apr 2022 19:03:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash db3d2d40f373a7ef445874e65d7f0397
087a4802f28647e830222fafc67bda30dec5fc31
4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jouteetu.net/pfe/current/tag.min.js?z=5294809
139.45.197.251200 OK 6.2 kB URL HTTP/2 jouteetu.net/pfe/current/tag.min.js?z=5294809
IP 139.45.197.251:0
File type C source, ASCII text, with very long lines (14947)
Hash d0296662a1f314f5f5fd7686277ba85f
2cb83dc81e225116d2d8396705a3514bcd08fd0a
448f5f770b83d9990db6dfeb8044924407f790ad5a28ed5ab4d1d51105dcf0b1
GET /pfe/current/tag.min.js?z=5294809 HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:55 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 12:32:41 GMT
etag: W/"6315ec69-3a38"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 002eb88fc70c5707fa34ef3867762247
c213070def607edbdfc424e79a843391b1736e90
a63a7bf0d4606cc02bfa3845383cf95a62e37f6cc58e8e20dbca7aaacf0548f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A63A7BF0D4606CC02BFA3845383CF95A62E37F6CC58E8E20DBCA7AAACF0548F9"
Last-Modified: Thu, 08 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3762
Expires: Thu, 08 Sep 2022 19:39:37 GMT
Date: Thu, 08 Sep 2022 18:36:55 GMT
Connection: keep-alive
upgulpinon.com/1?z=5294774
139.45.197.242200 OK 4.0 kB URL HTTP/2 upgulpinon.com/1?z=5294774
IP 139.45.197.242:0
Hash 5728f95a89f71ce79dc3478e7d550d8e
cc4b20aec61cd4fea3106dfefe17ce7459e18985
204d0d9ab8a33966c429b09b1fc59e7653f5c0f643554d9357c98f755eaf4eb5
Analyzer Verdict Alert fortinet Malware
GET /1?z=5294774 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:55 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 75b41ef17ddeef8993a6d26a82fd0b53
access-control-expose-headers: X-Sc
x-sc: 2Q_o5hVPz-5bFOtAzE2FtXEiKrV8tdRITqzMc_5TrPZ0JjwQjrDWOrFvNqvpH84QJ2OwMEj75aswsuaz1ygeNMjj6wA=
set-cookie: scm=1; expires=Fri, 08 Sep 2023 18:36:55 GMT; secure; SameSite=None
OAID=6c2915545e614d35b9616ed95c926758; expires=Fri, 08 Sep 2023 18:36:55 GMT; secure; SameSite=None
oaidts=1662662215; expires=Fri, 08 Sep 2023 18:36:55 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 469554640a2b00656f89d2fd9cf0f517
4aad58aaf697471d4c8856d74ae759548ec864f3
135ea2714c64e230a6679e5714ab755e20cbaafcd5c181950fa0d634e591d1fb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "135EA2714C64E230A6679E5714AB755E20CBAAFCD5C181950FA0D634E591D1FB"
Last-Modified: Wed, 07 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11237
Expires: Thu, 08 Sep 2022 21:44:12 GMT
Date: Thu, 08 Sep 2022 18:36:55 GMT
Connection: keep-alive
cdn.permutive.com/models/v2/d0aea23f-b86d-47b4-9d71-210104685824-models.bin
104.19.149.54200 OK 20 kB URL HTTP/2 cdn.permutive.com/models/v2/d0aea23f-b86d-47b4-9d71-210104685824-models.bin
IP 104.19.149.54:0
Hash 8b06b546b93133179016f7dd4d20664d
5313febb6efcedabdcab9aa0a56a565513c0f5ed
6ad2537cac09cbfb23ed834a32d87f79bdf3679f269b6a1c8eb79a4730ea8d96
GET /models/v2/d0aea23f-b86d-47b4-9d71-210104685824-models.bin HTTP/1.1
Host: cdn.permutive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 18:36:55 GMT
content-type: application/x-binary
content-length: 19564
x-guploader-uploadid: ADPycdu3_BFDtreG_erTnYJcK54ElMKlmZTCd762ZPV5RdZXE3pZ5e9QBn9QVbI2vPlAc36eSKTBykjIRwlCloQWa3j9NQTGFbTV
x-goog-generation: 1662472818388215
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 19564
x-goog-meta-oid: a2a5c7f9-3fa0-4182-889a-15aa61acf59b
content-encoding: gzip
x-goog-hash: crc32c=gse2yg==, md5=iwa1RrkxMxeQFvfdTSBmTQ==
x-goog-storage-class: REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Thu, 08 Sep 2022 17:58:48 GMT
cache-control: public, max-age=900, no-transform
last-modified: Wed, 07 Sep 2022 20:32:21 GMT
etag: "8b06b546b93133179016f7dd4d20664d"
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7479cadfbca4b51b-OSL
X-Firefox-Spdy: h2
a2a5c7f9-3fa0-4182-889a-15aa61acf59b.prmutv.co/v2.0/pxid?k=406b9ad8-2772-474f-82e6-774a332d9754
35.241.9.51200 OK 32 B URL HTTP/2 a2a5c7f9-3fa0-4182-889a-15aa61acf59b.prmutv.co/v2.0/pxid?k=406b9ad8-2772-474f-82e6-774a332d9754
IP 35.241.9.51:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f47302863c849ac0f60a35bb47c3b24a
42a17fa86551470b33a49034e64c8adf0e56bc50
49e72b3faecd981186770833a7d0e172b2fbb9d7487283bf661d559c67274876
GET /v2.0/pxid?k=406b9ad8-2772-474f-82e6-774a332d9754 HTTP/1.1
Host: a2a5c7f9-3fa0-4182-889a-15aa61acf59b.prmutv.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 18:36:55 GMT
content-type: application/json
content-encoding: gzip
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-credentials: true
vary: Origin
server: Permutive
content-length: 32
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ib.adnxs.com/getuidj
185.89.210.244200 OK 11 B IP 185.89.210.244:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 096dc398f48c9a61584478fea3ee50a1
7d0a5f87833db711b2eb52c73638c5e14538a969
31b45c462302ac175bfa43f9e5591491db780ca094f6ecdd2907f25ad578448d
GET /getuidj HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 08 Sep 2022 18:36:55 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 11
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://huffpost.netblogpro.com
AN-X-Request-Uuid: 88ab9427-0f6c-4915-a34a-6140b06193c4
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 946.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
api.permutive.com/v2.0/watson?k=406b9ad8-2772-474f-82e6-774a332d9754
34.107.254.252200 OK 210 B URL HTTP/2 api.permutive.com/v2.0/watson?k=406b9ad8-2772-474f-82e6-774a332d9754
IP 34.107.254.252:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2537509cee45aa56c75e6aaa939bf237
efc0c462072db04d16748b59cfe71617ef8ec5e3
f2f09d9f0e213fafcda86f7e8f050aa98dcd83c0b85c0b5f9ec58e05b0f3d990
POST /v2.0/watson?k=406b9ad8-2772-474f-82e6-774a332d9754 HTTP/1.1
Host: api.permutive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 57
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 18:36:55 GMT
content-type: application/json
content-encoding: gzip
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-credentials: true
vary: Origin
server: Permutive
content-length: 210
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 469554640a2b00656f89d2fd9cf0f517
4aad58aaf697471d4c8856d74ae759548ec864f3
135ea2714c64e230a6679e5714ab755e20cbaafcd5c181950fa0d634e591d1fb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "135EA2714C64E230A6679E5714AB755E20CBAAFCD5C181950FA0D634E591D1FB"
Last-Modified: Wed, 07 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11237
Expires: Thu, 08 Sep 2022 21:44:12 GMT
Date: Thu, 08 Sep 2022 18:36:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 002eb88fc70c5707fa34ef3867762247
c213070def607edbdfc424e79a843391b1736e90
a63a7bf0d4606cc02bfa3845383cf95a62e37f6cc58e8e20dbca7aaacf0548f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A63A7BF0D4606CC02BFA3845383CF95A62E37F6CC58E8E20DBCA7AAACF0548F9"
Last-Modified: Thu, 08 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3762
Expires: Thu, 08 Sep 2022 19:39:37 GMT
Date: Thu, 08 Sep 2022 18:36:55 GMT
Connection: keep-alive
tagan.adlightning.com/buzzfeed/b-0514814-4fdeb6bc.js
143.204.55.90200 OK 31 kB URL HTTP/2 tagan.adlightning.com/buzzfeed/b-0514814-4fdeb6bc.js
IP 143.204.55.90:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 21979c91b79e7f88065844acf1e36beb
0d72ba5af41d46a7dded15517a1de571c6964dfe
7987d167053b3fab94b3d22e9aac6d4dedfe92faeed05774d4a3ad99093cee24
GET /buzzfeed/b-0514814-4fdeb6bc.js HTTP/1.1
Host: tagan.adlightning.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 30948
date: Thu, 01 Sep 2022 01:56:52 GMT
last-modified: Wed, 06 Jul 2022 17:18:01 GMT
etag: "21979c91b79e7f88065844acf1e36beb"
cache-control: max-age=31536000
x-amz-meta-git_commit: 0514814
content-encoding: gzip
x-amz-version-id: OcEq5O1y0Ktn0jf0iUsiAOjlS5mrqp3M
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WIu0bBpokfQHEIunQvQqtCtl3giYJoAkEIleqjAI2a0u4rMdL4TWEw==
age: 664804
X-Firefox-Spdy: h2
tagan.adlightning.com/buzzfeed/bl-6399065-336439bd.js
143.204.55.90200 OK 21 kB URL HTTP/2 tagan.adlightning.com/buzzfeed/bl-6399065-336439bd.js
IP 143.204.55.90:0
File type ASCII text, with very long lines (49837)
Hash c118848651bb9affb341e577387e6c1e
5f9d2d67a3ff19219076885da84fb77fd557390e
0f3cc95d7cf387bc0a5476a33c3e054a63f3bb242e446aa81cf5abcafaf1c595
GET /buzzfeed/bl-6399065-336439bd.js HTTP/1.1
Host: tagan.adlightning.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 20932
date: Thu, 08 Sep 2022 16:40:59 GMT
last-modified: Thu, 08 Sep 2022 16:40:33 GMT
etag: "c118848651bb9affb341e577387e6c1e"
cache-control: max-age=31536000
x-amz-meta-git_commit: 6399065
content-encoding: gzip
x-amz-version-id: 7JXJ_0pOGyXuMOOLwQdEG8c5bQXuxDCr
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3Df4WI9VQRVZoIsESDqfhl4r3GN5IsOXZeF-o4qLmumVTcVrRrbTXw==
age: 6956
X-Firefox-Spdy: h2
api.permutive.com/v2.0/geoip?include=geo&include=isp&include=ip_hash&k=406b9ad8-2772-474f-82e6-774a332d9754
34.107.254.252200 OK 164 B URL HTTP/2 api.permutive.com/v2.0/geoip?include=geo&include=isp&include=ip_hash&k=406b9ad8-2772-474f-82e6-774a332d9754
IP 34.107.254.252:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d88253921b9b2eb742954ea38077a1ca
27dff5d66cb85584c485f6bb83140e1b2e380d0e
41ef916a65c3d90a249c75cd6653b54422b455265450d7c163c6aaa82535e253
GET /v2.0/geoip?include=geo&include=isp&include=ip_hash&k=406b9ad8-2772-474f-82e6-774a332d9754 HTTP/1.1
Host: api.permutive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 18:36:55 GMT
content-type: application/json
content-encoding: gzip
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-credentials: true
vary: Origin
server: Permutive
content-length: 164
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cd.connatix.com/connatix.player.js?cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7
151.101.86.137302 Found 0 B URL HTTP/2 cd.connatix.com/connatix.player.js?cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7
IP 151.101.86.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /connatix.player.js?cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7 HTTP/1.1
Host: cd.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://cds.connatix.com/p/181200/connatix.player.dc.js?cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7
accept-ranges: bytes
access-control-max-age: 86400
date: Thu, 08 Sep 2022 18:36:55 GMT
content-length: 0
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/vendors~Bookmark~BottomToaster~Corrections~EditionsMenu~LatestInZone~LeftNavTop~MemberStatus~SeeMore~9d6aaf50.b9eda98b03358c312773.js
151.101.86.114200 OK 17 kB URL HTTP/2 cambria.assets.huffpost.com/vendors~Bookmark~BottomToaster~Corrections~EditionsMenu~LatestInZone~LeftNavTop~MemberStatus~SeeMore~9d6aaf50.b9eda98b03358c312773.js
IP 151.101.86.114:0
File type Unicode text, UTF-8 text, with very long lines (56528), with no line terminators
Hash 889b14022c2f014c55c93e5e48e45819
141466630f0dd54df7748aba3dd02dd051bc6081
7ae5485b2f0d129cba02c0f0cd3929005fe8bcaea54b88228ffdaa3848146308
GET /vendors~Bookmark~BottomToaster~Corrections~EditionsMenu~LatestInZone~LeftNavTop~MemberStatus~SeeMore~9d6aaf50.b9eda98b03358c312773.js HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 15:54:28 GMT
etag: "7b56c4e6e1770a3095beddf85cefc616"
cache-control: public, max-age=31536000, immutable
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 787282
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 83
x-timer: S1662662216.850562,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 17444
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/Bookmark~BottomToaster~Corrections~EditionsMenu~LatestInZone~LeftNavTop~MemberStatus~SeeMore~Slidesh~b7a2f17a.9f7df9a7e2e890b578d0.js
151.101.86.114200 OK 71 kB URL HTTP/2 cambria.assets.huffpost.com/Bookmark~BottomToaster~Corrections~EditionsMenu~LatestInZone~LeftNavTop~MemberStatus~SeeMore~Slidesh~b7a2f17a.9f7df9a7e2e890b578d0.js
IP 151.101.86.114:0
File type Unicode text, UTF-8 text, with very long lines (65504), with no line terminators
Hash 62231d01fc7134d12b48beed483aeecd
14d2bfffa8445bc2c7877bf48c3054afc1fa306d
cb268ba40b3b7084a33445bd5fac2df63fb1ee65abc6218102f5cbfc7d8c4493
GET /Bookmark~BottomToaster~Corrections~EditionsMenu~LatestInZone~LeftNavTop~MemberStatus~SeeMore~Slidesh~b7a2f17a.9f7df9a7e2e890b578d0.js HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 20:54:33 GMT
etag: "5d7d29e1f22a22e658611fbf42ce2a54"
cache-control: public, max-age=31536000, immutable
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 682832
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 88
x-timer: S1662662216.855447,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 71173
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/LeftNavTop.286517d03fd342b7d5da.js
151.101.86.114200 OK 5.1 kB URL HTTP/2 cambria.assets.huffpost.com/LeftNavTop.286517d03fd342b7d5da.js
IP 151.101.86.114:0
File type Unicode text, UTF-8 text, with very long lines (18232), with no line terminators
Hash 00ebd7a3295f2bc8251d1384064aaf69
9e3e2347129a737baca2be210f59ac5a665d4f78
5506f861ece3b260d7c2532f0fbf13d66c983a0fc4d2031cc4ad82aa2ae3fdb3
GET /LeftNavTop.286517d03fd342b7d5da.js HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 15:54:27 GMT
etag: "b78fddb7114249264a81e391272c5b20"
cache-control: public, max-age=31536000, immutable
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 787282
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 79
x-timer: S1662662216.857835,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 5079
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/MemberStatus.6a1ff47ab9679c358c44.js
151.101.86.114200 OK 2.2 kB URL HTTP/2 cambria.assets.huffpost.com/MemberStatus.6a1ff47ab9679c358c44.js
IP 151.101.86.114:0
File type ASCII text, with very long lines (5282), with no line terminators
Hash 4c860222a819d03c4a57b4c3f4db087a
13c3a8175496a7668f9f5ce12616d89826f621b6
172f27546516fa8d1800980e89e19ddf5f52f43c387ceaa215c3d5533a71e5ca
GET /MemberStatus.6a1ff47ab9679c358c44.js HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 15:54:27 GMT
etag: "1ffb8c831bbf85ed87fd92a2b6de28d8"
cache-control: public, max-age=31536000, immutable
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 787281
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 59
x-timer: S1662662216.861326,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 2189
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/vendors~Bookmark~BottomToaster~Corrections~FeedbackToaster~LatestInZone~OfferModule~SeeMore~Slidesho~d245dbdd.462438f558b8f8f15e8f.js
151.101.86.114200 OK 4.2 kB URL HTTP/2 cambria.assets.huffpost.com/vendors~Bookmark~BottomToaster~Corrections~FeedbackToaster~LatestInZone~OfferModule~SeeMore~Slidesho~d245dbdd.462438f558b8f8f15e8f.js
IP 151.101.86.114:0
File type ASCII text, with very long lines (11661), with no line terminators
Hash f24ff1cfebf0756b113126214148d025
003c1bf33d296fb9c63f2d169aa283be4ce745c6
54775edca0cf3899015c7c2eb419e779a3c29ede52e83a6b91ff057dd5e80cc5
GET /vendors~Bookmark~BottomToaster~Corrections~FeedbackToaster~LatestInZone~OfferModule~SeeMore~Slidesho~d245dbdd.462438f558b8f8f15e8f.js HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2022 20:07:30 GMT
etag: "05263da32d798ca41de5807266395c6d"
cache-control: public, max-age=31536000, immutable
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 1309378
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 79
x-timer: S1662662216.877251,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 4192
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/SubNav.453fb4e16285a1986550.js
151.101.86.114200 OK 30 kB URL HTTP/2 cambria.assets.huffpost.com/SubNav.453fb4e16285a1986550.js
IP 151.101.86.114:0
File type Unicode text, UTF-8 text, with very long lines (65519), with no line terminators
Hash 63cb90982d73b4b6e640edb81728e655
a1460bd9791cb5c0c2fae852100ddebc98f8eea7
