Report - veteranstoday.com/

Report Overview

Submitted URL
veteranstoday.com/
IP
208.109.36.109
ASN
#398101 GO-DADDY-COM-LLC
Submitted
2023-04-25 12:00:20
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2018-07-01	2023-04-24	3.3 kB	7.0 kB	142.250.74.163
cse.google.com	2642	2015-03-18	2023-04-25	868 B	149 kB	142.250.74.174
img.revcontent.com	9283	2017-01-30	2023-04-24	487 B	1.6 kB	151.139.128.10
ocsp.r2m01.amazontrust.com	unknown	2022-10-12	2023-04-24	680 B	1.9 kB	108.156.15.108
dangerouslyblemishsweater.com	unknown	2023-02-25	2023-04-08	7.4 kB	3.0 kB	173.233.137.36
disadvantagenaturalistrole.com	unknown	2023-04-24	2023-04-24	1.8 kB	5.8 kB	173.233.137.60
vtforeignpolicy.pushengage.com	unknown	No data	No data	431 B	11 kB	3.229.140.253
www.googletagmanager.com	75	2013-05-22	2023-04-24	2.0 kB	87 kB	142.250.74.168
chimpstatic.com	4832	2017-04-21	2023-04-24	470 B	1.8 kB	96.6.17.210
downloads.mailchimp.com	11609	2012-05-23	2023-04-24	2.9 kB	184 kB	54.230.167.125
cdn.revcontent.com	7088	2015-04-30	2023-04-24	438 B	2.4 kB	151.139.128.10
images.revcontent.com	6363	2020-08-12	2023-04-24	3.5 kB	61 kB	151.139.128.10
cdn.cloudimagesb.com	23099	2021-02-12	2023-04-25	2.8 kB	602 kB	45.133.44.9
mc.us18.list-manage.com	83238	2018-04-06	2023-04-20	560 B	8.1 kB	104.110.24.122
www.veteranstoday.com	879784	2012-07-18	2023-04-04	470 B	249 B	208.109.36.109
www.profitabledisplaynetwork.com	unknown	2023-03-03	2023-04-24	902 B	21 kB	173.233.137.52
ads.pubmatic.com	469	2012-05-21	2023-04-25	427 B	70 kB	2.18.172.200
yeet.revcontent.com	7106	2021-12-01	2023-04-24	3.7 kB	1.9 kB	34.242.11.224
clients1.google.com	415	2013-02-01	2023-04-25	429 B	200 B	216.58.207.206
assets.revcontent.com	6152	2019-06-25	2023-04-24	1.7 kB	81 kB	151.139.128.10
ocsp.globalsign.com	2075	2012-07-20	2023-04-24	351 B	1.9 kB	104.18.21.226
simplewebanalysis.com	unknown	2022-02-25	2023-04-24	1.4 kB	1.2 kB	3.122.43.90
assets.buzzsprout.com	72152	2018-04-30	2023-04-19	3.9 kB	1.4 MB	104.19.160.48
mutinousconductdisk.com	unknown	2023-04-12	2023-04-24	1.7 kB	5.8 kB	173.233.137.52
fonts.gstatic.com	unknown	2014-09-09	2023-04-24	4.3 kB	249 kB	216.58.207.227
www.google.com	7	2015-05-10	2023-04-24	2.4 kB	121 kB	216.58.207.228
gifthandymanshortage.com	unknown	2023-02-07	2023-04-19	490 B	19 kB	173.233.137.44
www.buzzsprout.com	29911	2017-01-30	2023-04-19	30 kB	5.6 MB	104.19.160.48
trends.revcontent.com	1799	2015-04-29	2023-04-24	1.2 kB	9.9 kB	34.242.11.224
fonts.googleapis.com	8877	2013-06-10	2023-04-24	1.0 kB	33 kB	142.250.74.106
veteranstoday.com	470179	No data	No data	382 B	312 B	208.109.36.109
www.vtforeignpolicy.com	unknown	No data	No data	54 kB	1.3 MB	208.109.36.109
pl19156743.highrevenuegate.com	unknown	No data	No data	898 B	20 kB	173.233.137.36
storage.buzzsprout.com	66893	2018-05-02	2023-04-19	13 kB	7.0 MB	104.19.160.48
clientcdn.pushengage.com	14595	2017-05-20	2023-02-09	447 B	124 kB	194.242.11.186

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator
2023-04-25	medium	dangerouslyblemishsweater.com
2023-04-25	medium	gifthandymanshortage.com
2023-04-25	medium	dangerouslyblemishsweater.com
2023-04-25	medium	dangerouslyblemishsweater.com
2023-04-25	medium	dangerouslyblemishsweater.com
2023-04-25	medium	dangerouslyblemishsweater.com

ThreatFox

No alerts detected

JavaScript (85)

	URL	Size	First Seen	Last Seen
	www.vtforeignpolicy.com/	6.0 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash e3c86cec83fce9133112044728fce14a 9d8445e6f55606567eed6374599997ac1562104a b45cf045380ed430627a6f61af5931be62cbe8169b3b6b7fef04dd06cd3d8b84 Loading...

	www.vtforeignpolicy.com/	7.5 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash 7578c7a87d4fcc6746bce55b624118a2 42dd58c337b975eb27cb41d91538e9cb3f2fb576 34b4c7519294fae659aef803e514fad55cd7bfd6ad2375f338bbd3a315685983 Loading...

	www.vtforeignpolicy.com/	1.0 kB	2023-03-11	2024-03-01
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-11 22:51:11 Last Seen2024-03-01 13:50:29 Times Seen24 Hash ff63f7319544c3b4081f47713a5ba53e 7e351c5f18605601fa734965272bb6234a62ff0e cdbd366f8641b0226e078e0274ff1efb75893e46bc299125ccddfcaa5041f3b2 Loading...

	assets.buzzsprout.com/assets/iframe-95bfa9ff1f0642bbc90b0c8ca8732e2dd2be78b8a996701e01732f360c2f8a5a.js	210 kB	2023-03-09	2023-06-28
Pretty URL assets.buzzsprout.com/assets/iframe-95bfa9ff1f0642bbc90b0c8ca8732e2dd2be78b8a996701e01732f360c2f8a5a.js IP 104.19.160.48 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:14:38 Last Seen2023-06-28 19:09:42 Times Seen23 Hash e95e5119f917b8554f90298d89ded0d4 c0b36d411fbcac5685f5a84cecad9f76271866a0 901d9080a62311ccdbc6ee40dabb94b0bea277f1e12df5fcc750cc0c03703c1b Loading...

	unknown	26 B	2023-04-11	2024-04-23
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:13:06 Last Seen2024-04-23 18:39:53 Times Seen115834 Hash 1c862db5f2555377c2dc1e62ed7b3981 c29e6dc25c08a70995127ec13ded6f80d9a36174 27d373a6961f797edf69a80f7f24877ef85c2fc4f9f770b2540b1bf5e66823ac Loading...

	www.vtforeignpolicy.com/	375 B	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash f3670aec90535015626b43b095e90542 93f98905e6825186fd82785b665ccfe9656732da 491579877e5d3e39152621e439856004907f7b9f49169084a89a92145e8b73de Loading...

	pl19156743.highrevenuegate.com/8751c879af857467c570b700c5536400/invoke.js	25 kB	2023-04-25	2023-04-25
Pretty URL pl19156743.highrevenuegate.com/8751c879af857467c570b700c5536400/invoke.js IP 173.233.137.36 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:29 Times Seen2 Hash 2da44364e7fabf934c3e7072bf5063d3 20a8353fa31898103f0ac36c249aed900d949162 bf8135a272676b54d4407ed0f97137fba7cca0956ab80fd0d9ab4263c57db525 Loading...

	unknown	192 B	2023-04-25	2023-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash 4a66b9841b692559957c1240bc2ca4a8 a5b6764ccf23c759a416054dee39c028012a69b2 59748197d1362011509f08ec9a1c17e3f0da8368764f4119e2b9d2844acbb821 Loading...

	unknown	145 B	2023-04-25	2023-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash f30e542c62f48bfa38f9122007c7beac f1afb4a0cce9df86e340695d9e5c644d8043d9b4 ec894d59c679958758c44a98c577576a08fbf1d4bc69c9949f4b0ac1d5a94f84 Loading...

	mc.us18.list-manage.com/subscribe/form-settings?u=45978c25d1c6a5f695218bffa&id=14af1f712e&u=45978c25d1c6a5f695218bffa&id=14af1f712e&c=dojo_request_script_callbacks.dojo_request_script0	13 kB	2023-04-25	2023-04-25
Pretty URL mc.us18.list-manage.com/subscribe/form-settings?u=45978c25d1c6a5f695218bffa&id=14af1f712e&u=45978c25d1c6a5f695218bffa&id=14af1f712e&c=dojo_request_script_callbacks.dojo_request_script0 IP 104.110.24.122 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:29 Times Seen2 Hash e76bba780720ff47602199d7916c722e c60e3b53d9aca13a1b8c37866e812e0ab4e7d612 301583bb550a287f8d741aec20b6b7f08dddddea086fd4fa1257ff76a4471629 Loading...

	assets.revcontent.com/master/defaultWidget~feedWidget.delivery.js	23 kB	2023-04-25	2023-04-25
Pretty URL assets.revcontent.com/master/defaultWidget~feedWidget.delivery.js IP 151.139.128.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:29 Times Seen2 Hash 5172e10a0c5647fecf417a9dfa584fab 7e0b0b08b2b5d5713e159edfcd02395058e14a44 4293e6cd6e41e6e5c7d0c286db6639db74e774022d5ed1ada18bc0bf729d1ab5 Loading...

	www.vtforeignpolicy.com/	266 B	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash a13688ef4b40a4dcee7ac4573ebd0bf7 48ad61078593fedeef37fa8a311f64d0b1267682 54370055717176bf7af6bbfeffb312650846757bae4b59a21f9ae77346f2f3f7 Loading...

	pl19156743.highrevenuegate.com/8751c879af857467c570b700c5536400/invoke.js	25 kB	2023-04-25	2023-04-25
Pretty URL pl19156743.highrevenuegate.com/8751c879af857467c570b700c5536400/invoke.js IP 173.233.137.36 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:29 Times Seen2 Hash 4fa168b87af1da9c95859adb21b116f7 f5142431f277058be917022ba7f112b2acaa9218 32905faf0ac75a4cbd83c83e898336823f4a6e0fe3d2a3e1f2578c90964b3412 Loading...

	unknown	192 B	2023-04-25	2023-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash aeecb10f086cc530ea3cd37488a8486e e5bc64d23e2f2318e7ca1976c069ca780b971448 5d34992f0575b98e7e54fc3a6af15471372395f652c5d2f074784b7156cac90a Loading...

	www.vtforeignpolicy.com/	5.5 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash e930233dfb9b7df2074cfe61f468f8dd 4adc6347ecc13109b3bdeeaf7b3e956c5c15be22 cb783675f70eb73c543cd484da36d03d67bc4f0fb88aa38affdc82924d8cd6ef Loading...

	www.vtforeignpolicy.com/wp-includes/js/jquery/jquery.js?ver=3.6.3	292 kB	2023-04-01	2024-03-08
Pretty URL www.vtforeignpolicy.com/wp-includes/js/jquery/jquery.js?ver=3.6.3 IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:11:19 Last Seen2024-03-08 00:41:01 Times Seen832 Hash 3f717cd4c22a68fc54182d7a6627a51f f3b1c8aea28772f44941dbe4e0a8552da65e72df 3dd60be6bd4ea166def6e1a3252ee45732dd5d2acd2e4dfc01ec7a5040677734 Loading...

	www.vtforeignpolicy.com/	247 B	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash 7169ec77976b2c405efc3fb319d35e0a 3f555e18528150d7e5791515a9cf210000cd8a9c 39d2bae71bfcc5964da26a4efcb8b4667717eb62b0d619c618137b8c8caa7a50 Loading...

	www.vtforeignpolicy.com/	350 B	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash 2b07115a2e25398a2eb8ca8a84cd4548 db16a98b1199514ea49005016a4dd999e4b04479 dd43ff342a1764e01b851ffe55474ff4dd7bb4f215f43b788802c7ba94b4e6d3 Loading...

	www.vtforeignpolicy.com/	906 B	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash e5cd231b32410dee17e964742af8c083 2cd2ddbed9039e5785406159d0d04ca190978bb2 9799faf64f8d44517ce43a9cf42c6f04bc9f6cb2de167cb9876eab9c449e726a Loading...

	www.vtforeignpolicy.com/	905 B	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash ac27e307aa8d660c29cfcf2015622632 e214c5d808d51b3bd8a2e37c790b689235a05fde 678ce1132c0d6f88c9c7503db1ab12d01642e8f4a4374e12cd03666a30f63943 Loading...

	www.vtforeignpolicy.com/wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=1182d95cb199c23e56f61364ae38f2e7	5.4 kB	2023-04-09	2024-04-09
Pretty URL www.vtforeignpolicy.com/wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=1182d95cb199c23e56f61364ae38f2e7 IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-09 13:38:18 Last Seen2024-04-09 23:17:21 Times Seen593 Hash b5f07c5ad158ec517384b27dc9943e06 75bade188b8b2b73f69b64a6c317bca773f15995 b48a6862a4b9d72c34942d44d54e7cdeeda1e8343e6af2f79c57dfc777b3c23b Loading...

	www.vtforeignpolicy.com/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=1182d95cb199c23e56f61364ae38f2e7	190 kB	2023-04-08	2024-03-22
Pretty URL www.vtforeignpolicy.com/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=1182d95cb199c23e56f61364ae38f2e7 IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-08 21:15:46 Last Seen2024-03-22 11:24:58 Times Seen216 Hash 70d798107111e83d5f0f57fc8590dbff 9a35c97b46657ef45624612dca8eb749c99ba770 d4acd7ed918bfa2c2bbae2cdc69eb354f0904d854851df93f18d523ca73400ca Loading...

	clientcdn.pushengage.com/core/b89bd485-5008-47f6-beef-247aa772373c.js	124 kB	2023-04-25	2023-04-25
Pretty URL clientcdn.pushengage.com/core/b89bd485-5008-47f6-beef-247aa772373c.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:30 Times Seen2 Hash c7f59ec6b92b77bc24611c2f123e4474 9a0b6d4f9ff2064cb525b5b078b233e0adddbed6 e6ebd4b22d7adc588baa32d4a47b5a4b83331f3a119c54a1eb600a007a481e05 Loading...

	www.vtforeignpolicy.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.js?ver=1682423381	31 kB	2023-03-07	2024-04-16
Pretty URL www.vtforeignpolicy.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.js?ver=1682423381 IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:52 Last Seen2024-04-16 22:29:53 Times Seen882 Hash 3aec8aee9c0b7fb595ba301506f09002 f58b5d6b072ebed281356afa607efef1eb3fad8f 357201dedf46672163a0b8694cb297c5351c6d25402c76b625b3c9ae7305b0e0 Loading...

	www.vtforeignpolicy.com/wp-content/plugins/wp-google-search/assets/js/google_cse_v2.js?ver=1	468 B	2023-03-07	2024-03-30
Pretty URL www.vtforeignpolicy.com/wp-content/plugins/wp-google-search/assets/js/google_cse_v2.js?ver=1 IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:57:48 Last Seen2024-03-30 10:01:24 Times Seen157 Hash 773192fef76228fb41b6af3e1c6da94f 829bf46d15ca9cefc239a305543951c5be6c2c90 fae2dc10eaa5b7644e8f58c84f7fa0641b6a12b0bea27684105675f6bc45895e Loading...

	unknown	44 B	2023-04-11	2024-01-03
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 22:46:09 Last Seen2024-01-03 18:40:23 Times Seen76 Hash 4d40e30cc2962622b8c6ca09b0b4051f 9da36298ec7181dcf01e01c49a72dbb59f70a533 f17ef12525dcae64fb21fdee5c880aaa7b7a43e0e7ae2639721d7f043c4301b2 Loading...

	www.vtforeignpolicy.com/	907 B	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash 7caf18999feba1cea722e0ea5376e0bc 45054b3a26de6127468ad2f7b633d15c4fb32ed1 ca9212b544b086474f4ec35dbf2da3812a2baaf03870797da117467d185b2657 Loading...

	www.profitabledisplaynetwork.com/4d6494c79000dc18c90eb1bfb3dcf5c9/invoke.js	27 kB	2023-04-24	2023-04-25
Pretty URL www.profitabledisplaynetwork.com/4d6494c79000dc18c90eb1bfb3dcf5c9/invoke.js IP 173.233.137.52 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-24 21:07:36 Last Seen2023-04-25 14:00:29 Times Seen4 Hash 6e92be51ec3535e215f4faf11c3ed898 6b5cd8c6d4ca715e2872006efb916b1ab90a6917 de911f7219cd79ab73d01d9710a4bcff4a7e91a01595bc9e24f98be770af587c Loading...

	www.vtforeignpolicy.com/	905 B	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash 5497dd63362abe386fb7ae3b2df9d2fa c545e2b7012eab546b09a7d6ff4fd255f0cef639 36b3b4329e46a17bb86b65659f6811d582428dc85ec763b1aa4d2bb1a888c6b1 Loading...

	www.vtforeignpolicy.com/	922 B	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash 9ff237b7c35c1780bf845d5efb8ccca0 5fa40035c9a1aac44bd2988e0f0283ca8c69be3b 150f66ba5f6dafd6327beb48cc05fad396d81850291ad9ed572fc84cd6487498 Loading...

	www.vtforeignpolicy.com/	922 B	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash 68b8eec1fc5ff539e72c37e9627a9ea6 12a1b6525463e2f2f11cadeece447a7e60b175fa c49a0b45415fc4ab21bc4f390d574472ec83009d2dc2ad40974acbab85de1c25 Loading...

	assets.revcontent.com/master/defaultWidget.delivery.js	17 kB	2023-04-25	2023-04-25
Pretty URL assets.revcontent.com/master/defaultWidget.delivery.js IP 151.139.128.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:30 Times Seen2 Hash 961eb543d63c9297b50208eb1dc0446e da05c6360f73d57f1c057699307dce9d21c86f96 2957d29abe3bf43009e02990a5aa7687f3fb6067a61e2bd70ff67cccda16eb7c Loading...

	downloads.mailchimp.com/js/signup-forms/popup/unique-methods/73bf20a8fe762dee6abd0173cd576e53d748a0df/popup.js	104 kB	2023-03-08	2023-05-05
Pretty URL downloads.mailchimp.com/js/signup-forms/popup/unique-methods/73bf20a8fe762dee6abd0173cd576e53d748a0df/popup.js IP 54.230.167.125 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:40:08 Last Seen2023-05-05 18:15:45 Times Seen531 Hash d3149280c831cbf6538770c71a916f43 e72b88e8691c7fde33671cd95670f5378a7877ce b0755de9edee41abdef304a877ee3174f92c3429feaf7c06437822970addbb4f Loading...

	www.vtforeignpolicy.com/	924 B	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash afabe682ed1540ef80efe55a5460c4dd 3809d136a5a06032d40d53ef3b91dab39f377f8a 9c889c6525309181429b713318b7296a95f968791c1828ea605f4f9830c9ead3 Loading...

	www.vtforeignpolicy.com/	920 B	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash 2b1016cf489b36b114df369af9bf1f97 7b526647baf999c0b4330e773b9b840d013a5570 7e808e27e65f6a8ff4cbf53a2ce555bf6719d7084935c6aa54f3c2f0e208f7e1 Loading...

	www.vtforeignpolicy.com/	1.9 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash cb136477151f4ae4f13f536501969047 c1f7a717c3c3a48875714c0e21dc5c1b1a05edda 0241264a82e1b1f058d36da91820696624f3e2891aa0d314653b34a68a1afacb Loading...

	www.vtforeignpolicy.com/	3.9 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash 74349a73f8e18d8d2dfb6cfc86ab639c a047f89ce35299912aca517d2396cc564e4b5ed6 2fa7fadc748e27e45d9ea117e66ad7c85299b3e984cd860b90889e364050cb5a Loading...

	assets.revcontent.com/master/delivery.js	168 kB	2023-04-25	2023-04-25
Pretty URL assets.revcontent.com/master/delivery.js IP 151.139.128.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:28 Times Seen2 Hash 90edfd90919b38142a3ef8c08c0963fb 2e55413b4ac59ae29427d754f042f7434f967b6b b48663c73d22a6555d7c14462ce63a29d7533501d561f637522927f1829e439b Loading...

	unknown	52 B	2023-04-11	2024-04-22
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 23:19:32 Last Seen2024-04-22 22:35:27 Times Seen533 Hash 2832937f0c103d72ad5c0745ebf78761 4ee4911a9ba7fdfde6318015acd530ee99e8dd5f 6b12099472bb29ee3f96ae683e0ac5debd857d316123fb1a6a0c062dcf8636e6 Loading...

	www.vtforeignpolicy.com/	4.0 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash 9ffbd34b62ba29d7543a595eb4c164d5 2c77fdcaef4a65751126de898abb0e8186913cae 9e52e44c03e91073d9e956e6e63b82afc157228df454fcaaab4d916befd7a4b0 Loading...

	www.vtforeignpolicy.com/	2.6 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash 38a3e37783104fa3f38af8c125410343 6e7d89c8fbdf72a99962108a1b435095d48d4161 2c714cc50bb78244a95a0fb8fc030660bdb36ddaa7d87963e0e85f5ac10bf30f Loading...

	www.vtforeignpolicy.com/wp-includes/js/comment-reply.js?ver=6.2	12 kB	2023-04-05	2024-04-21
Pretty URL www.vtforeignpolicy.com/wp-includes/js/comment-reply.js?ver=6.2 IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 02:07:35 Last Seen2024-04-21 20:18:48 Times Seen156 Hash 39a98028eede8315f8ff2d2c1f947168 5bf6ba9431001f3b047216aef2abf4bfcb37592c 0df263a4d7d02d7bf1b4c0e02bf3c5c456228d3f5e715153c7db9d3944aed91e Loading...

	unknown	120 B	2023-04-11	2024-04-22
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 23:19:32 Last Seen2024-04-22 22:35:27 Times Seen542 Hash 4f08e11166d7e4f9792b4423d744bf75 fd9b7071819f521b30a1f8703946dc9682a03f7a bfd2b11bc2a2eb7c27a98eff8cbd10c75e66d784165e367e3b6bbac3b9234925 Loading...

	cse.google.com/adsense/search/async-ads.js	144 kB	2023-04-20	2023-04-28
Pretty URL cse.google.com/adsense/search/async-ads.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-20 23:30:52 Last Seen2023-04-28 14:44:23 Times Seen18 Hash 9d0a29d8f534ac71a027b21d1cfd223e e29d69f6838feace87b4b29b5ed3932f75aa2394 3b6485b37c8ac640f38c0629770e188839bd18e46f0b11466974ee275d6204bb Loading...

	downloads.mailchimp.com/js/signup-forms/popup/unique-methods/embed.js	222 kB	2023-03-09	2023-05-05
Pretty URL downloads.mailchimp.com/js/signup-forms/popup/unique-methods/embed.js IP 54.230.167.125 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:55:07 Last Seen2023-05-05 18:15:45 Times Seen482 Hash 3281ba63652083b7a938a78b62fe19d4 024aa7bed69a65808312ee82f37b2bacfba0968f 8b6b9460628f90ea3198218e3960a034c3078088dd324864708c48c5810e1b28 Loading...

	unknown	145 B	2023-04-25	2023-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:27 Last Seen2023-04-25 14:00:27 Times Seen1 Hash 4fae0da45c25d7fc2c68c9d49ed2e41c c631c2f90b06d59c14a4bf60ac3091099f989c07 95a74c86c46c0263582e80dfc55b696ac54e7770cec6bb4f56618bcfffb48eca Loading...

	unknown	3.3 kB	2023-04-25	2023-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash 6496fa0e77c5b39fe6d46f4b054bd71a aea51ad060949c850eafc13060b649482aa89d25 e2c97a4dc104773b57b764f8c9e78556d20e05822953d67a4d26b59cbd2c325f Loading...

	www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large	754 B	2023-04-25	2023-04-25
Pretty URL www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large IP 104.19.160.48 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash 448b486b93fad206ecb0bfefcca38fd3 dd9d652a436d023c3e65c8f92ec9b2cd46ab365a fd859fc036ad626d55688b03a068c4896284f9922f934b170aa56d3713d1037e Loading...

	www.vtforeignpolicy.com/wp-includes/js/jquery/jquery-migrate.js?ver=3.4.0	31 kB	2023-03-07	2024-04-19
Pretty URL www.vtforeignpolicy.com/wp-includes/js/jquery/jquery-migrate.js?ver=3.4.0 IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:27:53 Last Seen2024-04-19 15:05:30 Times Seen919 Hash bebc234f4d4c2b14c149a9cbeca3e28a cc7e0734bc04d61c99984ba386901c713c9bac3b d0d91bd741e7866e04259d100e9bc89dcddb469efbc1021b210996607dd8ed5c Loading...

	www.vtforeignpolicy.com/	4.0 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash b93e619e01ad44d471cb6263b21789ff 45a1fd5cdc96dbe2d36bcf23b17230aa990a3772 91ad3d7a571ae0f5120bcb6f1f3943ba424bd592765c1e410b4843e56d944896 Loading...

	www.profitabledisplaynetwork.com/da8dc8ff869e9f989f3b5e49d93d74ae/invoke.js	27 kB	2023-04-25	2023-04-27
Pretty URL www.profitabledisplaynetwork.com/da8dc8ff869e9f989f3b5e49d93d74ae/invoke.js IP 173.233.137.52 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-27 01:46:41 Times Seen6 Hash dbd1e980e0d6c6ca215b67a29777c071 c9f960a7d8a1b5d56775c7ddd835552402926541 4bcf081b1db4a284ef33b539e34e23b46441111b3944b4308dfe7ccf8530dd7c Loading...

	www.vtforeignpolicy.com/	3.8 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash db747a892b14c0df8ae06ade22457a45 20431a91a382cb85f5219256365c5fd82964dde9 bd9bf6138f2934352b54cce8dd87638925e9aa1ca88236b0e4e5bdd2cea6d2e6 Loading...

	www.vtforeignpolicy.com/	3.9 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash 6b8eb96c43d3f82e8b3715e804643d46 4aca7b9088e42f8fc2827debb8019affa2c901da 708fd86a076c6b3b5f221ef566a359b6552099e72e7ec5006edf5666f179b563 Loading...

	www.vtforeignpolicy.com/	2.6 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash ba4cbffb50786395087e7ae5b8593adf edbd0c2ed1f0e8d07d9d3fe997e30a7e5d688846 ad7d8ab2cf1d5b41231db3804b58aaa911ed480535a81f1718daf6771747bdff Loading...

	www.vtforeignpolicy.com/	351 B	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash 5d43748ca7741ee007d6a9547f4f22d4 7e46c2c828d9fe04dd16aece6eb01682c4026482 c837740eacad56a253f58cd918dd780e418b225dbd972f60b6594a95b92d5ee0 Loading...

	www.vtforeignpolicy.com/	2.6 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash 6244c57023521af1c3195beda8863af0 41cb46a310c1b28d3f019fd95a60bf5ebff7df78 a0e44863afad9926cc461e66fee78fb8108004def668837500022a0d51a7bc45 Loading...

	www.google.com/cse/cse.js?cx=24d4b937a72f74e42	9.4 kB	2023-04-25	2023-04-25
Pretty URL www.google.com/cse/cse.js?cx=24d4b937a72f74e42 IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:29 Times Seen2 Hash 135386b318c15f0087c96e05438f0920 9f46c2e8eeee4b5ae14d5c4ec31bc2a01d5603a1 1531d5c27371a16527342e478ba37286bfc6a689e9c32888605e0b58c879e0c8 Loading...

	ads.pubmatic.com/AdServer/js/pwt/160835/4933/pwt.js	230 kB	2023-04-25	2023-04-25
Pretty URL ads.pubmatic.com/AdServer/js/pwt/160835/4933/pwt.js IP 2.18.172.200 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:29 Times Seen2 Hash 6061d5feef896bd613456841e8aa7298 105899fa0d42524bddee8ba5a1803539b980f511 d653b3f5a1bf62b2442baeb4da9c18d53a5ac849c47815c4f189eeb17a92993f Loading...

	www.vtforeignpolicy.com/	3.9 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash 52c52a7893f3e583f3aa3b0d11f291a0 c003445267b3e0eb92f4798067216f6969df56a0 4d27ffdf17de4f2324c661702a2b307fdbabed56d549129332417fec00b71bc2 Loading...

	www.vtforeignpolicy.com/	3.1 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash 15ba44a677ed2b403e3d420218063821 2948c56437d254049b4997f3ae9959c6c88a8a1a e63f65e86e80aa70b11ad0e53be51505a77d8c57e971c6f18a15ad37a9162e46 Loading...

	www.vtforeignpolicy.com/	3.7 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash c66300549c0c2abd901bd25abe8a9233 de50321cc1f3a535a890e7ac88158011decf7501 6bc534ed213068df6de2321de73c3161f6e9f164fbf3b9b26c26b7ea2f9a2a32 Loading...

	www.vtforeignpolicy.com/wp-content/plugins/easyazon/addition/components/localization/links/resources/links.js?ver=5.1.0	797 B	2023-03-13	2024-04-03
Pretty URL www.vtforeignpolicy.com/wp-content/plugins/easyazon/addition/components/localization/links/resources/links.js?ver=5.1.0 IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:56:37 Last Seen2024-04-03 16:48:45 Times Seen16 Hash 55466c24ba2ebcd898170ade9ae6052b dc644ac5f2cb27f8090b4ea8208e735246f81f85 02267fb5c37d7715332375324a7db848a97c1859d22aa5f504b08e605bc11704 Loading...

	www.vtforeignpolicy.com/wp-content/plugins/easyazon/addition/components/popovers/resources/popovers.js?ver=5.1.0	2.7 kB	2023-03-13	2024-04-03
Pretty URL www.vtforeignpolicy.com/wp-content/plugins/easyazon/addition/components/popovers/resources/popovers.js?ver=5.1.0 IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:56:37 Last Seen2024-04-03 16:48:46 Times Seen14 Hash b159cd0087fa6de0790d49236b219f97 03f44e2c8801f0bc263867b49bbb079b155f79c7 8158a3c2296836dbda67b7dc6b9b7536a4076d512fa909e8eeb780e45aed4f7f Loading...

	www.vtforeignpolicy.com/wp-includes/js/underscore.min.js?ver=1.13.4	19 kB	2023-03-08	2024-04-23
Pretty URL www.vtforeignpolicy.com/wp-includes/js/underscore.min.js?ver=1.13.4 IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:29 Last Seen2024-04-23 19:01:09 Times Seen41340 Hash f88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a Loading...

	www.vtforeignpolicy.com/wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=12.3.1	310 kB	2023-04-09	2024-03-22
Pretty URL www.vtforeignpolicy.com/wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=12.3.1 IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-09 13:47:17 Last Seen2024-03-22 11:24:58 Times Seen256 Hash de3d0d5d42d59b5cefbf23336cb5a577 7147c7b68b6eb6d8b68607f5458b535dd8c3be54 aa01f9e537487e7816ceb279ff322b54dbbb2171675d4d72dff3f1b144ef8d08 Loading...

	assets.revcontent.com/master/commonModal.delivery.js	3.6 kB	2023-04-25	2023-04-25
Pretty URL assets.revcontent.com/master/commonModal.delivery.js IP 151.139.128.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:29 Times Seen2 Hash 3c59d541c0573b1f10264bd214def6cc bdfc716dd09851dc4bfd88046c79768730713a1c a7ec42ec16244d6369d2062575e3a7fe283ce635bff228892e45a4a4912644e3 Loading...

	www.vtforeignpolicy.com/	3.7 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash 110110b06486172e7122d3d4b26c693c 7cf03faab78411c0d9212f92c1258d8fbb71b35c 33f7a4822e778c43d673ec40df4164dc5c55176ef4cba499808f69d580be01b1 Loading...

	chimpstatic.com/mcjs-connected/js/users/45978c25d1c6a5f695218bffa/d93ff33efe87146516ec8f307.js	3.9 kB	2023-04-25	2023-04-25
Pretty URL chimpstatic.com/mcjs-connected/js/users/45978c25d1c6a5f695218bffa/d93ff33efe87146516ec8f307.js IP 96.6.17.210 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:29 Times Seen2 Hash 1fc2b10662dccdfccd0544d1de8f8d5c 0735424999d809fbd07377b78fc9c0eac9a75824 14fff22fa5905bce559cc328645f567f33fcab33c0aff0156305823f2a5290fb Loading...

	www.vtforeignpolicy.com/	3.7 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash b7c2bcecd53ee6d171eb1596b2acec9e 4d4c12ca450ae9f59160961b23adec08ec43614e acf67baab45869017c29ed786c4ab0ee338b681a826bcdc9b4d951802bc30b60 Loading...

	www.vtforeignpolicy.com/	4.9 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash 83922a84128cd2a82db068d01bf71089 47fb9b200468af151aa87b0d446a83f6ad6bba44 6152b3a9f1ef757e96dec0006408867612f9c0da752e51651f81d260fa571db6 Loading...

	www.vtforeignpolicy.com/	4.9 kB	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash c41a12b65de6cb60471e621cb11a9afd c29349a05f4edcc7da560df93bf882711d47ffd9 98571167b79fe88d983232d59f243fb68adeb9ec0977d65853beca7f2a6d5a49 Loading...

	www.vtforeignpolicy.com/	95 B	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash 8a8f8cc966815d3cc7b6af90d59a2b66 ec335671ab4220b04a98d6853042329a42d542c3 0e76d26b2085ff9de34f3ca2229cfaaba23a91e0c45777c1ce6628d1c57bc562 Loading...

	www.vtforeignpolicy.com/	183 B	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash c346e60dddf58c4da0448add0cfd5064 f641d180c3834c61d46fefaaae50f2013c032d97 78c7caacb82b46447531503150a31ddbd1289fc68f31f1965d8f5e67549df201 Loading...

	www.google.com/cse/static/element/a9408e9443edd8dc/cse_element__no.js?usqp=CAI%3D	317 kB	2023-04-15	2023-04-26
Pretty URL www.google.com/cse/static/element/a9408e9443edd8dc/cse_element__no.js?usqp=CAI%3D IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-15 09:24:30 Last Seen2023-04-26 08:22:22 Times Seen17 Hash 48a5d568a8a57d95b8e6bab060038524 7218ad83c6e8a9353ec9a9fb6e6231756f2becdf 88b6ef49b4739fa269e04c121e42eafb101c7cbd37a953c6141df71f8719622f Loading...

	www.vtforeignpolicy.com/	443 B	2023-04-25	2023-04-25
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash ced917dcac166d0eff3aa00d7e40bc9e 6fd2f391f35f03955d64f71781e45f32f799cd3a 0979dec61472eeb6d727c3e0625156f775edba696cb4f8aad849ffd25b1e9577 Loading...

	www.googletagmanager.com/gtag/js?id=G-91CV04FW8L	255 kB	2023-04-25	2023-04-25
Pretty URL www.googletagmanager.com/gtag/js?id=G-91CV04FW8L IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen2 Hash a25a1b68121769239df93d680a1bdf33 9497c4248ca20f8478c38a44d44fa7196a40e712 ba1f2d39404aec620bf245a7e5bbe904b5e4b985a80203a689a8207a4f7803e6 Loading...

	www.vtforeignpolicy.com/	62 B	2023-03-07	2024-04-23
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:11:52 Last Seen2024-04-23 19:29:24 Times Seen34 Hash 7ac11db0d929278ac9807d14f457eb0d ea0151af498405a35519b260f0b329e49d310442 33b5af3fcbfafb87f9ad1a5cb84c238d1644df186a91c0a32315decea0eb64ac Loading...

	unknown	3.3 kB	2023-04-25	2023-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash 5cb12697e4cfa612462f1b5c87805fee e3bce057ba27fcd6d5c77f8c97f8b8614b411522 67c50f5adaddc41bdd297ab49af146856b56a4f2d13fa2db14171436fc60df5f Loading...

	www.vtforeignpolicy.com/	506 B	2023-03-11	2024-03-01
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-11 22:51:11 Last Seen2024-03-01 13:50:29 Times Seen23 Hash 96e6712660a9bb980256e87c27d700c0 b28ab8f700fa1388c2d8a0df04d58eb29c33191f 1251927bd0bd1966a7139ac4b10d9ba5482d125aa521bf14aa6043965e414482 Loading...

	www.vtforeignpolicy.com/	6 B	2023-03-07	2024-04-23
Pretty URL www.vtforeignpolicy.com/ IP 208.109.36.109 ASN #398101 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:52 Last Seen2024-04-23 09:56:46 Times Seen3023 Hash e40805fa510c6622658de2086eb361d2 41d8e131233dceea1d0c9aed70774914965304ef da6bcc93436f9fde95a92d5412601949548490ad0290f355eb4a019eeac1e3f7 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 65468fbbf7f962f759ff612937d9adac	2.1 kB	2023-04-25	2023-04-25
Pretty Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash 65468fbbf7f962f759ff612937d9adac 44c672847261aaf14b5ed9c4682c937f0ffc9042 8b433f6ff0e6844011a68da75ffed5d1d6bfaa6e077288c92d63a685fa58fb25 Loading...

	#2 Eval - 7e8bb84d0398790ebdd52956e16a4014	2.1 kB	2023-04-25	2023-04-25
Pretty Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash 7e8bb84d0398790ebdd52956e16a4014 49ff84ac5bb4d0ba895afe07703d9462e3b59b7c 9280424f044ed9a81ae76183452041491d9970408bb008880f39004cf8ad2c70 Loading...

		Size	First Seen	Last Seen
	#1 Write - 6ec13f4d78c7c44fb87ed5235bbeeacb	130 B	2023-04-25	2023-04-25
Pretty Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash 6ec13f4d78c7c44fb87ed5235bbeeacb 3b1da2df9748ab11acb8fa931d6ab9c61727aaa7 2f70b593019283ed745bcc6a0da5c3db379d538a426fd61defd59492fc21f553 Loading...

	#2 Write - 0799c61851ce09e314fdd262ca230277	130 B	2023-04-25	2023-04-25
Pretty Observations First Seen2023-04-25 14:00:28 Last Seen2023-04-25 14:00:28 Times Seen1 Hash 0799c61851ce09e314fdd262ca230277 57b62c2fe069e0deedcf21650143018c068630f3 2d2e237b97d73807bf8a19674eac43e633a5a737859084bde12539299e0e449c Loading...

	#3 Write - 996bc9da85e4bfe72b59138c9d8fd906	158 B	2023-03-07	2023-05-05
Pretty Observations First Seen2023-03-07 01:10:49 Last Seen2023-05-05 18:15:45 Times Seen392 Hash 996bc9da85e4bfe72b59138c9d8fd906 b2db98e22b035fcb8fda176b2e2ef4b341e8fdbc d1167e3b70947916f421c7e95057bdf8910f7ba485e3716107c9fa1cf6403437 Loading...

HTTP Transactions (260)

URL IP Response Size

veteranstoday.com/

208.109.36.109

301 Moved Permanently

0 B

URL User Request GET HTTP/1.1
veteranstoday.com/
IP
208.109.36.109:80
ASN
#398101 GO-DADDY-COM-LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: veteranstoday.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Tue, 25 Apr 2023 11:59:58 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://www.veteranstoday.com/
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=4, max=250
Content-Type: text/html; charset=UTF-8

www.veteranstoday.com/

208.109.36.109

301 Moved Permanently

0 B

URL User Request GET HTTP/2
www.veteranstoday.com/
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Certificate
IssuerLet's Encrypt
Subjectwebmail.veteranstoday.com
FingerprintD9:15:D0:A5:B7:C8:E0:33:C2:DD:47:77:CD:EA:F4:05:5E:82:43:2E
ValidityTue, 18 Apr 2023 00:31:15 GMT - Mon, 17 Jul 2023 00:31:14 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: www.veteranstoday.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
x-redirect-by: WordPress
location: https://www.vtforeignpolicy.com
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 25 Apr 2023 11:59:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/

208.109.36.109

200 OK

48 kB

URL User Request GET HTTP/2
www.vtforeignpolicy.com/
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9798), with CRLF, LF line terminators
Size
48 kB (48357 bytes)
Hash
f56fc1934470ef890b29489d34b844be
d7c3642afae76d4d436230b6c7085c3b8a17a6ee
c486b8f835451db71c10b4a06390c68cd2b4fb33ba29b3e957cb1aa5a21c57d5

HTTP Headers

GET / HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
vary: Accept-Encoding,Cookie,User-Agent
cache-control: max-age=3, must-revalidate
content-encoding: gzip
content-length: 48357
last-modified: Tue, 25 Apr 2023 11:49:41 GMT
content-type: text/html; charset=UTF-8
date: Tue, 25 Apr 2023 11:59:59 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-includes/css/classic-themes.css?ver=6.2

208.109.36.109

200 OK

432 B

URL GET HTTP/2
www.vtforeignpolicy.com/wp-includes/css/classic-themes.css?ver=6.2
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text
Size
432 B (432 bytes)
Hash
38464515e0aa5dff450499f6668ebee3
2e691e1e89ad10a3ccd3324539fa889e3f031438
2503b99669c667d69f7bb82a72a8d40a09abb9b5f74ff32856d0b0b42fa8a96f

HTTP Headers

GET /wp-includes/css/classic-themes.css?ver=6.2 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 30 Mar 2023 00:48:13 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 432
content-type: text/css
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-includes/css/dist/block-library/style.css?ver=6.2

208.109.36.109

200 OK

13 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-includes/css/dist/block-library/style.css?ver=6.2
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text, with very long lines (2914)
Size
13 kB (13253 bytes)
Hash
4503aeaac016d6379ff0fbb5353e2ef1
f8dbe7c4751db70db111545a36dfcb43b7bd089c
d35f8e7d0e64e4ba08adad7109aa83482443b80ae89c6ee814c176269ed8f695

HTTP Headers

GET /wp-includes/css/dist/block-library/style.css?ver=6.2 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 30 Mar 2023 00:48:13 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13253
content-type: text/css
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/plugins/easyazon/addition/components/popovers/resources/popovers.css?ver=5.1.0

208.109.36.109

200 OK

398 B

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/plugins/easyazon/addition/components/popovers/resources/popovers.css?ver=5.1.0
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text
Size
398 B (398 bytes)
Hash
7448e3d810eccf43371ec68f10935c4e
fc61f49f11a91579795fd9506f83b33969da59e8
ab93c9d1d6ae9262e358fcb401bd835cfc080ba8145226a7f093416abc536675

HTTP Headers

GET /wp-content/plugins/easyazon/addition/components/popovers/resources/popovers.css?ver=5.1.0 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 02 Apr 2023 17:25:10 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 398
content-type: text/css
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=3dc090e4a6dd4d9e8f4a61e980b31fd9

208.109.36.109

200 OK

4.8 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=3dc090e4a6dd4d9e8f4a61e980b31fd9
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text, with very long lines (37612), with no line terminators
Size
4.8 kB (4816 bytes)
Hash
4c4dc8173a05a63ef0451ec5babbaf45
326ac6d775fcce0bbd7fe136dabeca4f0433fbc4
4dbecbb1dca9f3ee6c37a55d2382f7dd89b0d1144d4ee4f854a2912ff2cacd48

HTTP Headers

GET /wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=3dc090e4a6dd4d9e8f4a61e980b31fd9 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 12 Apr 2023 08:22:38 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4816
content-type: text/css
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/plugins/tablepress/css/build/default.css?ver=2.1.1

208.109.36.109

200 OK

2.5 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/plugins/tablepress/css/build/default.css?ver=2.1.1
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text, with very long lines (6090)
Size
2.5 kB (2454 bytes)
Hash
4c9c73c03c7bc985c34fd7af2b989ef6
793485dd4039bfedb1226c57fc395b9af5037222
5d05ee9ad3629994a5207a6f4e2592695664f2106c7e917c42c2814bae24da85

HTTP Headers

GET /wp-content/plugins/tablepress/css/build/default.css?ver=2.1.1 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 11 Apr 2023 14:50:41 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2454
content-type: text/css
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
15208096a8fc1cbaf8f5fbf12a17f8c9
542712633c4a2ace3fa99469656a92f76e979a8f
04f8d24394c291a5d75ad5c17a5f20742acbc79283ba87e955339daf3b94c23e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 12:00:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.163

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b289a3b478eee23e8bba0f8af92a94f3
76cacfe9047e1c92bb5a0f62ceba584fb9ecf55f
3fe4688d37fc6b854b522038c965c33bafa574973afc9df20bb9d79df0de27c0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 12:00:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

assets.revcontent.com/master/delivery.js

151.139.128.10

200 OK

53 kB

URL GET HTTP/2
assets.revcontent.com/master/delivery.js
IP
151.139.128.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectassets.revcontent.com
FingerprintAB:F6:FA:3D:1C:7E:BB:99:59:47:3B:E4:37:AB:C3:7F:53:4A:7E:2A
ValidityMon, 13 Mar 2023 00:05:46 GMT - Sun, 11 Jun 2023 00:05:45 GMT

File type
Unicode text, UTF-8 text, with very long lines (65059)
Size
53 kB (52736 bytes)
Hash
e78947c829e0f55e6dd5bc37dcabec09
1dc839a0d8ce071e61c8434d82c4bdea5521e59d
9764ea2e11b2e8ac4d41c2a25be76ffc8935b3188820cf9df8399accdc34f07b

HTTP Headers

GET /master/delivery.js HTTP/1.1
Host: assets.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:00 GMT
content-encoding: gzip
content-length: 52736
content-type: application/x-javascript
last-modified: Mon, 24 Apr 2023 20:14:03 GMT
accept-ranges: bytes
x-amz-id-2: hy981ZBXDcxEulSe7ACZyyiYm0LVhjIkkiw8q+E/h4w6/oP8zHeO4GabbY6MCJbALm00ogv7JTQ=
x-amz-request-id: 9MXWQ8QKHWTGRBF0
etag: "90edfd90919b38142a3ef8c08c0963fb"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=600
server: AmazonS3
x-hw: 1682424000.cds262.sk1.hn,1682424000.cds226.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp.globalsign.com/alphasslcasha256g4

104.18.21.226

1.4 kB

URL
ocsp.globalsign.com/alphasslcasha256g4
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1437 bytes)
Hash
9cad045f800a24ca440c8c95f5ea411e
780604dba6a7b2e106bf9557761c2e13b30b3640
c0bdb5e953c6397167abcd3ab359a17bda0149acdfefdcdc9d822655aff2adc7

HTTP Headers

POST /alphasslcasha256g4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 25 Apr 2023 12:00:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1437
Connection: keep-alive
Expires: Sat, 29 Apr 2023 09:57:41 GMT
ETag: "780604dba6a7b2e106bf9557761c2e13b30b3640"
Last-Modified: Tue, 25 Apr 2023 09:57:42 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3216
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7bd66c548a760b31-OSL

www.googletagmanager.com/gtag/js?id=G-91CV04FW8L

142.250.74.168

200 OK

86 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-91CV04FW8L
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint07:22:19:79:30:9E:4C:35:4E:21:BD:55:7D:44:2F:A9:71:9E:4C:AA
ValidityMon, 03 Apr 2023 08:16:11 GMT - Mon, 26 Jun 2023 08:16:10 GMT

File type
ASCII text, with very long lines (4509)
Size
86 kB (86128 bytes)
Hash
6f296fd41f4fb0909d399a0f4a6a992b
e50c67295821060461fcb2ed2a084111c09f928d
fc3987f35cb0993208bb5e42921057879df14c8a782b604c2fb44cadcc45139d

HTTP Headers

GET /gtag/js?id=G-91CV04FW8L HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 25 Apr 2023 12:00:00 GMT
expires: Tue, 25 Apr 2023 12:00:00 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86128
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/themes/Newspaper/style.css?ver=12.3.1

208.109.36.109

200 OK

26 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/themes/Newspaper/style.css?ver=12.3.1
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text, with very long lines (378)
Size
26 kB (25547 bytes)
Hash
c9fae0538130b0f0c80bb005b6e11cae
459dadb214812ddddea04000daceaab4adea601b
aae8d130d25e0146c32c725316f4ee672bd201735809dcc31bcbedbb5f872364

HTTP Headers

GET /wp-content/themes/Newspaper/style.css?ver=12.3.1 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 12 Apr 2023 08:22:34 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 25547
content-type: text/css
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=3dc090e4a6dd4d9e8f4a61e980b31fd9

208.109.36.109

200 OK

25 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=3dc090e4a6dd4d9e8f4a61e980b31fd9
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text
Size
25 kB (24559 bytes)
Hash
1ec3116824662d38026c3d47983e669f
a17326c2a13d78130f646315db66b93799795e01
faf2ff53144659ae996fbd09c267aa7de1793545d242b2a96038d20598627986

HTTP Headers

GET /wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=3dc090e4a6dd4d9e8f4a61e980b31fd9 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 12 Apr 2023 08:22:37 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 24559
content-type: text/css
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.10.0

208.109.36.109

200 OK

44 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.10.0
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text, with very long lines (65358)
Size
44 kB (44103 bytes)
Hash
983fcc89a35d0733fd811bb4ac5ac5e2
8866a11e9f51187b78ec970425bfa5d925d3a4c5
ee5443de349330d4d8f7955c3011f34c7b49583eece5b797775ae214eb273b0c

HTTP Headers

GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.10.0 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Oct 2022 20:27:52 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 44103
content-type: text/css
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/plugins/td-cloud-library/assets/css/tdb_main.css?ver=1182d95cb199c23e56f61364ae38f2e7

208.109.36.109

200 OK

5.7 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/plugins/td-cloud-library/assets/css/tdb_main.css?ver=1182d95cb199c23e56f61364ae38f2e7
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text, with very long lines (349)
Size
5.7 kB (5667 bytes)
Hash
8fa2cc082783ea0108cda3cab84e72b6
09100d901b54abe39d45f63af8db3b52d92d32d7
d86ce0a6da82a69903450ad246a3ce177efdb2c21f932ce61f5d7f0f956431b8

HTTP Headers

GET /wp-content/plugins/td-cloud-library/assets/css/tdb_main.css?ver=1182d95cb199c23e56f61364ae38f2e7 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 12 Apr 2023 08:22:42 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5667
content-type: text/css
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
15208096a8fc1cbaf8f5fbf12a17f8c9
542712633c4a2ace3fa99469656a92f76e979a8f
04f8d24394c291a5d75ad5c17a5f20742acbc79283ba87e955339daf3b94c23e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 12:00:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.vtforeignpolicy.com/wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=d39710269e5f4389cf7661fe4fdc36f9

208.109.36.109

200 OK

63 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=d39710269e5f4389cf7661fe4fdc36f9
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text
Size
63 kB (62640 bytes)
Hash
c244abb723c49bbd1f73fb9d999f3bad
ad3e2d8ef42efd8f46a9d979c9c37b93350b0f27
ba8725d1b7851d2e90296b25ddcd1cb9fca91bad7cdf16a6da21c9b2f73277ae

HTTP Headers

GET /wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=d39710269e5f4389cf7661fe4fdc36f9 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 12 Apr 2023 08:22:47 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 62640
content-type: text/css
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.js?ver=1682423381

208.109.36.109

200 OK

6.3 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.js?ver=1682423381
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
C source, ASCII text
Size
6.3 kB (6259 bytes)
Hash
552d0dbd2326d901637a9aba1ce90676
e5b3e2dac4e6791a9b1c8dddd328cb8f5c8fde3d
9e2f9cfff1d473484ee628fcd0ab70a94e2a727350ac12730f21b87ae6016f20

HTTP Headers

GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.js?ver=1682423381 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 12 Apr 2023 00:11:10 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6259
content-type: application/javascript
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/03/trump-bragg1-218x150.jpg.webp

208.109.36.109

200 OK

5.1 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/03/trump-bragg1-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
5.1 kB (5075 bytes)
Hash
25e4af9585500d4f95362b1d5fce2641
8c778862b79d41bfd652d91b8afe9c0cdead0978
9261273413de4b28520dd2b6c4733b827560cfd94fe2edac0871252ba2159855

HTTP Headers

GET /wp-content/uploads/2023/03/trump-bragg1-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 31 Mar 2023 17:03:42 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5075
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-includes/js/jquery/jquery-migrate.js?ver=3.4.0

208.109.36.109

200 OK

9.7 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-includes/js/jquery/jquery-migrate.js?ver=3.4.0
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text
Size
9.7 kB (9675 bytes)
Hash
497d79ff030aa56deb57f54d706ac370
9e505a40c6a99f0f87ea92a930d10e7ee3097046
d3246997d0c88046477f680d9f678a081d2bce420e6b12aa40671f2517b54691

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.js?ver=3.4.0 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 30 Mar 2023 00:48:13 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9675
content-type: application/javascript
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Carlson-vaccines-218x150.jpg.webp

208.109.36.109

200 OK

13 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Carlson-vaccines-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
13 kB (12821 bytes)
Hash
ee0ed0681faecf4e37573284899182b6
577c6cc9cbd8cde92f80c6c9beac2b2486652d21
d4dae8ba6a18de38a3673733a94d5997cdbfe383e38c9655ace896d3f2f565bd

HTTP Headers

GET /wp-content/uploads/2023/04/Carlson-vaccines-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 25 Apr 2023 09:28:12 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12821
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/russianwarfare-218x150.webp

208.109.36.109

200 OK

3.8 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/russianwarfare-218x150.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
3.8 kB (3823 bytes)
Hash
02498886e2598437e624e9dcbcaf1d6c
c7fd137cd6701f2030cbe6a60f49481c5ce553e9
de28420babba2a43ef93a2fafc9122e8e9bbca3b6583706fb56c1ced9dfbd842

HTTP Headers

GET /wp-content/uploads/2023/04/russianwarfare-218x150.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Apr 2023 18:25:58 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3823
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b289a3b478eee23e8bba0f8af92a94f3
76cacfe9047e1c92bb5a0f62ceba584fb9ecf55f
3fe4688d37fc6b854b522038c965c33bafa574973afc9df20bb9d79df0de27c0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 12:00:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.vtforeignpolicy.com/wp-content/uploads/2023/04/science-totalarianism-218x150.jpg.webp

208.109.36.109

200 OK

7.9 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/science-totalarianism-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
7.9 kB (7945 bytes)
Hash
766cd99720ab8ca79ec082d53e19a448
e8e794f3614e77050f4aac96535eb84dd664193c
378a2197d6f39bfac0e6d7ede21e0e383d93b48c8a95e3543f20419b0f9fa732

HTTP Headers

GET /wp-content/uploads/2023/04/science-totalarianism-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 25 Apr 2023 01:29:48 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7945
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/03/VT-mobile-140.gif.webp

208.109.36.109

200 OK

791 B

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/03/VT-mobile-140.gif.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
791 B (791 bytes)
Hash
a5e04c897f999467a0292e0e430a7f48
cdfa7dc9e35fb6aab608f12ffb8d8de6469dd808
25d196de3344f875eaefd31eec01e3cfd5bbe9b8d9c4f0cc83ff04dc861e71e2

HTTP Headers

GET /wp-content/uploads/2023/03/VT-mobile-140.gif.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 23 Mar 2023 15:48:47 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 791
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Admiral-Gorshkov-missile-218x150.jpg.webp

208.109.36.109

200 OK

2.9 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Admiral-Gorshkov-missile-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
2.9 kB (2917 bytes)
Hash
adcdca2dce30e4e18c48d001caa3d7e3
e0921754d711fa31c8c4bbb861783754ad8e7199
4cea9441bd90fc54a670a89f21245023274c04a7eaf0974b8ae88188ef5baa1a