7be0b61675ff2cd2d5f79e97aed26efdcac830c1799f9087c03ea7ae43aca631
GET /SubNav.453fb4e16285a1986550.js HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 17:35:17 GMT
etag: "384343718e1b83278ba7aabba6c4c063"
cache-control: public, max-age=31536000, immutable
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 694822
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 1053
x-timer: S1662662216.877433,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 30406
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/Image.577fee020b62073368da.js
151.101.86.114200 OK 5.5 kB URL HTTP/2 cambria.assets.huffpost.com/Image.577fee020b62073368da.js
IP 151.101.86.114:0
File type ASCII text, with very long lines (10147)
Hash 3592d5f1d33489f9fec837bc1f13a656
2a99bbfeb98520128b26c991ea432500708e7ce0
9bd985f7f6a9d085babeacb1ce082e9e6f9e0a2c756f03f62cc67639f163abc0
GET /Image.577fee020b62073368da.js HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 15:54:27 GMT
etag: "20948df3b9e1abc1e059efa6c40b1ba4"
cache-control: public, max-age=31536000, immutable
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 787259
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1662662216.877753,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 5531
X-Firefox-Spdy: h2
mapi.huffpost.com/mapi/v4/us/user/profile?device=desktop
151.101.86.114401 Unauthorized 54 B URL HTTP/2 mapi.huffpost.com/mapi/v4/us/user/profile?device=desktop
IP 151.101.86.114:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d4f14a081d808a67cbc5af9d344a847b
1accb957e0789cad9ff59204f85cf6e684b9fc10
6dc45a9c4c81ad430dee74fa68866deee94c25ba308c5c19412a2badbf6fd00a
GET /mapi/v4/us/user/profile?device=desktop HTTP/1.1
Host: mapi.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 401 Unauthorized
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
cache-control: no-cache, no-store, private, must-revalidate, max-age=0, max-stale=0, post-check=0, pre-check=0
etag: W/"36-Gsy5V+B4nK2f9ZIE+Fz25oS5/BA"
expires: 0
pragma: no-cache
server: nginx
x-hp-trace-project: huffpost-mobile-api/production/8af1844
x-powered-by: Express
x-request-id: 97d0644c66251d7012bee7ca7908793e
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
x-served-by: cache-bma1683-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1662662215.477346,VS0,VE413
vary: Origin
strict-transport-security: max-age=31536000
content-length: 54
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/Newsletter.a983d14f9e9a036b643b.js
151.101.86.114200 OK 6.3 kB URL HTTP/2 cambria.assets.huffpost.com/Newsletter.a983d14f9e9a036b643b.js
IP 151.101.86.114:0
File type Unicode text, UTF-8 text, with very long lines (18209), with no line terminators
Hash 04851500601b77333433c76329a417a4
0f681447c30d4317573ffb935f2d9b979f77e24b
08f0343b3a35f94ff1fbf2f33fc26e139254fbf311b7f2bd0b79529e51acfb26
GET /Newsletter.a983d14f9e9a036b643b.js HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 24 Aug 2022 15:01:26 GMT
etag: "6c2e3e98625432a571781c51ef197e46"
cache-control: public, max-age=31536000, immutable
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 1308861
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 80
x-timer: S1662662216.879033,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 6276
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/631a2d082300005b009df738.jpeg?cache=365En6fuIS&ops=352_198&format=webp
151.101.86.114200 OK 12 kB URL HTTP/2 img.huffingtonpost.com/asset/631a2d082300005b009df738.jpeg?cache=365En6fuIS&ops=352_198&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 352x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 02ea44c17e8e69f5eea5dbe851bd822d
8f7fb74a6e38949f93a36a00181f6a57ab1b3272
d8d63315942a68437b9595208b410bf9665f0bbab57dccfe5d46f82d001ac9ff
GET /asset/631a2d082300005b009df738.jpeg?cache=365En6fuIS&ops=352_198&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"2fb2-j3+3Sm44lJ+To2oAGB9qV6sbMnI"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 1096
x-served-by: cache-iad-kiad7000160-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 3
x-timer: S1662662216.010440,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 12210
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/favicon.ico
151.101.86.114200 OK 474 B URL HTTP/2 cambria.assets.huffpost.com/favicon.ico
IP 151.101.86.114:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash eb953c5bc91d5f49fa82845f585d816b
839fd34a4aa8543933ec4c2f32a980a86aed8f1f
3ebf493cd217d5cec994e2976413bc2272dd16ff52ee39faee7527009beb939f
GET /favicon.ico HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 05 Sep 2022 14:02:15 GMT
etag: "cf339f2d96daf6c7aecc6bf0eba0cdac"
cache-control: public, max-age=31536000, immutable
content-type: image/vnd.microsoft.icon
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
via: 1.1 varnish
age: 238134
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 11
x-timer: S1662662216.014552,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 474
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/617064ae200000b8458d0ba0.jpg?cache=e7qsfdChc5&ops=1280_480&format=webp
151.101.86.114200 OK 24 kB URL HTTP/2 img.huffingtonpost.com/asset/617064ae200000b8458d0ba0.jpg?cache=e7qsfdChc5&ops=1280_480&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 062c4f226759c321a64d7c52db0d5dc5
dfb433526f6f0710cf73057748f63bb3314f4f5f
8daf3c79c5e87f8554f9763c3146ed7c28e32f653f46b7737b89e5683557118b
GET /asset/617064ae200000b8458d0ba0.jpg?cache=e7qsfdChc5&ops=1280_480&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"5fba-37QzUm9vBxDPcwV3SPY7szFPT18"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 3513
x-served-by: cache-iad-kjyo7100118-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 3
x-timer: S1662662216.010472,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 24506
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/617307ff240000064b5080ea.jpeg?cache=6LKLl0l2qL&ops=352_198&format=webp
151.101.86.114200 OK 21 kB URL HTTP/2 img.huffingtonpost.com/asset/617307ff240000064b5080ea.jpeg?cache=6LKLl0l2qL&ops=352_198&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 352x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bd819cd8a12c1a2e998d56f392277c6f
187c4bff84b0f6ef9d3c4650933a3ca66689ab11
061c58d498b3b9aa847f5c8ef5bf010883ac5829e99350361ef59a5058fc32c1
GET /asset/617307ff240000064b5080ea.jpeg?cache=6LKLl0l2qL&ops=352_198&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"51ac-GHxL/4Sw9u+dPEZQkzo8pmaJqxE"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 3207
x-served-by: cache-iad-kjyo7100066-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 3
x-timer: S1662662216.010453,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 20908
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/617064ae200000b8458d0ba0.jpg?cache=e7qsfdChc5&ops=800_450&format=webp
151.101.86.114200 OK 23 kB URL HTTP/2 img.huffingtonpost.com/asset/617064ae200000b8458d0ba0.jpg?cache=e7qsfdChc5&ops=800_450&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x449, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8d9b9e8a5329a1cb7f5f726dc7018e63
94f8522a85507388384f5a4fa7e3e5d196c6e8ac
5ce4607f12157fef851dd361e53f431c22dcd36004d605094dc98014a2351370
GET /asset/617064ae200000b8458d0ba0.jpg?cache=e7qsfdChc5&ops=800_450&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"5a60-lPhSKoVQc4g4T1pPp+Pl0ZbG6Kw"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 3513
x-served-by: cache-iad-kjyo7100125-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 3
x-timer: S1662662216.010466,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 23136
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/631a15f92300005b009df711.jpeg?cache=g2FTd8k6oq&ops=352_198&format=webp
151.101.86.114200 OK 6.1 kB URL HTTP/2 img.huffingtonpost.com/asset/631a15f92300005b009df711.jpeg?cache=g2FTd8k6oq&ops=352_198&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 352x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 22f51bdc17da455e1a5caf9a7dd1c579
361e0b061b5b1d975dec95ef5dfe9a95a4505027
4d2608628e484a01901c0a72fa8e66c4219daab047fd3c8f450da9ec5e04dcb1
GET /asset/631a15f92300005b009df711.jpeg?cache=g2FTd8k6oq&ops=352_198&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"17dc-Nh4LBhtbHZdd7JXvXf6alaRQUCc"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 791
x-served-by: cache-iad-kiad7000127-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1662662216.013195,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 6108
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/6318a4fc270000610057929b.jpeg?cache=vkxJ6kx4cm&ops=352_198&format=webp
151.101.86.114200 OK 7.7 kB URL HTTP/2 img.huffingtonpost.com/asset/6318a4fc270000610057929b.jpeg?cache=vkxJ6kx4cm&ops=352_198&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 352x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 602feca98df8e78a6409b4f6bc57388d
ae3339c0eeac0a51f8fb593238e098ef6a52b6e2
f810ee2386b2a1dd691f3d2ef86b28bea18c0a9ca7325970838477ea32cd8bc1
GET /asset/6318a4fc270000610057929b.jpeg?cache=vkxJ6kx4cm&ops=352_198&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"1e10-rjM5wO6sClH4+1kyOOCY72pStuI"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 17987
x-served-by: cache-iad-kcgs7200026-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 20
x-timer: S1662662216.013212,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 7696
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/63193b1d2000007000ef0aec.jpeg?ops=352_198&format=webp
151.101.86.114200 OK 13 kB URL HTTP/2 img.huffingtonpost.com/asset/63193b1d2000007000ef0aec.jpeg?ops=352_198&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 352x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3f7107f28bcb5eba5c661a725f014f30
aff9a0f949431f5666866c90ba5ae717330021e9
03d342a9cf3184da551dad6e46a6397149891b5b5721e9e21d7830568038f1e0
GET /asset/63193b1d2000007000ef0aec.jpeg?ops=352_198&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"333c-r/mg+UlDH1ZmhmyQulrnFzMAIek"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 63524
x-served-by: cache-iad-kcgs7200097-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 2
x-timer: S1662662216.013186,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 13116
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/63194c9d2400003500102ff6.jpeg?cache=I0rcnt8DmB&ops=352_198&format=webp
151.101.86.114200 OK 2.6 kB URL HTTP/2 img.huffingtonpost.com/asset/63194c9d2400003500102ff6.jpeg?cache=I0rcnt8DmB&ops=352_198&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 352x197, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash abf773b261f7021752eb4ada961ba5b7
940c00f9d8226efa31701d9f4b20fddb37eef96e
fbfab121a1c4cbecd5c559794480e0373e37cc9bd2fa8bc42808e32ac1f38f6b
GET /asset/63194c9d2400003500102ff6.jpeg?cache=I0rcnt8DmB&ops=352_198&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"a28-lAwA+dgibvoxcB2fSyD92zfu+W4"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 50854
x-served-by: cache-iad-kiad7000097-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 3
x-timer: S1662662216.014050,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 2600
X-Firefox-Spdy: h2
cmp.quantcast.com/choice/3aud4J6uA4Z6Y/huffpost.netblogpro.com/choice.js
143.204.55.76204 No Content 0 B URL HTTP/2 cmp.quantcast.com/choice/3aud4J6uA4Z6Y/huffpost.netblogpro.com/choice.js
IP 143.204.55.76:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /choice/3aud4J6uA4Z6Y/huffpost.netblogpro.com/choice.js HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: max-age=900
date: Thu, 08 Sep 2022 18:36:26 GMT
server: AmazonS3
cross-origin-resource-policy: cross-origin
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XyR-9Biz2-UOkHdnGBQbpI4FA7HMKPVBlbX5mJ2oqzA5_XguT07Nnw==
age: 29
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/631913ee2000005b00a3a32f.jpeg?cache=xwChdMk0R9&ops=352_198&format=webp
151.101.86.114200 OK 6.4 kB URL HTTP/2 img.huffingtonpost.com/asset/631913ee2000005b00a3a32f.jpeg?cache=xwChdMk0R9&ops=352_198&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 351x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 90df6e568090459df7d349b536fad4e3
6ea1d58c872ff4e5a9418e26142564eb2191d671
cf7bc3e4020081fcf058252fc7286bc8703342e332232915bf86fb03ac3be520
GET /asset/631913ee2000005b00a3a32f.jpeg?cache=xwChdMk0R9&ops=352_198&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"18f8-bqHVjIcv9OWpQY4mFCVk6yGR1nE"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 47234
x-served-by: cache-iad-kiad7000147-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 3
x-timer: S1662662216.014045,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 6392
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/63195ea52300005f007fae83.jpeg?cache=k7CdezrxUi&ops=352_198&format=webp
151.101.86.114200 OK 13 kB URL HTTP/2 img.huffingtonpost.com/asset/63195ea52300005f007fae83.jpeg?cache=k7CdezrxUi&ops=352_198&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 352x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 607dac23088b7f7f5080027a52e0baac
2765532ac3e8e11fd9e04a5e8efc9c5d4773afeb
61c0e84c4d63249271e743186441dc524abca40f161a808bc2b9d0c3e69cba84
GET /asset/63195ea52300005f007fae83.jpeg?cache=k7CdezrxUi&ops=352_198&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"32ca-J2VTKsPo4R/Z4EpejvycXUdzr+s"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 43010
x-served-by: cache-iad-kiad7000112-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 2
x-timer: S1662662216.014065,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 13002
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/6319c9bd2000005c00a3a3a9.jpeg?cache=PxjAdAN0dy&ops=352_198&format=webp
151.101.86.114200 OK 7.3 kB URL HTTP/2 img.huffingtonpost.com/asset/6319c9bd2000005c00a3a3a9.jpeg?cache=PxjAdAN0dy&ops=352_198&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 352x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 88c289d2ab16a9191e5b7ee281d21895
33f874e62067491aeec0e3c2920bc69d2436d90c
dbd823a6de38311aaa09c36293829c5ce78991305f0e381c5ded4ea19ad3cf41
GET /asset/6319c9bd2000005c00a3a3a9.jpeg?cache=PxjAdAN0dy&ops=352_198&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"1c92-M/h05iBnSRruwOPCkgvGnSQ22Qw"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 27634
x-served-by: cache-iad-kcgs7200051-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 3
x-timer: S1662662216.014825,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 7314
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/631a03a42000005b00a3a3fc.jpeg?cache=6v66aaTlX9&ops=352_198&format=webp
151.101.86.114200 OK 6.2 kB URL HTTP/2 img.huffingtonpost.com/asset/631a03a42000005b00a3a3fc.jpeg?cache=6v66aaTlX9&ops=352_198&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 352x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7e78058e4c0c65964e7562e9b47532c4
e48f7264fe95eb2d3a964befe0498d82bffa7ada
7fa7016c4d6137123a7a5e5d318d8146e39af269109e41504723b2222a41a98f
GET /asset/631a03a42000005b00a3a3fc.jpeg?cache=6v66aaTlX9&ops=352_198&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"1834-5I9yZP6V6y06lkvv4EmNgr/6eto"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 3812
x-served-by: cache-iad-kcgs7200034-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 4
x-timer: S1662662216.014921,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 6196
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/63178b692700001e005791d5.png?cache=7BOzpxS9IS&ops=92_92&format=webp
151.101.86.114200 OK 2.5 kB URL HTTP/2 img.huffingtonpost.com/asset/63178b692700001e005791d5.png?cache=7BOzpxS9IS&ops=92_92&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 92x92, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ab86b02088ec75b40b466d4721e00df1
a246ae1f699f9fb7c089104b575d718f10d7b4e4