HTTP Headers

GET /wp-content/uploads/2023/04/Admiral-Gorshkov-missile-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 14 Apr 2023 05:14:10 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2917
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/pentagon-leaker-2023-1-218x150.jpg.webp

208.109.36.109

200 OK

7.1 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/pentagon-leaker-2023-1-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
7.1 kB (7081 bytes)
Hash
e86db105b496f4616de597ccefc2ed87
c57c407a70c8384e322deb60d7bc343f201ad8b8
b5de70b518cc1c1470d09fbb864bc60e81c26f63da4546314a06a472f31d73cb

HTTP Headers

GET /wp-content/uploads/2023/04/pentagon-leaker-2023-1-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 20 Apr 2023 00:07:40 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7081
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Donetsk-218x150.jpeg.webp

208.109.36.109

200 OK

6.6 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Donetsk-218x150.jpeg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
6.6 kB (6646 bytes)
Hash
d4ef804a7d2ddc913778b1e9d02fa8d3
64044599702782a7a90e3e15bc4a206c2413d76b
a0d7af4f5725ed98b0a87caec3c00f33671a5da7eb8284517286630623facf9f

HTTP Headers

GET /wp-content/uploads/2023/04/Donetsk-218x150.jpeg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 22 Apr 2023 21:30:00 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6646
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/03/VT-foreign-policy-uncensored-272.jpg.webp

208.109.36.109

200 OK

4.2 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/03/VT-foreign-policy-uncensored-272.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 272x90, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
4.2 kB (4203 bytes)
Hash
6232d7e0629baa1824d19159175f51c9
d4d5e1ba0ef5af3c38e9abd82659895ba8233b3c
d011f41fb3354de9b823148b7d733a4fd13ad21c4ba6722f3498eb0937fea3f8

HTTP Headers

GET /wp-content/uploads/2023/03/VT-foreign-policy-uncensored-272.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 22 Mar 2023 18:07:11 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4203
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Pedophilia-Meter-FB-Zuckerberg-218x150.jpg.webp

208.109.36.109

200 OK

12 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Pedophilia-Meter-FB-Zuckerberg-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
12 kB (11817 bytes)
Hash
249c0846f0cd953727cf70372e451b6d
087aacd9d65d3d6ec709b7a5222dce21df28f2fa
5d8dbea48941812e5d79372544e7dfd1a9bcb1f122f1633e42738ee644a5c72d

HTTP Headers

GET /wp-content/uploads/2023/04/Pedophilia-Meter-FB-Zuckerberg-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 25 Apr 2023 03:54:38 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 11817
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/911-Cia-Guantamano-paper-218x150.jpg.webp

208.109.36.109

200 OK

11 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/911-Cia-Guantamano-paper-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
11 kB (10717 bytes)
Hash
46d06d69b79cde99956bbc8fbd3a75b8
34b820f490e195cb952acbd3b6f3d29ad3027f81
eb1b5cc3f16e59137ed0b7946b2e6da396b715c1cae121bc19900aa8d401dde9

HTTP Headers

GET /wp-content/uploads/2023/04/911-Cia-Guantamano-paper-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2023 03:26:57 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10717
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/consequence-218x150.jpg.webp

208.109.36.109

200 OK

5.1 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/consequence-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
5.1 kB (5055 bytes)
Hash
b6b7a06812d25b1f3e0579a0eb88cb62
9f74a48c0b6b2f5d52903331a16abe7f21a381ec
e99dcde8ee9cab413f7396d24be6ff26ab68b69ee3a459027c8b6f9c466c4400

HTTP Headers

GET /wp-content/uploads/2023/04/consequence-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 10 Apr 2023 14:06:50 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5055
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/maxresdefault-2-218x150.jpg.webp

208.109.36.109

200 OK

4.3 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/maxresdefault-2-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
4.3 kB (4337 bytes)
Hash
91873b7f2417943cc068ba4a05bc50c0
746d4db76c109a76fc65758f7faad300d5ca3132
4207d0f0d481c3cd526a3e64251cd9ece945b4bbe79631bed2477b0c63863e1b

HTTP Headers

GET /wp-content/uploads/2023/04/maxresdefault-2-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 21 Apr 2023 07:31:29 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4337
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/russian-plane-218x150.webp

208.109.36.109

200 OK

7.0 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/russian-plane-218x150.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
7.0 kB (6961 bytes)
Hash
f630b0c640efa660b81ca5b44fbdafff
6a4a4129a16878b8e802ce0541bb1bd2ed54a5fa
4765ee05d9345a5b9630a09d727fcd18147c815dfb68f6ab6c79ea3cab9790cd

HTTP Headers

GET /wp-content/uploads/2023/04/russian-plane-218x150.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 22 Apr 2023 15:34:43 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6961
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/king-charles-show1-218x150.jpg.webp

208.109.36.109

200 OK

7.6 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/king-charles-show1-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
7.6 kB (7609 bytes)
Hash
92662a43e36b85bcd0692c04b135a0d3
f760a66f296af57609b67da7e2ae742897b0bd8f
f709c234483f6379e3cefb98edb9c648011008906a5e486ed5b698b2d1bb5c50

HTTP Headers

GET /wp-content/uploads/2023/04/king-charles-show1-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 16 Apr 2023 17:39:00 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7609
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/fake-news-2023-1-218x150.jpg.webp

208.109.36.109

200 OK

8.1 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/fake-news-2023-1-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
8.1 kB (8051 bytes)
Hash
daaa61a5449be0da4f289c8b08967977
17dac0b01f1f3892daedd6712a70bf85afa4e8cf
9f85480ba01fadb262ca0d5e5bce5c1508292d06d36bb37ef13ce4d49e1677e6

HTTP Headers

GET /wp-content/uploads/2023/04/fake-news-2023-1-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 25 Apr 2023 07:45:53 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8051
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/holocaust-2023-100x70.jpg.webp

208.109.36.109

200 OK

1.7 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/holocaust-2023-100x70.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 100x70, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.7 kB (1691 bytes)
Hash
281d0507c9240079f2d864908f390368
1f2841c832edf8093910eafe06ff7482299389f5
69ed1f277b04a12029f27f0b7bcf147fc3a8870d0f99dbf9a978605e13d8c5c6

HTTP Headers

GET /wp-content/uploads/2023/04/holocaust-2023-100x70.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 24 Apr 2023 02:21:27 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1691
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/top-100x70.webp

208.109.36.109

200 OK

2.7 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/top-100x70.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 100x70, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
2.7 kB (2653 bytes)
Hash
a085a043b332c148cf4dbf66efac5ab9
303f04dd4e70720b3fdebaba8210510423c92f56
086b5ec3cac597159ea51821094eb2444a9c959ad202ef082304225b3cd24b97

HTTP Headers

GET /wp-content/uploads/2023/04/top-100x70.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 10 Apr 2023 13:50:18 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2653
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/russian-plane-100x70.webp

208.109.36.109

200 OK

2.3 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/russian-plane-100x70.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 100x70, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
2.3 kB (2337 bytes)
Hash
4af1e23c8fe782a93dff9b35215042d2
dd7bbe81a16b87a8bfd2a6fd3eb155f0e83cf45d
5d9c643687b38bb19ae2cb142d1983ed4083be2c6dbd0bad868c69af7f9f9bda

HTTP Headers

GET /wp-content/uploads/2023/04/russian-plane-100x70.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 22 Apr 2023 15:34:53 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2337
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/tank-218x150.webp

208.109.36.109

200 OK

6.8 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/tank-218x150.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
6.8 kB (6775 bytes)
Hash
9e985ba77a3686d11e4d9336b31935af
c7bfafcf640395c6919ec97d072ea2dbfe6f2f8f
cf65c2cf6834c20d6482ca2e94913a7f9d2d1253651d54156105d9f6ee26b0ea

HTTP Headers

GET /wp-content/uploads/2023/04/tank-218x150.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 22 Apr 2023 23:15:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6775
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/consequence-324x235.jpg.webp

208.109.36.109

200 OK

11 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/consequence-324x235.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 324x235, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
11 kB (11081 bytes)
Hash
c53f507221ee6d8bed48550a4c8946c9
6de4e22f6e3f72c5954732f903605e5c94cfcd0b
359043b9b3f41d047ed43f3b3eca5d04e6c9a73662a351c947fae8b7459d52d1

HTTP Headers

GET /wp-content/uploads/2023/04/consequence-324x235.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 10 Apr 2023 14:06:39 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 11081
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/avenger-putin-1-100x70.jpg.webp

208.109.36.109

200 OK

1.3 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/avenger-putin-1-100x70.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 100x70, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.3 kB (1333 bytes)
Hash
cbc19facad9c1df04533a0f7e1959afb
9e512279531acfe7735ffec9d4248c18970a318a
bf8e2537ac7465d9922fe6a118f6e1e118cf729923296afd8ca3a113581172cd

HTTP Headers

GET /wp-content/uploads/2023/04/avenger-putin-1-100x70.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 22 Apr 2023 14:48:22 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1333
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/artilery1-1-100x70.webp

208.109.36.109

200 OK

1.4 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/artilery1-1-100x70.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 100x70, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.4 kB (1391 bytes)
Hash
b66378753fdb7532d3995d37c582d73a
1843f137c39c8f87b68f11b8834fff6c2e87ea65
0b1184a18643e0c52cd0a7d11d37df534f53b988cbc8a98da11f44881364ae2d

HTTP Headers

GET /wp-content/uploads/2023/04/artilery1-1-100x70.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 21 Apr 2023 22:16:58 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1391
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/fly-girls-book2-218x150.jpg.webp

208.109.36.109

200 OK

6.5 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/fly-girls-book2-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
6.5 kB (6463 bytes)
Hash
59e0dc62131ebcf937d489f64c5d6692
e7ef4959445b5680268a0223388cc57d91ad61a4
2bdaac52564d9b3167b42685c7d44cee13ed91b9ca92cb3e9d7f59fb88c47a28

HTTP Headers

GET /wp-content/uploads/2023/04/fly-girls-book2-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 11 Apr 2023 00:34:21 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6463
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/tank-324x235.webp

208.109.36.109

200 OK

14 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/tank-324x235.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 324x235, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
14 kB (13597 bytes)
Hash
7e17cee626d0c653fc873cf4beb22c19
cf9d397cf43ca117deb42fe18cdf8fc05c6b62e2
f9b7379f633be5f60d0a7b9ddf1d8f2feb85b3f6c8a2fdd33d5d3a3414b8ecb7

HTTP Headers

GET /wp-content/uploads/2023/04/tank-324x235.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 22 Apr 2023 23:15:32 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13597
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/holocaust-2023-218x150.jpg.webp

208.109.36.109

200 OK

4.8 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/holocaust-2023-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
4.8 kB (4833 bytes)
Hash
bad7858229c873d3bdaf34d4629e3405
b5b991bcb6f83f8f59b5f2199ca670f62c0069f9
abab6a53568fcc6979c6d5d822c48cae9e396bade2da2738d64b5b5584a747ec

HTTP Headers

GET /wp-content/uploads/2023/04/holocaust-2023-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 24 Apr 2023 02:21:37 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4833
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/03/zelensky-biden-218x150.webp

208.109.36.109

200 OK

4.0 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/03/zelensky-biden-218x150.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
4.0 kB (4047 bytes)
Hash
aae180b8ede673173b5bca3e38bf1b7c
02d4d887ca3e0e3d0e40aa2a648070330b819a33
c1b8bd6871fe834ce674d98253c73e6abf1e22457b90a4f580d91b64ec6645ab

HTTP Headers

GET /wp-content/uploads/2023/03/zelensky-biden-218x150.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 23 Mar 2023 23:38:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4047
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Netantyahu-218x150.webp

208.109.36.109

200 OK

4.7 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Netantyahu-218x150.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
4.7 kB (4693 bytes)
Hash
cb387f5fa240d411076a2a432276c7a0
87392319f09614e8b516f2c45716c745ae6be21d
4a1a4b01ba793a36bd03702152129d616dc84a50d0a4b3549eea719c0a231d09

HTTP Headers

GET /wp-content/uploads/2023/04/Netantyahu-218x150.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Apr 2023 18:11:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4693
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/china-code-pink-100x70.jpeg.webp

208.109.36.109

200 OK

2.1 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/china-code-pink-100x70.jpeg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 100x70, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
2.1 kB (2083 bytes)
Hash
b9d935ef4b86cd68533db49eb8ee3fcf
98b0faa8e59d774d26f4bccc8af60eb3fc2534af
0c2c9b7e7d7d87704ebc914abbf46661087ac1e7a5388b6908374b01dcef3d2e

HTTP Headers

GET /wp-content/uploads/2023/04/china-code-pink-100x70.jpeg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 24 Apr 2023 06:29:04 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2083
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/ffwn-trainwreck-100x70.jpg.webp

208.109.36.109

200 OK

5.4 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/ffwn-trainwreck-100x70.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
5.4 kB (5419 bytes)
Hash
fc99895d3a83667069a0c4a0f0467110
97ae05f4686a51b674c1e086588a5fdf2a3e9812
9843895e6537491a967e5c44c81d41b3e53de5908ee6cf6ec14567e404554b55

HTTP Headers

GET /wp-content/uploads/2023/04/ffwn-trainwreck-100x70.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 10 Apr 2023 14:35:10 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5419
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/china-code-pink-218x150.jpeg.webp

208.109.36.109

200 OK

6.3 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/china-code-pink-218x150.jpeg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
6.3 kB (6275 bytes)
Hash
b9c048e59eaf9f373eaac3edabf4b714
085750267c26d3323572c73bcc3ca205b3291865
8f6536ee18705c1537a4da1764dc5746f827979db744b73cd36a7ce744a326bc

HTTP Headers

GET /wp-content/uploads/2023/04/china-code-pink-218x150.jpeg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 24 Apr 2023 06:29:12 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6275
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/israel-raid-jenin-west-bank-012623-356x220.jpg.webp

208.109.36.109

200 OK

12 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/israel-raid-jenin-west-bank-012623-356x220.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 356x220, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
12 kB (11493 bytes)
Hash
ff2731c94ddd12a2d176d935d0760163
b9d3e78a5744b98bd204e822ccfad7e9c8ac40f9
2e8a4cb57fb17dab6aa4d1801ab1814804208f76905bfa4d3ffc3c764528bce2

HTTP Headers

GET /wp-content/uploads/2023/04/israel-raid-jenin-west-bank-012623-356x220.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 22 Apr 2023 21:09:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 11493
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Russian-Aerospace-Forces-VKS-Beriev-A-50U--218x150.jpg.webp

208.109.36.109

200 OK

2.4 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Russian-Aerospace-Forces-VKS-Beriev-A-50U--218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
2.4 kB (2429 bytes)
Hash
8c9953a5a8319f36ede3f8d9c1e3ef7f
ec244906a386a337c3f7392553db2677ce91d66b
aa22c401c933c2ca82e3de800ed0ddab91db83540cfdaff74b4f239f96ce046c

HTTP Headers

GET /wp-content/uploads/2023/04/Russian-Aerospace-Forces-VKS-Beriev-A-50U--218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 12 Apr 2023 00:08:12 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2429
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Pfizer-brain-injuries-218x150.jpg.webp

208.109.36.109

200 OK

13 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Pfizer-brain-injuries-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
13 kB (13242 bytes)
Hash
c1d9fa94543ec16593594817b07c68e6
8cf5ea62d681ebe6a0bfdd2dceedf0820896b6f7
ed74e3a9cf2b4992b1372ad9b866b5174c949a94ef0906fd5ccaa90f737595d4

HTTP Headers

GET /wp-content/uploads/2023/04/Pfizer-brain-injuries-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 21 Apr 2023 06:57:22 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13242
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/pentagon-leaker-2023-2-218x150.jpg.webp

208.109.36.109

200 OK

6.6 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/pentagon-leaker-2023-2-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
6.6 kB (6613 bytes)
Hash
dd594925d65b4c268e72616babcde2ee
3144bd476e9c18ba8c8c25ff9c8c7e3ac29d7e1b
1ebde9bf0efc85f6001a3c0f7893fdc57800c515519851774fd67bd7b1c25fe5

HTTP Headers

GET /wp-content/uploads/2023/04/pentagon-leaker-2023-2-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 20 Apr 2023 00:08:57 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6613
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/talc-218x150.jpg.webp

208.109.36.109

200 OK

3.5 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/talc-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
3.5 kB (3545 bytes)
Hash
e6a9af289cccf688273541d91104ac13
909b8c2823c9d49c72f1af601eed97850edb6a5e
bd9d8067969f2c6b22a13f61d3cc500ae6de8601b869fe151f1e734cbbcffd45

HTTP Headers

GET /wp-content/uploads/2023/04/talc-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 17 Apr 2023 12:17:58 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3545
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Gates-grain-ok-218x150.jpg.webp

208.109.36.109

200 OK

13 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Gates-grain-ok-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
13 kB (12880 bytes)
Hash
faf345894847874cdeab732a090c66be
4575337048dbb5441c85912f2ea62c385825ca3e
0fc8430545bb8249d9a43cc88bc71427b46ab3c845e2b477356c83026ef3a920

HTTP Headers

GET /wp-content/uploads/2023/04/Gates-grain-ok-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 23 Apr 2023 15:50:35 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12880
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Lavrov-Maduro-Rodriguez-218x150.jpg.webp

208.109.36.109

200 OK

5.6 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Lavrov-Maduro-Rodriguez-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
5.6 kB (5623 bytes)
Hash
9efb5b5ea92ac18d9e24a83d4566cb4e
6318802055828d860842f8430e8bc4768b46b25f
cfb635b0a2b1ce4d4d51667d05eba80617e4c4dc131ffb397c674b570379f57f

HTTP Headers

GET /wp-content/uploads/2023/04/Lavrov-Maduro-Rodriguez-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 22 Apr 2023 09:32:05 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5623
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Lavrov-Maduro-Rodriguez-356x220.jpg.webp

208.109.36.109

200 OK

9.9 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Lavrov-Maduro-Rodriguez-356x220.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 356x220, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
9.9 kB (9949 bytes)
Hash
b6283c073fd89a83c2c010456d477319
5e6f27bb31383cd979b4bfb8345d27ca9b1512e0
ad5ececf862bb1e6689ed1a5374d3ca8851943d5e0ddb0ab8ba15e07e8584057

HTTP Headers

GET /wp-content/uploads/2023/04/Lavrov-Maduro-Rodriguez-356x220.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 22 Apr 2023 09:31:53 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9949
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/science-totalarianism-265x198.jpg.webp

208.109.36.109

200 OK

12 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/science-totalarianism-265x198.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 265x198, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
12 kB (11651 bytes)
Hash
2f9a13ab7bdbbc303f9ac7555064e475
2e7c9a220349fa07af4df99dcca5bb1d1f63bc0b
188240950d24cd8488e99bf72785df3b4e2d2c44f38af15b4ac60b67e44af2c5

HTTP Headers

GET /wp-content/uploads/2023/04/science-totalarianism-265x198.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 25 Apr 2023 01:29:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 11651
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/64265bd6c74fb_121-100x70.jpg.webp

208.109.36.109

200 OK

1.6 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/64265bd6c74fb_121-100x70.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 100x70, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.6 kB (1627 bytes)
Hash
31611c7ceabf588dcdec4bc539c2dfbe
673f999fc38a5eff7a32804bc12592b327494b53
5253ee487a8ab497c85c5fd53f48f480b40d7288c405750c5f895290ed2fd51c

HTTP Headers

GET /wp-content/uploads/2023/04/64265bd6c74fb_121-100x70.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 02 Apr 2023 14:48:20 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1627
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/russian-anti-tank-battery-218x150.jpg.webp

208.109.36.109

200 OK

5.1 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/russian-anti-tank-battery-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
5.1 kB (5073 bytes)
Hash
59b6e7e36615b01762e7c368565117fe
50f5411415e5945cbb1126c625525321d2ba1794
3d321d47a1e89d07907db7c227227e14f931266b5857adea579b6fe844914276

HTTP Headers

GET /wp-content/uploads/2023/04/russian-anti-tank-battery-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 11 Apr 2023 05:29:20 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5073
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/03/dankof-cover1-218x150.jpg.webp

208.109.36.109

200 OK

8.2 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/03/dankof-cover1-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
8.2 kB (8151 bytes)
Hash
ea11771ae09f9f39e47c56f978079fce
80431d763c17319a35995eead8fe3912246cdb77
c5e6d151d4854e35949c5f57dc4f0add32d62e5efbab1ced535b465b271d8875

HTTP Headers

GET /wp-content/uploads/2023/03/dankof-cover1-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 30 Mar 2023 18:09:42 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8151
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/03/vt-radio-png-trans.png.webp

208.109.36.109

200 OK

6.2 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/03/vt-radio-png-trans.png.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
6.2 kB (6248 bytes)
Hash
c15d1c860504f7aa26b7bfd298dc4eae
d3c4e406e5607122e694be89d7c978d3f23a2d05
871c17be7a25566a4aebfadd4230ba0b16d3b5076e8febf3958fdf3a4f7b93b4

HTTP Headers

GET /wp-content/uploads/2023/03/vt-radio-png-trans.png.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 23 Mar 2023 15:43:35 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6248
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Zelensky-NATO-Satana-massone-218x150.jpg.webp

208.109.36.109

200 OK

12 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Zelensky-NATO-Satana-massone-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
12 kB (12164 bytes)
Hash
86d83108e4e2e52a8df3eed806c6b9eb
df9f1cbbbf03fa13203973f85067901673148e3a
61661ad90bcdc3110a5855fda9a105ab6bab82e85284d889aefb2e2fa45e4607

HTTP Headers

GET /wp-content/uploads/2023/04/Zelensky-NATO-Satana-massone-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 10 Apr 2023 14:14:47 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12164
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/hebrews-netanyahu-80x60.jpg.webp

208.109.36.109

200 OK

1.1 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/hebrews-netanyahu-80x60.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 80x60, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.1 kB (1083 bytes)
Hash
db9a0b0a622c312b27d4829e4873a0ae
be5618daab4e59a756de8ce9e0dfc0855e43abf0
c8c9785e31bcc24254b687402114187c3f2134d852274642aade92032d42cc4c

HTTP Headers

GET /wp-content/uploads/2023/04/hebrews-netanyahu-80x60.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 13 Apr 2023 07:40:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1083
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/04-09-1865-robert-e-lee-surrenders-80x60.webp

208.109.36.109

200 OK

1.7 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/04-09-1865-robert-e-lee-surrenders-80x60.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 80x60, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.7 kB (1721 bytes)
Hash
4eb15f70ae9ee16a9abe4606e36d857c
9f24ac30b7721547d599dd546f774077bb514b0e
a9e706ee7a320f247a0c5fe9f6809191675bc838903fa0a55688cd8e8c8cb0c5

HTTP Headers

GET /wp-content/uploads/2023/04/04-09-1865-robert-e-lee-surrenders-80x60.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 10 Apr 2023 13:39:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1721
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/pentagon-leaker-2023-1-696x385.jpg.webp

208.109.36.109

200 OK

44 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/pentagon-leaker-2023-1-696x385.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 696x385, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
44 kB (43586 bytes)
Hash
b0462d6a3f8503355b4d499500778be0
f89c8a0e5a4a554487bdc17db21e68b80dfc1aab
6c71d7a61206bff35ce7efac3974b9ff045c64c890f5fecf12024be5609aad46

HTTP Headers

GET /wp-content/uploads/2023/04/pentagon-leaker-2023-1-696x385.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 20 Apr 2023 00:07:20 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 43586
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/03/Ukraine-6-80x60.jpg

208.109.36.109

200 OK

2.7 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/03/Ukraine-6-80x60.jpg
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 80x60, components 3\012- data
Size
2.7 kB (2738 bytes)
Hash
5e3f656a11126ccf265afbb1d6cfc2c1
4bf650e583b4d957038b268c7f3e23e731f020e2
ef2d8614d2153ac8f1a2383dfba1765e236e0a2d4a67addcaae92ffe91bd249b

HTTP Headers

GET /wp-content/uploads/2023/03/Ukraine-6-80x60.jpg HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 23 Mar 2023 23:38:18 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2738
content-type: image/jpeg
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/al-aqsa-israeli-forces-aim-baton-100x70.jpg.webp

208.109.36.109

200 OK

1.8 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/al-aqsa-israeli-forces-aim-baton-100x70.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 100x70, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.8 kB (1819 bytes)
Hash
7110551b649bd44ec766b921709e1235
e83b3a95d11116b534d3b388d9d06c2c488bc51f
03b8630e2138d07624a6eef4913156310fbbf06b9a6d67d8dcb732295b038527

HTTP Headers

GET /wp-content/uploads/2023/04/al-aqsa-israeli-forces-aim-baton-100x70.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 10 Apr 2023 13:45:21 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1819
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/russian-anti-tank-battery-356x220.jpg.webp

208.109.36.109

200 OK

10 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/russian-anti-tank-battery-356x220.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 356x220, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
10 kB (10539 bytes)
Hash
6394de7ffa63cf1b6efc400e26cb26e2
4a2d5b982373755eb8547782ba738c5eb1520b1e
9f4e2cb35e9a4a64ddbd87d1dab2ff44e3e43cf354864b30b3b79a49576f96f0

HTTP Headers

GET /wp-content/uploads/2023/04/russian-anti-tank-battery-356x220.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 11 Apr 2023 05:29:06 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10539
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/khazar-218x150.jpg.webp

208.109.36.109

200 OK

6.1 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/khazar-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
6.1 kB (6095 bytes)
Hash
7a1d107a26af18f578dd4342ec1f996b
aa20000ece55f9ff720bd58500f1fb61abd3a966
d785fc8faab80e8c35bd582052ad6f6440390972bab9dc55d4799c92ede93056

HTTP Headers

GET /wp-content/uploads/2023/04/khazar-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 10 Apr 2023 13:51:00 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6095
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/militaryus-218x150.webp

208.109.36.109

200 OK

6.5 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/militaryus-218x150.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
6.5 kB (6535 bytes)
Hash
b056cef71518c729fa5ed4627a4b7ac9
578153bec94c03fb8f4cda7d807491b284f10fb4
660284c60abb1d540746401adc0a174c7e0cc5f337ca99e7e426a51e37588fed

HTTP Headers

GET /wp-content/uploads/2023/04/militaryus-218x150.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Apr 2023 18:16:13 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 6535
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Gates-grain-ok-100x70.jpg.webp

208.109.36.109

200 OK

8.0 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Gates-grain-ok-100x70.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
8.0 kB (8001 bytes)
Hash
0f278affe174cd32ba54c670567ff674
ce5e9180b65ffc71ad6bf07d52c9a81c1692db75
145156a0df62bb9cc9a3c2e684493061cc886312a8589f5251c58b3bee8e7149

HTTP Headers

GET /wp-content/uploads/2023/04/Gates-grain-ok-100x70.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 23 Apr 2023 15:50:26 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8001
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/zelensky-putin-powell-218x150.jpg.webp

208.109.36.109

200 OK

4.8 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/zelensky-putin-powell-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
4.8 kB (4771 bytes)
Hash
0ff41efc4d4a34be3e249227508d518a
dcc7a47df227b9497ccc36f797dcffc0fa21a8f5
e2237b103f0b6d798a20f101141f6d0ce42adad4d67d6ec555c40127fa7f7c42

HTTP Headers

GET /wp-content/uploads/2023/04/zelensky-putin-powell-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 19 Apr 2023 16:21:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4771
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/pol-pot1-80x60.webp

208.109.36.109

200 OK

1.6 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/pol-pot1-80x60.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 80x60, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.6 kB (1591 bytes)
Hash
7a8c340719b0ef82cd66671e87257d90
a6e132eaf106c34ee63b5f1941cfc176048749b1
1135abdc61c93dfddfb32380edcd490593171921524ff4fbf45cc961024f21d6

HTTP Headers

GET /wp-content/uploads/2023/04/pol-pot1-80x60.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 15 Apr 2023 13:34:17 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1591
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/President_John_F._Kennedy_with_Robert_F._Kennedy_Jr._03-100x70.jpg.webp

208.109.36.109

200 OK

5.3 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/President_John_F._Kennedy_with_Robert_F._Kennedy_Jr._03-100x70.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
5.3 kB (5289 bytes)
Hash
83dec4c691d78f2ac5ad5854ead38511
2048414991bb35674b63982dc8435326b5e7903d
a0ef843aa96d773ac21f5487afd183bab17f6e258599903ae08093846e8caa5f

HTTP Headers

GET /wp-content/uploads/2023/04/President_John_F._Kennedy_with_Robert_F._Kennedy_Jr._03-100x70.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 10 Apr 2023 15:53:23 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5289
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/KIRILL-218x150.jpg.webp

208.109.36.109

200 OK

7.8 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/KIRILL-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
7.8 kB (7763 bytes)
Hash
85d8a8bbed533b25fedbf6d5c18406c0
c52c9761037c88766e2cbaed1979719a90141ca4
a415dd141a23699effe6ac73a91857a06bba1a251437409b7614747ba440798b

HTTP Headers

GET /wp-content/uploads/2023/04/KIRILL-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 16 Apr 2023 05:47:01 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7763
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Marshall-COVID-19-218x150.jpg.webp

208.109.36.109

200 OK

12 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Marshall-COVID-19-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
12 kB (11829 bytes)
Hash
e7fb568ae72bcc0db73b15cd6ca46870
e3b2a00b23245283480801965ecccf72f40b5f5c
8893aec45c943a00815c90c31d7bc2f278af9b1ce20bee6199b161fc59df78fd

HTTP Headers

GET /wp-content/uploads/2023/04/Marshall-COVID-19-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 19 Apr 2023 00:09:00 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 11829
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Pedophilia-Meter-FB-Zuckerberg-265x198.jpg.webp

208.109.36.109

200 OK

14 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Pedophilia-Meter-FB-Zuckerberg-265x198.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
14 kB (14055 bytes)
Hash
d4a0babf42463777a06b1be12e415f4c
d8d402ad0278c3ca32c1a4dba14ce661a6609dc1
e13ee0f5745287c5d52230d223b72cde041ce4e20df9ad11b628c0d9e6bd2f53

HTTP Headers

GET /wp-content/uploads/2023/04/Pedophilia-Meter-FB-Zuckerberg-265x198.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 25 Apr 2023 03:54:27 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 14055
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/03/putin-and-zelensky-218x150.jpg.webp

208.109.36.109

200 OK

5.8 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/03/putin-and-zelensky-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
5.8 kB (5755 bytes)
Hash
97a9fe226572b6a132695d4658a13c0e
995e6a1ee2d7f84749b337e059b0a2306b440219
8def3f40619eee981099a731a343ae08ac3070d438e737de8a4ddbcb51ad637b

HTTP Headers

GET /wp-content/uploads/2023/03/putin-and-zelensky-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 26 Mar 2023 15:45:02 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 5755
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/greed-356x220.jpeg.webp

208.109.36.109

200 OK

13 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/greed-356x220.jpeg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 356x220, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
13 kB (13037 bytes)
Hash
adb3dfd528417a7aae6b0a9c6c32fd7c
bcf7b1a5a6a1e7b92599bffc237b42fb08a0112e
3e3b74ed9afa3c624197a1eec563be2fc8fdfe724830443b12b62765434b72e1

HTTP Headers

GET /wp-content/uploads/2023/04/greed-356x220.jpeg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 22 Apr 2023 23:58:43 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 13037
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/tanks-218x150.webp

208.109.36.109

200 OK

5.0 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/tanks-218x150.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
5.0 kB (4961 bytes)
Hash
699832b9b7b36945a47de68544025e8a
c666328a5e63b20ce4d5c38b453acf56a5eee71a
40025117de76218e71e65da73e7e503d95090108495b9df3a36fc39330c81b56

HTTP Headers

GET /wp-content/uploads/2023/04/tanks-218x150.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 17 Apr 2023 11:23:13 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4961
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/top-218x150.webp

208.109.36.109

200 OK

9.9 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/top-218x150.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
9.9 kB (9885 bytes)
Hash
f5ffba4d8aa90c31119076a5b9f4d3c7
85b6ca633982b035d4775cdf9585040412417dd0
bbb8954035fffa3049012bcb646cfd4f3ce226926a0e82a90aaed259056ca636

HTTP Headers

GET /wp-content/uploads/2023/04/top-218x150.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 10 Apr 2023 13:50:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9885
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2022/03/FAUCI-BARIC-MODERNA-80x60.jpg.webp

208.109.36.109

200 OK

1.5 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2022/03/FAUCI-BARIC-MODERNA-80x60.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 80x60, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.5 kB (1463 bytes)
Hash
60a2287713e4ec395aa2688df46f8542
19ce2a327a51f62200f7c762968d40ef811482ac
a29c514421326b0142af8df6173496c77ec532ff7a53368d70594a268146441d

HTTP Headers

GET /wp-content/uploads/2022/03/FAUCI-BARIC-MODERNA-80x60.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 23 Mar 2023 23:51:05 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1463
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

pl19156743.highrevenuegate.com/8751c879af857467c570b700c5536400/invoke.js

173.233.137.36

200 OK

9.3 kB

URL GET HTTP/1.1
pl19156743.highrevenuegate.com/8751c879af857467c570b700c5536400/invoke.js
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjecthighrevenuegate.com
Fingerprint77:A7:2B:53:64:6F:B2:D0:C1:BD:E4:E8:58:16:65:7A:EC:B4:70:8C
ValidityThu, 02 Mar 2023 09:45:40 GMT - Wed, 31 May 2023 09:45:39 GMT

File type
Unicode text, UTF-8 text, with very long lines (25098), with no line terminators
Size
9.3 kB (9282 bytes)
Hash
544b9a4a1083108807e7e57c4602a40b
d4479dfe2e4daa046c86de6e9508b41e6c73f344
69c4874928a45bdf8f10a23ebedaf8fd2c1a493fa05b1a4c889da8602feb163c

HTTP Headers

GET /8751c879af857467c570b700c5536400/invoke.js HTTP/1.1
Host: pl19156743.highrevenuegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 25 Apr 2023 12:00:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 08cd87376e2647e38a09897fc7309883
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Donetsk-100x70.jpeg.webp

208.109.36.109

200 OK

2.1 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Donetsk-100x70.jpeg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
2.1 kB (2134 bytes)
Hash
39abefb0fc552b25b025462fed0e173d
7ba6c2f5475fd2b6a7a102cdcc760d9d13038aff
1100c57cf4393101b9926b5a827a496e1b20f6946ffaaca7a9f3d9aa8960cb51

HTTP Headers

GET /wp-content/uploads/2023/04/Donetsk-100x70.jpeg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 22 Apr 2023 21:29:50 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2134
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2022/06/Panetta-Ucraina-Coronavirus-80x60.jpg

208.109.36.109

200 OK

2.7 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2022/06/Panetta-Ucraina-Coronavirus-80x60.jpg
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 80x60, components 3\012- data
Size
2.7 kB (2709 bytes)
Hash
578e68e40ba8156869a5149f7832fb6a
acb6e81691581f3e1a1a1e7b2a3ce0d4ce7c7308
243c7ee331a1963bfa31d39c6f9db7d89c741f56766015d50f029ee705f163f7

HTTP Headers

GET /wp-content/uploads/2022/06/Panetta-Ucraina-Coronavirus-80x60.jpg HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 23 Mar 2023 23:37:18 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2709
content-type: image/jpeg
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Erik-Akerboom-director-general-of-the-Dutch-General-Intelligence-218x150.jpg.webp

208.109.36.109

200 OK

3.6 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Erik-Akerboom-director-general-of-the-Dutch-General-Intelligence-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
3.6 kB (3551 bytes)
Hash
4f50f037a6644d9986accb0ecd7b8156
38cb7152083ac38b8ad7d6986ec45505366a8217
01ae721efbab44a31ae82e8023670fc8f3e3dcdd3e7e602b5934204b953ea080

HTTP Headers

GET /wp-content/uploads/2023/04/Erik-Akerboom-director-general-of-the-Dutch-General-Intelligence-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 20 Apr 2023 00:21:11 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3551
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/02/war-2-80x60.jpg

208.109.36.109

200 OK

2.4 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/02/war-2-80x60.jpg
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 80x60, components 3\012- data
Size
2.4 kB (2391 bytes)
Hash
647711c41ef7133201e58c298faff1a9
b5a9a3df265cbddc99d5d13d6ed7c305bd8ddf2b
6e6a3594a2058ef4485125b980ebd9e6c8491a6aa82ac89ab878e662c970f5c7

HTTP Headers

GET /wp-content/uploads/2023/02/war-2-80x60.jpg HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 23 Mar 2023 23:37:46 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2391
content-type: image/jpeg
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/superpower-cover1-218x150.jpg.webp

208.109.36.109

200 OK

7.1 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/superpower-cover1-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
7.1 kB (7087 bytes)
Hash
91e422068a73705bc056a8d6f50bc8d4
b9d31e17901bb17280a44e3a0a731d894721f17e
f17a2a008842694f813cfb0e6eddf6c37e2c35f7f0e11f8e9c21618227d4b9a7

HTTP Headers

GET /wp-content/uploads/2023/04/superpower-cover1-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 10 Apr 2023 14:37:22 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7087
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/vtradio-israel-final-solution-cover1-218x150.jpg.webp

208.109.36.109

200 OK

7.6 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/vtradio-israel-final-solution-cover1-218x150.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 218x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
7.6 kB (7605 bytes)
Hash
898ced41cdf70d72dd4c7b11f1bd0043
ffe322bb9a63f696534abdb38614839d8af3383f
2f4319502b2e891eca629d4f01aac6a7552fffe1f5655f5020e2c07bea71a495

HTTP Headers

GET /wp-content/uploads/2023/04/vtradio-israel-final-solution-cover1-218x150.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 11 Apr 2023 12:53:53 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7605
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Carlson-vaccines-534x462.jpg.webp

208.109.36.109

200 OK

29 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Carlson-vaccines-534x462.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
29 kB (29048 bytes)
Hash
0d4a9122d65642bc919129345bbd7bde
308032742b26f8e9ccbdcfe9496463ac5c8d736a
f346151363efc25a529132ea46dfe98ab570e472f7790cf925eabfe58dbd67e0

HTTP Headers

GET /wp-content/uploads/2023/04/Carlson-vaccines-534x462.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 25 Apr 2023 09:27:13 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 29048
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Pfizer-brain-injuries-324x160.jpg.webp

208.109.36.109

200 OK

16 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Pfizer-brain-injuries-324x160.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
16 kB (16527 bytes)
Hash
4ad7a27371fd64a33799d1ee7849e554
b7f8c000f4974e772f82b68e00af6d36df6b79a8
307f14922d3ef7f9ef50f539f2a19ddb679713bf1ae2f68a502c8766a8392335

HTTP Headers

GET /wp-content/uploads/2023/04/Pfizer-brain-injuries-324x160.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 21 Apr 2023 06:57:09 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 16527
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/02/Biden-Rockefeller-Gavi-Cia-Metabiota-Gates-356x220.jpg

208.109.36.109

200 OK

23 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/02/Biden-Rockefeller-Gavi-Cia-Metabiota-Gates-356x220.jpg
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 356x220, components 3\012- data
Size
23 kB (23331 bytes)
Hash
fe91bd04116037e094539d6d34ba4530
59d482ab3ca8985c6a3b8626c2ecba9397b723a0
194eb8276e89a68c7f0606f28628e500966164582b036bc1cf25245befc6bb9a

HTTP Headers

GET /wp-content/uploads/2023/02/Biden-Rockefeller-Gavi-Cia-Metabiota-Gates-356x220.jpg HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 23 Mar 2023 23:37:41 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 23331
content-type: image/jpeg
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/03/covid-cia2-696x385.jpg.webp

208.109.36.109

200 OK

21 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/03/covid-cia2-696x385.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 696x385, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
21 kB (21443 bytes)
Hash
6c60fce400b1079a1af50359290d6f6d
74ca16b264be4cf9005bf82ac4bcd4ce00b577c6
0ea976a53e6099353f118057414fe99c50a6db2959b1bcb1454024bf70733866

HTTP Headers

GET /wp-content/uploads/2023/03/covid-cia2-696x385.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 25 Mar 2023 20:03:22 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 21443
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/fake-news-2023-1-533x261.jpg.webp

208.109.36.109

200 OK

23 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/fake-news-2023-1-533x261.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 533x261, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
23 kB (23145 bytes)
Hash
b800683813943371e469cecdc87711ae
5002155cd5cfeb14f0e5c7877ef1a95d73a923d5
fc930a4abf5e2d59a15487bdfe7919017bb0906b7d3884f314c7aabeaeee7478

HTTP Headers

GET /wp-content/uploads/2023/04/fake-news-2023-1-533x261.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 25 Apr 2023 07:45:35 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 23145
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/Project-Syndicate-Soros-Gates-Rockefeller-CFR-324x160.jpg.webp

208.109.36.109

200 OK

18 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/Project-Syndicate-Soros-Gates-Rockefeller-CFR-324x160.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
18 kB (17566 bytes)
Hash
02d90e73a96ddc58b89f20514167318f
8995760abb2ce0a80f93e4dc118dfd962e990aed
5e2a513ceb6ed46af693bed79cc2a0ffaf511c4a05398f47d830f9d6da7f22c3

HTTP Headers

GET /wp-content/uploads/2023/04/Project-Syndicate-Soros-Gates-Rockefeller-CFR-324x160.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 18 Apr 2023 08:52:35 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 17566
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/03/blanco-edu-324x235.jpg

208.109.36.109

200 OK

22 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/03/blanco-edu-324x235.jpg
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 324x235, components 3\012- data
Size
22 kB (21553 bytes)
Hash
e1ed9d916ce44aaadcac53bd67524e78
8d472ac795369b4677d571655ade8b19dccdb415
6cb0dbca6148951df6e59ecfb262cd8e319e9a3992cfe71b718008d2e791f745

HTTP Headers

GET /wp-content/uploads/2023/03/blanco-edu-324x235.jpg HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 23 Mar 2023 23:38:32 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 21553
content-type: image/jpeg
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/04/khazar-80x60.jpg.webp

208.109.36.109

200 OK

1.3 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/khazar-80x60.jpg.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 80x60, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.3 kB (1261 bytes)
Hash
75268380ae45eac467ea16ecdc5b3e34
04ab8719d76bdf84d695cf55faefec956cedcedc
eeecde8883f24fcc2230b3f0a494ab6aab712da1d2d720567f042451d396cbdf

HTTP Headers

GET /wp-content/uploads/2023/04/khazar-80x60.jpg.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 10 Apr 2023 13:50:51 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1261
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/03/152x152.png.webp

208.109.36.109

200 OK

1.6 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/03/152x152.png.webp
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 152x152, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.6 kB (1559 bytes)
Hash
b4b288b52ddc5b5598f557b3de82a7f1
25064ddcafe697770c83849f42d3bd296619411b
935b6955b7a71df5d6041d2fd5dcceab5cfe0429ebb1d23026bf84724b885741

HTTP Headers

GET /wp-content/uploads/2023/03/152x152.png.webp HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 23 Mar 2023 15:49:33 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1559
content-type: image/webp
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/plugins/wp-google-search/assets/js/google_cse_v2.js?ver=1

208.109.36.109

200 OK

303 B

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/plugins/wp-google-search/assets/js/google_cse_v2.js?ver=1
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text, with CRLF line terminators
Size
303 B (303 bytes)
Hash
5c8e23a5f4b07cad08584a0e951d244a
9c908b7e76dd5a0c701f9761da714008c598083a
eda3ef52825cfc5873781748184f3ff2f4a1788eb787d985015b71952176f979

HTTP Headers

GET /wp-content/plugins/wp-google-search/assets/js/google_cse_v2.js?ver=1 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 25 Mar 2023 18:11:47 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 303
content-type: application/javascript
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/plugins/easyazon/addition/components/localization/links/resources/links.js?ver=5.1.0

208.109.36.109

200 OK

373 B

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/plugins/easyazon/addition/components/localization/links/resources/links.js?ver=5.1.0
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text
Size
373 B (373 bytes)
Hash
ef38265c15a078a87ca7aef72c63bc6c
86a81fa4b9f2952092508172791bf7c9ea856f08
52d86b6b204df2af7981ba2ecb6381a7d1e92eb6d4ef44bd370ea5de0ff21159

HTTP Headers

GET /wp-content/plugins/easyazon/addition/components/localization/links/resources/links.js?ver=5.1.0 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 02 Apr 2023 17:25:10 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 373
content-type: application/javascript
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/plugins/easyazon/addition/components/popovers/resources/popovers.js?ver=5.1.0

208.109.36.109

200 OK

860 B

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/plugins/easyazon/addition/components/popovers/resources/popovers.js?ver=5.1.0
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text
Size
860 B (860 bytes)
Hash
053a40f7e793d15e9b7485bd4a816488
e621fb91a3cfb23861016086785604c316b76f07
b457f8ea0112718940a05777a49df031f09f36cf18275a75563119e943e89a4d

HTTP Headers

GET /wp-content/plugins/easyazon/addition/components/popovers/resources/popovers.js?ver=5.1.0 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 02 Apr 2023 17:25:10 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 860
content-type: application/javascript
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=1182d95cb199c23e56f61364ae38f2e7

208.109.36.109

200 OK

2.0 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=1182d95cb199c23e56f61364ae38f2e7
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text, with very long lines (565)
Size
2.0 kB (2037 bytes)
Hash
e542c50c823cf41a6b97699d2f3360b1
e41771b7dfc7d34b11bd70d5ad54f2ba3d2afdfd
5abffe6be6f08c017ff0f19af5bd185f7e2472d54f9077a53fac981b72d612b9

HTTP Headers

GET /wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=1182d95cb199c23e56f61364ae38f2e7 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 12 Apr 2023 08:22:42 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2037
content-type: application/javascript
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-includes/js/comment-reply.js?ver=6.2

208.109.36.109

200 OK

3.7 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-includes/js/comment-reply.js?ver=6.2
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text
Size
3.7 kB (3702 bytes)
Hash
c48f367af75ca169c501de248616afc3
b0a734a19ab58540a2f0f5d0716fe62df92ad111
78cb0eb81105540da4e2cde582ff9f4b28acca6afedca21424234b3d4ecfb621

HTTP Headers

GET /wp-includes/js/comment-reply.js?ver=6.2 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 30 Mar 2023 00:48:13 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3702
content-type: application/javascript
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-includes/js/underscore.min.js?ver=1.13.4

208.109.36.109

200 OK

7.3 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text, with very long lines (18798)
Size
7.3 kB (7311 bytes)
Hash
3f92fc0fb188799b432341421df6cfde
09041f63af89e1164a53dec66eb7b2ac1dc58ba6
6b09e750d7ecaac14315f7c7e09b6de17f8d1f790b4acdc094b74832402aee31

HTTP Headers

GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 27 Sep 2022 15:18:25 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 7311
content-type: application/javascript
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=1182d95cb199c23e56f61364ae38f2e7

208.109.36.109

200 OK

45 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=1182d95cb199c23e56f61364ae38f2e7
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
ASCII text, with very long lines (1042)
Size
45 kB (44723 bytes)
Hash
75ed79596b4b7af34cb436a52bf9c32b
5b5af6dd85954824a8170286cb6381d0f7c5333a
260216731985d8258d83c5aa120fc048751a857f6ab39eed6daecd21a1f88fc1

HTTP Headers

GET /wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=1182d95cb199c23e56f61364ae38f2e7 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 12 Apr 2023 08:22:42 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 44723
content-type: application/javascript
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

chimpstatic.com/mcjs-connected/js/users/45978c25d1c6a5f695218bffa/d93ff33efe87146516ec8f307.js

96.6.17.210

200 OK

1.2 kB

URL GET HTTP/1.1
chimpstatic.com/mcjs-connected/js/users/45978c25d1c6a5f695218bffa/d93ff33efe87146516ec8f307.js
IP
96.6.17.210:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerDigiCert Inc
Subjectwildcardsan.us15.list-manage.com
FingerprintBC:30:B2:9F:2F:A4:DF:B4:9F:C1:CC:A8:FD:DB:40:44:24:C3:79:6E
ValidityTue, 15 Nov 2022 00:00:00 GMT - Wed, 15 Nov 2023 23:59:59 GMT

File type
ASCII text
Size
1.2 kB (1223 bytes)
Hash
f6a7d18f62b1ac03aa707fff55881a07
5a4d6a45b1186f45a4c493030deee29b09627d20
c83ca122bfba864d5777e1c6e994b9bc937ad50061070607ce781d02e13f5998

HTTP Headers

GET /mcjs-connected/js/users/45978c25d1c6a5f695218bffa/d93ff33efe87146516ec8f307.js HTTP/1.1
Host: chimpstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: rTM581l1iGMQYHkRcM09VPEGGYIP1nkFWBrkW2mwLb+NYkGfIKuGppcjmaRYOBRGLVZQoWB87tM=
x-amz-request-id: 8DCAZQQ8MP6GM3QY
Last-Modified: Wed, 22 Mar 2023 23:04:31 GMT
ETag: "1fc2b10662dccdfccd0544d1de8f8d5c"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1594
Expires: Tue, 25 Apr 2023 12:26:35 GMT
Date: Tue, 25 Apr 2023 12:00:01 GMT
Content-Length: 1223
Connection: keep-alive

www.vtforeignpolicy.com/wp-includes/js/jquery/jquery.js?ver=3.6.3

208.109.36.109

200 OK

87 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-includes/js/jquery/jquery.js?ver=3.6.3
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
data
Size
87 kB (86867 bytes)
Hash
e294a13539f620c189f632d90538d672
415b1fb4b158e7ca82f94da4f912c5d47e2e08a0
ba16c1b8ca5a5e9fe2964794d41979018dda1956a9be7751137703254567fcf6

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=3.6.3 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 30 Mar 2023 00:48:13 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/themes/Newspaper/images/icons/newspaper.woff?221

208.109.36.109

200 OK

34 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/themes/Newspaper/images/icons/newspaper.woff?221
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
Web Open Font Format, TrueType, length 33488, version 0.0\012- data
Size
34 kB (33488 bytes)
Hash
bb0574723470bd3c09c4d4715629a5c9
4817181afef126cd667dd08ff00e377fbc0faca7
d2054b9fb412f742d8d13aa75a48e59b830094999f9000ae8c69916e11b8d805

HTTP Headers

GET /wp-content/themes/Newspaper/images/icons/newspaper.woff?221 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/wp-content/themes/Newspaper/style.css?ver=12.3.1
Cookie: _ga_91CV04FW8L=GS1.1.1682424242.1.0.1682424242.0.0.0; _ga=GA1.1.1033754977.1682424242
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 12 Apr 2023 08:22:34 GMT
accept-ranges: bytes
content-length: 33488
vary: Accept-Encoding,User-Agent
content-type: font/x-woff
date: Tue, 25 Apr 2023 12:00:01 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2ac0c516c6f8377ad172aee72f4eb8bb
13f44994b3fef3bbadba84dd76776e381e2a1ce5
b02d4a81be85312381f8c72e2b949b95454f75267934338be933464bec8b5878

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 12:00:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.163

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2ac0c516c6f8377ad172aee72f4eb8bb
13f44994b3fef3bbadba84dd76776e381e2a1ce5
b02d4a81be85312381f8c72e2b949b95454f75267934338be933464bec8b5878

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 12:00:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Apr 2023 07:44:41 GMT
expires: Sun, 21 Apr 2024 07:44:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 274520
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

45 kB

URL GET HTTP/3
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Apr 2023 02:05:23 GMT
expires: Sat, 20 Apr 2024 02:05:23 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 381278
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Apr 2023 03:11:48 GMT
expires: Sun, 21 Apr 2024 03:11:48 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 290893
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2ac0c516c6f8377ad172aee72f4eb8bb
13f44994b3fef3bbadba84dd76776e381e2a1ce5
b02d4a81be85312381f8c72e2b949b95454f75267934338be933464bec8b5878

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 12:00:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.vtforeignpolicy.com/wp-content/uploads/2023/03/mobile-bg.jpg

208.109.36.109

404 Not Found

27 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/03/mobile-bg.jpg
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9798), with CRLF, LF line terminators
Size
27 kB (27329 bytes)
Hash
0957d497cdd5490adbf62784d6a1d156
0d55a5031a61d40e5822bf29244d770b5e9719d5
38ed13e0e1aeee6ca6440bb69378bfaa1f0fb7762971cad5ee833fea47cbfcd3

HTTP Headers

GET /wp-content/uploads/2023/03/mobile-bg.jpg HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Cookie: _ga_91CV04FW8L=GS1.1.1682424242.1.0.1682424242.0.0.0; _ga=GA1.1.1033754977.1682424242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
vary: Accept-Encoding,Cookie,User-Agent
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.vtforeignpolicy.com/wp-json/>; rel="https://api.w.org/"
content-encoding: gzip
content-length: 27329
content-type: text/html; charset=UTF-8
date: Tue, 25 Apr 2023 12:00:01 GMT
server: Apache
X-Firefox-Spdy: h2

www.profitabledisplaynetwork.com/da8dc8ff869e9f989f3b5e49d93d74ae/invoke.js

173.233.137.52

200 OK

9.8 kB

URL GET HTTP/1.1
www.profitabledisplaynetwork.com/da8dc8ff869e9f989f3b5e49d93d74ae/invoke.js
IP
173.233.137.52:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectprofitabledisplaynetwork.com
Fingerprint88:E9:2B:59:A2:2F:00:D8:6F:AE:EB:02:75:D4:14:EC:2B:A5:AD:07
ValidityThu, 02 Mar 2023 09:46:08 GMT - Wed, 31 May 2023 09:46:07 GMT

File type
exported SGML document, ASCII text, with very long lines (26969), with no line terminators
Size
9.8 kB (9792 bytes)
Hash
d4202063e5e6dcc290df3266a6d56e76
3362a74abf90d93c0fa2b81e9071f7277f4356cc
38fee64152a29550bbc86ed127cae22eff1bc2b8f035cb7ac107b7ac9b58d0de

HTTP Headers

GET /da8dc8ff869e9f989f3b5e49d93d74ae/invoke.js HTTP/1.1
Host: www.profitabledisplaynetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 25 Apr 2023 12:00:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 944df8fbe4493688d6a3c4ce08172d6d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

45 kB

URL GET HTTP/3
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Apr 2023 02:05:23 GMT
expires: Sat, 20 Apr 2024 02:05:23 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 381278
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Apr 2023 16:13:41 GMT
expires: Sun, 21 Apr 2024 16:13:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 243980
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

45 kB

URL GET HTTP/3
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Apr 2023 02:05:23 GMT
expires: Sat, 20 Apr 2024 02:05:23 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 381278
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.profitabledisplaynetwork.com/4d6494c79000dc18c90eb1bfb3dcf5c9/invoke.js

173.233.137.52

200 OK

9.8 kB

URL GET HTTP/1.1
www.profitabledisplaynetwork.com/4d6494c79000dc18c90eb1bfb3dcf5c9/invoke.js
IP
173.233.137.52:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectprofitabledisplaynetwork.com
Fingerprint88:E9:2B:59:A2:2F:00:D8:6F:AE:EB:02:75:D4:14:EC:2B:A5:AD:07
ValidityThu, 02 Mar 2023 09:46:08 GMT - Wed, 31 May 2023 09:46:07 GMT

File type
exported SGML document, ASCII text, with very long lines (26955), with no line terminators
Size
9.8 kB (9784 bytes)
Hash
8dbcded55a8ef224afaf0ff533e28aa4
d2287ba2066455cf01ecbacda49afb04bf5d6e48
cbe111650edbe58c5f1b00a23c124392fb13f2122fb6ddae990ebbb171fed7d9