5bf27ceb098a534ce640335d6819a6202b177c33b777677a80c52ff9bcbe04a1
GET /asset/63178b692700001e005791d5.png?cache=7BOzpxS9IS&ops=92_92&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"9be-okauH2mfn7fAiRBLV11xjxDXtOQ"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 31858
x-served-by: cache-iad-kcgs7200157-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 18
x-timer: S1662662216.018812,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 2494
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/6319f729240000340010309e.jpeg?cache=SWHA1Txh4S&ops=352_198&format=webp
151.101.86.114200 OK 6.2 kB URL HTTP/2 img.huffingtonpost.com/asset/6319f729240000340010309e.jpeg?cache=SWHA1Txh4S&ops=352_198&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 352x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 39eb301d82fff6d25232d8cb570241a1
93307bccf070cc30ae51d0bbbe0137cc4260eead
b5d033d7b68d12a1aa6c098a70640fc8b5194f57679fb8e362cd003e4b229556
GET /asset/6319f729240000340010309e.jpeg?cache=SWHA1Txh4S&ops=352_198&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"181e-kzB7zPBwzDCuUdC7vgE3zEJg7q0"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 9541
x-served-by: cache-iad-kjyo7100081-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 12
x-timer: S1662662216.015074,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 6174
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/6319a6962600005900e4186e.jpeg?cache=MjAEZgIE6A&ops=352_198&format=webp
151.101.86.114200 OK 8.9 kB URL HTTP/2 img.huffingtonpost.com/asset/6319a6962600005900e4186e.jpeg?cache=MjAEZgIE6A&ops=352_198&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 352x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8050242c52ab6bc46350f54d03c2a301
2de5763e7b812ab210b5e84e6a0264c4eac46ad7
88ca57ec32351aeeafe58780f7b10eb8772bfdc523c66d0edcd1b388971663b0
GET /asset/6319a6962600005900e4186e.jpeg?cache=MjAEZgIE6A&ops=352_198&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"22a2-LeV2PnuBKrIQtehOagJkxOrEatc"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 35465
x-served-by: cache-iad-kjyo7100143-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662662216.014824,VS0,VE1
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 8866
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/6319e30c23000032007faee9.jpeg?cache=tRrtYtNNEB&ops=352_198&format=webp
151.101.86.114200 OK 8.6 kB URL HTTP/2 img.huffingtonpost.com/asset/6319e30c23000032007faee9.jpeg?cache=tRrtYtNNEB&ops=352_198&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 352x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b5b30dd206c7888be170c4da47f26881
72fc5db6b54e4932d5d4de4683c27bde15ac797c
67bfa6289bae8d2faa4570ea43a9096f60d7360ca1e2b633e96a45fa0b2da7f9
GET /asset/6319e30c23000032007faee9.jpeg?cache=tRrtYtNNEB&ops=352_198&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"21ae-cvxdtrVOSTLV1N5Gg8J73hWseXw"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 12257
x-served-by: cache-iad-kiad7000164-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 12
x-timer: S1662662216.018912,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 8622
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/63118d8e2000003a0030e4b1.png?cache=26X6Bo3410&ops=352_198&format=webp
151.101.86.114200 OK 5.5 kB URL HTTP/2 img.huffingtonpost.com/asset/63118d8e2000003a0030e4b1.png?cache=26X6Bo3410&ops=352_198&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 352x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d65994b0d98b3215b02ebe98d22ef650
a97bc20b9750ed18fffbba68d4f79734808a90c4
6fe0dc4b761856e77c3850bcedbdf4077534012d56bfd900a348889e4d3bbcdb
GET /asset/63118d8e2000003a0030e4b1.png?cache=26X6Bo3410&ops=352_198&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"1574-qXvCC5dQ7Rj/+7po1PeXNICKkMQ"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 19495
x-served-by: cache-iad-kiad7000173-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 17
x-timer: S1662662216.022428,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 5492
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/6318ff9e1f000019009596fc.png?cache=WwPbdCG8jJ&ops=352_198&format=webp
151.101.86.114200 OK 15 kB URL HTTP/2 img.huffingtonpost.com/asset/6318ff9e1f000019009596fc.png?cache=WwPbdCG8jJ&ops=352_198&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 352x197, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f59d879a45f7ecd449d4cd1458416118
2bdc2ffa7c1463d1feb1ca3cdd842d00095028dc
405fdb351aa43b1b4bb51455c8e0bd97be80809978dca9cb56b290dbaf8cf9d9
GET /asset/6318ff9e1f000019009596fc.png?cache=WwPbdCG8jJ&ops=352_198&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"3910-K9wv+nwUY9H+sco83YQtAAlQKNw"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 50856
x-served-by: cache-iad-kiad7000095-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1662662216.022320,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 14608
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/6319c1a12600001a00e41879.jpg?cache=DLGGHbTXBR&ops=352_198&format=webp
151.101.86.114200 OK 7.4 kB URL HTTP/2 img.huffingtonpost.com/asset/6319c1a12600001a00e41879.jpg?cache=DLGGHbTXBR&ops=352_198&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 352x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7348c8f73cf51f5195b37bf443e4aede
6dd61f13e4f559c22aa9144ced510b2cc501014d
6518da687de35114fb30afb22c9ad7e074fbd70f2989affbc9426a62220a5453
GET /asset/6319c1a12600001a00e41879.jpg?cache=DLGGHbTXBR&ops=352_198&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"1cce-bdYfE+T1WcIqqRRM7VELLMUBAU0"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 21000
x-served-by: cache-iad-kjyo7100105-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 17
x-timer: S1662662216.027822,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 7374
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/6319ef312400001f0010308b.png?ops=92_92&format=webp
151.101.86.114200 OK 1.1 kB URL HTTP/2 img.huffingtonpost.com/asset/6319ef312400001f0010308b.png?ops=92_92&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 92x92, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 63ad731bd94eb704e83cac4e785ff06c
8c4d45a8685dd418b9a7f22c12556c8e2a4c991a
84781a59931188bc0e84c3dd308e0b53cdc52e63d22d68a5fff19130175a29ff
GET /asset/6319ef312400001f0010308b.png?ops=92_92&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"470-jE1FqGhd1Bi5p/IsElVsjipMmRo"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 14976
x-served-by: cache-iad-kiad7000112-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 11
x-timer: S1662662216.037043,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 1136
X-Firefox-Spdy: h2
img.huffingtonpost.com/asset/6317ad512300001c00672794.png?cache=lYthzYggj5&ops=92_92&format=webp
151.101.86.114200 OK 1.9 kB URL HTTP/2 img.huffingtonpost.com/asset/6317ad512300001c00672794.png?cache=lYthzYggj5&ops=92_92&format=webp
IP 151.101.86.114:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 92x92, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2550f0ead60c2e24b57db65ec64df769
62ffaee45e91e65055cb68bd9ecd2b9ca53e96ab
6beae577031443379220629c32722f940a470932b3529f61c292757781a5ec6c
GET /asset/6317ad512300001c00672794.png?cache=lYthzYggj5&ops=92_92&format=webp HTTP/1.1
Host: img.huffingtonpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
etag: W/"786-Yv+u5F6R5lBVy2i9ns0rnKU+lqs"
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
via: 1.1 varnish, 1.1 varnish
access-control-allow-methods: GET
access-control-allow-origin: *
referrer-policy: no-referrer-when-downgrade
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 31838
x-served-by: cache-iad-kjyo7100173-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 16
x-timer: S1662662216.037132,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
cache-control: public,max-age=86400
content-length: 1926
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Thu, 08 Sep 2022 16:41:12 GMT
expires: Thu, 08 Sep 2022 18:41:12 GMT
cache-control: public, max-age=7200
age: 6944
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f1e86d2ddbc9e712bef1dad1b5166687
a7708dcb8822d53706beb0c6a5feb021eab57d9d
946849b7035bc3e384c8323c7bbb73ecf182baf5d9b3214ebc78359a6957f3ad
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6321
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:56 GMT
Last-Modified: Thu, 08 Sep 2022 16:51:35 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b76ec7f76604b32002453fc9a9537862
10ef4ef51805b1861f66365b9acde7e25519ac01
d8e0d78a5e0e45d7d4798634497d2ff6e3989905e983ca51e152126f9eeea542
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2367
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:56 GMT
Last-Modified: Thu, 08 Sep 2022 17:57:29 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 8e7e24fb3539746aa8b869558f589615
d8086d86bbd5cfacc3b6a5ef14aa917830e137dd
7304497ee417a664bdea67d7307ca36a36013556b927c3ea5bca6c04b66236ef
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: GwdF4ajYaFdx1stBw0PnLs/QMGf2hMnam8tEvPpK3qtbJ8d8vvHyv0eoWfPhw0pP3Yxu1bVXE7dpZSEJb4sGpg==
content-length: 26737
x-fb-trip-id: 1904183273
date: Thu, 08 Sep 2022 18:36:56 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cds.connatix.com/p/181200/connatix.player.dc.js?cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7
151.101.86.137200 OK 222 kB URL HTTP/2 cds.connatix.com/p/181200/connatix.player.dc.js?cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7
IP 151.101.86.137:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 222 kB (222429 bytes)
Hash aac9a7531c48d73f36aced589192759a
91a760be88e1ae0b2c202a36a145a7f56e0206a3
5a3a1674f188d604b8366bc9bfca2d83039f381d3b752045014ff30589ecfa00
GET /p/181200/connatix.player.dc.js?cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7 HTTP/1.1
Host: cds.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 13:10:30 GMT
etag: "399e91d703b3f2320d17d831ef5ed937"
content-type: application/javascript
content-encoding: br
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 18251
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 222429
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f1e86d2ddbc9e712bef1dad1b5166687
a7708dcb8822d53706beb0c6a5feb021eab57d9d
946849b7035bc3e384c8323c7bbb73ecf182baf5d9b3214ebc78359a6957f3ad
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6321
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:56 GMT
Last-Modified: Thu, 08 Sep 2022 16:51:35 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 7df72962404c32f1a989aa5afd29d553
215f24cac032da89e6a7e92d571319e1893904ad
d186e6f723e7e9ac5c45acdb191327834d68e6df93f3f221a2ad21a1d41c2681
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 08 Sep 2022 18:36:56 GMT
Last-Modified: Thu, 08 Sep 2022 16:52:24 GMT
Server: ECS (nyb/1D31)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cKOW9fHNkYGGMVa0Iw6anQRcn3KLGKmnLPPJu6unjeoorSiIUlzLJg==
Age: 6272
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 7df72962404c32f1a989aa5afd29d553
215f24cac032da89e6a7e92d571319e1893904ad
d186e6f723e7e9ac5c45acdb191327834d68e6df93f3f221a2ad21a1d41c2681
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 08 Sep 2022 18:36:56 GMT
Last-Modified: Thu, 08 Sep 2022 17:45:01 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ebnxGqGvLOD4cjJv04tyFrZVCUzyyj0Nl3A3JGZw8hIZXtDZ4iuWEA==
Age: 3115
api.sail-personalize.com/v1/personalize/simple?pageviews=1&isMobile=0
75.2.40.13200 OK 18 B URL HTTP/2 api.sail-personalize.com/v1/personalize/simple?pageviews=1&isMobile=0
IP 75.2.40.13:0
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /v1/personalize/simple?pageviews=1&isMobile=0 HTTP/1.1
Host: api.sail-personalize.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,content-type,x-lib-version,x-referring-url
Referer: https://huffpost.netblogpro.com/
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 18:36:56 GMT
content-type: text/plain
content-length: 18
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-credentials: true
access-control-max-age: 1800
access-control-allow-methods: OPTIONS,GET,POST,PUT,DELETE
access-control-allow-headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Lib-Version,X-Referring-URL
allow: HEAD,GET,OPTIONS
X-Firefox-Spdy: h2
api.sail-personalize.com/v1/personalize/simple?pageviews=1&isMobile=0
75.2.40.13200 OK 173 B URL HTTP/2 api.sail-personalize.com/v1/personalize/simple?pageviews=1&isMobile=0
IP 75.2.40.13:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8a07cef41030d85d5a5386beccccaee0
d79639c5768f53616d16ef64d00973aeae7fa393
82176ddbaa4c70e384f83575f5defe10b55b857f3d9bad5f295b61e2bf38c1c8
GET /v1/personalize/simple?pageviews=1&isMobile=0 HTTP/1.1
Host: api.sail-personalize.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
authorization: Bearer ef61ea729b0d2b3168a9ca339d950d91
content-type: application/json
x-lib-version: v1.0.1
x-referring-url: https://huffpost.netblogpro.com/
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 18:36:56 GMT
content-type: application/json
content-length: 173
access-control-allow-origin: *
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-store
expires: -1
allowedheaders: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin
allowedorigins: *
allowedmethods: GET,OPTIONS
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
upgulpinon.com/42/38?z=5294774
139.45.197.242200 OK 0 B URL HTTP/2 upgulpinon.com/42/38?z=5294774
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /42/38?z=5294774 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Cookie: scm=1; OAID=6c2915545e614d35b9616ed95c926758; oaidts=1662662215
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:56 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: c5cc6d0ceee0ed1d23c3e74bf695248f
access-control-expose-headers: X-Sc
set-cookie: OAID=6c2915545e614d35b9616ed95c926758; expires=Fri, 08 Sep 2023 18:36:56 GMT; secure; SameSite=None
oaidts=1662662215; expires=Fri, 08 Sep 2023 18:36:56 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6945
Expires: Thu, 08 Sep 2022 20:32:41 GMT
Date: Thu, 08 Sep 2022 18:36:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6945
Expires: Thu, 08 Sep 2022 20:32:41 GMT
Date: Thu, 08 Sep 2022 18:36:56 GMT
Connection: keep-alive
abeagle-public.buzzfeed.com/v3/experiment_variants?user_id=1258fd5f-465e-4661-9b96-ce68d81fba51&source=huffpost_web&experiment_names=hp_top_ad_recirc_test%3Bhp_back_to_home_test
151.101.86.114200 OK 373 B URL HTTP/2 abeagle-public.buzzfeed.com/v3/experiment_variants?user_id=1258fd5f-465e-4661-9b96-ce68d81fba51&source=huffpost_web&experiment_names=hp_top_ad_recirc_test%3Bhp_back_to_home_test
IP 151.101.86.114:0
File type JSON data\012- , ASCII text, with very long lines (373), with no line terminators
Hash 15d63087a4768830515c2fa4d6df18b4
66f99f89b0aa6e04899640e62f5e1ac97fc51c78
feb65fd0f6f6689d196716410cf6b02909972480e65c5e1b74557c1fcb1562e7
GET /v3/experiment_variants?user_id=1258fd5f-465e-4661-9b96-ce68d81fba51&source=huffpost_web&experiment_names=hp_top_ad_recirc_test%3Bhp_back_to_home_test HTTP/1.1
Host: abeagle-public.buzzfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
cache-control: no-store
etag: "66f99f89b0aa6e04899640e62f5e1ac97fc51c78"
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1670-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1662662216.103645,VS0,VE371
vary: Accept-Encoding
set-cookie: bf-geo-country=NO; expires=Fri, 09 Sep 2022 18:36:56 GMT; path=/; domain=abeagle-public.buzzfeed.com;
bf-geo-region=03; expires=Fri, 09 Sep 2022 18:36:56 GMT; path=/; domain=abeagle-public.buzzfeed.com;
content-length: 373
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6945
Expires: Thu, 08 Sep 2022 20:32:41 GMT
Date: Thu, 08 Sep 2022 18:36:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6f73ee4e91b38eaa36cadd4c437785f8
6ceea057f5ae50b9cef505da0a358e3d3b7d6a38