HTTP Headers

GET /4d6494c79000dc18c90eb1bfb3dcf5c9/invoke.js HTTP/1.1
Host: www.profitabledisplaynetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 25 Apr 2023 12:00:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1a4eeb190d0e4699d140aefa52ad4aaf
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

ocsp.r2m01.amazontrust.com/

108.156.15.108

471 B

URL
ocsp.r2m01.amazontrust.com/
IP
108.156.15.108:0
ASN
#0

File type
data
Size
471 B (471 bytes)
Hash
dcdfeb8858c56972dae3bc6247ae8df0
a3ae7cc0dea42d560b4a74d575f4e095437a338b
1eab5af4a0ecff43326de8aab097d8d268ca100eb4e95c65cb823ebe83f53218

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 25 Apr 2023 12:00:02 GMT
Last-Modified: Tue, 25 Apr 2023 10:31:23 GMT
Server: ECAcc (nya/799C)
X-Cache: Miss from cloudfront
Via: 1.1 108d01242a99700b9d54d3ebc618e22c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: HEL51-P1
X-Amz-Cf-Id: 2WhRVXj-oOMWOUOeYrQusRT7zklOTAeUjD5f5UKRkgoWiu03C-I4lw==
Age: 5319

simplewebanalysis.com/stats

3.122.43.90

200 OK

40 B

URL GET HTTP/2
simplewebanalysis.com/stats
IP
3.122.43.90:443
ASN
#16509 AMAZON-02

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerAmazon
Subjectsimplewebanalysis.com
FingerprintE5:9D:30:D3:0E:8A:EF:0D:43:46:4C:4C:53:AD:05:78:63:E9:04:07
ValidityThu, 02 Mar 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
d72180a69bb60209fbdf1051c49755df
336bc528e7013903ab78932bfdecfe6657b583a2
5429a488434bb6e557671c823fff8ec3203869150f8185099f102543407eac63

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.vtforeignpolicy.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=4109562e-e3c8-4426-a88c-8e5ecd0d77e5:2:1; expires=Fri, 22 Apr 2033 12:00:02 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

simplewebanalysis.com/stats

3.122.43.90

200 OK

40 B

URL GET HTTP/2
simplewebanalysis.com/stats
IP
3.122.43.90:443
ASN
#16509 AMAZON-02

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerAmazon
Subjectsimplewebanalysis.com
FingerprintE5:9D:30:D3:0E:8A:EF:0D:43:46:4C:4C:53:AD:05:78:63:E9:04:07
ValidityThu, 02 Mar 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
9d05c14f3d1baeb2d806e6bf89e4cb06
83ba36d5c0352953910952766a4b6db3ce199b88
b93cc4ae5d2790e534cd05711a30efc6c3c6d67eedc22b13ed8767b375a80aab

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.vtforeignpolicy.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=f2a178a8-c9ad-418d-97a6-51972f346229:1:1; expires=Fri, 22 Apr 2033 12:00:02 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

pl19156743.highrevenuegate.com/8751c879af857467c570b700c5536400/invoke.js

173.233.137.36

200 OK

9.3 kB

URL GET HTTP/1.1
pl19156743.highrevenuegate.com/8751c879af857467c570b700c5536400/invoke.js
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjecthighrevenuegate.com
Fingerprint77:A7:2B:53:64:6F:B2:D0:C1:BD:E4:E8:58:16:65:7A:EC:B4:70:8C
ValidityThu, 02 Mar 2023 09:45:40 GMT - Wed, 31 May 2023 09:45:39 GMT

File type
Unicode text, UTF-8 text, with very long lines (25118), with no line terminators
Size
9.3 kB (9286 bytes)
Hash
e712979856e5f66490ee69368fc1a75d
59be5a787d2ecaecbe3d5c6158cee9b28a9f4d61
0369c77c824fdbf745c9d2df633d4e540438672cf53e17d29f91dabe295491fc

HTTP Headers

GET /8751c879af857467c570b700c5536400/invoke.js HTTP/1.1
Host: pl19156743.highrevenuegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 25 Apr 2023 12:00:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1cc43c026026daf6bd1888022d437a14
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

simplewebanalysis.com/stats

3.122.43.90

200 OK

40 B

URL GET HTTP/2
simplewebanalysis.com/stats
IP
3.122.43.90:443
ASN
#16509 AMAZON-02

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerAmazon
Subjectsimplewebanalysis.com
FingerprintE5:9D:30:D3:0E:8A:EF:0D:43:46:4C:4C:53:AD:05:78:63:E9:04:07
ValidityThu, 02 Mar 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
9d05c14f3d1baeb2d806e6bf89e4cb06
83ba36d5c0352953910952766a4b6db3ce199b88
b93cc4ae5d2790e534cd05711a30efc6c3c6d67eedc22b13ed8767b375a80aab

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Cookie: uid_id2=f2a178a8-c9ad-418d-97a6-51972f346229:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.vtforeignpolicy.com
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2

ads.pubmatic.com/AdServer/js/pwt/160835/4933/pwt.js

2.18.172.200

200 OK

69 kB

URL GET HTTP/2
ads.pubmatic.com/AdServer/js/pwt/160835/4933/pwt.js
IP
2.18.172.200:443
ASN
#16625 AKAMAI-AS

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerDigiCert Inc
Subject*.pubmatic.com
Fingerprint68:7A:42:5D:D4:FF:A4:0B:9C:72:1E:39:40:50:24:B9:32:B4:BF:A3
ValidityWed, 25 Jan 2023 00:00:00 GMT - Wed, 24 Jan 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
69 kB (69184 bytes)
Hash
15a45b2254be05332604ac70e85c9aed
580f0e26f24a5576ff6bc4f2d0955db094837a4e
1eac43605f245e17c8f36efc1f1ae3590953a411e94c618d0bad754d3d4b846d

HTTP Headers

GET /AdServer/js/pwt/160835/4933/pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sun, 23 Apr 2023 01:00:44 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: application/javascript
content-length: 69184
cache-control: max-age=115987
expires: Wed, 26 Apr 2023 20:13:09 GMT
date: Tue, 25 Apr 2023 12:00:02 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9d9f70d393fd5f16698fd8bf43495697
c2195076d36c99f3cfb74f0ab66b6b86c0152633
15b3d11e57ba1b71f2f528e202125d66051a2232a72b7b24d481fc6acbb2c740

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 12:00:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/cse/cse.js?cx=24d4b937a72f74e42

216.58.207.228

301 Moved Permanently

251 B

URL GET HTTP/2
www.google.com/cse/cse.js?cx=24d4b937a72f74e42
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC3:7C:54:CD:86:09:A4:3E:2C:6D:EC:7C:FA:65:7B:3E:64:CB:10:E0
ValidityMon, 03 Apr 2023 08:25:07 GMT - Mon, 26 Jun 2023 08:25:06 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
251 B (251 bytes)
Hash
85789c94536ccb31eddfc0b600000b66
0c0de88dcf21b9600d140967f054089168920239
819b64d4b12bfd16671639ce42eab467196d82e51f86bcb7f1b7a7d940f6e4e9

HTTP Headers

GET /cse/cse.js?cx=24d4b937a72f74e42 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
location: https://cse.google.com/cse/cse.js?cx=24d4b937a72f74e42
x-content-type-options: nosniff
server: sffe
content-length: 251
x-xss-protection: 0
date: Tue, 25 Apr 2023 11:40:18 GMT
expires: Tue, 25 Apr 2023 12:10:18 GMT
cache-control: public, max-age=1800
content-type: text/html; charset=UTF-8
age: 1184
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9835c5958b816bcc391a3142ef1b1b1a
2bf04d8b2690441e80f1e007206bbf3dd39d6d37
d04159a9fb19ae22303773517edaf29a6ebddf60419f1d093cf361344d6bf3b2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 12:00:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.163

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9835c5958b816bcc391a3142ef1b1b1a
2bf04d8b2690441e80f1e007206bbf3dd39d6d37
d04159a9fb19ae22303773517edaf29a6ebddf60419f1d093cf361344d6bf3b2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 12:00:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.vtforeignpolicy.com/wp-content/uploads/2023/03/152x152-1.png

208.109.36.109

200 OK

3.7 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/03/152x152-1.png
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
PNG image data, 152 x 152, 8-bit colormap, non-interlaced\012- data
Size
3.7 kB (3677 bytes)
Hash
4df998e95f0857f033be3e5f0d9d81c3
5ddfde05a72cdb32296b5847b60fdb0191f48dd6
539b2eca33df1ff0c69a86ac7369cb6b7d42b700703977a234310a3564b95232

HTTP Headers

GET /wp-content/uploads/2023/03/152x152-1.png HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Cookie: _ga_91CV04FW8L=GS1.1.1682424242.1.0.1682424242.0.0.0; _ga=GA1.1.1033754977.1682424242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 23 Mar 2023 15:45:57 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:02 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3677
content-type: image/png
date: Tue, 25 Apr 2023 12:00:02 GMT
server: Apache
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/03/favicon.png

208.109.36.109

200 OK

361 B

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/03/favicon.png
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
361 B (361 bytes)
Hash
414cac8b64b04073894316c06c37e163
b7090ce5fd5aa528742a4a81c13714bcf20dbb62
1d4220683164c7234347fd5e5385d1b07a29996569e446c20459e49995fb4bb7

HTTP Headers

GET /wp-content/uploads/2023/03/favicon.png HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Cookie: _ga_91CV04FW8L=GS1.1.1682424242.1.0.1682424242.0.0.0; _ga=GA1.1.1033754977.1682424242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 23 Mar 2023 16:07:51 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:02 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 361
content-type: image/png
date: Tue, 25 Apr 2023 12:00:02 GMT
server: Apache
X-Firefox-Spdy: h2

assets.buzzsprout.com/assets/players/mejs-skins-wave-6bbaf00273d60067bf8920e67e9394518afb94cae4fa738dc65ab299b83e5f4f.css

104.19.160.48

200 OK

714 B

URL GET HTTP/2
assets.buzzsprout.com/assets/players/mejs-skins-wave-6bbaf00273d60067bf8920e67e9394518afb94cae4fa738dc65ab299b83e5f4f.css
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
ASCII text, with very long lines (2619)
Size
714 B (714 bytes)
Hash
058e06c257e11d0444dd0d945474b6a7
e95a7976097253cf3eef950f30ffec600405bddf
a4fdeba2fcc96aef55d3c247c138dfc044774040c1aac8f2acc6ac424bde4a8d

HTTP Headers

GET /assets/players/mejs-skins-wave-6bbaf00273d60067bf8920e67e9394518afb94cae4fa738dc65ab299b83e5f4f.css HTTP/1.1
Host: assets.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/css
content-length: 714
access-control-allow-origin: *
cache-control: max-age=31536000, public
content-encoding: gzip
expires: Wed, 08 Nov 2023 14:50:01 GMT
last-modified: Tue, 08 Nov 2022 14:45:07 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 14504960
accept-ranges: bytes
server: cloudflare
cf-ray: 7bd66c60cd251c02-OSL
X-Firefox-Spdy: h2

assets.buzzsprout.com/assets/players/mediaelementplayer.min-01e950e400a4346a83fa347c45ac45fba7624783d567270044f69634950a4c1c.css

104.19.160.48

200 OK

2.8 kB

URL GET HTTP/2
assets.buzzsprout.com/assets/players/mediaelementplayer.min-01e950e400a4346a83fa347c45ac45fba7624783d567270044f69634950a4c1c.css
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
ASCII text, with very long lines (17905)
Size
2.8 kB (2764 bytes)
Hash
4b038ddd24a34624a16a66a0f620c756
3922d076deb231d47afd9ce86d3305fe7b528833
999d0d5e2e6b22938a94b7d0016f9cd52cde584718bee11e07a13c0f595fc3e7

HTTP Headers

GET /assets/players/mediaelementplayer.min-01e950e400a4346a83fa347c45ac45fba7624783d567270044f69634950a4c1c.css HTTP/1.1
Host: assets.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/css
content-length: 2764
access-control-allow-origin: *
cache-control: max-age=31536000, public
content-encoding: gzip
expires: Wed, 08 Nov 2023 14:50:01 GMT
last-modified: Tue, 08 Nov 2022 14:45:07 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 14504960
accept-ranges: bytes
server: cloudflare
cf-ray: 7bd66c60cd271c02-OSL
X-Firefox-Spdy: h2

cse.google.com/cse/cse.js?cx=24d4b937a72f74e42

142.250.74.174

200 OK

3.1 kB

URL GET HTTP/2
cse.google.com/cse/cse.js?cx=24d4b937a72f74e42
IP
142.250.74.174:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintD5:3A:80:A6:03:B0:E4:36:0E:46:7B:36:45:CB:50:4C:D6:98:CE:59
ValidityMon, 03 Apr 2023 08:17:58 GMT - Mon, 26 Jun 2023 08:17:57 GMT

File type
ASCII text, with very long lines (3486)
Size
3.1 kB (3101 bytes)
Hash
59b5b0c3ecb2b065dbb87a9d9ee09f18
8a2d72ccda2abfdfb5823945fce5ab776d35c430
fc940742329f2b4335a6ad9de66b61e7fe4b34b0b43500b333ec6577e8f406cb

HTTP Headers

GET /cse/cse.js?cx=24d4b937a72f74e42 HTTP/1.1
Host: cse.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vtforeignpolicy.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-PTmEZ0ULbbGh3DZCSw4s2g' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Tue, 25 Apr 2023 12:00:02 GMT
server: gws
content-length: 3101
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+622; expires=Thu, 24-Apr-2025 12:00:02 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 25 Apr 2023 12:00:02 GMT
cache-control: private
X-Firefox-Spdy: h2

www.google.com/cse/static/element/a9408e9443edd8dc/default+no.css

216.58.207.228

200 OK

9.1 kB

URL GET HTTP/3
www.google.com/cse/static/element/a9408e9443edd8dc/default+no.css
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintD5:3A:80:A6:03:B0:E4:36:0E:46:7B:36:45:CB:50:4C:D6:98:CE:59
ValidityMon, 03 Apr 2023 08:17:58 GMT - Mon, 26 Jun 2023 08:17:57 GMT

File type
ASCII text
Size
9.1 kB (9102 bytes)
Hash
34e640711e4acbd248d4a9267ed13f42
d75e38bfdceb6226223a6a67bb8de40e4ff82acc
29efde8606373dd719c0fe531311c9232c7f56796c1c5883e0f63e3f8854d9b2

HTTP Headers

GET /cse/static/element/a9408e9443edd8dc/default+no.css HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 9102
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Apr 2023 06:52:49 GMT
expires: Sat, 20 Apr 2024 06:52:49 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 12 Apr 2023 21:05:10 GMT
content-type: text/css
vary: Accept-Encoding
age: 364034
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/cse/static/style/look/v4/minimalist.css

216.58.207.228

200 OK

1.5 kB

URL GET HTTP/3
www.google.com/cse/static/style/look/v4/minimalist.css
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintD5:3A:80:A6:03:B0:E4:36:0E:46:7B:36:45:CB:50:4C:D6:98:CE:59
ValidityMon, 03 Apr 2023 08:17:58 GMT - Mon, 26 Jun 2023 08:17:57 GMT

File type
ASCII text
Size
1.5 kB (1452 bytes)
Hash
887ab99eecd958cc59658c9386cd8360
6897e243a95361c3ec1d1beea6b886f4350ed348
148edeaedcd110ff0d2c72f71444ea9152d55cc607e0eb2984ea5a42e6c93a5a

HTTP Headers

GET /cse/static/style/look/v4/minimalist.css HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 1452
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 25 Apr 2023 11:56:22 GMT
expires: Tue, 25 Apr 2023 12:46:22 GMT
cache-control: public, max-age=3000
age: 221
last-modified: Mon, 25 May 2020 08:30:00 GMT
content-type: text/css
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

dangerouslyblemishsweater.com/pixel/nvwbdp?key=8751c879af857467c570b700c5536400

173.233.137.36

200 OK

0 B

URL GET HTTP/1.1
dangerouslyblemishsweater.com/pixel/nvwbdp?key=8751c879af857467c570b700c5536400
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectdangerouslyblemishsweater.com
Fingerprint2C:30:D7:37:6D:D1:CC:1E:DA:12:47:8D:CF:35:72:F5:E1:0B:FA:E6
ValidityTue, 25 Apr 2023 06:18:02 GMT - Mon, 24 Jul 2023 06:18:01 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/nvwbdp?key=8751c879af857467c570b700c5536400 HTTP/1.1
Host: dangerouslyblemishsweater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 25 Apr 2023 12:00:02 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

www.vtforeignpolicy.com/wp-content/uploads/2023/04/200x200.jpg

208.109.36.109

200 OK

2.8 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/04/200x200.jpg
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", Exif Standard: [\012- TIFF image data, big-endian, direntries=2], progressive, precision 8, 200x200, components 3\012- data
Size
2.8 kB (2825 bytes)
Hash
c550c1ebcdcd7c917af7092987fb9e0f
4f4a24300ed4697519a382546b981ac83e1a2a2f
37f62caf4403b1a66d660e60e5c031857f707f082b03a9cc1c86df19be689d72

HTTP Headers

GET /wp-content/uploads/2023/04/200x200.jpg HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Cookie: _ga_91CV04FW8L=GS1.1.1682424242.1.0.1682424242.0.0.0; _ga=GA1.1.1033754977.1682424242; _pbjs_userid_consent_data=3524755945110770; _pubcid=63c718c5-52df-4aba-aa58-44cffb68f4d4; dom3ic8zudi28v8lr6fgphwffqoz0j6c=f2a178a8-c9ad-418d-97a6-51972f346229%3A1%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 12 Apr 2023 01:40:59 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:02 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2825
content-type: image/jpeg
date: Tue, 25 Apr 2023 12:00:02 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.r2m01.amazontrust.com/

108.156.15.108

471 B

URL
ocsp.r2m01.amazontrust.com/
IP
108.156.15.108:0
ASN
#0

File type
data
Size
471 B (471 bytes)
Hash
651b709c20e9cfddd3f5b673c082533e
5e32264653b1ca5e03e8d081d820be98f1c8a38b
273dabb2a0c6357c03a2f80bcbdd101e5ec9740be7092415a985d9908a67f13d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 25 Apr 2023 12:00:03 GMT
Last-Modified: Tue, 25 Apr 2023 11:42:27 GMT
Server: ECAcc (nya/79B0)
X-Cache: Miss from cloudfront
Via: 1.1 108d01242a99700b9d54d3ebc618e22c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: HEL51-P1
X-Amz-Cf-Id: yWcEaeHA4sbTJ6ZY_LU9Ql8vjLIP3r8ngRzuEuSdUC3FDp1Ww_5f7A==
Age: 1056

gifthandymanshortage.com/ntv.json?key=8751c879af857467c570b700c5536400&vstc=4

173.233.137.44

200 OK

17 kB

URL GET HTTP/1.1
gifthandymanshortage.com/ntv.json?key=8751c879af857467c570b700c5536400&vstc=4
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subject*.gifthandymanshortage.com
FingerprintD0:E1:B5:23:6E:30:C0:70:C4:CA:2D:61:28:BB:0A:A9:6D:66:0A:6C
ValiditySat, 08 Apr 2023 06:19:03 GMT - Fri, 07 Jul 2023 06:19:02 GMT

File type
JSON data\012- , ASCII text, with very long lines (17285), with no line terminators
Size
17 kB (17285 bytes)
Hash
cb41f3a33757f594c8a5844e4421f283
c9f0d98b04dba94bcf2a3e241e86fd3c7d2a9ba6
8f267cb3b2d617602089cd5072543675bdd25c702d9fac638bbf68e37564bdbb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ntv.json?key=8751c879af857467c570b700c5536400&vstc=4 HTTP/1.1
Host: gifthandymanshortage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 25 Apr 2023 12:00:03 GMT
Content-Type: application/json
Content-Length: 17285
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vtforeignpolicy.com
Access-Control-Allow-Origin: https://www.vtforeignpolicy.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=19056244; expires=Wed, 26 Apr 2023 12:00:02 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 26 Apr 2023 12:00:03 GMT; secure; SameSite=None
uncs=1; expires=Wed, 26 Apr 2023 12:00:03 GMT; secure; SameSite=None
pdhtkv49=true; expires=Wed, 26 Apr 2023 12:00:03 GMT; secure; SameSite=None
uncs49=1; expires=Wed, 26 Apr 2023 12:00:03 GMT; secure; SameSite=None
nlec8751c879af857467c570b700c5536400=[2229333,2229337]; expires=Tue, 25 Apr 2023 12:00:08 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9c3aae726f9c0fe0a57d2cc5fe54b3ac
Strict-Transport-Security: max-age=0; includeSubdomains

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCT2J5T3dRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--e2e3ac110e206ece638e01c6109b2d54fcafa447/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/secret-wars-mark-vlahos-square.jpg

104.19.160.48

302 Found

306 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCT2J5T3dRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--e2e3ac110e206ece638e01c6109b2d54fcafa447/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/secret-wars-mark-vlahos-square.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
data
Size
306 kB (306128 bytes)
Hash
a86ffb6bb26f4424edd2ac22b8a092c8
9563e05e446102b78dd748481f43b32e616ff6fa
237a2232fcc4a58f9c4d4acd319e246bbebb6a3805a0931569e9af87b5d29bb0

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCT2J5T3dRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--e2e3ac110e206ece638e01c6109b2d54fcafa447/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/secret-wars-mark-vlahos-square.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/m1b660y0pgn0u2zhdmq3o9pbhuau/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: 876f6ba8-62d7-4815-ade2-a0df6ca31bd8
x-runtime: 0.045734
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c611dc21c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/0hfx6rtnh5z639sh7t6njew8qowe/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

220 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/0hfx6rtnh5z639sh7t6njew8qowe/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
220 kB (220375 bytes)
Hash
9a3d3a666018c073bd699354d589ba2a
2e91a2dc53e84bbf023bf63ab9c735d6229c1ce5
6b2191dd5e9ae11127395ed7f6f43f101e02dec56475059523daf579f837606e

HTTP Headers

GET /variants/0hfx6rtnh5z639sh7t6njew8qowe/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 220375
cf-bgj: h2pri
etag: "9a3d3a666018c073bd699354d589ba2a"
last-modified: Tue, 21 Mar 2023 08:58:31 GMT
via: 1.1 4612dc3b414cf2057f542e94733d59bc.cloudfront.net (CloudFront)
x-amz-cf-id: r5vtooQgMXFvM_kyh3RGfrkLOV2SeJJs-NLCda2-PJDAFZ22Mtct0Q==
x-amz-cf-pop: FRA60-P3
x-cache: Hit from cloudfront
x-amz-server-side-encryption: AES256
x-amz-version-id: SyR6CPdv0.QbtpJ0sFEXR1l9SyCjpqIw
cf-cache-status: HIT
age: 1149
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c6429791c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/m1b660y0pgn0u2zhdmq3o9pbhuau/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

252 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/m1b660y0pgn0u2zhdmq3o9pbhuau/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
252 kB (251814 bytes)
Hash
3becdc6dfc39839b9b3e6af1208154da
413187e1cf9cd839132e988230a97d1d3e04aab5
2f55885f976d985762c0168d06836d5a81c42a871d4110edd435752be9424fb3

HTTP Headers

GET /variants/m1b660y0pgn0u2zhdmq3o9pbhuau/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 251814
cf-bgj: h2pri
etag: "3becdc6dfc39839b9b3e6af1208154da"
last-modified: Mon, 02 Jan 2023 17:15:53 GMT
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-id: mw5zdtoSdxGEE345_HQmqoeLE6ura-42Zuwx-MJCmIR39pVWw4wHKg==
x-amz-cf-pop: OSL50-C1
x-cache: Hit from cloudfront
x-amz-version-id: VQym2JSB2meVmusHJm41iVsqbNoPtdyx
cf-cache-status: HIT
age: 1149
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c6429781c02-OSL
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCSkFjQWdVPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--c3170583c749497e8572bc0cd6b490ab04905215/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/fake-news-2023-2.jpg

104.19.160.48

302 Found

305 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCSkFjQWdVPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--c3170583c749497e8572bc0cd6b490ab04905215/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/fake-news-2023-2.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
data
Size
305 kB (305112 bytes)
Hash
5cf427ef24db38e282531c530f30a205
a12d5b16cb94c4175f013fb715cb8c29ca4a3e32
b536f11e749c9788c4df38c4b20368537907883c17f1bc45ee56572e1f5d2973

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCSkFjQWdVPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--c3170583c749497e8572bc0cd6b490ab04905215/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/fake-news-2023-2.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/ytm0coo1t195accfuxsc6hu03lc1/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: edadb85e-df24-42c2-9d53-12c8ac861210
x-runtime: 0.025294
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60bd0f1c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/kek2t0xep48xkmkiexzpqgu5852e/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

422 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/kek2t0xep48xkmkiexzpqgu5852e/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
422 kB (421838 bytes)
Hash
1698d01e8365d042c3901df29770943c
fd5222ed083013f28da28edb46881ebf1693c87d
cbeed838db66be2bacf9a0bdc45ed905d0ea0bf6a9cd1fb566d91d9f03233fb7

HTTP Headers

GET /variants/kek2t0xep48xkmkiexzpqgu5852e/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 421838
cf-bgj: h2pri
etag: "1698d01e8365d042c3901df29770943c"
last-modified: Mon, 13 Mar 2023 14:47:41 GMT
via: 1.1 28bed1803be3c3dac5d1cab9aa7edf84.cloudfront.net (CloudFront)
x-amz-cf-id: KimwQoBXdEX4uhGg5fQ5ogf-W8lUeLNwXfQaV7PWoVwp8mJEkjrwTA==
x-amz-cf-pop: CPH50-P1
x-cache: Hit from cloudfront
x-amz-server-side-encryption: AES256
x-amz-version-id: 8fxq1ir174O72QTVzA_scHDZPc0g_Vkx
cf-cache-status: HIT
age: 3375
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c6429731c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/i74qjc6bwt6xxkjzbu1sjr8c90hw/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

214 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/i74qjc6bwt6xxkjzbu1sjr8c90hw/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
214 kB (214189 bytes)
Hash
4a1dd013ea5045337c9ea93cdd6b67d7
a974ea3452b2009f4827321ac63c0c3d7e1df68e
36752cda71d91cd51d5b1110743a0b09d376c778a9e4594d0203fe6bb8a8982b

HTTP Headers

GET /variants/i74qjc6bwt6xxkjzbu1sjr8c90hw/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 214189
cf-bgj: h2pri
etag: "4a1dd013ea5045337c9ea93cdd6b67d7"
last-modified: Mon, 10 Apr 2023 23:47:47 GMT
via: 1.1 bd29d18ddcad5397b0dff22184078bfc.cloudfront.net (CloudFront)
x-amz-cf-id: NteG48nrh7iugdPfSzAocAXe-EeW19KjmwnbwNmhyPKWUSDvqfglCQ==
x-amz-cf-pop: HEL50-C2
x-cache: Hit from cloudfront
x-amz-server-side-encryption: AES256
x-amz-version-id: eWvzh2439gQ.wp5KVswr3eW2pcXRvmMz
cf-cache-status: HIT
age: 2204
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c6429701c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/nnd9a3whks6x9qhqoah5cxq3h4ao/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

247 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/nnd9a3whks6x9qhqoah5cxq3h4ao/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
247 kB (246816 bytes)
Hash
0251ac02986134da3ff99ebdb80eca2d
be709227467db413f21ecd12126d75158e7c37e0
095775f1bdc1875908f4acc2adab3472759664e5c734d066c683004b3a93844b

HTTP Headers

GET /variants/nnd9a3whks6x9qhqoah5cxq3h4ao/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 246816
cf-bgj: h2pri
etag: "0251ac02986134da3ff99ebdb80eca2d"
last-modified: Sun, 16 Apr 2023 17:08:08 GMT
via: 1.1 c04417bae552ee23bdd9519ac6fdfa34.cloudfront.net (CloudFront)
x-amz-cf-id: bJh83u7t_cjOPbcQAG58J3htyJlZLSCSqqz0v-LFHuLO7hh2sASsGw==
x-amz-cf-pop: CPH50-P1
x-cache: Hit from cloudfront
x-amz-server-side-encryption: AES256
x-amz-version-id: Bk0rlo9UHixVpYJFFSSWpfVPkthFaHPA
cf-cache-status: HIT
age: 2204
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c64296c1c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/7ckjtabjgqhqji0mo471etplewbk/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

224 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/7ckjtabjgqhqji0mo471etplewbk/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
224 kB (223514 bytes)
Hash
f0991ed0ad819083e164a188b0c9a976
a771f874012bff59806c177dbb11150a09e23ce3
95f4eb68033ca1835f912a7f8f9dffa3f514103dbafe626f75fd71f9164296f7

HTTP Headers

GET /variants/7ckjtabjgqhqji0mo471etplewbk/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 223514
cf-bgj: h2pri
etag: "f0991ed0ad819083e164a188b0c9a976"
last-modified: Tue, 04 Apr 2023 13:36:23 GMT
via: 1.1 bd29d18ddcad5397b0dff22184078bfc.cloudfront.net (CloudFront)
x-amz-cf-id: wbJwnUm4sQR9A8NcbAbwtgCoFC6eQB5khNvM9vlaY0FYJSkxkV59Xg==
x-amz-cf-pop: HEL50-C2
x-cache: Miss from cloudfront
x-amz-server-side-encryption: AES256
x-amz-version-id: qrkmY.wPCRbCFeWY4ZPrM64Piq99y4_4
cf-cache-status: HIT
age: 1149
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c6429711c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/ytm0coo1t195accfuxsc6hu03lc1/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

235 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/ytm0coo1t195accfuxsc6hu03lc1/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
235 kB (234728 bytes)
Hash
a7caf96294883ca6666ee05c2d2abb68
6f6ba5478e84a733e282547cefa6c09634d84558
9b10d892cfde43c3559a4a7984bcd5c7d912dd3578c69ec03b94e7d11f2f75a2

HTTP Headers

GET /variants/ytm0coo1t195accfuxsc6hu03lc1/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 234728
cf-bgj: h2pri
etag: "a7caf96294883ca6666ee05c2d2abb68"
last-modified: Tue, 25 Apr 2023 07:37:57 GMT
via: 1.1 f6020f10d519a41b0c116dad7dcb2798.cloudfront.net (CloudFront)
x-amz-cf-id: CT01KZtMQ8NQ-ztfq3H8P336NWOMxRohKauk_mNRK1NKtuA64qiyLw==
x-amz-cf-pop: ARN54-C1
x-cache: Miss from cloudfront
x-amz-server-side-encryption: AES256
x-amz-version-id: SH5S7nxueqXDlmTsIEQLa2ABgr3PyWHJ
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c64296a1c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/zcw51f3m5gbum2hyiz5oustq9xfz/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

300 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/zcw51f3m5gbum2hyiz5oustq9xfz/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
300 kB (299969 bytes)
Hash
c0337d2f1bef0c5f001ecb60ff8c7dd0
cf76ee54fc87cfbecbd02304554c50b3f8bced03
45a218ae059405f6e93d0e2a22f9b1111a3225d22cb151862e6c925a1f95435a

HTTP Headers

GET /variants/zcw51f3m5gbum2hyiz5oustq9xfz/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 299969
cf-bgj: h2pri
etag: "c0337d2f1bef0c5f001ecb60ff8c7dd0"
last-modified: Wed, 25 Jan 2023 01:16:26 GMT
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-id: D5aD8YEezv4KLUbJ1GjkNhW_SZhc09AQSr297T5BwQ-yP5vdaJNTDw==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
x-amz-version-id: zEtBduJ9Fp5Awamvg9gjKpFaySbuqwRG
cf-cache-status: HIT
age: 3375
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c6429751c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/v8xo916rjdh04daf6yrt916z2np5/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

290 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/v8xo916rjdh04daf6yrt916z2np5/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
290 kB (290018 bytes)
Hash
ef297faebba802ad397f5d7c1e52c186
23758063648d3a255d4fac8a01d51f96692a678a
871a5ea0820a584626a89a4f80b6e33a149cb005916115ac0efddd0e89c31f1b

HTTP Headers

GET /variants/v8xo916rjdh04daf6yrt916z2np5/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 290018
cf-bgj: h2pri
etag: "ef297faebba802ad397f5d7c1e52c186"
last-modified: Tue, 11 Apr 2023 13:35:46 GMT
via: 1.1 6036a7a2fb095f4c9dc3eed21d4553d0.cloudfront.net (CloudFront)
x-amz-cf-id: uPCjnJoa1qPbVHNXA0-jLSOGIImfmNhLdsUs3TCH8dpgvsiAH5Qwlw==
x-amz-cf-pop: TXL50-P2
x-cache: Hit from cloudfront
x-amz-server-side-encryption: AES256
x-amz-version-id: m81H5PfiTXMV6cJUz_zE.k0I0Ak9Ldll
cf-cache-status: HIT
age: 3375
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c64296f1c02-OSL
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTC96NFFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--3c9c896a94ed52eefa827baaf82eaa60b6b94c07/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/superpower-cover2.jpg

104.19.160.48

302 Found

248 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTC96NFFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--3c9c896a94ed52eefa827baaf82eaa60b6b94c07/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/superpower-cover2.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
data
Size
248 kB (248042 bytes)
Hash
de50828646f1f9834dce28fed92073d3
ea45f09ed3c8a382f33aa057d63ab46d80fe3bf4
953f4bb80a0b1c2f4f42615b9918339ed2b98f585b2ad45f7435ed284f51ff8c

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTC96NFFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--3c9c896a94ed52eefa827baaf82eaa60b6b94c07/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/superpower-cover2.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/7ckjtabjgqhqji0mo471etplewbk/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: a920393c-8853-4012-96d3-ea6fcea02ca3
x-runtime: 0.031891
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60bd1b1c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/p5ei6jyb4g7ct128p1nrqfcufyyp/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

278 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/p5ei6jyb4g7ct128p1nrqfcufyyp/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
278 kB (277766 bytes)
Hash
c1c3b4789e5ac49525919235061391e2
3f571f3231bf00a16708128e3d27ec4c413ceafc
5ffc7d304f93012eec516e38567e342335cdae2379f06ba1ba86cee54d871771

HTTP Headers

GET /variants/p5ei6jyb4g7ct128p1nrqfcufyyp/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 277766
cf-bgj: h2pri
etag: "c1c3b4789e5ac49525919235061391e2"
last-modified: Sat, 28 Jan 2023 01:02:48 GMT
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-id: ibKSs6yoepr9dCfh0muH7zA8uaENp8HJIyawbuBcaZM1tWOgjueHFA==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
x-amz-version-id: DgL5sVNKUPI79d3OER0niwbIWeDGhvYk
cf-cache-status: HIT
age: 3375
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c6429771c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/4mvv00jtacy37igp4kr603m9y5ap/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

286 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/4mvv00jtacy37igp4kr603m9y5ap/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
286 kB (286162 bytes)
Hash
f8e800711dbba2c1c6dd67fe9036d089
21aa1381582f42cc63a3c636de7023aa26a44b35
e4063d88aa42ff31e0e839b9ede2c923d7a0cd5deaed99de49d13617a667ebb6

HTTP Headers

GET /variants/4mvv00jtacy37igp4kr603m9y5ap/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 286162
cf-bgj: h2pri
etag: "f8e800711dbba2c1c6dd67fe9036d089"
last-modified: Wed, 25 Jan 2023 17:04:47 GMT
via: 1.1 9e68c5632e1f9f77f8da043a0495769a.cloudfront.net (CloudFront)
x-amz-cf-id: pwaL41uIYqlNEQ40KC7t6N-RqsUEJFrt1-fG-SyroxbKPMmEkO1srQ==
x-amz-cf-pop: ARN54-C1
x-cache: Hit from cloudfront
x-amz-version-id: M18w7.mCAcaastIARnkAzqgOPPuvI_2N
cf-cache-status: HIT
age: 3375
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c6439a31c02-OSL
X-Firefox-Spdy: h2

assets.buzzsprout.com/assets/wave_player/embed_images-6bd537f366452657ab93121c8c5c428a249352e63dc469c2b7c9443d4651557c.svg

104.19.160.48

200 OK

238 kB

URL GET HTTP/2
assets.buzzsprout.com/assets/wave_player/embed_images-6bd537f366452657ab93121c8c5c428a249352e63dc469c2b7c9443d4651557c.svg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
data
Size
238 kB (238135 bytes)
Hash
146e7a9ef487740f2cf5804b7b38a552
b3b679cae4a968ffbb1d1bb58a9da6bec9173451
678bf8e4985fbf7b8610f130b7cf4118dcd7664580dfd62f864b7e28dedc0bcd

HTTP Headers

GET /assets/wave_player/embed_images-6bd537f366452657ab93121c8c5c428a249352e63dc469c2b7c9443d4651557c.svg HTTP/1.1
Host: assets.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets.buzzsprout.com/assets/players/wave-player-145cf7a17c6f7c0b7dd1fd47bb85af41a0be45a66ad9e3d962d879831553e793.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public
expires: Fri, 11 Aug 2023 14:40:34 GMT
last-modified: Wed, 10 Aug 2022 18:53:49 GMT
cf-cache-status: HIT
age: 8320309
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c629fab1c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/bdgil2hc56u1ogjj94twuqyxmss7/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

359 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/bdgil2hc56u1ogjj94twuqyxmss7/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
359 kB (358661 bytes)
Hash
bf5c5afb8a36454f74e3ce6bf839f0ba
f405dfe06b8fcfafa71856c7c237fea277de2041
383309a7944d97fa8cf1ced86dcca20d5377c6aa77385544c33e6042f352f6ad

HTTP Headers

GET /variants/bdgil2hc56u1ogjj94twuqyxmss7/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 358661
cf-bgj: h2pri
etag: "bf5c5afb8a36454f74e3ce6bf839f0ba"
last-modified: Tue, 14 Mar 2023 17:09:14 GMT
via: 1.1 2927a562221afae019284ec96f9ab790.cloudfront.net (CloudFront)
x-amz-cf-id: dF21RfwZJLmt4R3TY9j2KF3g5vmNJY7FAGXC-eC0eaKAv4K6yYh-vQ==
x-amz-cf-pop: CPH50-P1
x-cache: Hit from cloudfront
x-amz-server-side-encryption: AES256
x-amz-version-id: .wdQP9kuPesvvqnDwojpnWPzWUzlOXbY
cf-cache-status: HIT
age: 3375
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c6429761c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/darysyu2bkmfalamzrln4vsr89gd/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

313 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/darysyu2bkmfalamzrln4vsr89gd/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
313 kB (313328 bytes)
Hash
0ef81d429815296b1506c9c3ac89bf7e
e3b86648d615f8eeebd79f1710aed33ea15adf64
af769ca3f541482d98571ef3287607d6fee9251fe6e033cc9453f5d950740729

HTTP Headers

GET /variants/darysyu2bkmfalamzrln4vsr89gd/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 313328
cf-bgj: h2pri
etag: "0ef81d429815296b1506c9c3ac89bf7e"
last-modified: Sat, 04 Mar 2023 13:05:56 GMT
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-id: 5WufbfQy6bAG3A_FZkD4nMe-t4A_Ut7IVHhUJXn889roX6Juej7w8w==
x-amz-cf-pop: OSL50-C1
x-cache: Hit from cloudfront
x-amz-server-side-encryption: AES256
x-amz-version-id: FQ3_pfQmt_SaskXgji9iKDfynr5Qqvg2
cf-cache-status: HIT
age: 3375
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c6469e81c02-OSL
X-Firefox-Spdy: h2

assets.buzzsprout.com/assets/public_players/listen_on-b547ac98398b46fe853996d648dce31e6681ec77f2970d96582216a9bc0dd22a.svg

104.19.160.48

200 OK

449 kB

URL GET HTTP/2
assets.buzzsprout.com/assets/public_players/listen_on-b547ac98398b46fe853996d648dce31e6681ec77f2970d96582216a9bc0dd22a.svg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
data
Size
449 kB (448953 bytes)
Hash
ce6bb9fe225792031a885172a9e60366
381389ed0e30a79c54e603efa621cce6b21bba19
deb5b79404cf6d0e4f412932338f00f2171f50ef543dfa6f24b24d4d32209c29

HTTP Headers

GET /assets/public_players/listen_on-b547ac98398b46fe853996d648dce31e6681ec77f2970d96582216a9bc0dd22a.svg HTTP/1.1
Host: assets.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets.buzzsprout.com/assets/players/wave-player-145cf7a17c6f7c0b7dd1fd47bb85af41a0be45a66ad9e3d962d879831553e793.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public
expires: Sat, 25 Feb 2023 08:19:55 GMT
last-modified: Wed, 23 Feb 2022 20:30:06 GMT
cf-cache-status: HIT
age: 22195247
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c629fac1c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTThPNndRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--ced83d664d72ffe85468f06bfbb79b9d93dcc42c/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/fly-girls-book3.jpg

104.19.160.48

302 Found

706 B

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTThPNndRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--ced83d664d72ffe85468f06bfbb79b9d93dcc42c/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/fly-girls-book3.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
data
Size
706 B (706 bytes)
Hash
29ca648fbca57cf9e20805e8cdbda70a
e3a22c38eb0739d66928d7e063b63d03b5c1c88c
e5bf8cfdd84d23c8dcb977168189352a8b8bec899d44d36e6fda30ac168e68f5

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTThPNndRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--ced83d664d72ffe85468f06bfbb79b9d93dcc42c/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/fly-girls-book3.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/i74qjc6bwt6xxkjzbu1sjr8c90hw/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: 1b1ee1c5-d973-4e07-b9a6-bede38848859
x-runtime: 0.024749
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60bd171c02-OSL
X-Firefox-Spdy: h2

assets.buzzsprout.com/assets/iframe-95bfa9ff1f0642bbc90b0c8ca8732e2dd2be78b8a996701e01732f360c2f8a5a.js

104.19.160.48

200 OK

499 kB

URL GET HTTP/2
assets.buzzsprout.com/assets/iframe-95bfa9ff1f0642bbc90b0c8ca8732e2dd2be78b8a996701e01732f360c2f8a5a.js
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
data
Size
499 kB (499268 bytes)
Hash
96814175bbbf5c4982d876ad18b983f0
7c6e373916fdf5edf515934a360a068aea367de8
813fd83964d37e5a3cffe432542380175f00ee0e65df253165eabcd183ad0196

HTTP Headers

GET /assets/iframe-95bfa9ff1f0642bbc90b0c8ca8732e2dd2be78b8a996701e01732f360c2f8a5a.js HTTP/1.1
Host: assets.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=31536000, public
content-encoding: gzip
expires: Wed, 29 Nov 2023 17:16:09 GMT
last-modified: Tue, 29 Nov 2022 17:07:51 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 12681833
server: cloudflare
cf-ray: 7bd66c60cd2d1c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/5qb2h0il101mwjuo5wlgkce8inzk/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

265 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/5qb2h0il101mwjuo5wlgkce8inzk/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
265 kB (264718 bytes)
Hash
0b78c0ee54efe64cdf75304a30cde1ce
33b89c6162ae042b9706b6fe010572b8f00d89b4
8b3e2d1dead174817504488ff439fa1fa5c1dae71a2133b404c6bb556cc0a85f

HTTP Headers

GET /variants/5qb2h0il101mwjuo5wlgkce8inzk/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 264718
cf-bgj: h2pri
etag: "0b78c0ee54efe64cdf75304a30cde1ce"
last-modified: Sun, 15 Jan 2023 14:55:43 GMT
via: 1.1 bfeae0ecbffe44ad98e5cd0ae83bdb4a.cloudfront.net (CloudFront)
x-amz-cf-id: pzhe3t0BZubic_KxebJK94QcVIqnA-pq5zRyi4qoBvfqYIBnFGhYZA==
x-amz-cf-pop: ARN56-P1
x-cache: Hit from cloudfront
x-amz-version-id: OZZI0V4r8TW9XoxuSkWH_8QbKah0.NYI
cf-cache-status: HIT
age: 3375
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c659b1a1c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/7wx1jwitmegp59byrk5i55ezhl0t/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

299 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/7wx1jwitmegp59byrk5i55ezhl0t/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
299 kB (299128 bytes)
Hash
9f46ac2403069f2ebdfd4d37495c8609
54c2a3b29efd133ece2c087ea227220c052c2c78
19017f9241d81cbf7150591ba3c251dc7b8ead4931a988e1aae3a559a4fb5c05

HTTP Headers

GET /variants/7wx1jwitmegp59byrk5i55ezhl0t/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 299128
cf-bgj: h2pri
etag: "9f46ac2403069f2ebdfd4d37495c8609"
last-modified: Tue, 31 Jan 2023 15:37:56 GMT
via: 1.1 7c56a1efd2427548060973d13fa756e2.cloudfront.net (CloudFront)
x-amz-cf-id: kjP7BQFpk22sNsJiTmX7h9wOFeQh9MGw7dIzqHR0RqSfc5jbkmQpyA==
x-amz-cf-pop: CPH50-P1
x-cache: Hit from cloudfront
x-amz-version-id: 5ZGSYQPivrX0ekNxMTEYFJYL1J8SskTt
cf-cache-status: HIT
age: 3375
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c659b1e1c02-OSL
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTDBFY2dRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--f6ab913eba8fa8d058300c9d93114f22fa694de5/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/LetsTalkVaxx2.jpg

104.19.160.48

302 Found

148 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTDBFY2dRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--f6ab913eba8fa8d058300c9d93114f22fa694de5/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/LetsTalkVaxx2.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
data
Size
148 kB (148070 bytes)
Hash
eb7902ee1fab3335d4ab5a3a22a10889
6a11073954281289babac7f32a91421f30aec7b9
1443e5d986d1c0e9fde78a25c18f5e81820d4633ea2cc0cfca410f69aec159ad

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTDBFY2dRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--f6ab913eba8fa8d058300c9d93114f22fa694de5/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/LetsTalkVaxx2.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/7wx1jwitmegp59byrk5i55ezhl0t/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: 7c0f5d96-3c7e-4c49-ab07-e1bf4b4549e0
x-runtime: 0.132103
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60fd7c1c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/68kbcz2gceaeq4el68jz3dfiibyv/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

271 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/68kbcz2gceaeq4el68jz3dfiibyv/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
271 kB (270863 bytes)
Hash
cdbe2d75394ff37366a61e590cdc0246
5c7697a426a46ea4cdfa3cdafea0c1776059411c
f748fa6981c508d9c5fec5b8c8f6a808f2055dda88cfe931ec887d0583a5ded5

HTTP Headers

GET /variants/68kbcz2gceaeq4el68jz3dfiibyv/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 270863
cf-bgj: h2pri
etag: "cdbe2d75394ff37366a61e590cdc0246"
last-modified: Thu, 30 Mar 2023 18:02:00 GMT
via: 1.1 2696274921f0df0251827f3f8e0222cc.cloudfront.net (CloudFront)
x-amz-cf-id: jNN-5QrSQjeWqCZLm9yvBVlPZJAjYFTMgSIaoGta9twlBNea4vCQlQ==
x-amz-cf-pop: CPH50-P1
x-cache: Hit from cloudfront
x-amz-server-side-encryption: AES256
x-amz-version-id: kF_Bj0Ay5T7URI_eLFvTQoHpW1Ak9isA
cf-cache-status: HIT
age: 3375
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c65ab2b1c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/mboo7oazhq8z6500uf5fj74cpxhn/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

236 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/mboo7oazhq8z6500uf5fj74cpxhn/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
236 kB (236366 bytes)
Hash
fbdf6f7436d8b1d967a101c9b89fb293
a68fab539003a539327593e2138429d5953789eb
aed3f131073ecfe9e80755a48b5fbd4f625e399455b49f6e6cea70861722db0b

HTTP Headers

GET /variants/mboo7oazhq8z6500uf5fj74cpxhn/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 236366
cf-bgj: h2pri
etag: "fbdf6f7436d8b1d967a101c9b89fb293"
last-modified: Sun, 05 Mar 2023 09:19:42 GMT
via: 1.1 2a44338adc8233e5b25aca28287a69c8.cloudfront.net (CloudFront)
x-amz-cf-id: ovDTe44VljyDTVjHZJ9pj4doZsGE7CLEo9o7VX0Lfn64vpOmJ2_i7g==
x-amz-cf-pop: FRA60-P3
x-cache: Hit from cloudfront
x-amz-server-side-encryption: AES256
x-amz-version-id: MWF0M5As0nNqH7Zx2P.v9oqNWKkAIo4C
cf-cache-status: HIT
age: 1149
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c65ab2f1c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/83stfv01orsakmg42cst2fzj4w19/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

270 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/83stfv01orsakmg42cst2fzj4w19/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
270 kB (269997 bytes)
Hash
7f553c6a15ca339157a4373d4b383f7f
ac6e46d583c284f5f60d67747fed6562622a3623
a1ac9e26cb487463d07b2d61c757411791923829074c75cc08ff15603c205c21

HTTP Headers

GET /variants/83stfv01orsakmg42cst2fzj4w19/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 269997
cf-bgj: h2pri
etag: "7f553c6a15ca339157a4373d4b383f7f"
last-modified: Thu, 16 Feb 2023 17:18:46 GMT
via: 1.1 20405ed0e9ef5e72d636863d6d962362.cloudfront.net (CloudFront)
x-amz-cf-id: jiZ1abcfrUUCs3fL-jXgyxIAJ8JZ9DSauIRtMHnVnMFlurVDA8Nr_w==
x-amz-cf-pop: LHR3-C2
x-cache: Miss from cloudfront
x-amz-version-id: 8X0THeY5iVs0aLmjg6U.AOKurYjp.eXL
cf-cache-status: HIT
age: 3375
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c65eb6e1c02-OSL
X-Firefox-Spdy: h2

173.233.137.52

307 Temporary Redirect

0 B

URL GET HTTP/1.1
mutinousconductdisk.com/watch.156880343348.js?key=4d6494c79000dc18c90eb1bfb3dcf5c9&kw=%5B%22vt%22%2C%22foreign%22%2C%22policy%22%2C%22uncensored%22%2C%22alternative%22%2C%22foreign%22%2C%22policy%22%2C%22media%22%5D&refer=https%3A%2F%2Fwww.vtforeignpolicy.com%2F&tz=0&dev=e&res=12.2079&uuid=f2a178a8-c9ad-418d-97a6-51972f346229%3A1%3A1
IP
173.233.137.52:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subject*.mutinousconductdisk.com
Fingerprint2B:D5:7A:B1:88:AA:3F:B1:84:99:73:9A:83:24:82:9B:87:62:74:B6
ValidityWed, 12 Apr 2023 11:59:02 GMT - Tue, 11 Jul 2023 11:59:01 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.156880343348.js?key=4d6494c79000dc18c90eb1bfb3dcf5c9&kw=%5B%22vt%22%2C%22foreign%22%2C%22policy%22%2C%22uncensored%22%2C%22alternative%22%2C%22foreign%22%2C%22policy%22%2C%22media%22%5D&refer=https%3A%2F%2Fwww.vtforeignpolicy.com%2F&tz=0&dev=e&res=12.2079&uuid=f2a178a8-c9ad-418d-97a6-51972f346229%3A1%3A1 HTTP/1.1
Host: mutinousconductdisk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Tue, 25 Apr 2023 12:00:03 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vtforeignpolicy.com
Access-Control-Allow-Origin: https://www.vtforeignpolicy.com
Access-Control-Allow-Credentials: true
Location: https://mutinousconductdisk.com/watch.156880343348.js?key=4d6494c79000dc18c90eb1bfb3dcf5c9&kw=%5B%22vt%22%2C%22foreign%22%2C%22policy%22%2C%22uncensored%22%2C%22alternative%22%2C%22foreign%22%2C%22policy%22%2C%22media%22%5D&refer=https%3A%2F%2Fwww.vtforeignpolicy.com%2F&tz=0&dev=e&res=12.2079&uuid=f2a178a8-c9ad-418d-97a6-51972f346229%3A1%3A1&shu=f5c8abe653e24c99f1562c9afcf24bcff685bc0d45591737e4c2ad78c9918e546ea4a43f30aa16d609107f7b7f3cbf56172a05c9d4003aff6a6771bbea7ff1c7753aec29e74e665f6de4c27a49faf2993adf966fc5b36adc4516559091e5cba9&pst=1682424063&rmtc=t
Set-Cookie: u_pl=18914832; expires=Wed, 26 Apr 2023 12:00:03 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.JDFN3WzP0ziIDRaHUcI8zxdrAneKq9bNM5hGd-bTsZY; expires=Tue, 25 Apr 2023 12:01:03 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fa5e79fee2abbb803511333556052631
Strict-Transport-Security: max-age=0; includeSubdomains

173.233.137.60

307 Temporary Redirect

0 B

URL GET HTTP/1.1
disadvantagenaturalistrole.com/watch.394818684252.js?key=da8dc8ff869e9f989f3b5e49d93d74ae&kw=%5B%22vt%22%2C%22foreign%22%2C%22policy%22%2C%22uncensored%22%2C%22alternative%22%2C%22foreign%22%2C%22policy%22%2C%22media%22%5D&refer=https%3A%2F%2Fwww.vtforeignpolicy.com%2F&tz=0&dev=e&res=12.2079&uuid=4109562e-e3c8-4426-a88c-8e5ecd0d77e5%3A2%3A1
IP
173.233.137.60:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subject*.disadvantagenaturalistrole.com
Fingerprint8E:35:C6:B6:4B:FD:AD:91:44:9B:6A:D7:48:93:E6:CD:E7:97:92:1B
ValidityWed, 12 Apr 2023 11:55:33 GMT - Tue, 11 Jul 2023 11:55:32 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.394818684252.js?key=da8dc8ff869e9f989f3b5e49d93d74ae&kw=%5B%22vt%22%2C%22foreign%22%2C%22policy%22%2C%22uncensored%22%2C%22alternative%22%2C%22foreign%22%2C%22policy%22%2C%22media%22%5D&refer=https%3A%2F%2Fwww.vtforeignpolicy.com%2F&tz=0&dev=e&res=12.2079&uuid=4109562e-e3c8-4426-a88c-8e5ecd0d77e5%3A2%3A1 HTTP/1.1
Host: disadvantagenaturalistrole.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Tue, 25 Apr 2023 12:00:03 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vtforeignpolicy.com
Access-Control-Allow-Origin: https://www.vtforeignpolicy.com
Access-Control-Allow-Credentials: true
Location: https://disadvantagenaturalistrole.com/watch.394818684252.js?key=da8dc8ff869e9f989f3b5e49d93d74ae&kw=%5B%22vt%22%2C%22foreign%22%2C%22policy%22%2C%22uncensored%22%2C%22alternative%22%2C%22foreign%22%2C%22policy%22%2C%22media%22%5D&refer=https%3A%2F%2Fwww.vtforeignpolicy.com%2F&tz=0&dev=e&res=12.2079&uuid=4109562e-e3c8-4426-a88c-8e5ecd0d77e5%3A2%3A1&shu=297ceeed9ac8d8ab66ed1d4fd415b3396dbe60b2f33c6f6fa48456cd55aa98aa9e74aedadc606dbac323aa5079ba2db704867da1553ddb2fe3e5efb683f41ec4d7c51409ec7571fd52160f774880e5a1f3684cebfce8c29b7789f7d707aadaccd4&pst=1682424063&rmtc=t
Set-Cookie: u_pl=18914781; expires=Wed, 26 Apr 2023 12:00:03 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxODkxNDc4MSwiayI6ImRhOGRjOGZmODY5ZTlmOTg5ZjNiNWU0OWQ5M2Q3NGFlIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoyMzk5MDkzLCJwaWQiOjgwMTk4NywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjozLCJhaWQiOjIzLCJwdCI6NCwicGsiOiJ2eTcxbjhqOWciLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6MTc5MDg4OTQ4LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjEyNDM4NiwiYm4iOiJGaXJlZm94IiwiYnYiOiIxMTEuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3d3dy52dGZvcmVpZ25wb2xpY3kuY29tLyJ9fQ.Ji4cvp0rEqIdY1PfJTw80aDTrn-0lf3p_sIgGyyHCrQ; expires=Tue, 25 Apr 2023 12:01:03 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 108717689699b361c86a493bb76bfb4e
Strict-Transport-Security: max-age=0; includeSubdomains

downloads.mailchimp.com/js/signup-forms/popup/unique-methods/embed.js

54.230.167.125

200 OK

72 kB

URL GET HTTP/1.1
downloads.mailchimp.com/js/signup-forms/popup/unique-methods/embed.js
IP
54.230.167.125:443
ASN
#16509 AMAZON-02