778d28e14b28c154843403470136d0efdcdd5e93e4b5aab784c12d4344e7af6f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11365
x-amzn-requestid: d50039cd-381c-4221-997e-9231d40ecfbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9V0EHEoAMFeag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f58-11cab61904bd14462cd13d0d;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Qhobt81rs5gqg8hcr1Su3J3MNFt4_gR2hLHkIl5xDDS1HF9g_3ecCg==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:40:35 GMT
age: 71781
etag: "6ceea057f5ae50b9cef505da0a358e3d3b7d6a38"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f922505178de0cea92eedcfda85a9f67
50f1459de01174e594e03e7df4dfaa8eb1798672
981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 05:29:44 GMT
age: 47232
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a07d553b6441514870ed7e9e989a29a7
98c145b9326d1e6036fa9089d87a25232dd45b0b
373a586b596016baeb8de98022207c25af24c099c06077edbdfd837cffc31a0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7492
x-amzn-requestid: 2c5e9ff3-c7a4-4a8f-96bf-74f0ca5d9137
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9dOHguIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f87-70dbe6532b1a241e6dbe729e;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lbCmv9fV9iBGOQvxRzleYwC5dBYeu1kRgSSkC2hycDmavyXj-KlFSw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:24:59 GMT
age: 72717
etag: "98c145b9326d1e6036fa9089d87a25232dd45b0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ca5b5d4ac26d97b5729a30ecdc688bc
3e633bc6c4ab9adfe84899e5209d73bef1d097eb
2c8275d1819d933f86df9685b76aea030842ba5a341c59ea88ffd2da99a5a3d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7885
x-amzn-requestid: 305dc6b7-eb3d-40ad-af89-8b60be935637
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9ThE3DIAMFRtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-7c0b58644e26de7f27c5b388;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: MG4_YJuVqfSCQ80FTdo5XU8xIi74XtILVbIQAbByh54QNOoMJCyS-Q==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5abfab33f248090bb0f31ca137ce9464.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:47:05 GMT
age: 74991
etag: "3e633bc6c4ab9adfe84899e5209d73bef1d097eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cds.connatix.com/p/181200/player.css
151.101.86.137200 OK 9.2 kB URL HTTP/2 cds.connatix.com/p/181200/player.css
IP 151.101.86.137:0
File type ASCII text, with very long lines (60392), with no line terminators
Hash c79d7f176c354a89cd188009b5cda12f
922d64e1f50fa21eb1d2745690672f5e7e4131ad
3f5c156577a50a7a17120813b96bcda7fe75806077a954838d335bf4be8515ec
GET /p/181200/player.css HTTP/1.1
Host: cds.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 13:10:31 GMT
etag: "bcc7f528e6427f57b0780f5489d83b4d"
content-type: text/css
content-encoding: br
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
age: 18273
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 9151
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ba17b3c-58f5-4458-8dc2-8e4a7cf8d782.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ba17b3c-58f5-4458-8dc2-8e4a7cf8d782.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1cd778a615e9a4ca3a25119790398434
d6daca74fc85d39274b3c7536f34528bef93ae97
e6b5a7a525e314e09c30985b22da7c34806df09cbe98ad52b00dcbf93a0dc054
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ba17b3c-58f5-4458-8dc2-8e4a7cf8d782.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7251
x-amzn-requestid: 26b2021a-4440-47ce-8dba-d971cae60cc1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9bmHcmoAMF3Fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f7d-5471edce7de2374c3b8af888;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: d3MrDEyDFDylQKyfxONQ12_7IBvRAg8o0rSZ64WNRGNvDHqQyDmqJA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:17:17 GMT
age: 73179
etag: "d6daca74fc85d39274b3c7536f34528bef93ae97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faea8d298-d4be-46a2-9c14-670bdae204cd.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faea8d298-d4be-46a2-9c14-670bdae204cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 675756a44be6f9bbe341fa4c866c941b
6502050805e53baeb44d82e55d4b15b82e34d2eb
cd1d16b5feefddfd89ac4bfcff21e80c49f07b0428aa57e8de365974f813e755
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faea8d298-d4be-46a2-9c14-670bdae204cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8820
x-amzn-requestid: e2c909d0-f781-48e6-805e-a43940e67c4c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG_LpG1OIAMF_8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319124a-37f3458a2905bd947cf01f93;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:51:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BEn2J8F8SsnyrLeWv5W6QDPn21ZjNXH3I0B2kUJYpgdMVp-88pb5rw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:17:34 GMT
age: 73162
etag: "6502050805e53baeb44d82e55d4b15b82e34d2eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/impl.20220907-42-RELEASE.js
151.101.85.44200 OK 144 kB URL HTTP/2 cdn.taboola.com/libtrc/impl.20220907-42-RELEASE.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (65508)
Size 144 kB (144485 bytes)
Hash a50cd3f5fac095ff0e6db1b0edfe7e79
9ecaf6de99f7960820d4a52993ceec5b1a97161d
175c3478099af67d5c64ba6678a13f1614a6d8511bb6e68a5de8d18e25dd01c4
GET /libtrc/impl.20220907-42-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: Mrdt6fs1yFYUWgg0MW5XVHoTpZvL8f6wYJy9xEqllW/xA7qcdLZHpNsoq8cB6QD2Ph5X99aOB0Q=
x-amz-request-id: VRYW72GBT2N45VX6
last-modified: Thu, 08 Sep 2022 10:17:54 GMT
etag: "a50cd3f5fac095ff0e6db1b0edfe7e79"
content-encoding: br
x-amz-version-id: dUk5nsWgkFTGiiv5ogNfl3Qw977bMe8h
content-type: application/javascript
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
via: 1.1 varnish
age: 1122
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 948
x-timer: S1662662217.516161,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 90
server: AmazonS3-br
content-length: 144485
X-Firefox-Spdy: h2
jouteetu.net/custom
139.45.197.251200 OK 0 B IP 139.45.197.251:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://huffpost.netblogpro.com/
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:56 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
jouteetu.net/custom
139.45.197.251200 OK 39 B IP 139.45.197.251:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://huffpost.netblogpro.com
Content-Length: 379
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:56 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 14cd5d14629cc841a973d87b10426ab2
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
capi.connatix.com/tr/si?token=08c32caf-3de9-4dec-b089-28af763b377b&cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7
151.101.86.137200 OK 0 B URL HTTP/2 capi.connatix.com/tr/si?token=08c32caf-3de9-4dec-b089-28af763b377b&cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7
IP 151.101.86.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/si?token=08c32caf-3de9-4dec-b089-28af763b377b&cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7 HTTP/1.1
Host: capi.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
content-type: application/json
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:56 GMT
access-control-max-age: 86400
content-length: 0
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 5b36f6508bf779a395d4b559b41d267d
a653f55ef7e337bd259cd76d14fe2adc91c11603
91e3696c53649e8d76b738dca29ed03b8b935f9fc230c735d2fd729428742605
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 18:36:56 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 18:25:21 GMT
Expires: Thu, 15 Sep 2022 18:25:20 GMT
Etag: "a653f55ef7e337bd259cd76d14fe2adc91c11603"
Cache-Control: max-age=603503,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7479cae7a8c8b52d-OSL
rules.quantcount.com/rules-p-3aud4J6uA4Z6Y.js
54.230.111.33200 OK 2.2 kB URL HTTP/2 rules.quantcount.com/rules-p-3aud4J6uA4Z6Y.js
IP 54.230.111.33:0
Hash ec03289c4d23cdba03cdcaf38d71dd0b
e7cd3cf402831c2dae2b793af8bf2609c603abf9
2ca582c40a91374df1f4eff68ef90f2b94e47f8d93a8ff63d3587404665ead0d
GET /rules-p-3aud4J6uA4Z6Y.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 17 Nov 2021 20:52:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
date: Thu, 08 Sep 2022 18:32:18 GMT
cache-control: max-age=3600
etag: W/"54c17dc48c3834d548677108ac4d7613"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: V5Utkqr_hJgnDTsqTaU5Sp7xerUiXZrtuL6YjY64VkHy_1b94mAFXg==
age: 279
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?pub=0&userId=068c4116b32a4e4ba335f255c0b477bb&zoneId=5294809&checkDuplicate=true&ymid=&var=
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?pub=0&userId=068c4116b32a4e4ba335f255c0b477bb&zoneId=5294809&checkDuplicate=true&ymid=&var=
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash a30c28904a090881bf29ef268fd27860
e46570bd29e432757d74e3faf15c2a90f48e94e1
419117bb528503c343a19c7c23fd42eb828e758a14a46302c90aa4cfcae5b3a3
GET /gid.js?pub=0&userId=068c4116b32a4e4ba335f255c0b477bb&zoneId=5294809&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:57 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=068c4116b32a4e4ba335f255c0b477bb; expires=Fri, 08 Sep 2023 18:36:57 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
capi.connatix.com/core/pls?v=181200&cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7
151.101.86.137200 OK 10 kB URL HTTP/2 capi.connatix.com/core/pls?v=181200&cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7
IP 151.101.86.137:0
Hash 7b6bb4f5d756e3b1d4ab72b80a277410
337ba2de3a82469c9dfac5f7980d53c1f262a222
662408df44463b7168165a7bfaac42e82eb81ee70d29829e8794806bd0b4b6c2
POST /core/pls?v=181200&cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7 HTTP/1.1
Host: capi.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 212
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://huffpost.netblogpro.com
content-encoding: gzip
content-type: application/x-protobuf
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
vary: Accept-Encoding
access-control-max-age: 86400
content-length: 10018
X-Firefox-Spdy: h2
my.rtmark.net/gid.js
139.45.195.8200 OK 65 B IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 5dacae4209d5f2b64d6a8d9babf15fb9
c7f3a4196566cac31550f5a1abbf90915b43bddb
58dfd0bb1b06829b6bb82678ed5d0ad90d208b76678dc71fb6e3ae6e62ffe668
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:57 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=54bc54376ee04119a9c2d1e10e7c8c68; expires=Fri, 08 Sep 2023 18:36:57 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1621685564716533&ev=PageView&dl=https%3A%2F%2Fhuffpost.netblogpro.com%2F&rl=&if=false&ts=1662662208885&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662662208884.1903759632&it=1662662208349&coo=false&rqm=GET
31.13.72.36200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=1621685564716533&ev=PageView&dl=https%3A%2F%2Fhuffpost.netblogpro.com%2F&rl=&if=false&ts=1662662208885&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662662208884.1903759632&it=1662662208349&coo=false&rqm=GET
IP 31.13.72.36:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=1621685564716533&ev=PageView&dl=https%3A%2F%2Fhuffpost.netblogpro.com%2F&rl=&if=false&ts=1662662208885&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1662662208884.1903759632&it=1662662208349&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Thu, 08 Sep 2022 18:36:57 GMT
expires: Thu, 08 Sep 2022 18:36:57 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 745359d372160932e8030c0199354252
1590e053a17d05095a48538fc08ff06245bac4d6
e7f798120d5e587145e512941e7c090ec2720d30d216e241f5b6f96d5b2d1241
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-1740781-82&cid=854023937.1662662208&jid=1203195431&gjid=1192367168&_gid=53761157.1662662208&_u=4GDAAUABAAAAAC~&z=1814036139
142.251.1.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-1740781-82&cid=854023937.1662662208&jid=1203195431&gjid=1192367168&_gid=53761157.1662662208&_u=4GDAAUABAAAAAC~&z=1814036139
IP 142.251.1.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-1740781-82&cid=854023937.1662662208&jid=1203195431&gjid=1192367168&_gid=53761157.1662662208&_u=4GDAAUABAAAAAC~&z=1814036139 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://huffpost.netblogpro.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 08 Sep 2022 18:36:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 62078b002e707d2d2da5c7ccafdbf9f4
b4f5e3dfd567f074cefc354d6fdd4fa61efb015f
def6dfb0bcb639baef7c0d8fbfce5ca734e2b9bb7aab129f7118ccbf3ce67214
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 08 Sep 2022 18:36:57 GMT
Last-Modified: Thu, 08 Sep 2022 18:17:42 GMT
Server: ECS (nyb/1D34)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OE-lT9LvUcNhrkkAph_7yxr6grURshe28jVnXQWbF3ByLl5x5LsvEQ==
Age: 1155
ins.connatix.com/d7156176-3842-467e-9854-a21a7a7db591/4/insights.bin
151.101.86.137200 OK 185 B URL HTTP/2 ins.connatix.com/d7156176-3842-467e-9854-a21a7a7db591/4/insights.bin
IP 151.101.86.137:0
Hash 96c165a406cdd4be483c2cdc93192afb
d972645b9c4abb603983ae5768c8b2cafc4bb309
4b5ed2cb2aa5211a2d7d3a5a0a542efd0e8fd067cb7e0f0bec4e45bc2b386420
GET /d7156176-3842-467e-9854-a21a7a7db591/4/insights.bin HTTP/1.1
Host: ins.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 17:48:02 GMT
etag: "260be43b905db9c5a04a3ee653c0b75d"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 2803
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 185
X-Firefox-Spdy: h2
ins.connatix.com/b59149a3-f6cb-4cc3-8bce-e37931f59fbf/5/insights.bin
151.101.86.137200 OK 79 B URL HTTP/2 ins.connatix.com/b59149a3-f6cb-4cc3-8bce-e37931f59fbf/5/insights.bin
IP 151.101.86.137:0
Hash 7aa60262738bd7dac5bcf5ac21fa322e
caf43908062721efc0667c28db7eb2728fddb7ee
bec674f73c77962504a71835940479e277563117f4ae18e6dd781795dc0b77ad
GET /b59149a3-f6cb-4cc3-8bce-e37931f59fbf/5/insights.bin HTTP/1.1
Host: ins.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 14:22:05 GMT
etag: "464d29cb501cc86191332596ebf2a709"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 101426
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 79
X-Firefox-Spdy: h2
ins.connatix.com/fd27348f-679f-41c7-83d3-7bb671a597b4/3/insights.bin
151.101.86.137200 OK 148 B URL HTTP/2 ins.connatix.com/fd27348f-679f-41c7-83d3-7bb671a597b4/3/insights.bin
IP 151.101.86.137:0
Hash ce5708c8bd167eb06069debbcfa65990
968760f775555743f1ef25767c2613acdd1c4f93
a43d625f9f296b800be0ae440b0bcbe7b6a281f1ccb41e539d4e3eb6b8616574
GET /fd27348f-679f-41c7-83d3-7bb671a597b4/3/insights.bin HTTP/1.1
Host: ins.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 17:56:18 GMT
etag: "c35d3b86e0894a8b4d15646a160b7299"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 86232
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 148
X-Firefox-Spdy: h2
ins.connatix.com/406eaf40-361c-4d5c-ba87-01442ecb60cc/3/insights.bin
151.101.86.137200 OK 149 B URL HTTP/2 ins.connatix.com/406eaf40-361c-4d5c-ba87-01442ecb60cc/3/insights.bin
IP 151.101.86.137:0
Hash 9e962a9245665876165e48927d4374df
10315f0b416d6a1a093219f1df22353acefca3db
71ea47fa792da3464e3171b69ed3285368b1c3a12422fa7d9dbce36e50f5d9ec
GET /406eaf40-361c-4d5c-ba87-01442ecb60cc/3/insights.bin HTTP/1.1
Host: ins.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 06 Sep 2022 18:22:59 GMT
etag: "d0d6983ee208b5f375546c7196fac9f1"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 171064
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 149
X-Firefox-Spdy: h2
ins.connatix.com/a20be76b-38a0-48fc-8662-059db307ba1d/5/insights.bin
151.101.86.137200 OK 140 B URL HTTP/2 ins.connatix.com/a20be76b-38a0-48fc-8662-059db307ba1d/5/insights.bin
IP 151.101.86.137:0
Hash bfdec14e0f36c4d7d0ace7caba365eae
b381140e103c159768dbf2e5c942ff4a94a17d25
72dc1a4edb15667ddd1c8af7ab395448bfc3e1c1cd0440f9f6765060f4d9f911
GET /a20be76b-38a0-48fc-8662-059db307ba1d/5/insights.bin HTTP/1.1