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerAmazon
Subjectdownloads.mailchimp.com
Fingerprint71:CA:F4:D1:5C:6A:B9:FA:41:B9:63:28:DB:BB:2F:BE:05:00:31:46
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 03 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65526)
Size
72 kB (71813 bytes)
Hash
8cb20eac3a7ad7d062828eb3d40882f6
5f40d35de4da59b18a6051edef21a87b5b58891f
22f5cd28e97b3f6066da42585d307af32e29e2d0b51e4298b026a3dc9159ec0f

HTTP Headers

GET /js/signup-forms/popup/unique-methods/embed.js HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Mon, 24 Apr 2023 12:42:56 GMT
Last-Modified: Fri, 20 Jan 2023 18:27:57 GMT
ETag: W/"3281ba63652083b7a938a78b62fe19d4"
x-amz-server-side-encryption: AES256
Server: AmazonS3
Content-Encoding: gzip
X-Cache: Hit from cloudfront
Via: 1.1 abe59040fa8834eedf4f2935b5097176.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ICN51-C2
X-Amz-Cf-Id: wQelTmTiOqe8Vmc_F3ln5OuuZFCnxBYePEV7uHBc8Bb2pQcGMqfsCg==
Age: 83827
Vary: Accept-Encoding, Origin

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTDVqa1FRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--532f9fa3969a80d0bbeed8462d9f990873978ca0/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/Jack-heart-chinese-balloon-podcast-cover2.jpg

104.19.160.48

302 Found

25 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTDVqa1FRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--532f9fa3969a80d0bbeed8462d9f990873978ca0/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/Jack-heart-chinese-balloon-podcast-cover2.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
data
Size
25 kB (24721 bytes)
Hash
0458bffd5dbeeb58d0bd7bbf51b42f18
b9a54d32de35bcc4c354f73ad8c1d4f01c5603ee
1564c7c19243130a8b9b748bb5c3f794c31cc11ce32cc210f6e95948d01daf05

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTDVqa1FRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--532f9fa3969a80d0bbeed8462d9f990873978ca0/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/Jack-heart-chinese-balloon-podcast-cover2.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/83stfv01orsakmg42cst2fzj4w19/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: 33f4e86c-ad68-4e4b-afb4-bdfc1aa94f87
x-runtime: 0.050936
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60fd781c02-OSL
X-Firefox-Spdy: h2

www.buzzsprout.com/player/wave/8?color=%23990000

104.19.160.48

200 OK

29 kB

URL GET HTTP/2
www.buzzsprout.com/player/wave/8?color=%23990000
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
data
Size
29 kB (28939 bytes)
Hash
c9e248f44e70878b2307b084a93bbeb4
ed67452f6313e67730f0e8b151574bc16c273bf7
a503340e9b1e9f3cefca9a5b597b74fbe957767063b18cb8032a88df17690768

HTTP Headers

GET /player/wave/8?color=%23990000 HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/svg+xml; charset=utf-8
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
etag: W/"ab03296531bf304e8f2a89932ef4aba0"
cache-control: max-age=0, private, must-revalidate
x-request-id: 5441d6f6-3da8-453e-b3f4-26640887a3b3
x-runtime: 0.005227
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c63e91f1c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

mutinousconductdisk.com/watch.156880343348.js?key=4d6494c79000dc18c90eb1bfb3dcf5c9&kw=%5B%22vt%22%2C%22foreign%22%2C%22policy%22%2C%22uncensored%22%2C%22alternative%22%2C%22foreign%22%2C%22policy%22%2C%22media%22%5D&refer=https%3A%2F%2Fwww.vtforeignpolicy.com%2F&tz=0&dev=e&res=12.2079&uuid=f2a178a8-c9ad-418d-97a6-51972f346229%3A1%3A1&shu=f5c8abe653e24c99f1562c9afcf24bcff685bc0d45591737e4c2ad78c9918e546ea4a43f30aa16d609107f7b7f3cbf56172a05c9d4003aff6a6771bbea7ff1c7753aec29e74e665f6de4c27a49faf2993adf966fc5b36adc4516559091e5cba9&pst=1682424063&rmtc=t

173.233.137.52

200 OK

2.1 kB

URL GET HTTP/1.1
mutinousconductdisk.com/watch.156880343348.js?key=4d6494c79000dc18c90eb1bfb3dcf5c9&kw=%5B%22vt%22%2C%22foreign%22%2C%22policy%22%2C%22uncensored%22%2C%22alternative%22%2C%22foreign%22%2C%22policy%22%2C%22media%22%5D&refer=https%3A%2F%2Fwww.vtforeignpolicy.com%2F&tz=0&dev=e&res=12.2079&uuid=f2a178a8-c9ad-418d-97a6-51972f346229%3A1%3A1&shu=f5c8abe653e24c99f1562c9afcf24bcff685bc0d45591737e4c2ad78c9918e546ea4a43f30aa16d609107f7b7f3cbf56172a05c9d4003aff6a6771bbea7ff1c7753aec29e74e665f6de4c27a49faf2993adf966fc5b36adc4516559091e5cba9&pst=1682424063&rmtc=t
IP
173.233.137.52:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subject*.mutinousconductdisk.com
Fingerprint2B:D5:7A:B1:88:AA:3F:B1:84:99:73:9A:83:24:82:9B:87:62:74:B6
ValidityWed, 12 Apr 2023 11:59:02 GMT - Tue, 11 Jul 2023 11:59:01 GMT

File type
HTML document text\012- HTML document, ASCII text, with very long lines (2657)
Size
2.1 kB (2115 bytes)
Hash
bb32118c2a4ca9c136cd1f1bb8080aa7
2d14c5bd41f16859e6915d6159e8b020e548af33
ff0618c934f08523f2c4b8f07643e5e72a8f96dd58e68bdeffcc60800ca70821

HTTP Headers

GET /watch.156880343348.js?key=4d6494c79000dc18c90eb1bfb3dcf5c9&kw=%5B%22vt%22%2C%22foreign%22%2C%22policy%22%2C%22uncensored%22%2C%22alternative%22%2C%22foreign%22%2C%22policy%22%2C%22media%22%5D&refer=https%3A%2F%2Fwww.vtforeignpolicy.com%2F&tz=0&dev=e&res=12.2079&uuid=f2a178a8-c9ad-418d-97a6-51972f346229%3A1%3A1&shu=f5c8abe653e24c99f1562c9afcf24bcff685bc0d45591737e4c2ad78c9918e546ea4a43f30aa16d609107f7b7f3cbf56172a05c9d4003aff6a6771bbea7ff1c7753aec29e74e665f6de4c27a49faf2993adf966fc5b36adc4516559091e5cba9&pst=1682424063&rmtc=t HTTP/1.1
Host: mutinousconductdisk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vtforeignpolicy.com
Referer: https://www.vtforeignpolicy.com/
Connection: keep-alive
Cookie: u_pl=18914832
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 25 Apr 2023 12:00:03 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vtforeignpolicy.com
Access-Control-Allow-Origin: https://www.vtforeignpolicy.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=f2a178a8-c9ad-418d-97a6-51972f346229:1:1; expires=Tue, 02 May 2023 12:00:03 GMT; secure; SameSite=None
iprce11214fa1ef05a83e7292d5a1c33ef52=3569806; expires=Tue, 25 Apr 2023 16:00:03 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 26 Apr 2023 12:00:03 GMT; secure; SameSite=None
uncs=1; expires=Wed, 26 Apr 2023 12:00:03 GMT; secure; SameSite=None
pdhtkv5=true; expires=Wed, 26 Apr 2023 12:00:03 GMT; secure; SameSite=None
uncs5=1; expires=Wed, 26 Apr 2023 12:00:03 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: bd0ab66741c69fd01cd111233e51ad22
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

cdn.cloudimagesb.com/si/22/66/7a/22667a4a830d3b482f77cc1408e98e5e/1680615948.png

45.133.44.9

200 OK

134 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/22/66/7a/22667a4a830d3b482f77cc1408e98e5e/1680615948.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint6F:9C:41:9B:BA:6A:17:A2:42:F8:28:FF:ED:09:F8:26:12:F1:4C:7B
ValidityThu, 30 Mar 2023 06:08:09 GMT - Wed, 28 Jun 2023 06:08:08 GMT

File type
PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size
134 kB (133641 bytes)
Hash
300540e239d873b7fc529fe590383c17
1d5c065ef06635a7dffc21b37def47a01d256744
30c7332e1541ff8efb734089c08a3dd33603baa1cd3a219ab0cb654339156a20

HTTP Headers

GET /si/22/66/7a/22667a4a830d3b482f77cc1408e98e5e/1680615948.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/png
content-length: 133641
server: nginx/1.17.6
last-modified: Tue, 04 Apr 2023 13:45:56 GMT
etag: "642c2a14-20a09"
expires: Thu, 27 Apr 2023 12:00:03 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/b9/d2/58/b9d25822b366507541cb7690b2bc5af0/1680616033.png

45.133.44.9

200 OK

164 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/b9/d2/58/b9d25822b366507541cb7690b2bc5af0/1680616033.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint6F:9C:41:9B:BA:6A:17:A2:42:F8:28:FF:ED:09:F8:26:12:F1:4C:7B
ValidityThu, 30 Mar 2023 06:08:09 GMT - Wed, 28 Jun 2023 06:08:08 GMT

File type
PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size
164 kB (163680 bytes)
Hash
d33d98be8ba0df1afb976b19ca6c3c1d
dab254790232c8d9e0eb1bee38fd65762e99eb38
2c47ab1be9f784f2a09a1cd205308ea7814c54504efe59a235df87b78ef3fade

HTTP Headers

GET /si/b9/d2/58/b9d25822b366507541cb7690b2bc5af0/1680616033.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/png
content-length: 163680
server: nginx/1.17.6
last-modified: Tue, 04 Apr 2023 13:47:21 GMT
etag: "642c2a69-27f60"
expires: Thu, 27 Apr 2023 12:00:03 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

disadvantagenaturalistrole.com/watch.394818684252.js?key=da8dc8ff869e9f989f3b5e49d93d74ae&kw=%5B%22vt%22%2C%22foreign%22%2C%22policy%22%2C%22uncensored%22%2C%22alternative%22%2C%22foreign%22%2C%22policy%22%2C%22media%22%5D&refer=https%3A%2F%2Fwww.vtforeignpolicy.com%2F&tz=0&dev=e&res=12.2079&uuid=4109562e-e3c8-4426-a88c-8e5ecd0d77e5%3A2%3A1&shu=297ceeed9ac8d8ab66ed1d4fd415b3396dbe60b2f33c6f6fa48456cd55aa98aa9e74aedadc606dbac323aa5079ba2db704867da1553ddb2fe3e5efb683f41ec4d7c51409ec7571fd52160f774880e5a1f3684cebfce8c29b7789f7d707aadaccd4&pst=1682424063&rmtc=t

173.233.137.60

200 OK

2.1 kB

URL GET HTTP/1.1
disadvantagenaturalistrole.com/watch.394818684252.js?key=da8dc8ff869e9f989f3b5e49d93d74ae&kw=%5B%22vt%22%2C%22foreign%22%2C%22policy%22%2C%22uncensored%22%2C%22alternative%22%2C%22foreign%22%2C%22policy%22%2C%22media%22%5D&refer=https%3A%2F%2Fwww.vtforeignpolicy.com%2F&tz=0&dev=e&res=12.2079&uuid=4109562e-e3c8-4426-a88c-8e5ecd0d77e5%3A2%3A1&shu=297ceeed9ac8d8ab66ed1d4fd415b3396dbe60b2f33c6f6fa48456cd55aa98aa9e74aedadc606dbac323aa5079ba2db704867da1553ddb2fe3e5efb683f41ec4d7c51409ec7571fd52160f774880e5a1f3684cebfce8c29b7789f7d707aadaccd4&pst=1682424063&rmtc=t
IP
173.233.137.60:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subject*.disadvantagenaturalistrole.com
Fingerprint8E:35:C6:B6:4B:FD:AD:91:44:9B:6A:D7:48:93:E6:CD:E7:97:92:1B
ValidityWed, 12 Apr 2023 11:55:33 GMT - Tue, 11 Jul 2023 11:55:32 GMT

File type
HTML document text\012- HTML document, ASCII text, with very long lines (2620)
Size
2.1 kB (2091 bytes)
Hash
82106b2c74ca34d5e55da0915360e1f5
c3369aa415f1bc782acf442443f5a2c2d477d3d9
f9fdd0c8042a65e1cd6e185eafd7314253e884ecf0209ba432d875f636fa8f13

HTTP Headers

GET /watch.394818684252.js?key=da8dc8ff869e9f989f3b5e49d93d74ae&kw=%5B%22vt%22%2C%22foreign%22%2C%22policy%22%2C%22uncensored%22%2C%22alternative%22%2C%22foreign%22%2C%22policy%22%2C%22media%22%5D&refer=https%3A%2F%2Fwww.vtforeignpolicy.com%2F&tz=0&dev=e&res=12.2079&uuid=4109562e-e3c8-4426-a88c-8e5ecd0d77e5%3A2%3A1&shu=297ceeed9ac8d8ab66ed1d4fd415b3396dbe60b2f33c6f6fa48456cd55aa98aa9e74aedadc606dbac323aa5079ba2db704867da1553ddb2fe3e5efb683f41ec4d7c51409ec7571fd52160f774880e5a1f3684cebfce8c29b7789f7d707aadaccd4&pst=1682424063&rmtc=t HTTP/1.1
Host: disadvantagenaturalistrole.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vtforeignpolicy.com
Referer: https://www.vtforeignpolicy.com/
Connection: keep-alive
Cookie: u_pl=18914781
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 25 Apr 2023 12:00:03 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vtforeignpolicy.com
Access-Control-Allow-Origin: https://www.vtforeignpolicy.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=4109562e-e3c8-4426-a88c-8e5ecd0d77e5:2:1; expires=Tue, 02 May 2023 12:00:03 GMT; secure; SameSite=None
iprc8cf62e7834054e2096bc68854dc2b152=3569808; expires=Tue, 25 Apr 2023 16:00:03 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 26 Apr 2023 12:00:03 GMT; secure; SameSite=None
uncs=1; expires=Wed, 26 Apr 2023 12:00:03 GMT; secure; SameSite=None
pdhtkv23=true; expires=Wed, 26 Apr 2023 12:00:03 GMT; secure; SameSite=None
uncs23=1; expires=Wed, 26 Apr 2023 12:00:03 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e2f67b9639b18712fd962b50601d45ff
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

dangerouslyblemishsweater.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSu3p1T9KCrF2%2FDoqAgk%2B5OT2bGVRbXNcti3Kz7g3qS6qrqSZnqrqaqa3qSU3BB9jiCF%2FXS%2BSbZoIZF8awsM7KyBIXMRXIwB8GzB2HxKJMERx9Uvffq%2Bw7f%2B159vOWOiA9HD5fe1htSKTrfbPj1F98Lggv1ZZm5fr3fXvxgMbpQN71XAr%2FT8F%2BqXxFsTc%2BHfuD7gR%2FUl6QRie7PB0HQ8CHzvU7Q6PiNKGwEzQh98%2F%2FeOg%2BWeuC9I3IOkk%2Fm9u5HkGyELP3msrBrhc5ffjN1ihbaoMd3b2drmS4zpLMyMR6SbPeUDW0Pln6AznaOBUP3%2FiXGckK8P35HnO2eqkTc2zkRGiuIDDF%2FAmVvBKFGkHQEpu9A8gMCMI5rK8jSe9e0Ken6CUqn6ITUHv8FWU5I7bdnkaX3LynZr9%2FUyhVSZxb9pILsjyC7I%2BRujGLjDGQ5Bis%2BguS%2FkPnHy8jS7RWrNCSvjoeXcgSZjKDEANR6cNMjPbjEg8s9pPyw3mJRu83bTU4FY2GcBO0kSqIOZX7C%2FIVOCMem8gYo8gGYGoCZTeRmE2vyk4PmORj3AHa1guUebDEh3jub6PEKpSAoLUFJCUpJUBYEZa%2Fa4cqGtrrHlXVxcJrD07xQDXXR3aI7uuiKjGzlR%2BTpqTXe%2BYcF1sRhvd1qBqzd6tCk3WxFiy3WbPlxy%2FdZs7mwGPk%2BrKwg7ZnjaTfkhDz%2FhUMuJ%2BTJV8eI6RhWjcHkWVAXgJbDVuiDrg6jto%2BN7LtekWgjZDfLtZJsvcF0Cq4r5EUNxbq3pY7Ic8ebOl97H4LtX%2Fxp7rV8%2BOscmKmQmwofyh8Juuru8IYuyfYNXVry7UpeyFRu0OkWbxa0EGe%2Fekusl9rwq5ft4MvX2RSYlnu3hC2WacZl1rXk60uSc2GWtGGCfH%2FVvivi686uXnImc%2Fny9TeWrqa5EdZKnY1A5cHK32ByQmovPHP8P5%2F6%2BU9IM4JxFVK3T04DUo%2FB8k3YfKbeagKjZpw4r6F01dCE8exRSQIlZj2NK9j%2F9PGs3rJ30TU10OIOsrRCz1ToqQpUDWDd3LDIzf7FR59N43PEqjaMlaltx8qoTyfk4q2H0%2BvR1OTbJ05beVgXLbHY6UR%2B1OK%2BH0c8DIOmYHQhoh0ahkkLhZ3wKw%2FG%2FwAAAP%2F%2FAQAA%2F%2F%2Fwcs%2B1ewQAAA%3D%3D

173.233.137.36

200 OK

7 B

URL GET HTTP/1.1
dangerouslyblemishsweater.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSu3p1T9KCrF2%2FDoqAgk%2B5OT2bGVRbXNcti3Kz7g3qS6qrqSZnqrqaqa3qSU3BB9jiCF%2FXS%2BSbZoIZF8awsM7KyBIXMRXIwB8GzB2HxKJMERx9Uvffq%2Bw7f%2B159vOWOiA9HD5fe1htSKTrfbPj1F98Lggv1ZZm5fr3fXvxgMbpQN71XAr%2FT8F%2BqXxFsTc%2BHfuD7gR%2FUl6QRie7PB0HQ8CHzvU7Q6PiNKGwEzQh98%2F%2FeOg%2BWeuC9I3IOkk%2Fm9u5HkGyELP3msrBrhc5ffjN1ihbaoMd3b2drmS4zpLMyMR6SbPeUDW0Pln6AznaOBUP3%2FiXGckK8P35HnO2eqkTc2zkRGiuIDDF%2FAmVvBKFGkHQEpu9A8gMCMI5rK8jSe9e0Ken6CUqn6ITUHv8FWU5I7bdnkaX3LynZr9%2FUyhVSZxb9pILsjyC7I%2BRujGLjDGQ5Bis%2BguS%2FkPnHy8jS7RWrNCSvjoeXcgSZjKDEANR6cNMjPbjEg8s9pPyw3mJRu83bTU4FY2GcBO0kSqIOZX7C%2FIVOCMem8gYo8gGYGoCZTeRmE2vyk4PmORj3AHa1guUebDEh3jub6PEKpSAoLUFJCUpJUBYEZa%2Fa4cqGtrrHlXVxcJrD07xQDXXR3aI7uuiKjGzlR%2BTpqTXe%2BYcF1sRhvd1qBqzd6tCk3WxFiy3WbPlxy%2FdZs7mwGPk%2BrKwg7ZnjaTfkhDz%2FhUMuJ%2BTJV8eI6RhWjcHkWVAXgJbDVuiDrg6jto%2BN7LtekWgjZDfLtZJsvcF0Cq4r5EUNxbq3pY7Ic8ebOl97H4LtX%2Fxp7rV8%2BOscmKmQmwofyh8Juuru8IYuyfYNXVry7UpeyFRu0OkWbxa0EGe%2Fekusl9rwq5ft4MvX2RSYlnu3hC2WacZl1rXk60uSc2GWtGGCfH%2FVvivi686uXnImc%2Fny9TeWrqa5EdZKnY1A5cHK32ByQmovPHP8P5%2F6%2BU9IM4JxFVK3T04DUo%2FB8k3YfKbeagKjZpw4r6F01dCE8exRSQIlZj2NK9j%2F9PGs3rJ30TU10OIOsrRCz1ToqQpUDWDd3LDIzf7FR59N43PEqjaMlaltx8qoTyfk4q2H0%2BvR1OTbJ05beVgXLbHY6UR%2B1OK%2BH0c8DIOmYHQhoh0ahkkLhZ3wKw%2FG%2FwAAAP%2F%2FAQAA%2F%2F%2Fwcs%2B1ewQAAA%3D%3D
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectdangerouslyblemishsweater.com
Fingerprint2C:30:D7:37:6D:D1:CC:1E:DA:12:47:8D:CF:35:72:F5:E1:0B:FA:E6
ValidityTue, 25 Apr 2023 06:18:02 GMT - Mon, 24 Jul 2023 06:18:01 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSu3p1T9KCrF2%2FDoqAgk%2B5OT2bGVRbXNcti3Kz7g3qS6qrqSZnqrqaqa3qSU3BB9jiCF%2FXS%2BSbZoIZF8awsM7KyBIXMRXIwB8GzB2HxKJMERx9Uvffq%2Bw7f%2B159vOWOiA9HD5fe1htSKTrfbPj1F98Lggv1ZZm5fr3fXvxgMbpQN71XAr%2FT8F%2BqXxFsTc%2BHfuD7gR%2FUl6QRie7PB0HQ8CHzvU7Q6PiNKGwEzQh98%2F%2FeOg%2BWeuC9I3IOkk%2Fm9u5HkGyELP3msrBrhc5ffjN1ihbaoMd3b2drmS4zpLMyMR6SbPeUDW0Pln6AznaOBUP3%2FiXGckK8P35HnO2eqkTc2zkRGiuIDDF%2FAmVvBKFGkHQEpu9A8gMCMI5rK8jSe9e0Ken6CUqn6ITUHv8FWU5I7bdnkaX3LynZr9%2FUyhVSZxb9pILsjyC7I%2BRujGLjDGQ5Bis%2BguS%2FkPnHy8jS7RWrNCSvjoeXcgSZjKDEANR6cNMjPbjEg8s9pPyw3mJRu83bTU4FY2GcBO0kSqIOZX7C%2FIVOCMem8gYo8gGYGoCZTeRmE2vyk4PmORj3AHa1guUebDEh3jub6PEKpSAoLUFJCUpJUBYEZa%2Fa4cqGtrrHlXVxcJrD07xQDXXR3aI7uuiKjGzlR%2BTpqTXe%2BYcF1sRhvd1qBqzd6tCk3WxFiy3WbPlxy%2FdZs7mwGPk%2BrKwg7ZnjaTfkhDz%2FhUMuJ%2BTJV8eI6RhWjcHkWVAXgJbDVuiDrg6jto%2BN7LtekWgjZDfLtZJsvcF0Cq4r5EUNxbq3pY7Ic8ebOl97H4LtX%2Fxp7rV8%2BOscmKmQmwofyh8Juuru8IYuyfYNXVry7UpeyFRu0OkWbxa0EGe%2Fekusl9rwq5ft4MvX2RSYlnu3hC2WacZl1rXk60uSc2GWtGGCfH%2FVvivi686uXnImc%2Fny9TeWrqa5EdZKnY1A5cHK32ByQmovPHP8P5%2F6%2BU9IM4JxFVK3T04DUo%2FB8k3YfKbeagKjZpw4r6F01dCE8exRSQIlZj2NK9j%2F9PGs3rJ30TU10OIOsrRCz1ToqQpUDWDd3LDIzf7FR59N43PEqjaMlaltx8qoTyfk4q2H0%2BvR1OTbJ05beVgXLbHY6UR%2B1OK%2BH0c8DIOmYHQhoh0ahkkLhZ3wKw%2FG%2FwAAAP%2F%2FAQAA%2F%2F%2Fwcs%2B1ewQAAA%3D%3D HTTP/1.1
Host: dangerouslyblemishsweater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 25 Apr 2023 12:00:03 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fcc98c8fd7dfe47261e1eed535776130
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png

45.133.44.9

200 OK

144 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint6F:9C:41:9B:BA:6A:17:A2:42:F8:28:FF:ED:09:F8:26:12:F1:4C:7B
ValidityThu, 30 Mar 2023 06:08:09 GMT - Wed, 28 Jun 2023 06:08:08 GMT

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
144 kB (144379 bytes)
Hash
33c304429dc1a4408a96e6a74ffa2feb
c45fa8e65528d1bb2b46bf8a28af9eeaa1903d04
dbed482e5948ead5587d30a22306a5b611305f704de940bd22c76daf90e0a314

HTTP Headers

GET /cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:04 GMT
content-type: image/png
content-length: 144379
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 11:07:21 GMT
etag: "62e11c69-233fb"
expires: Thu, 27 Apr 2023 12:00:04 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

dangerouslyblemishsweater.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSu3p1T9KCrF2%2FDoqAgk%2B5OT2bGVYJxzRKMm3V%2FUE9SXVU9KVPd1VT1zySn4ILscQQv6qXzTbJBDYviWVlmZGUJCpmL5GAOglcvwuJRZjY4%2BqDfe19%2F3%2BF779XHu%2FkpcZHTk5W39bZUis43G279xfc871J9TSZ5r95rL36wGFyqm%2BIVz%2B003JfqVwTb1PO%2B67mu53r1FWlEpHvznuc1XMj0sOM1Om4j8BteM0DP%2FB%2Fb3IGlDnhxSi5A8vHc4b0Akg2RxN9cFnYz0%2BnLb8a5opk2KPjBrWQz0WWCeNZGxkGUHJypoe3xyg%2FQyf7UMHTxrzCUY%2BL88TvC5ODMJcJi%2F7HRUEEkCPkTKIshhBpC0iGYvg3JjwnAOK6uI4nvXtWmpFuPWTphx6T26C%2FIckxqvz2LJL63rGSvfkOrPJM6sehFFWRvCNkdIs1HyLbPQZYjsOwjSP4LmX%2B0hiTeW7dKQ%2FJqOryUQ8hoCCX6oNZBPvmkgzxykKcOYn5Sb7Gg3ebtJqeCMT%2BMvHYUREGHMjdi7kLHR84m9vrI0j6Y6oOZHaRmB5vyk%2BPmBZj8PuxGBcsd2GxMnHd2UPAKpSAoLUFJCUpJUGYEZVHtc2V9W93lyuahd1b9s7pQDXTW3aX7OuuKhOymp%2BTpyWqciw8ybIqTervV9Fi71aFRu9kKFlus2XLDluuyZnNhMXBdWFlB2nPTabflmDz%2FRY5UjsmTr44Q0hGsGoHJ86C5B1oOWr4LujEI2i62k%2B%2BKLNJGyG6SaiXZVoPpGFxXSLMasi1nV52S56aXuli7BcGOln6aey0d%2FDoHZiqkpsKH8keCrrozuK5Lsnddl5Z8u55mMpbbdHLFGxnNxPmv3hJbpTZ89bLtf%2Fk6mxCT9vCmsNkaTbhMupZ8vSw5F2ZFGybI96v2XRFey%2B3Gcm6SPF279sbKapwaYa3UyRBUHq%2F%2FDSbHpPbCM9P3%2BdTPf0KaIUxeIc6PyFlA6hFYugObztxbTWDUTBOm51Hm1cD44eynkgRKzDANK9j%2F4HDW79o76JoaaHYbSVyhMBUKVYGqPmw%2BN8hSc7T08LNJfI5Q1QahMrW9UBn16Zgs3XwwSQ%2BnS56k92HlSV20xGKnE7hBi7tuGHDf95qC0YWAdqjvRy1kdsyv3B%2F9AwAA%2F%2F8BAAD%2F%2F8XpPHl7BAAA