Host: ins.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 06 Sep 2022 13:55:56 GMT
etag: "9333799a157590eb7a63130030a20a59"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 189020
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 140
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 745359d372160932e8030c0199354252
1590e053a17d05095a48538fc08ff06245bac4d6
e7f798120d5e587145e512941e7c090ec2720d30d216e241f5b6f96d5b2d1241
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/d7156176-3842-467e-9854-a21a7a7db591/4_media.bin
151.101.86.137200 OK 473 B URL HTTP/2 vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/d7156176-3842-467e-9854-a21a7a7db591/4_media.bin
IP 151.101.86.137:0
Hash db413c71e20df307719b639603aecc17
31f38ae8d6fca8847ba234a2667af8a164f34a11
1c07bb7d8c284d1721605201314482b4a6def82326e7ce3a694cd2ce7f83cbdc
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/d7156176-3842-467e-9854-a21a7a7db591/4_media.bin HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 17:48:01 GMT
etag: "bd48cf0281f5f6caf04d3c1d5aa6207d"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 2803
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 473
X-Firefox-Spdy: h2
ins.connatix.com/ba9b9027-0050-461c-8b3c-f6a2a5f13c9d/5/insights.bin
151.101.86.137200 OK 161 B URL HTTP/2 ins.connatix.com/ba9b9027-0050-461c-8b3c-f6a2a5f13c9d/5/insights.bin
IP 151.101.86.137:0
Hash 144178c8ad66c14f1ee30487c19cd829
eb588d6fe331bb45026b52a9842ab8ba54988933
24ba2c24eff239455a12a3cf1caee4a0102e56aa859340c4520c18a33c92fd34
GET /ba9b9027-0050-461c-8b3c-f6a2a5f13c9d/5/insights.bin HTTP/1.1
Host: ins.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 21:13:47 GMT
etag: "5695a4a124c60daa367cd0d675796ed8"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 70322
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 161
X-Firefox-Spdy: h2
ins.connatix.com/f73fbb81-ad57-4f62-87a9-1994c50c4b05/5/insights.bin
151.101.86.137200 OK 172 B URL HTTP/2 ins.connatix.com/f73fbb81-ad57-4f62-87a9-1994c50c4b05/5/insights.bin
IP 151.101.86.137:0
Hash f4d4b1623eaef9958db9bd53634d5c36
1becd750700dd582624bd234e4b9330aa0633f38
b29944922ab96ed512502ba79686365aa08001d8ebf8894df65986c2a98f23f2
GET /f73fbb81-ad57-4f62-87a9-1994c50c4b05/5/insights.bin HTTP/1.1
Host: ins.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 17:49:42 GMT
etag: "0883ac48c545ea3673b41db7f398ed75"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 1709
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 172
X-Firefox-Spdy: h2
ins.connatix.com/c913c2fa-1404-42de-9a91-7ad7242cf59a/3/insights.bin
151.101.86.137200 OK 154 B URL HTTP/2 ins.connatix.com/c913c2fa-1404-42de-9a91-7ad7242cf59a/3/insights.bin
IP 151.101.86.137:0
Hash b121b4de41e10e121ecde2f0c6b860b3
5b017fb9e5c504cdae10db30a9bbb853e0c09801
fbcf8e5d2103406305441ea66aa24eddba11709814f9ba995dc0272697d8c3ea
GET /c913c2fa-1404-42de-9a91-7ad7242cf59a/3/insights.bin HTTP/1.1
Host: ins.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 14:28:13 GMT
etag: "b5dbb190ca7085c7d36dc0edc05d081f"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 14346
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 154
X-Firefox-Spdy: h2
ins.connatix.com/f71c317c-b495-42f3-9551-326b9a5c6b4c/7/insights.bin
151.101.86.137200 OK 63 B URL HTTP/2 ins.connatix.com/f71c317c-b495-42f3-9551-326b9a5c6b4c/7/insights.bin
IP 151.101.86.137:0
Hash ed8ee030f0158f4ed2a97fe6ded789cc
daa1bcaaab8c8bd4e85bbf31f8f20d5768b491cb
d1518db2ef7373a17735f32ae4aa7b462f47f22a014ed2cb655542d5eac061f7
GET /f71c317c-b495-42f3-9551-326b9a5c6b4c/7/insights.bin HTTP/1.1
Host: ins.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 18:33:01 GMT
etag: "bcba6e6437b128d91f7156752d722804"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 86232
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 63
X-Firefox-Spdy: h2
ins.connatix.com/7d489bef-0099-43b7-8478-4ea38d138685/5/insights.bin
151.101.86.137200 OK 75 B URL HTTP/2 ins.connatix.com/7d489bef-0099-43b7-8478-4ea38d138685/5/insights.bin
IP 151.101.86.137:0
Hash 17f400781874bcfca6309d21d2b49856
7031a6c07108d3cf70f9f5daa2de80b6680618d5
16dae0685636e0a64549b55e3481a10a5317ba813bdd4e0ec10d0755fcee568c
GET /7d489bef-0099-43b7-8478-4ea38d138685/5/insights.bin HTTP/1.1
Host: ins.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 16:46:53 GMT
etag: "9d47b9b24bb7e6ff2542902802fe9117"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 92563
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 75
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.66200 OK 29 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.66:0
File type ASCII text, with very long lines (44969)
Hash 71437559f52d38f8ab53ded59a338e4b
ed8dcf6b40fd69f387bc3049a0a8e4b68d70d720
79f656b7d467ae8ca58af276b11ca9d331083a5f7563bfde14a3499a1874e002
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 28627
date: Thu, 08 Sep 2022 18:36:57 GMT
expires: Thu, 08 Sep 2022 18:36:57 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1327 / 532 of 1000 / last-modified: 1662635110"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.138200 OK 128 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (2831)
Size 128 kB (128333 bytes)
Hash 6f08e6f2dfa5ffa8f30373e23ee7c916
70eb7bd9756bc9845a9b5175a2ad4ef6e5b4ee7c
6491fde9374b5e34845ac867cbf48dc528de67e9e01ffe0f0308fe7294e466f1
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 128333
date: Thu, 08 Sep 2022 18:36:57 GMT
expires: Thu, 08 Sep 2022 18:36:57 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pixiedust.buzzfeed.com/events
54.205.244.238200 OK 11 B URL HTTP/1.1 pixiedust.buzzfeed.com/events
IP 54.205.244.238:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0b1bb11707b69a6e080badb38164a7e9
a80f7bc8179cd6bacec9fd9e56c61d5b014f3aca
6aea6dfe6561984cdc5c54ead84d47d2cf29e48253ae282aef237404adad4661
POST /events HTTP/1.1
Host: pixiedust.buzzfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 597
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Date: Thu, 08 Sep 2022 18:36:57 GMT
Server: nginx
Content-Length: 11
Connection: keep-alive
vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/ba9b9027-0050-461c-8b3c-f6a2a5f13c9d/5_media.bin
151.101.86.137200 OK 433 B URL HTTP/2 vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/ba9b9027-0050-461c-8b3c-f6a2a5f13c9d/5_media.bin
IP 151.101.86.137:0
Hash 6de45fdc467b2b79d5a4273b36350519
240df8bddccf0b42ba0965a663b604bbc538cef3
f417df392f7dffcf828240b92466f0ae378fa74de128aeb1272fcca78008558b
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/ba9b9027-0050-461c-8b3c-f6a2a5f13c9d/5_media.bin HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 21:13:46 GMT
etag: "fb024d7404c929ce469d32a873a88e58"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 70026
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 433
X-Firefox-Spdy: h2
vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/f73fbb81-ad57-4f62-87a9-1994c50c4b05/5_media.bin
151.101.86.137200 OK 475 B URL HTTP/2 vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/f73fbb81-ad57-4f62-87a9-1994c50c4b05/5_media.bin
IP 151.101.86.137:0
Hash 71e0119285aeaa31ac0dcd19d6ced5d5
ddd4bdf888d873c88633940ba195e0b99b540f1d
70b87048ff0e1185323b03854dc377f05804fb21b4c18701948bca8a1adcda10
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/f73fbb81-ad57-4f62-87a9-1994c50c4b05/5_media.bin HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 17:49:42 GMT
etag: "831327ddaa187d033d619e5717a3d989"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 1709
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 475
X-Firefox-Spdy: h2
vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/c913c2fa-1404-42de-9a91-7ad7242cf59a/3_media.bin
151.101.86.137200 OK 412 B URL HTTP/2 vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/c913c2fa-1404-42de-9a91-7ad7242cf59a/3_media.bin
IP 151.101.86.137:0
Hash a526ed51dc14754d55f4cf188616cbe5
fe1ea1cf842eaa196bb715d63518b71450f8ba89
ff1e4a7761ec925b1de8bd534e935db628c480511de261756ad8e63f068d5420
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/c913c2fa-1404-42de-9a91-7ad7242cf59a/3_media.bin HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 14:28:12 GMT
etag: "202f23731cf0c0952d51eb520350fc25"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 14347
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 412
X-Firefox-Spdy: h2
vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/f71c317c-b495-42f3-9551-326b9a5c6b4c/7_media.bin
151.101.86.137200 OK 398 B URL HTTP/2 vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/f71c317c-b495-42f3-9551-326b9a5c6b4c/7_media.bin
IP 151.101.86.137:0
Hash fda184332c32bb9175f79104c08c1d67
94c8de03e789d4ec41302d67a9818101666a335d
ff6ea88efa77f560228b926300561f7fb8033601e046f0f2cf4f55c0ac8c3ff9
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/f71c317c-b495-42f3-9551-326b9a5c6b4c/7_media.bin HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 18:33:01 GMT
etag: "8a3f469e30d5e2a8447bbf8673da5f88"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 86232
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 398
X-Firefox-Spdy: h2
vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/7d489bef-0099-43b7-8478-4ea38d138685/5_media.bin
151.101.86.137200 OK 377 B URL HTTP/2 vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/7d489bef-0099-43b7-8478-4ea38d138685/5_media.bin
IP 151.101.86.137:0
Hash d7cc08d4082f6d942012dd6fe620f67c
8d118302c43bf8b087683d208a88c68f66c44b0d
64c3733ac01e5721830a2abedd74bc9e7c08c2b7a3eb28a4b498f448e08275d9
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/7d489bef-0099-43b7-8478-4ea38d138685/5_media.bin HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 16:46:52 GMT
etag: "6b6849fb2c74b58d98905917d9afb757"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 92563
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 377
X-Firefox-Spdy: h2
vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/fd27348f-679f-41c7-83d3-7bb671a597b4/3_media.bin
151.101.86.137200 OK 449 B URL HTTP/2 vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/fd27348f-679f-41c7-83d3-7bb671a597b4/3_media.bin
IP 151.101.86.137:0
Hash 5cddc8ec1bee4367b10072cbdefcedc5
9081c10d032f439cfffd3f2a6ab2ff6326ac405c
d616572e8fc625c675adb8a117167afc566f9a12d339e6fe65563f92232d9988
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/fd27348f-679f-41c7-83d3-7bb671a597b4/3_media.bin HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 17:56:18 GMT
etag: "20fcb98734dcdefe5e32e18880e9123d"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 86232
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 449
X-Firefox-Spdy: h2
vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/b59149a3-f6cb-4cc3-8bce-e37931f59fbf/5_media.bin
151.101.86.137200 OK 374 B URL HTTP/2 vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/b59149a3-f6cb-4cc3-8bce-e37931f59fbf/5_media.bin
IP 151.101.86.137:0
Hash 2c9be1007c6f9bec1910e445e65a180c
fcd02d59b00b92093ef63fb422ced6e962b599d0
64d3d54654e59e0c530815eb829542c3263f02bbce5280bc07295a5f116b8ab8
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/b59149a3-f6cb-4cc3-8bce-e37931f59fbf/5_media.bin HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 14:22:05 GMT
etag: "f195842265ee849ab0b2ae6a77d73811"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 101426
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 374
X-Firefox-Spdy: h2
vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/406eaf40-361c-4d5c-ba87-01442ecb60cc/3_media.bin
151.101.86.137200 OK 450 B URL HTTP/2 vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/406eaf40-361c-4d5c-ba87-01442ecb60cc/3_media.bin
IP 151.101.86.137:0
Hash 27583009e198252555d6cc6a9e4025fd
1e764584288bbe13ea343a24f312fc193d1695e6
b084830a5ef91ec0c90e4bb95316259fce1c937950b5ce5152814742ca9df78b
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/406eaf40-361c-4d5c-ba87-01442ecb60cc/3_media.bin HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 06 Sep 2022 18:22:59 GMT
etag: "b9153bbf3d452d648da6b67938bd2fdd"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 161590
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 450
X-Firefox-Spdy: h2
vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/a20be76b-38a0-48fc-8662-059db307ba1d/5_media.bin
151.101.86.137200 OK 489 B URL HTTP/2 vid.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/a20be76b-38a0-48fc-8662-059db307ba1d/5_media.bin
IP 151.101.86.137:0
Hash cf1bc7b61261c84b5c0983d945f897f9
33142873d9f72e093d7d5227d4a6fc92edd7ac84
fba6faeb99ca9c6b9618e33dcfe922efc3309de03e470adf0dbb4c303e6ed6cb
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/a20be76b-38a0-48fc-8662-059db307ba1d/5_media.bin HTTP/1.1
Host: vid.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 06 Sep 2022 13:55:56 GMT
etag: "aac61c838123b071fc0626847f0080ed"
content-type: application/octet-stream
content-encoding: gzip
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:57 GMT
age: 189020
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 489
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 904ba7c78cdbb128ffc246c714d8ad98
122adc273cbe0b19c3b5c3cee64be33970e189cf
974ff8abfd43f5a5b0ed41089c2f61c072332e6bd27ed31ead800596f9efbc25
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 08 Sep 2022 18:36:57 GMT
Last-Modified: Thu, 08 Sep 2022 16:52:24 GMT
Server: ECS (nyb/1D34)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: N01PSAaiPJw7rBc8w_VVDQ8iZc6ER8nSdtM5QD3pNldwC0Zo5DXOMA==
Age: 6273
my.rtmark.net/gid.js?userId=l8dl988245bk013178731v4w4ouxq885
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=l8dl988245bk013178731v4w4ouxq885
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 5dacae4209d5f2b64d6a8d9babf15fb9
c7f3a4196566cac31550f5a1abbf90915b43bddb
58dfd0bb1b06829b6bb82678ed5d0ad90d208b76678dc71fb6e3ae6e62ffe668
GET /gid.js?userId=l8dl988245bk013178731v4w4ouxq885 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Cookie: ID=54bc54376ee04119a9c2d1e10e7c8c68
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:57 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=54bc54376ee04119a9c2d1e10e7c8c68; expires=Fri, 08 Sep 2023 18:36:57 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
upgulpinon.com/9?z=5294774&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fhuffpost.netblogpro.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=l8dl988245bk013178731v4w4ouxq885
139.45.197.242204 No Content 0 B URL HTTP/2 upgulpinon.com/9?z=5294774&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fhuffpost.netblogpro.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=l8dl988245bk013178731v4w4ouxq885
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /9?z=5294774&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fhuffpost.netblogpro.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=l8dl988245bk013178731v4w4ouxq885 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://huffpost.netblogpro.com/
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 08 Sep 2022 18:36:57 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
216.58.207.194200 OK 13 kB URL HTTP/2 pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js
IP 216.58.207.194:0
File type ASCII text, with very long lines (1977)
Hash 64bb7f59803ae6130d8f160e9b5caea8
e9f34d7bf416e6719b9a6da7e6d72804afdeecfd
dd71fb7acce37bb1b1c4a943d3e226ada9df7ab2b7ed93b9d0ed33c8d98c4f8d
GET /omsdk/releases/live/omweb-v1.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/omsdk-team-release-policy
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="omsdk-team-release-policy"
report-to: {"group":"omsdk-team-release-policy","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/omsdk-team-release-policy"}]}
content-length: 12926
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 18:18:39 GMT
expires: Thu, 08 Sep 2022 19:18:39 GMT
cache-control: public, max-age=3600
age: 1098
last-modified: Tue, 19 Jul 2022 21:40:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 09cd4a35767fb409963659229eaf672f
f5593747662cd2c08b83f186af133957bfd47911
27388cbcc6ac59310c6d64622658f85dbe5e67643e77d77ba1c60a9763106023
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
capi-tier-1-us-east-2.connatix.com/tr/sr?v=181200&cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7
18.218.219.188200 OK 20 B URL HTTP/1.1 capi-tier-1-us-east-2.connatix.com/tr/sr?v=181200&cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7
IP 18.218.219.188:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
POST /tr/sr?v=181200&cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7 HTTP/1.1
Host: capi-tier-1-us-east-2.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 394
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://huffpost.netblogpro.com
content-encoding: gzip
content-type: application/x-protobuf
date: Thu, 08 Sep 2022 18:36:57 GMT
server: Kestrel
vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
s0.2mdn.net/instream/video/client.js
216.58.211.6200 OK 17 kB URL HTTP/2 s0.2mdn.net/instream/video/client.js
IP 216.58.211.6:0
File type ASCII text, with very long lines (2156)
Hash 49295de6ccd23cf80b6418a2d209868f
42a955b4560bb22cb9b5b39577f7a691ea345018
d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa
GET /instream/video/client.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
content-length: 16746
date: Thu, 08 Sep 2022 18:36:57 GMT
expires: Thu, 08 Sep 2022 18:36:57 GMT
cache-control: private, max-age=900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b8ec2e11a56596305c41513787d64c44
43ff0eb9086c1967859b7dea4988964a5fadb2b3
b9372fff0bd34b172c917aaaf028e7c7d3d76c3bf0478c10c01f91166d9ae096
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pixiedust.buzzfeed.com/events
54.205.244.238200 OK 11 B URL HTTP/1.1 pixiedust.buzzfeed.com/events
IP 54.205.244.238:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a18b769e721d2462b4d3057ffe7ac0c0
851b887e40069dfc0abe94f36a39b86c059d2b11
57413ce83ee1d989e384dfd3a82c6e2d9052a23c4204706bd2d7df11aa4c2d7c
POST /events HTTP/1.1
Host: pixiedust.buzzfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1815
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Date: Thu, 08 Sep 2022 18:36:57 GMT
Server: nginx
Content-Length: 11
Connection: keep-alive
my.rtmark.net/gid.js?userId=l8dl988245bk013178731v4w4ouxq885
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=l8dl988245bk013178731v4w4ouxq885
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 5dacae4209d5f2b64d6a8d9babf15fb9
c7f3a4196566cac31550f5a1abbf90915b43bddb
58dfd0bb1b06829b6bb82678ed5d0ad90d208b76678dc71fb6e3ae6e62ffe668
GET /gid.js?userId=l8dl988245bk013178731v4w4ouxq885 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Cookie: ID=54bc54376ee04119a9c2d1e10e7c8c68
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:58 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=54bc54376ee04119a9c2d1e10e7c8c68; expires=Fri, 08 Sep 2023 18:36:58 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
jouteetu.net/custom
139.45.197.251200 OK 39 B IP 139.45.197.251:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://huffpost.netblogpro.com
Content-Length: 744
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:58 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 9a96b003f5d5ed27464c547b45531838
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
cds.connatix.com/p/181200/hls.29b1ff4c2227d65c148f.js
151.101.86.137200 OK 48 kB URL HTTP/2 cds.connatix.com/p/181200/hls.29b1ff4c2227d65c148f.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 92d7a22cfe7fafdcc3f01b7605daeb2b
40de687fa6e3c4ac222fdb4b7247a64988cd5e75
9b2071129cdaeedbadf5002a6d099929fb56f7ec8443a336e821e5cf8c50203e
GET /p/181200/hls.29b1ff4c2227d65c148f.js HTTP/1.1
Host: cds.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Sep 2022 13:10:31 GMT
etag: "b25e1457e78abd50744fbde2cfff4369"
content-type: application/javascript
content-encoding: br
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:58 GMT
age: 18275
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 48331
X-Firefox-Spdy: h2
img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/a20be76b-38a0-48fc-8662-059db307ba1d/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
151.101.86.137200 OK 3.8 kB URL HTTP/2 img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/a20be76b-38a0-48fc-8662-059db307ba1d/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
IP 151.101.86.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x90, components 3\012- data
Hash df456eb4783eeb5326a426537ef44f1d
c81e9aac80f517e02530974e5b9db6b854a57312
896d691a13b2c3ed9cb0484afa89e1fcff69b922504f9c60a7ed9bdf9a41c919
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/a20be76b-38a0-48fc-8662-059db307ba1d/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "thqO9zXF6eo6vrOGDduPgbfoKOUPBHoleOEK3F51Hl8"
fastly-io-info: ifsz=673961 idim=800x450 ifmt=png ofsz=4226 odim=160x90 ofmt=jpeg
fastly-stats: io=1
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:58 GMT
age: 189939
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 3820
X-Firefox-Spdy: h2
img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/d7156176-3842-467e-9854-a21a7a7db591/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
151.101.86.137200 OK 2.7 kB URL HTTP/2 img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/d7156176-3842-467e-9854-a21a7a7db591/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
IP 151.101.86.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x90, components 3\012- data
Hash e80d6a59ee53518a876f96b43490b524
56907f0340ebb4ad889c58ee050c3ff7d8c9415e
4d1f66d877b593a258e4d83560ae87e73763031e6f3e6650334c91266236967f
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/d7156176-3842-467e-9854-a21a7a7db591/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "TPBEnQ3bBXI0z2N7ap5wci8T3hO1mtM6pSbwv0ZjXm8"
fastly-io-info: ifsz=419800 idim=800x450 ifmt=png ofsz=3145 odim=160x90 ofmt=jpeg
fastly-stats: io=1
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:58 GMT
age: 3788
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 2668
X-Firefox-Spdy: h2
img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/f73fbb81-ad57-4f62-87a9-1994c50c4b05/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
151.101.86.137200 OK 2.2 kB URL HTTP/2 img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/f73fbb81-ad57-4f62-87a9-1994c50c4b05/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
IP 151.101.86.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x90, components 3\012- data
Hash 8583599fbc585563776fa582b47b7785
fc4d07770a8a17561be25bfde20f66a70c72099b
3a931cc7fd67d7c97aa47694f91b685ae50ff9fa9c1b919184c660186d463d72
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/f73fbb81-ad57-4f62-87a9-1994c50c4b05/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "HhdlmtKNy6PixpFC8zxFliL3+lUgVh2Yt4BmeoWtRHQ"
fastly-io-info: ifsz=630473 idim=800x450 ifmt=png ofsz=2681 odim=160x90 ofmt=jpeg
fastly-stats: io=1
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:58 GMT
age: 3112
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 2229
X-Firefox-Spdy: h2
img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/ba9b9027-0050-461c-8b3c-f6a2a5f13c9d/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
151.101.86.137200 OK 3.6 kB URL HTTP/2 img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/ba9b9027-0050-461c-8b3c-f6a2a5f13c9d/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
IP 151.101.86.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x90, components 3\012- data
Hash 89671834b1c5bff09da01d716c34d5a2
71f94f25481bfe866035a0a978797e09b2118fdb
210b7e2abf7e3e3c40ea0ad8fa28f3625cd79134001669b6c0f51677d992acc6
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/ba9b9027-0050-461c-8b3c-f6a2a5f13c9d/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "1KPk86w2Bo3bVZjiM3ZbUiQrT3ITm5jG4O91JLIgpMU"
fastly-io-info: ifsz=671648 idim=800x450 ifmt=png ofsz=4027 odim=160x90 ofmt=jpeg
fastly-stats: io=1
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:58 GMT
age: 77714
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 3617
X-Firefox-Spdy: h2
img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/c913c2fa-1404-42de-9a91-7ad7242cf59a/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
151.101.86.137200 OK 3.2 kB URL HTTP/2 img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/c913c2fa-1404-42de-9a91-7ad7242cf59a/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
IP 151.101.86.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x90, components 3\012- data
Hash d99478aa497c3ea4d9646dbe7f28b69b
19e5da6c134049af0fd18ba1080a27449e0e3c57
514a8cb4039e6811651d43ee7e18a5d56e5f7476fa9b8276cf46bf8eb79bbf26
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/c913c2fa-1404-42de-9a91-7ad7242cf59a/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "cFKfmtAJn4EfJS/MKmf3eGD46fJErfIMc7xMU2nTIHU"
fastly-io-info: ifsz=599782 idim=800x450 ifmt=png ofsz=3587 odim=160x90 ofmt=jpeg
fastly-stats: io=1
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:58 GMT
age: 15097
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 3168
X-Firefox-Spdy: h2
img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/f71c317c-b495-42f3-9551-326b9a5c6b4c/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
151.101.86.137200 OK 3.5 kB URL HTTP/2 img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/f71c317c-b495-42f3-9551-326b9a5c6b4c/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
IP 151.101.86.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x90, components 3\012- data
Hash ecb171ac90d8855a1aa2b1765e755569
511f4cf1b7b47c1a8bbc7a36400513f986f1fc82
339547c9a5e419cbae82c599a8a76abdcf7a708d91153566f29f3983b32758e4
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/f71c317c-b495-42f3-9551-326b9a5c6b4c/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "hxiwWgGLFCEi9erxh0BAVpqXX+vG8fJfp7LUByp80T8"
fastly-io-info: ifsz=807135 idim=800x450 ifmt=png ofsz=3878 odim=160x90 ofmt=jpeg
fastly-stats: io=1
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:58 GMT
age: 87035
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 3451
X-Firefox-Spdy: h2
img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/7d489bef-0099-43b7-8478-4ea38d138685/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
151.101.86.137200 OK 2.3 kB URL HTTP/2 img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/7d489bef-0099-43b7-8478-4ea38d138685/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
IP 151.101.86.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x90, components 3\012- data
Hash 84fae62ac3db0b2b8352c05287d854c5
46f72e9aaf7980facde4b6ddc88be5176a1ac693
5f85850d04506dc664320a465a904924740dcd44f0a1087f953537f04ab521b9
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/7d489bef-0099-43b7-8478-4ea38d138685/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "X5o+PU/6YuRqb3nJDi8oj3IS31fhdcZ8Qh5sgv2sf6o"
fastly-io-info: ifsz=472535 idim=800x450 ifmt=png ofsz=2759 odim=160x90 ofmt=jpeg
fastly-stats: io=1
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:58 GMT
age: 93780
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 2344
X-Firefox-Spdy: h2
img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/406eaf40-361c-4d5c-ba87-01442ecb60cc/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
151.101.86.137200 OK 3.5 kB URL HTTP/2 img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/406eaf40-361c-4d5c-ba87-01442ecb60cc/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
IP 151.101.86.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x90, components 3\012- data
Hash 861c6e0c3261ca5c8968869ec824891b
ac0fb5a45fbb15f45c574f6d8328b6fadc9b95dc
1d57ed7d7d13a0403c737173e186e56c1532badbeeaf590a8e0f1cad6aef45e0
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/406eaf40-361c-4d5c-ba87-01442ecb60cc/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "XkI54ad3OTiCMMwmka7UuPG74dNSw4X03bMT2TJGqg4"
fastly-io-info: ifsz=690092 idim=800x450 ifmt=png ofsz=3914 odim=160x90 ofmt=jpeg
fastly-stats: io=1
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:58 GMT
age: 173857
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 3492
X-Firefox-Spdy: h2
img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/b59149a3-f6cb-4cc3-8bce-e37931f59fbf/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
151.101.86.137200 OK 3.4 kB URL HTTP/2 img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/b59149a3-f6cb-4cc3-8bce-e37931f59fbf/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
IP 151.101.86.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x90, components 3\012- data
Hash 51b201fff82b7c1d4fc1d520daaf0b55
f8c4569d42b96936d8e7fa8de1fc6ad4b584a2c9
e8c5e1b3ac76450b103f6b5d3336e6837b86f4d5ff8f8c3ef1578c15e5aa75fc
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/b59149a3-f6cb-4cc3-8bce-e37931f59fbf/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "0BO5Rl5R6oJhPYcg4vcPzvjnZDgHJBZvY3t1yYEUJzw"
fastly-io-info: ifsz=622524 idim=800x450 ifmt=png ofsz=3794 odim=160x90 ofmt=jpeg
fastly-stats: io=1
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:58 GMT
age: 102194
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 3379
X-Firefox-Spdy: h2
img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/fd27348f-679f-41c7-83d3-7bb671a597b4/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
151.101.86.137200 OK 2.4 kB URL HTTP/2 img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/fd27348f-679f-41c7-83d3-7bb671a597b4/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop
IP 151.101.86.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x90, components 3\012- data
Hash ac45266d1b0dba4a8a5786126640ae48
efe1f1b0d5b08f652868a1ca54f12b49191854ed
6908284c26a2f7ebe202414c101c5dbf75fa1c72386c6d0cba4e4f8543b9606d
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/fd27348f-679f-41c7-83d3-7bb671a597b4/1_th.jpg?crop=160:90,smart&width=160&height=90&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "deEbu01FIGY5gsJQjpQXAHD/IAKV9CMsqauJzZN2fOM"
fastly-io-info: ifsz=588499 idim=800x450 ifmt=png ofsz=2850 odim=160x90 ofmt=jpeg
fastly-stats: io=1
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:58 GMT
age: 89984
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 2429
X-Firefox-Spdy: h2
upgulpinon.com/11?rnd=4104865871&z=5294774&b=14082265&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=FDNTHe6Z6Wnp_8l5dNuTTLiYjRvVg8raphCG05SVsD2L-eLc0HXcai24f7-RUh0lBHuXIUD_ZjJZYG-jsXLGtOK065WaxW4vwGYiZ2TkyqNUGUxzr7z7XOeUsnZ68Xd5eplBPxt2sNlkPGLFwt4IyBRh9MtDmCFgNN9jw9kJphxsoh3WzN3EYysSUjdv6X9GFuj9SLraVW2GJF5LJDr_BPUCKqX1hvNLnPROj-wLnXnLPGBE6UWlJTTWXu5pXl1Rgu2yrrpqW4mQr8rRjNgDcPZdHMnqUKX7_wCOZlYNW_LkTmQovGyshcYA7aQV6AABKAbhQ_IKIksWVqfxaBzVnbTQmnxdNbbvAz9UIbV8G0YvfTEf6V4KU974TLIwK4YG1IdkCWFwkcUrmLCQ-6JR7Aon_19k3G_IeK8fehOltMzXmSiAYjer3hAymCd_yzJLAdD-axwijUeQRg4CtUghIGxh2VRVP5VTG3mCgN6qBbFNqrFFW_8ZlGAgbWhP-9lqXEr9ptNjQt_421bGzKoMOUMt3g0Tmqc8E4XByhJS65tJshN8Y98pA8osLxOtr7dcn9ZxFMrEKluzNJvFuy2nyV6iGStnC9zYBssXWXIbHUM9qVMZ0p_-BVA9gynZ9kYHfdJ9q0ca5PBGc7zhYmevAA==&ruid=52544051-69bb-4ff5-97dd-c2a416f91909&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fhuffpost.netblogpro.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ot=557
139.45.197.242200 OK 0 B URL HTTP/2 upgulpinon.com/11?rnd=4104865871&z=5294774&b=14082265&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=FDNTHe6Z6Wnp_8l5dNuTTLiYjRvVg8raphCG05SVsD2L-eLc0HXcai24f7-RUh0lBHuXIUD_ZjJZYG-jsXLGtOK065WaxW4vwGYiZ2TkyqNUGUxzr7z7XOeUsnZ68Xd5eplBPxt2sNlkPGLFwt4IyBRh9MtDmCFgNN9jw9kJphxsoh3WzN3EYysSUjdv6X9GFuj9SLraVW2GJF5LJDr_BPUCKqX1hvNLnPROj-wLnXnLPGBE6UWlJTTWXu5pXl1Rgu2yrrpqW4mQr8rRjNgDcPZdHMnqUKX7_wCOZlYNW_LkTmQovGyshcYA7aQV6AABKAbhQ_IKIksWVqfxaBzVnbTQmnxdNbbvAz9UIbV8G0YvfTEf6V4KU974TLIwK4YG1IdkCWFwkcUrmLCQ-6JR7Aon_19k3G_IeK8fehOltMzXmSiAYjer3hAymCd_yzJLAdD-axwijUeQRg4CtUghIGxh2VRVP5VTG3mCgN6qBbFNqrFFW_8ZlGAgbWhP-9lqXEr9ptNjQt_421bGzKoMOUMt3g0Tmqc8E4XByhJS65tJshN8Y98pA8osLxOtr7dcn9ZxFMrEKluzNJvFuy2nyV6iGStnC9zYBssXWXIbHUM9qVMZ0p_-BVA9gynZ9kYHfdJ9q0ca5PBGc7zhYmevAA==&ruid=52544051-69bb-4ff5-97dd-c2a416f91909&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fhuffpost.netblogpro.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ot=557
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /11?rnd=4104865871&z=5294774&b=14082265&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=FDNTHe6Z6Wnp_8l5dNuTTLiYjRvVg8raphCG05SVsD2L-eLc0HXcai24f7-RUh0lBHuXIUD_ZjJZYG-jsXLGtOK065WaxW4vwGYiZ2TkyqNUGUxzr7z7XOeUsnZ68Xd5eplBPxt2sNlkPGLFwt4IyBRh9MtDmCFgNN9jw9kJphxsoh3WzN3EYysSUjdv6X9GFuj9SLraVW2GJF5LJDr_BPUCKqX1hvNLnPROj-wLnXnLPGBE6UWlJTTWXu5pXl1Rgu2yrrpqW4mQr8rRjNgDcPZdHMnqUKX7_wCOZlYNW_LkTmQovGyshcYA7aQV6AABKAbhQ_IKIksWVqfxaBzVnbTQmnxdNbbvAz9UIbV8G0YvfTEf6V4KU974TLIwK4YG1IdkCWFwkcUrmLCQ-6JR7Aon_19k3G_IeK8fehOltMzXmSiAYjer3hAymCd_yzJLAdD-axwijUeQRg4CtUghIGxh2VRVP5VTG3mCgN6qBbFNqrFFW_8ZlGAgbWhP-9lqXEr9ptNjQt_421bGzKoMOUMt3g0Tmqc8E4XByhJS65tJshN8Y98pA8osLxOtr7dcn9ZxFMrEKluzNJvFuy2nyV6iGStnC9zYBssXWXIbHUM9qVMZ0p_-BVA9gynZ9kYHfdJ9q0ca5PBGc7zhYmevAA==&ruid=52544051-69bb-4ff5-97dd-c2a416f91909&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fhuffpost.netblogpro.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ot=557 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Cookie: scm=1; OAID=l8dl988245bk013178731v4w4ouxq885; oaidts=1662662215
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:58 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 4e9c8803100a1864bbea0eca8d64075d
access-control-expose-headers: X-Sc
set-cookie: OAID=l8dl988245bk013178731v4w4ouxq885; expires=Fri, 08 Sep 2023 18:36:58 GMT; secure; SameSite=None
oaidts=1662662215; expires=Fri, 08 Sep 2023 18:36:58 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 86354a78c1da4ea13a932216048b2abf
ade657780508cffa8655f7cab6492dc25a79f0d2
458dbf1fcc4ef14e78b991b2f906704b4d27a985d2feb500bb5e5f832232887b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b544c4d2427305f830d70cd40f2e5263
f8d3fbf9d368742f894816ea71d8cc9016078d1f
6f5bb81b798a2bb4ba854703b03d71c3cb1b0c0adb437f6ff863f1f7774c3005
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/d7156176-3842-467e-9854-a21a7a7db591/1_th.jpg?crop=733:413,smart&width=733&height=413&format=jpeg&quality=60&fit=crop
151.101.86.137200 OK 29 kB URL HTTP/2 img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/d7156176-3842-467e-9854-a21a7a7db591/1_th.jpg?crop=733:413,smart&width=733&height=413&format=jpeg&quality=60&fit=crop
IP 151.101.86.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 733x413, components 3\012- data
Hash 44fd7d4c2e3c609876d8eda1c2885ddb
f63bd74b6cb96a7588244a89705b36bcad2f6c0a
f839a85bc66a50b4cfc31455883c2d2784ea0ed5c07f171c39d11a2645eb787e
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/d7156176-3842-467e-9854-a21a7a7db591/1_th.jpg?crop=733:413,smart&width=733&height=413&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "nOcQQyF9b/lzz7DGXtQ/6Y5uqnel1LJr9ozv04rye0o"
fastly-io-info: ifsz=419800 idim=800x450 ifmt=png ofsz=29806 odim=733x413 ofmt=jpeg
fastly-stats: io=1
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:58 GMT
age: 3788
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 29356
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-1740781-82&cid=854023937.1662662208&jid=1203195431&_u=4GDAAUABAAAAAC~&z=72035624
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-1740781-82&cid=854023937.1662662208&jid=1203195431&_u=4GDAAUABAAAAAC~&z=72035624
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-1740781-82&cid=854023937.1662662208&jid=1203195431&_u=4GDAAUABAAAAAC~&z=72035624 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Sep 2022 18:36:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/d7156176-3842-467e-9854-a21a7a7db591/1_th.jpg?crop=1136:413,smart&width=1136&height=413&format=jpeg&quality=60&fit=crop
151.101.86.137200 OK 24 kB URL HTTP/2 img.connatix.com/pid-08c32caf-3de9-4dec-b089-28af763b377b/d7156176-3842-467e-9854-a21a7a7db591/1_th.jpg?crop=1136:413,smart&width=1136&height=413&format=jpeg&quality=60&fit=crop
IP 151.101.86.137:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x291, components 3\012- data
Hash df716e737ca6ff57d323f1525229376b
1fc87d1a1dac0f0745567d1d6e04bfb3e6a4b50d
8777ef07f9d08e954f82897ab9dae5ec4744c03b160172ceaeb2771d7bf6f275
GET /pid-08c32caf-3de9-4dec-b089-28af763b377b/d7156176-3842-467e-9854-a21a7a7db591/1_th.jpg?crop=1136:413,smart&width=1136&height=413&format=jpeg&quality=60&fit=crop HTTP/1.1
Host: img.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: "TRcr8mf8tiQCA7qmLebsbOjG8l+we5L4ZaZQtEkCWB4"
fastly-io-info: ifsz=419800 idim=800x450 ifmt=png ofsz=24922 odim=800x291 ofmt=jpeg
fastly-stats: io=1
cache-control: max-age=2592000, public
content-encoding: br
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:58 GMT
age: 3789
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 24467
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-1740781-82&cid=854023937.1662662208&jid=1203195431&_u=4GDAAUABAAAAAC~&z=72035624
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-1740781-82&cid=854023937.1662662208&jid=1203195431&_u=4GDAAUABAAAAAC~&z=72035624
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-1740781-82&cid=854023937.1662662208&jid=1203195431&_u=4GDAAUABAAAAAC~&z=72035624 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Sep 2022 18:36:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cds.connatix.com/p/plugins/prebid6.20.0-4.js
151.101.86.137200 OK 124 kB URL HTTP/2 cds.connatix.com/p/plugins/prebid6.20.0-4.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (65423)
Size 124 kB (123905 bytes)
Hash f379df1916f7ea937443f87edc09d84a
f33815338d178d482de2454a6e8a50004fd9af76
d04062f78ff14edcd5aad40796017566e4c049448f69e87fceb79dcd8b7cae35
GET /p/plugins/prebid6.20.0-4.js HTTP/1.1
Host: cds.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 12:47:31 GMT
etag: "aacab17b3b3de88c898ee654d218646f"
content-type: application/javascript
content-encoding: br
cache-control: public,max-stale=31557600,stale-while-revalidate=31557600,immutable,max-age=31557600
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:58 GMT
age: 5377675
vary: Accept-Encoding
access-control-max-age: 86400
access-control-allow-origin: *
content-length: 123905
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ba04a5ffb454c6515d31137d4aff0592
56514ad2632345f3a2ba65014fad4a4564fc53d5
5ead23c004fb06735a1fc4f6c6846a5cb43d28fc25788b74113ca59670f72154
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EAD23C004FB06735A1FC4F6C6846A5CB43D28FC25788B74113CA59670F72154"
Last-Modified: Thu, 08 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11166
Expires: Thu, 08 Sep 2022 21:43:04 GMT
Date: Thu, 08 Sep 2022 18:36:58 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f791e6440ce515569bb0194eda4d603b
8d8fa952205d85133136ac352d2732bc4c838c42
c32a6a6c9669d371e94d43f6e765a8e438096c6eb8b69d719ad365255d669417
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jouteetu.net/custom
139.45.197.251200 OK 39 B IP 139.45.197.251:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://huffpost.netblogpro.com
Content-Length: 380
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:58 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 49cd07972bc3fa2b4d4fcab6c4d7cf30
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6dc56472e7e937d95691c91149f92637
a4ec5345016cd49eabd3b39e5229cb341f1a1ce5
e60b408f4f2e9d1e4d7b52ed42eeccffc2a7d025628902229ac352a6c482a358
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E60B408F4F2E9D1E4D7B52ED42EECCFFC2A7D025628902229AC352A6C482A358"
Last-Modified: Tue, 06 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2137
Expires: Thu, 08 Sep 2022 19:12:35 GMT
Date: Thu, 08 Sep 2022 18:36:58 GMT
Connection: keep-alive
interstitial-07.com/contents/s/36/d8/c2/9c866059b85b47752a6cc71b81/01636574006222.png
139.45.197.154200 OK 45 kB URL HTTP/2 interstitial-07.com/contents/s/36/d8/c2/9c866059b85b47752a6cc71b81/01636574006222.png
IP 139.45.197.154:0
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash 36d8c29c866059b85b47752a6cc71b81
2d877eabf6710f66f5d7a3e265de997cf258ba32
0bbd2d8d16b4fd96c0a0dabecbd05ca573b30cd7079950d73b5dd68bde69a27b
GET /contents/s/36/d8/c2/9c866059b85b47752a6cc71b81/01636574006222.png HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=ixIAK3WmGJhcnb8&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Fupgulpinon.com%2F12%3Frnd%3D865590071%26z%3D5294774%26b%3D14082265%26c%3D5881775%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62febf30c58abd0001fff58e%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3DFDNTHe6Z6Wnp_8l5dNuTTLiYjRvVg8raphCG05SVsD2L-eLc0HXcai24f7-RUh0lBHuXIUD_ZjJZYG-jsXLGtOK065WaxW4vwGYiZ2TkyqNUGUxzr7z7XOeUsnZ68Xd5eplBPxt2sNlkPGLFwt4IyBRh9MtDmCFgNN9jw9kJphxsoh3WzN3EYysSUjdv6X9GFuj9SLraVW2GJF5LJDr_BPUCKqX1hvNLnPROj-wLnXnLPGBE6UWlJTTWXu5pXl1Rgu2yrrpqW4mQr8rRjNgDcPZdHMnqUKX7_wCOZlYNW_LkTmQovGyshcYA7aQV6AABKAbhQ_IKIksWVqfxaBzVnbTQmnxdNbbvAz9UIbV8G0YvfTEf6V4KU974TLIwK4YG1IdkCWFwkcUrmLCQ-6JR7Aon_19k3G_IeK8fehOltMzXmSiAYjer3hAymCd_yzJLAdD-axwijUeQRg4CtUghIGxh2VRVP5VTG3mCgN6qBbFNqrFFW_8ZlGAgbWhP-9lqXEr9ptNjQt_421bGzKoMOUMt3g0Tmqc8E4XByhJS65tJshN8Y98pA8osLxOtr7dcn9ZxFMrEKluzNJvFuy2nyV6iGStnC9zYBssXWXIbHUM9qVMZ0p_-BVA9gynZ9kYHfdJ9q0ca5PBGc7zhYmevAA%3D%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3D52544051-69bb-4ff5-97dd-c2a416f91909%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fhuffpost.netblogpro.com%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:58 GMT
content-type: image/png
content-length: 45133
last-modified: Thu, 14 Jul 2022 23:23:43 GMT
etag: "62d0a57f-b04d"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
interstitial-07.com/contents/s/bb/e4/f2/21ec1bc6f4b297739808c5014e/0675698614532.jpeg
139.45.197.154200 OK 111 kB URL HTTP/2 interstitial-07.com/contents/s/bb/e4/f2/21ec1bc6f4b297739808c5014e/0675698614532.jpeg
IP 139.45.197.154:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 900x600, components 3\012- data
Size 111 kB (111085 bytes)
Hash bbe4f221ec1bc6f4b297739808c5014e
6f671c5c30cce5976f26169f1aa9b4366039cfcb
87ca58fc0840414422ae3b98b5f4ad05da762c3dd1a22b053371d156faa051c2
GET /contents/s/bb/e4/f2/21ec1bc6f4b297739808c5014e/0675698614532.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=ixIAK3WmGJhcnb8&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Fupgulpinon.com%2F12%3Frnd%3D865590071%26z%3D5294774%26b%3D14082265%26c%3D5881775%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62febf30c58abd0001fff58e%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3DFDNTHe6Z6Wnp_8l5dNuTTLiYjRvVg8raphCG05SVsD2L-eLc0HXcai24f7-RUh0lBHuXIUD_ZjJZYG-jsXLGtOK065WaxW4vwGYiZ2TkyqNUGUxzr7z7XOeUsnZ68Xd5eplBPxt2sNlkPGLFwt4IyBRh9MtDmCFgNN9jw9kJphxsoh3WzN3EYysSUjdv6X9GFuj9SLraVW2GJF5LJDr_BPUCKqX1hvNLnPROj-wLnXnLPGBE6UWlJTTWXu5pXl1Rgu2yrrpqW4mQr8rRjNgDcPZdHMnqUKX7_wCOZlYNW_LkTmQovGyshcYA7aQV6AABKAbhQ_IKIksWVqfxaBzVnbTQmnxdNbbvAz9UIbV8G0YvfTEf6V4KU974TLIwK4YG1IdkCWFwkcUrmLCQ-6JR7Aon_19k3G_IeK8fehOltMzXmSiAYjer3hAymCd_yzJLAdD-axwijUeQRg4CtUghIGxh2VRVP5VTG3mCgN6qBbFNqrFFW_8ZlGAgbWhP-9lqXEr9ptNjQt_421bGzKoMOUMt3g0Tmqc8E4XByhJS65tJshN8Y98pA8osLxOtr7dcn9ZxFMrEKluzNJvFuy2nyV6iGStnC9zYBssXWXIbHUM9qVMZ0p_-BVA9gynZ9kYHfdJ9q0ca5PBGc7zhYmevAA%3D%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3D52544051-69bb-4ff5-97dd-c2a416f91909%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fhuffpost.netblogpro.com%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:58 GMT
content-type: image/jpeg
content-length: 111085
last-modified: Mon, 18 Jul 2022 20:55:04 GMT
etag: "62d5c8a8-1b1ed"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
interstitial-07.com/?l=ixIAK3WmGJhcnb8&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Fupgulpinon.com%2F12%3Frnd%3D865590071%26z%3D5294774%26b%3D14082265%26c%3D5881775%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62febf30c58abd0001fff58e%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3DFDNTHe6Z6Wnp_8l5dNuTTLiYjRvVg8raphCG05SVsD2L-eLc0HXcai24f7-RUh0lBHuXIUD_ZjJZYG-jsXLGtOK065WaxW4vwGYiZ2TkyqNUGUxzr7z7XOeUsnZ68Xd5eplBPxt2sNlkPGLFwt4IyBRh9MtDmCFgNN9jw9kJphxsoh3WzN3EYysSUjdv6X9GFuj9SLraVW2GJF5LJDr_BPUCKqX1hvNLnPROj-wLnXnLPGBE6UWlJTTWXu5pXl1Rgu2yrrpqW4mQr8rRjNgDcPZdHMnqUKX7_wCOZlYNW_LkTmQovGyshcYA7aQV6AABKAbhQ_IKIksWVqfxaBzVnbTQmnxdNbbvAz9UIbV8G0YvfTEf6V4KU974TLIwK4YG1IdkCWFwkcUrmLCQ-6JR7Aon_19k3G_IeK8fehOltMzXmSiAYjer3hAymCd_yzJLAdD-axwijUeQRg4CtUghIGxh2VRVP5VTG3mCgN6qBbFNqrFFW_8ZlGAgbWhP-9lqXEr9ptNjQt_421bGzKoMOUMt3g0Tmqc8E4XByhJS65tJshN8Y98pA8osLxOtr7dcn9ZxFMrEKluzNJvFuy2nyV6iGStnC9zYBssXWXIbHUM9qVMZ0p_-BVA9gynZ9kYHfdJ9q0ca5PBGc7zhYmevAA%3D%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3D52544051-69bb-4ff5-97dd-c2a416f91909%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fhuffpost.netblogpro.com%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
139.45.197.154200 OK 5.1 kB URL HTTP/2 interstitial-07.com/?l=ixIAK3WmGJhcnb8&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Fupgulpinon.com%2F12%3Frnd%3D865590071%26z%3D5294774%26b%3D14082265%26c%3D5881775%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62febf30c58abd0001fff58e%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3DFDNTHe6Z6Wnp_8l5dNuTTLiYjRvVg8raphCG05SVsD2L-eLc0HXcai24f7-RUh0lBHuXIUD_ZjJZYG-jsXLGtOK065WaxW4vwGYiZ2TkyqNUGUxzr7z7XOeUsnZ68Xd5eplBPxt2sNlkPGLFwt4IyBRh9MtDmCFgNN9jw9kJphxsoh3WzN3EYysSUjdv6X9GFuj9SLraVW2GJF5LJDr_BPUCKqX1hvNLnPROj-wLnXnLPGBE6UWlJTTWXu5pXl1Rgu2yrrpqW4mQr8rRjNgDcPZdHMnqUKX7_wCOZlYNW_LkTmQovGyshcYA7aQV6AABKAbhQ_IKIksWVqfxaBzVnbTQmnxdNbbvAz9UIbV8G0YvfTEf6V4KU974TLIwK4YG1IdkCWFwkcUrmLCQ-6JR7Aon_19k3G_IeK8fehOltMzXmSiAYjer3hAymCd_yzJLAdD-axwijUeQRg4CtUghIGxh2VRVP5VTG3mCgN6qBbFNqrFFW_8ZlGAgbWhP-9lqXEr9ptNjQt_421bGzKoMOUMt3g0Tmqc8E4XByhJS65tJshN8Y98pA8osLxOtr7dcn9ZxFMrEKluzNJvFuy2nyV6iGStnC9zYBssXWXIbHUM9qVMZ0p_-BVA9gynZ9kYHfdJ9q0ca5PBGc7zhYmevAA%3D%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3D52544051-69bb-4ff5-97dd-c2a416f91909%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fhuffpost.netblogpro.com%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
IP 139.45.197.154:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5213)
Hash c5f9bb3e549ed5a4cbdf9240aa4c17fd
00d82f81e43eaf857796c70ebfd100d8fb225c67
d3aeb1fee8f01fba72b0e96fa47eb40d7d7bfd6b0e1a1d3b613583daf9b9cefe
GET /?l=ixIAK3WmGJhcnb8&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Fupgulpinon.com%2F12%3Frnd%3D865590071%26z%3D5294774%26b%3D14082265%26c%3D5881775%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62febf30c58abd0001fff58e%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3DFDNTHe6Z6Wnp_8l5dNuTTLiYjRvVg8raphCG05SVsD2L-eLc0HXcai24f7-RUh0lBHuXIUD_ZjJZYG-jsXLGtOK065WaxW4vwGYiZ2TkyqNUGUxzr7z7XOeUsnZ68Xd5eplBPxt2sNlkPGLFwt4IyBRh9MtDmCFgNN9jw9kJphxsoh3WzN3EYysSUjdv6X9GFuj9SLraVW2GJF5LJDr_BPUCKqX1hvNLnPROj-wLnXnLPGBE6UWlJTTWXu5pXl1Rgu2yrrpqW4mQr8rRjNgDcPZdHMnqUKX7_wCOZlYNW_LkTmQovGyshcYA7aQV6AABKAbhQ_IKIksWVqfxaBzVnbTQmnxdNbbvAz9UIbV8G0YvfTEf6V4KU974TLIwK4YG1IdkCWFwkcUrmLCQ-6JR7Aon_19k3G_IeK8fehOltMzXmSiAYjer3hAymCd_yzJLAdD-axwijUeQRg4CtUghIGxh2VRVP5VTG3mCgN6qBbFNqrFFW_8ZlGAgbWhP-9lqXEr9ptNjQt_421bGzKoMOUMt3g0Tmqc8E4XByhJS65tJshN8Y98pA8osLxOtr7dcn9ZxFMrEKluzNJvFuy2nyV6iGStnC9zYBssXWXIbHUM9qVMZ0p_-BVA9gynZ9kYHfdJ9q0ca5PBGc7zhYmevAA%3D%3D%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3D52544051-69bb-4ff5-97dd-c2a416f91909%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fhuffpost.netblogpro.com%252F%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:58 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.27
set-cookie: reverse=YTUIKLxiCRo69Ds-oIAaEub-6V_T4-18F2QFC8KsQcc; expires=Thu, 08-Sep-2022 19:36:58 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2
unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbl?t=72747&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 08 Sep 2022 18:36:58 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: cbc3e77711137f15ce18185ba2d69f98
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
pl.connatix.com/
151.101.86.137202 Accepted 2 B IP 151.101.86.137:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST / HTTP/1.1
Host: pl.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 577
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
content-type: application/json
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=15724800;
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:58 GMT
via: 1.1 varnish
x-served-by: cache-bma1658-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1662662218.243550,VS0,VE438
content-length: 2
X-Firefox-Spdy: h2
upgulpinon.com/11?rnd=4104865871&z=5294774&b=14082265&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=FDNTHe6Z6Wnp_8l5dNuTTLiYjRvVg8raphCG05SVsD2L-eLc0HXcai24f7-RUh0lBHuXIUD_ZjJZYG-jsXLGtOK065WaxW4vwGYiZ2TkyqNUGUxzr7z7XOeUsnZ68Xd5eplBPxt2sNlkPGLFwt4IyBRh9MtDmCFgNN9jw9kJphxsoh3WzN3EYysSUjdv6X9GFuj9SLraVW2GJF5LJDr_BPUCKqX1hvNLnPROj-wLnXnLPGBE6UWlJTTWXu5pXl1Rgu2yrrpqW4mQr8rRjNgDcPZdHMnqUKX7_wCOZlYNW_LkTmQovGyshcYA7aQV6AABKAbhQ_IKIksWVqfxaBzVnbTQmnxdNbbvAz9UIbV8G0YvfTEf6V4KU974TLIwK4YG1IdkCWFwkcUrmLCQ-6JR7Aon_19k3G_IeK8fehOltMzXmSiAYjer3hAymCd_yzJLAdD-axwijUeQRg4CtUghIGxh2VRVP5VTG3mCgN6qBbFNqrFFW_8ZlGAgbWhP-9lqXEr9ptNjQt_421bGzKoMOUMt3g0Tmqc8E4XByhJS65tJshN8Y98pA8osLxOtr7dcn9ZxFMrEKluzNJvFuy2nyV6iGStnC9zYBssXWXIbHUM9qVMZ0p_-BVA9gynZ9kYHfdJ9q0ca5PBGc7zhYmevAA==&ruid=52544051-69bb-4ff5-97dd-c2a416f91909&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fhuffpost.netblogpro.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
139.45.197.242200 OK 0 B URL HTTP/2 upgulpinon.com/11?rnd=4104865871&z=5294774&b=14082265&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=FDNTHe6Z6Wnp_8l5dNuTTLiYjRvVg8raphCG05SVsD2L-eLc0HXcai24f7-RUh0lBHuXIUD_ZjJZYG-jsXLGtOK065WaxW4vwGYiZ2TkyqNUGUxzr7z7XOeUsnZ68Xd5eplBPxt2sNlkPGLFwt4IyBRh9MtDmCFgNN9jw9kJphxsoh3WzN3EYysSUjdv6X9GFuj9SLraVW2GJF5LJDr_BPUCKqX1hvNLnPROj-wLnXnLPGBE6UWlJTTWXu5pXl1Rgu2yrrpqW4mQr8rRjNgDcPZdHMnqUKX7_wCOZlYNW_LkTmQovGyshcYA7aQV6AABKAbhQ_IKIksWVqfxaBzVnbTQmnxdNbbvAz9UIbV8G0YvfTEf6V4KU974TLIwK4YG1IdkCWFwkcUrmLCQ-6JR7Aon_19k3G_IeK8fehOltMzXmSiAYjer3hAymCd_yzJLAdD-axwijUeQRg4CtUghIGxh2VRVP5VTG3mCgN6qBbFNqrFFW_8ZlGAgbWhP-9lqXEr9ptNjQt_421bGzKoMOUMt3g0Tmqc8E4XByhJS65tJshN8Y98pA8osLxOtr7dcn9ZxFMrEKluzNJvFuy2nyV6iGStnC9zYBssXWXIbHUM9qVMZ0p_-BVA9gynZ9kYHfdJ9q0ca5PBGc7zhYmevAA==&ruid=52544051-69bb-4ff5-97dd-c2a416f91909&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fhuffpost.netblogpro.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /11?rnd=4104865871&z=5294774&b=14082265&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=FDNTHe6Z6Wnp_8l5dNuTTLiYjRvVg8raphCG05SVsD2L-eLc0HXcai24f7-RUh0lBHuXIUD_ZjJZYG-jsXLGtOK065WaxW4vwGYiZ2TkyqNUGUxzr7z7XOeUsnZ68Xd5eplBPxt2sNlkPGLFwt4IyBRh9MtDmCFgNN9jw9kJphxsoh3WzN3EYysSUjdv6X9GFuj9SLraVW2GJF5LJDr_BPUCKqX1hvNLnPROj-wLnXnLPGBE6UWlJTTWXu5pXl1Rgu2yrrpqW4mQr8rRjNgDcPZdHMnqUKX7_wCOZlYNW_LkTmQovGyshcYA7aQV6AABKAbhQ_IKIksWVqfxaBzVnbTQmnxdNbbvAz9UIbV8G0YvfTEf6V4KU974TLIwK4YG1IdkCWFwkcUrmLCQ-6JR7Aon_19k3G_IeK8fehOltMzXmSiAYjer3hAymCd_yzJLAdD-axwijUeQRg4CtUghIGxh2VRVP5VTG3mCgN6qBbFNqrFFW_8ZlGAgbWhP-9lqXEr9ptNjQt_421bGzKoMOUMt3g0Tmqc8E4XByhJS65tJshN8Y98pA8osLxOtr7dcn9ZxFMrEKluzNJvFuy2nyV6iGStnC9zYBssXWXIbHUM9qVMZ0p_-BVA9gynZ9kYHfdJ9q0ca5PBGc7zhYmevAA==&ruid=52544051-69bb-4ff5-97dd-c2a416f91909&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fhuffpost.netblogpro.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Cookie: scm=1; OAID=l8dl988245bk013178731v4w4ouxq885; oaidts=1662662215
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:58 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 4872c493dabce547384598a8ce3fd2d2
access-control-expose-headers: X-Sc
set-cookie: OAID=l8dl988245bk013178731v4w4ouxq885; expires=Fri, 08 Sep 2023 18:36:58 GMT; secure; SameSite=None
oaidts=1662662215; expires=Fri, 08 Sep 2023 18:36:58 GMT; secure; SameSite=None
oaidvc=1; expires=Fri, 08 Sep 2023 18:36:58 GMT; secure; SameSite=None
CNT=1_v1_2eDWAAEAAAArSwAA; expires=Thu, 08 Sep 2022 19:36:58 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
capi-tier-1-us-east-2.connatix.com/rtb/g?v=181200&cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7
18.218.219.188200 OK 512 B URL HTTP/1.1 capi-tier-1-us-east-2.connatix.com/rtb/g?v=181200&cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7
IP 18.218.219.188:0
Hash f04403845df389054617ea4cb3fdde08
c4c8a4e04e4e09d0ff7456226b9fc2a6914eeae4
aa38a70d9ce187c91869a339f846f8b881c5fe8f2cb8faa2f454b6ffa0886913
POST /rtb/g?v=181200&cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7 HTTP/1.1
Host: capi-tier-1-us-east-2.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 1546
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://huffpost.netblogpro.com
content-encoding: gzip
content-type: application/x-protobuf
date: Thu, 08 Sep 2022 18:36:58 GMT
server: Kestrel
vary: Accept-Encoding
Content-Length: 512
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 721eb245d022db7af3e30ad4e6b94226
4a53b4e9ad119295498594089826bddea4d0b9a6
6f350e89f4e7a0cea74c003493ea950c768ffcbea234bcf68a818b60842a2f3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=
216.58.207.226200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=
IP 216.58.207.226:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain= HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 08 Sep 2022 18:36:58 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 721eb245d022db7af3e30ad4e6b94226
4a53b4e9ad119295498594089826bddea4d0b9a6
6f350e89f4e7a0cea74c003493ea950c768ffcbea234bcf68a818b60842a2f3e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 18:36:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
capi-tier-1-us-east-2.connatix.com/tr/abt?v=181200&cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7
18.218.219.188200 OK 20 B URL HTTP/1.1 capi-tier-1-us-east-2.connatix.com/tr/abt?v=181200&cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7
IP 18.218.219.188:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
POST /tr/abt?v=181200&cid=1bf35e8b-3d55-48a6-aef8-0ebfdd277df7 HTTP/1.1
Host: capi-tier-1-us-east-2.connatix.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data
Content-Length: 858
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://huffpost.netblogpro.com
content-encoding: gzip
content-type: application/x-protobuf
date: Thu, 08 Sep 2022 18:37:02 GMT
server: Kestrel
vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
pixiedust.buzzfeed.com/events
54.205.244.238200 OK 11 B URL HTTP/1.1 pixiedust.buzzfeed.com/events
IP 54.205.244.238:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0b1bb11707b69a6e080badb38164a7e9
a80f7bc8179cd6bacec9fd9e56c61d5b014f3aca
6aea6dfe6561984cdc5c54ead84d47d2cf29e48253ae282aef237404adad4661
POST /events HTTP/1.1
Host: pixiedust.buzzfeed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 680
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
Date: Thu, 08 Sep 2022 18:37:02 GMT
Server: nginx
Content-Length: 11
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6df26b-97aa-461c-9f22-c5c9496b5701.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6df26b-97aa-461c-9f22-c5c9496b5701.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24e43bc53a0b047911cff00ad4b72320
f6ef30b5df0e634c3a3f607d751e738e55a276c9
7e1406b2101c912e72f37f0257128574079e618c1af83e360acb3f29b4d44d89
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6df26b-97aa-461c-9f22-c5c9496b5701.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8705
x-amzn-requestid: ccc5b695-35b5-49fd-b938-296a88a78ab8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9TgFOiIAMFaXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-12e809c767cdbba61492187c;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: W4siV0rqMGbs2Z7TiD3PvD2j2ErD69gIbIDY2N3RInKx61vDyRTxXA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:55:10 GMT
age: 74513
etag: "f6ef30b5df0e634c3a3f607d751e738e55a276c9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
sb.scorecardresearch.com/beacon.js
143.204.55.96200 OK 0 B URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 143.204.55.96:0
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Thu, 08 Sep 2022 01:12:58 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ql8Wg3-2L1inztxaQHHvo8rJK3wEc2avfNpiB0RRNq-_tgaMK3WVyg==
age: 62639
X-Firefox-Spdy: h2
upgulpinon.com/27/55dfd372293146a7ca113106d0d608dd
139.45.197.242200 OK 0 B URL HTTP/2 upgulpinon.com/27/55dfd372293146a7ca113106d0d608dd
IP 139.45.197.242:0
Analyzer Verdict Alert fortinet Malware
GET /27/55dfd372293146a7ca113106d0d608dd HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Cookie: scm=1; OAID=6c2915545e614d35b9616ed95c926758; oaidts=1662662215
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:56 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
cache-control: max-age:290304000, public
last-modified: Wed, 07 Sep 2022 05:02:06 GMT
expires: Wed, 07 Oct 2082 05:02:06 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
cambria.assets.huffpost.com/vendors~embed~featured~highline~life~news~opinion~react-dom~spoils~video~voices.6f724b143f164c477dda.js
151.101.86.114200 OK 0 B URL HTTP/2 cambria.assets.huffpost.com/vendors~embed~featured~highline~life~news~opinion~react-dom~spoils~video~voices.6f724b143f164c477dda.js
IP 151.101.86.114:0
GET /vendors~embed~featured~highline~life~news~opinion~react-dom~spoils~video~voices.6f724b143f164c477dda.js HTTP/1.1
Host: cambria.assets.huffpost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2022 20:07:30 GMT
etag: "b8fbaec78307fdff604c7f0ab1861209"
cache-control: public, max-age=31536000, immutable
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 08 Sep 2022 18:36:55 GMT
via: 1.1 varnish
age: 1422230
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 90
x-timer: S1662662215.137188,VS0,VE0
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-origin: *
x-content-type-option: nosniff
x-xss-protection: block
strict-transport-security: max-age=31536000
content-length: 35347
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
91.228.74.166200 OK 0 B URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.166:0
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 18:36:56 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "3K3nn1ChiYCKxJYFUmbsHw=="
expires: Thu, 15 Sep 2022 18:36:56 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
a2a5c7f9-3fa0-4182-889a-15aa61acf59b.edge.permutive.app/d0aea23f-b86d-47b4-9d71-210104685824-web.js
104.18.5.81200 OK 0 B URL HTTP/2 a2a5c7f9-3fa0-4182-889a-15aa61acf59b.edge.permutive.app/d0aea23f-b86d-47b4-9d71-210104685824-web.js
IP 104.18.5.81:0
GET /d0aea23f-b86d-47b4-9d71-210104685824-web.js HTTP/1.1
Host: a2a5c7f9-3fa0-4182-889a-15aa61acf59b.edge.permutive.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 18:36:55 GMT
content-type: application/javascript
x-guploader-uploadid: ADPycdu26BM8xK3cotzSlJzdhWsK8I8PamENH5jDsqsEsnYOIm4ymp4nTj1RnYqw6ceXt17mqaPPSn_mFSWuReYsagVHlA
cache-control: public, max-age=900
expires: Thu, 08 Sep 2022 18:51:55 GMT
last-modified: Wed, 07 Sep 2022 20:32:18 GMT
etag: W/"a5c86ea6961365dd73d4f75978cfe9a0"
x-goog-generation: 1662582738099232
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 328204
x-goog-meta-oid: a2a5c7f9-3fa0-4182-889a-15aa61acf59b
x-goog-hash: crc32c=IlQyzA==, md5=pchuppYTZd1z1PdZeM/poA==
x-goog-storage-class: REGIONAL
vary: Accept-Encoding
cf-cache-status: HIT
age: 3552
server: cloudflare
cf-ray: 7479cadc1b2c0afe-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Alfa+Slab+One&display=fallback
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Alfa+Slab+One&display=fallback
IP 142.250.74.10:0
GET /css?family=Alfa+Slab+One&display=fallback HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Sep 2022 18:36:55 GMT
date: Thu, 08 Sep 2022 18:36:55 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s.yimg.com/dy/ads/readmo.js
188.125.94.204200 OK 0 B URL HTTP/2 s.yimg.com/dy/ads/readmo.js
IP 188.125.94.204:0
GET /dy/ads/readmo.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 9VnEoHu62lVjed8nB9Q8aUPJWX2+M+GJSHLV09XWrJquxR1pJA2sJ5ifc0yYmQ70tNJBGHd89n0=
x-amz-request-id: PPCN0ZQ0XN5ZSY2V
date: Thu, 08 Sep 2022 18:23:58 GMT
last-modified: Tue, 28 Jun 2022 13:23:35 GMT
x-amz-server-side-encryption: AES256
cache-control: max-age=900
accept-ranges: bytes
content-type: application/javascript
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin, Accept-Encoding
etag: "18df2c605744d359aff8cc2dfe6f876a-df"
age: 780
content-encoding: gzip
strict-transport-security: max-age=15552000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ak.sail-horizon.com/spm/spm.v1.min.js
143.204.55.54200 OK 0 B URL HTTP/2 ak.sail-horizon.com/spm/spm.v1.min.js
IP 143.204.55.54:0
GET /spm/spm.v1.min.js HTTP/1.1
Host: ak.sail-horizon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 21:45:12 GMT
server: AmazonS3
content-encoding: gzip
date: Thu, 08 Sep 2022 18:32:57 GMT
cache-control: max-age=600; must-revalidate
etag: W/"97dd801dd26ae0172c7875245d92f506"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7w5soNXeauVkD2GajLu-oxzZ14l50w0nhZf2FJWQYsT1Gmw1D-NUyA==
age: 239
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:300,400,500,600,700,800,900&display=fallback
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:300,400,500,600,700,800,900&display=fallback
IP 142.250.74.10:0
GET /css?family=Montserrat:300,400,500,600,700,800,900&display=fallback HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Sep 2022 18:36:55 GMT
date: Thu, 08 Sep 2022 18:36:55 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
upgulpinon.com/9?z=5294774&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fhuffpost.netblogpro.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=l8dl988245bk013178731v4w4ouxq885
139.45.197.242200 OK 0 B URL HTTP/2 upgulpinon.com/9?z=5294774&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fhuffpost.netblogpro.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=l8dl988245bk013178731v4w4ouxq885
IP 139.45.197.242:0
POST /9?z=5294774&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fhuffpost.netblogpro.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=l8dl988245bk013178731v4w4ouxq885 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 211
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Cookie: scm=1; OAID=6c2915545e614d35b9616ed95c926758; oaidts=1662662215
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:57 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: f0491067d19284984417bc38d4c178de
access-control-expose-headers: X-Sc
set-cookie: OAID=l8dl988245bk013178731v4w4ouxq885; expires=Fri, 08 Sep 2023 18:36:57 GMT; secure; SameSite=None
oaidts=1662662215; expires=Fri, 08 Sep 2023 18:36:57 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
jouteetu.net/pfe/current/defaultSkin.min.js
139.45.197.251200 OK 0 B URL HTTP/2 jouteetu.net/pfe/current/defaultSkin.min.js
IP 139.45.197.251:0
GET /pfe/current/defaultSkin.min.js HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://huffpost.netblogpro.com
Connection: keep-alive
Referer: https://huffpost.netblogpro.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 18:36:58 GMT
content-type: application/javascript
last-modified: Mon, 05 Sep 2022 12:32:41 GMT
etag: W/"6315ec69-df63"
access-control-allow-origin: https://huffpost.netblogpro.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2