173.233.137.36

200 OK

7 B

URL GET HTTP/1.1
dangerouslyblemishsweater.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSu3p1T9KCrF2%2FDoqAgk%2B5OT2bGVYJxzRKMm3V%2FUE9SXVU9KVPd1VT1zySn4ILscQQv6qXzTbJBDYviWVlmZGUJCpmL5GAOglcvwuJRZjY4%2BqDfe19%2F3%2BF779XHu%2FkpcZHTk5W39bZUis43G279xfc871J9TSZ5r95rL36wGFyqm%2BIVz%2B003JfqVwTb1PO%2B67mu53r1FWlEpHvznuc1XMj0sOM1Om4j8BteM0DP%2FB%2Fb3IGlDnhxSi5A8vHc4b0Akg2RxN9cFnYz0%2BnLb8a5opk2KPjBrWQz0WWCeNZGxkGUHJypoe3xyg%2FQyf7UMHTxrzCUY%2BL88TvC5ODMJcJi%2F7HRUEEkCPkTKIshhBpC0iGYvg3JjwnAOK6uI4nvXtWmpFuPWTphx6T26C%2FIckxqvz2LJL63rGSvfkOrPJM6sehFFWRvCNkdIs1HyLbPQZYjsOwjSP4LmX%2B0hiTeW7dKQ%2FJqOryUQ8hoCCX6oNZBPvmkgzxykKcOYn5Sb7Gg3ebtJqeCMT%2BMvHYUREGHMjdi7kLHR84m9vrI0j6Y6oOZHaRmB5vyk%2BPmBZj8PuxGBcsd2GxMnHd2UPAKpSAoLUFJCUpJUGYEZVHtc2V9W93lyuahd1b9s7pQDXTW3aX7OuuKhOymp%2BTpyWqciw8ybIqTervV9Fi71aFRu9kKFlus2XLDluuyZnNhMXBdWFlB2nPTabflmDz%2FRY5UjsmTr44Q0hGsGoHJ86C5B1oOWr4LujEI2i62k%2B%2BKLNJGyG6SaiXZVoPpGFxXSLMasi1nV52S56aXuli7BcGOln6aey0d%2FDoHZiqkpsKH8keCrrozuK5Lsnddl5Z8u55mMpbbdHLFGxnNxPmv3hJbpTZ89bLtf%2Fk6mxCT9vCmsNkaTbhMupZ8vSw5F2ZFGybI96v2XRFey%2B3Gcm6SPF279sbKapwaYa3UyRBUHq%2F%2FDSbHpPbCM9P3%2BdTPf0KaIUxeIc6PyFlA6hFYugObztxbTWDUTBOm51Hm1cD44eynkgRKzDANK9j%2F4HDW79o76JoaaHYbSVyhMBUKVYGqPmw%2BN8hSc7T08LNJfI5Q1QahMrW9UBn16Zgs3XwwSQ%2BnS56k92HlSV20xGKnE7hBi7tuGHDf95qC0YWAdqjvRy1kdsyv3B%2F9AwAA%2F%2F8BAAD%2F%2F8XpPHl7BAAA
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectdangerouslyblemishsweater.com
Fingerprint2C:30:D7:37:6D:D1:CC:1E:DA:12:47:8D:CF:35:72:F5:E1:0B:FA:E6
ValidityTue, 25 Apr 2023 06:18:02 GMT - Mon, 24 Jul 2023 06:18:01 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSu3p1T9KCrF2%2FDoqAgk%2B5OT2bGVYJxzRKMm3V%2FUE9SXVU9KVPd1VT1zySn4ILscQQv6qXzTbJBDYviWVlmZGUJCpmL5GAOglcvwuJRZjY4%2BqDfe19%2F3%2BF779XHu%2FkpcZHTk5W39bZUis43G279xfc871J9TSZ5r95rL36wGFyqm%2BIVz%2B003JfqVwTb1PO%2B67mu53r1FWlEpHvznuc1XMj0sOM1Om4j8BteM0DP%2FB%2Fb3IGlDnhxSi5A8vHc4b0Akg2RxN9cFnYz0%2BnLb8a5opk2KPjBrWQz0WWCeNZGxkGUHJypoe3xyg%2FQyf7UMHTxrzCUY%2BL88TvC5ODMJcJi%2F7HRUEEkCPkTKIshhBpC0iGYvg3JjwnAOK6uI4nvXtWmpFuPWTphx6T26C%2FIckxqvz2LJL63rGSvfkOrPJM6sehFFWRvCNkdIs1HyLbPQZYjsOwjSP4LmX%2B0hiTeW7dKQ%2FJqOryUQ8hoCCX6oNZBPvmkgzxykKcOYn5Sb7Gg3ebtJqeCMT%2BMvHYUREGHMjdi7kLHR84m9vrI0j6Y6oOZHaRmB5vyk%2BPmBZj8PuxGBcsd2GxMnHd2UPAKpSAoLUFJCUpJUGYEZVHtc2V9W93lyuahd1b9s7pQDXTW3aX7OuuKhOymp%2BTpyWqciw8ybIqTervV9Fi71aFRu9kKFlus2XLDluuyZnNhMXBdWFlB2nPTabflmDz%2FRY5UjsmTr44Q0hGsGoHJ86C5B1oOWr4LujEI2i62k%2B%2BKLNJGyG6SaiXZVoPpGFxXSLMasi1nV52S56aXuli7BcGOln6aey0d%2FDoHZiqkpsKH8keCrrozuK5Lsnddl5Z8u55mMpbbdHLFGxnNxPmv3hJbpTZ89bLtf%2Fk6mxCT9vCmsNkaTbhMupZ8vSw5F2ZFGybI96v2XRFey%2B3Gcm6SPF279sbKapwaYa3UyRBUHq%2F%2FDSbHpPbCM9P3%2BdTPf0KaIUxeIc6PyFlA6hFYugObztxbTWDUTBOm51Hm1cD44eynkgRKzDANK9j%2F4HDW79o76JoaaHYbSVyhMBUKVYGqPmw%2BN8hSc7T08LNJfI5Q1QahMrW9UBn16Zgs3XwwSQ%2BnS56k92HlSV20xGKnE7hBi7tuGHDf95qC0YWAdqjvRy1kdsyv3B%2F9AwAA%2F%2F8BAAD%2F%2F8XpPHl7BAAA HTTP/1.1
Host: dangerouslyblemishsweater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 25 Apr 2023 12:00:04 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c757393355ab0aa6d3d755c2b0b7f260
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png

45.133.44.9

200 OK

106 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint6F:9C:41:9B:BA:6A:17:A2:42:F8:28:FF:ED:09:F8:26:12:F1:4C:7B
ValidityThu, 30 Mar 2023 06:08:09 GMT - Wed, 28 Jun 2023 06:08:08 GMT

File type
PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size
106 kB (105910 bytes)
Hash
a36b92bb68d9b579458560ba9b94862a
782d2932ccd3a56e5aad1cca7e6e7fb4a3cf23d6
9de12cf85ad80cae34d8bdaeb59169d75e3bd4f8b931ec90ea2c3be166647c0e

HTTP Headers

GET /cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:04 GMT
content-type: image/png
content-length: 105910
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 11:08:06 GMT
etag: "62e11c96-19db6"
expires: Thu, 27 Apr 2023 12:00:04 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

dangerouslyblemishsweater.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST2gkxReu3t%2Bcsr%2BLixdvQ%2FCgIJPuTk9mxlWCcc0SjJt1%2F6CepLqqelKmuqup6p6exEtwRfY4ghf10vkm2aCGRdmzuszISgiImYvkYA6Cd0HYs%2FQkGHzQ%2Fd6r7zt873vvk538lLjI6cnyW3pLKkXnmg23%2FsK7nne1viqTvF%2FvtxfeXwiu1k3vZc%2FtNNwX69cF29Bzvuu5rud69WVpRKT7c57nNVzI9KDjNTpuI%2FAbXjNA3%2Fy3t7kDSx3w3im5AsknMwcPA0g2QhJ%2Fe03YjUynL70R54pm2qDH9%2B8mG4kuEsQXZWQcRMn%2BORvaHi%2F%2FAJ3sTQVD9%2F4lhnJCnD%2F%2FQJjsn6tE2Ns7ExoqiAQhv4yiN4JQI0g6AtP3IPkxARjHjTUk8YMb2hR08wylFTohtad%2FQxYTUvv9WSTxwyUl%2B%2FXbWuWZ1IlFPyoh%2ByPI7ghpPka2dQmyGINlH0HyX8jc01Uk8e6aVRqSl9PhpRxBRiMoMQC1DvLqkw7yyEGeOoj5Sb3Fgnabt5ucCsb8MPLaURAFHcrciLnzHR85q%2BQNkKUDMDUAM9tIzTY25KfHzSsw%2BWPY9RKWO7DZhDhvb6PHSxSCoLAEBSUoJEGRERS9co8r69vyAVc2D73z7J%2Fn%2BXKos%2B4O3dNZVyRkJz0lz1TWOLNPMmyIk3q71fRYu9WhUbvZChZarNlyw5brsmZzfiFwXVhZQtpL02m35IQ8%2F2WOVE7I%2F18ZI6RjWDUGk%2F8DzT3QYtjyXdD1YdB2sZU86mWRNkJ2k1QryTYbTMfgukSa1ZBtOjvqlDw33dTinUMIdrT4K5kGmCmRmhIfyJ8Iuur%2B8JYuyO4tXVjy3VqayVhu0WqLtzOaidrXb4rNQhu%2Bcs0OvnqNVUBVHtwRNlulCZdJ15JvliTnwixrwwT5fsW%2BI8KbuV1fyk2Sp6s3X19eiVMjrJU6GYFWF1kcgskJufzow%2BmFzn48B2lGMHmJOD8i5wGpR2DpNmx6tPjzzKvp8LcZWE1g1AUnTC%2BhyMuh8cOLRyUJlLjoaVjCigsTQnH0419n9Y69j66pgWb3kMQleqZET5WgagCbzwyz1BwtHn5exRcIVW0YKlPbDZVRn1XmPpk6PCGztbvV7z1YeVIXLbHQ6QRu0OKuGwbc972mYHQ%2BoB3q%2B1ELmZ3w64%2FH%2FwAAAP%2F%2FAQAA%2F%2F%2BPY3GvfQQAAA%3D%3D

173.233.137.36

200 OK

7 B

URL GET HTTP/1.1
dangerouslyblemishsweater.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST2gkxReu3t%2Bcsr%2BLixdvQ%2FCgIJPuTk9mxlWCcc0SjJt1%2F6CepLqqelKmuqup6p6exEtwRfY4ghf10vkm2aCGRdmzuszISgiImYvkYA6Cd0HYs%2FQkGHzQ%2Fd6r7zt873vvk538lLjI6cnyW3pLKkXnmg23%2FsK7nne1viqTvF%2FvtxfeXwiu1k3vZc%2FtNNwX69cF29Bzvuu5rud69WVpRKT7c57nNVzI9KDjNTpuI%2FAbXjNA3%2Fy3t7kDSx3w3im5AsknMwcPA0g2QhJ%2Fe03YjUynL70R54pm2qDH9%2B8mG4kuEsQXZWQcRMn%2BORvaHi%2F%2FAJ3sTQVD9%2F4lhnJCnD%2F%2FQJjsn6tE2Ns7ExoqiAQhv4yiN4JQI0g6AtP3IPkxARjHjTUk8YMb2hR08wylFTohtad%2FQxYTUvv9WSTxwyUl%2B%2FXbWuWZ1IlFPyoh%2ByPI7ghpPka2dQmyGINlH0HyX8jc01Uk8e6aVRqSl9PhpRxBRiMoMQC1DvLqkw7yyEGeOoj5Sb3Fgnabt5ucCsb8MPLaURAFHcrciLnzHR85q%2BQNkKUDMDUAM9tIzTY25KfHzSsw%2BWPY9RKWO7DZhDhvb6PHSxSCoLAEBSUoJEGRERS9co8r69vyAVc2D73z7J%2Fn%2BXKos%2B4O3dNZVyRkJz0lz1TWOLNPMmyIk3q71fRYu9WhUbvZChZarNlyw5brsmZzfiFwXVhZQtpL02m35IQ8%2F2WOVE7I%2F18ZI6RjWDUGk%2F8DzT3QYtjyXdD1YdB2sZU86mWRNkJ2k1QryTYbTMfgukSa1ZBtOjvqlDw33dTinUMIdrT4K5kGmCmRmhIfyJ8Iuur%2B8JYuyO4tXVjy3VqayVhu0WqLtzOaidrXb4rNQhu%2Bcs0OvnqNVUBVHtwRNlulCZdJ15JvliTnwixrwwT5fsW%2BI8KbuV1fyk2Sp6s3X19eiVMjrJU6GYFWF1kcgskJufzow%2BmFzn48B2lGMHmJOD8i5wGpR2DpNmx6tPjzzKvp8LcZWE1g1AUnTC%2BhyMuh8cOLRyUJlLjoaVjCigsTQnH0419n9Y69j66pgWb3kMQleqZET5WgagCbzwyz1BwtHn5exRcIVW0YKlPbDZVRn1XmPpk6PCGztbvV7z1YeVIXLbHQ6QRu0OKuGwbc972mYHQ%2BoB3q%2B1ELmZ3w64%2FH%2FwAAAP%2F%2FAQAA%2F%2F%2BPY3GvfQQAAA%3D%3D
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectdangerouslyblemishsweater.com
Fingerprint2C:30:D7:37:6D:D1:CC:1E:DA:12:47:8D:CF:35:72:F5:E1:0B:FA:E6
ValidityTue, 25 Apr 2023 06:18:02 GMT - Mon, 24 Jul 2023 06:18:01 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST2gkxReu3t%2Bcsr%2BLixdvQ%2FCgIJPuTk9mxlWCcc0SjJt1%2F6CepLqqelKmuqup6p6exEtwRfY4ghf10vkm2aCGRdmzuszISgiImYvkYA6Cd0HYs%2FQkGHzQ%2Fd6r7zt873vvk538lLjI6cnyW3pLKkXnmg23%2FsK7nne1viqTvF%2FvtxfeXwiu1k3vZc%2FtNNwX69cF29Bzvuu5rud69WVpRKT7c57nNVzI9KDjNTpuI%2FAbXjNA3%2Fy3t7kDSx3w3im5AsknMwcPA0g2QhJ%2Fe03YjUynL70R54pm2qDH9%2B8mG4kuEsQXZWQcRMn%2BORvaHi%2F%2FAJ3sTQVD9%2F4lhnJCnD%2F%2FQJjsn6tE2Ns7ExoqiAQhv4yiN4JQI0g6AtP3IPkxARjHjTUk8YMb2hR08wylFTohtad%2FQxYTUvv9WSTxwyUl%2B%2FXbWuWZ1IlFPyoh%2ByPI7ghpPka2dQmyGINlH0HyX8jc01Uk8e6aVRqSl9PhpRxBRiMoMQC1DvLqkw7yyEGeOoj5Sb3Fgnabt5ucCsb8MPLaURAFHcrciLnzHR85q%2BQNkKUDMDUAM9tIzTY25KfHzSsw%2BWPY9RKWO7DZhDhvb6PHSxSCoLAEBSUoJEGRERS9co8r69vyAVc2D73z7J%2Fn%2BXKos%2B4O3dNZVyRkJz0lz1TWOLNPMmyIk3q71fRYu9WhUbvZChZarNlyw5brsmZzfiFwXVhZQtpL02m35IQ8%2F2WOVE7I%2F18ZI6RjWDUGk%2F8DzT3QYtjyXdD1YdB2sZU86mWRNkJ2k1QryTYbTMfgukSa1ZBtOjvqlDw33dTinUMIdrT4K5kGmCmRmhIfyJ8Iuur%2B8JYuyO4tXVjy3VqayVhu0WqLtzOaidrXb4rNQhu%2Bcs0OvnqNVUBVHtwRNlulCZdJ15JvliTnwixrwwT5fsW%2BI8KbuV1fyk2Sp6s3X19eiVMjrJU6GYFWF1kcgskJufzow%2BmFzn48B2lGMHmJOD8i5wGpR2DpNmx6tPjzzKvp8LcZWE1g1AUnTC%2BhyMuh8cOLRyUJlLjoaVjCigsTQnH0419n9Y69j66pgWb3kMQleqZET5WgagCbzwyz1BwtHn5exRcIVW0YKlPbDZVRn1XmPpk6PCGztbvV7z1YeVIXLbHQ6QRu0OKuGwbc972mYHQ%2BoB3q%2B1ELmZ3w64%2FH%2FwAAAP%2F%2FAQAA%2F%2F%2BPY3GvfQQAAA%3D%3D HTTP/1.1
Host: dangerouslyblemishsweater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 25 Apr 2023 12:00:04 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 848b34ac89dcc904eb3c4a82f88eeaac
Strict-Transport-Security: max-age=0; includeSubdomains

dangerouslyblemishsweater.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST2gcVRh%2FU%2FfUerF48bYEDwplMzOZze5aITTWlGBsav%2BgnvTNe282z7yZN7w3s7OJl2BF6m0FL%2Bpl8tukQQ1F6Vktu1IIAWnWUw7mIPQuCD3LbhZDH7zv3%2B87%2FL7f932xnZ8QFzk9XnpXb0ql6Gy95lZf%2B8DzLldXZJJ3q93m%2FEfzweWq6bzhua2a%2B3r1mmDretZ3Pdf1XK%2B6JI2IdHfW87yaC5nut7xay60Ffs2rB%2Bia53ObO7DUAe%2BckIuQfHR%2B%2F0EAyQZI4p%2BuCrue6fTS23GuaKYNOnzvTrKe6CJBfBZGxkGU7E27oe3R0q%2FQye6EMHTn%2F8ZQjojz9G%2BEyd6UJcLO7inRUEEkCPkFFJ0BhBpA0gGYvgvJjwjAOK6vIonvX9emoBunKB2jI1J59i9kMSKVv15GEj9YVLJbvaVVnkmdWHSjErI7gGwPkOZDZJvnIIshWPYZJP%2BDzD5bQRLvrFqlIXk5GV7KAWQ0gBI9UOsgH3%2FpII8c5KmDmB9XGyxoNnmzzqlgzA8jrxkFUdCizI2YO9fykbMxvR6ytAememBmC6nZwrr86qh%2BESZ%2FBLtWwnIHNhsR570tdHiJQhAUlqCgBIUkKDKColPucmV9W97nyuahN%2FX%2B1M%2BVfZ21t%2BmuztoiIdvpCXlpLI0z8zjDujiuNht1jzUbLRo1641gvsHqDTdsuC6r1%2BfmA9eFlSWkPTeZdlOOyKvf5UjliLz45hAhHcKqIZh8ATT3QIt%2Bw3dB1%2FpB08Vm8rCTRdoI2U5SrSTbqDEdg%2BsSaVZBtuFsqxPyymRTC7cfQ7DDhT9nnjz9%2BMqXYKZEakp8In8naKt7%2FZu6IDs3dWHJz6tpJmO5ScdbvJXRTFR%2BeEdsFNrw5au29%2F0VNgbG4f5tYbMVmnCZtC35cVFyLsySNkyQX5bt%2ByK8kdu1xdwkebpy462l5Tg1wlqpkwHo%2BCKLAzA5Ihcefjq50JnPL0GaAUxeIs4PyfRB6gFYugWbHi48mdasJjDqrCdMHRR52Td%2BeFZUkkCJs5yGJaw4EyEUh7%2F9c4pt23tomwpodhdJXKJjSnRUCap6sPn5fpaaw4WDb8bvW4Sq0g%2BVqeyEyqivJ%2BKOzcGIzFTujM2HsPK4KhpivtUK3KDBXTcMuO97dcHoXEBb1PejBjI74tceDf8DAAD%2F%2FwEAAP%2F%2FEtY6aX0EAAA%3D

173.233.137.36

200 OK

7 B

URL GET HTTP/1.1
dangerouslyblemishsweater.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST2gcVRh%2FU%2FfUerF48bYEDwplMzOZze5aITTWlGBsav%2BgnvTNe282z7yZN7w3s7OJl2BF6m0FL%2Bpl8tukQQ1F6Vktu1IIAWnWUw7mIPQuCD3LbhZDH7zv3%2B87%2FL7f932xnZ8QFzk9XnpXb0ql6Gy95lZf%2B8DzLldXZJJ3q93m%2FEfzweWq6bzhua2a%2B3r1mmDretZ3Pdf1XK%2B6JI2IdHfW87yaC5nut7xay60Ffs2rB%2Bia53ObO7DUAe%2BckIuQfHR%2B%2F0EAyQZI4p%2BuCrue6fTS23GuaKYNOnzvTrKe6CJBfBZGxkGU7E27oe3R0q%2FQye6EMHTn%2F8ZQjojz9G%2BEyd6UJcLO7inRUEEkCPkFFJ0BhBpA0gGYvgvJjwjAOK6vIonvX9emoBunKB2jI1J59i9kMSKVv15GEj9YVLJbvaVVnkmdWHSjErI7gGwPkOZDZJvnIIshWPYZJP%2BDzD5bQRLvrFqlIXk5GV7KAWQ0gBI9UOsgH3%2FpII8c5KmDmB9XGyxoNnmzzqlgzA8jrxkFUdCizI2YO9fykbMxvR6ytAememBmC6nZwrr86qh%2BESZ%2FBLtWwnIHNhsR570tdHiJQhAUlqCgBIUkKDKColPucmV9W97nyuahN%2FX%2B1M%2BVfZ21t%2BmuztoiIdvpCXlpLI0z8zjDujiuNht1jzUbLRo1641gvsHqDTdsuC6r1%2BfmA9eFlSWkPTeZdlOOyKvf5UjliLz45hAhHcKqIZh8ATT3QIt%2Bw3dB1%2FpB08Vm8rCTRdoI2U5SrSTbqDEdg%2BsSaVZBtuFsqxPyymRTC7cfQ7DDhT9nnjz9%2BMqXYKZEakp8In8naKt7%2FZu6IDs3dWHJz6tpJmO5ScdbvJXRTFR%2BeEdsFNrw5au29%2F0VNgbG4f5tYbMVmnCZtC35cVFyLsySNkyQX5bt%2ByK8kdu1xdwkebpy462l5Tg1wlqpkwHo%2BCKLAzA5Ihcefjq50JnPL0GaAUxeIs4PyfRB6gFYugWbHi48mdasJjDqrCdMHRR52Td%2BeFZUkkCJs5yGJaw4EyEUh7%2F9c4pt23tomwpodhdJXKJjSnRUCap6sPn5fpaaw4WDb8bvW4Sq0g%2BVqeyEyqivJ%2BKOzcGIzFTujM2HsPK4KhpivtUK3KDBXTcMuO97dcHoXEBb1PejBjI74tceDf8DAAD%2F%2FwEAAP%2F%2FEtY6aX0EAAA%3D
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectdangerouslyblemishsweater.com
Fingerprint2C:30:D7:37:6D:D1:CC:1E:DA:12:47:8D:CF:35:72:F5:E1:0B:FA:E6
ValidityTue, 25 Apr 2023 06:18:02 GMT - Mon, 24 Jul 2023 06:18:01 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST2gcVRh%2FU%2FfUerF48bYEDwplMzOZze5aITTWlGBsav%2BgnvTNe282z7yZN7w3s7OJl2BF6m0FL%2Bpl8tukQQ1F6Vktu1IIAWnWUw7mIPQuCD3LbhZDH7zv3%2B87%2FL7f932xnZ8QFzk9XnpXb0ql6Gy95lZf%2B8DzLldXZJJ3q93m%2FEfzweWq6bzhua2a%2B3r1mmDretZ3Pdf1XK%2B6JI2IdHfW87yaC5nut7xay60Ffs2rB%2Bia53ObO7DUAe%2BckIuQfHR%2B%2F0EAyQZI4p%2BuCrue6fTS23GuaKYNOnzvTrKe6CJBfBZGxkGU7E27oe3R0q%2FQye6EMHTn%2F8ZQjojz9G%2BEyd6UJcLO7inRUEEkCPkFFJ0BhBpA0gGYvgvJjwjAOK6vIonvX9emoBunKB2jI1J59i9kMSKVv15GEj9YVLJbvaVVnkmdWHSjErI7gGwPkOZDZJvnIIshWPYZJP%2BDzD5bQRLvrFqlIXk5GV7KAWQ0gBI9UOsgH3%2FpII8c5KmDmB9XGyxoNnmzzqlgzA8jrxkFUdCizI2YO9fykbMxvR6ytAememBmC6nZwrr86qh%2BESZ%2FBLtWwnIHNhsR570tdHiJQhAUlqCgBIUkKDKColPucmV9W97nyuahN%2FX%2B1M%2BVfZ21t%2BmuztoiIdvpCXlpLI0z8zjDujiuNht1jzUbLRo1641gvsHqDTdsuC6r1%2BfmA9eFlSWkPTeZdlOOyKvf5UjliLz45hAhHcKqIZh8ATT3QIt%2Bw3dB1%2FpB08Vm8rCTRdoI2U5SrSTbqDEdg%2BsSaVZBtuFsqxPyymRTC7cfQ7DDhT9nnjz9%2BMqXYKZEakp8In8naKt7%2FZu6IDs3dWHJz6tpJmO5ScdbvJXRTFR%2BeEdsFNrw5au29%2F0VNgbG4f5tYbMVmnCZtC35cVFyLsySNkyQX5bt%2ByK8kdu1xdwkebpy462l5Tg1wlqpkwHo%2BCKLAzA5Ihcefjq50JnPL0GaAUxeIs4PyfRB6gFYugWbHi48mdasJjDqrCdMHRR52Td%2BeFZUkkCJs5yGJaw4EyEUh7%2F9c4pt23tomwpodhdJXKJjSnRUCap6sPn5fpaaw4WDb8bvW4Sq0g%2BVqeyEyqivJ%2BKOzcGIzFTujM2HsPK4KhpivtUK3KDBXTcMuO97dcHoXEBb1PejBjI74tceDf8DAAD%2F%2FwEAAP%2F%2FEtY6aX0EAAA%3D HTTP/1.1
Host: dangerouslyblemishsweater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 25 Apr 2023 12:00:04 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 519ae960cd3417c3cd45cb83a4768621
Strict-Transport-Security: max-age=0; includeSubdomains

www.google.com/cse/static/element/a9408e9443edd8dc/cse_element__no.js?usqp=CAI%3D

216.58.207.228

200 OK

106 kB

URL GET HTTP/3
www.google.com/cse/static/element/a9408e9443edd8dc/cse_element__no.js?usqp=CAI%3D
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintD5:3A:80:A6:03:B0:E4:36:0E:46:7B:36:45:CB:50:4C:D6:98:CE:59
ValidityMon, 03 Apr 2023 08:17:58 GMT - Mon, 26 Jun 2023 08:17:57 GMT

File type
ASCII text, with very long lines (1886)
Size
106 kB (105485 bytes)
Hash
d21fd78528581aa214806a67ab2a361a
62efebf7f3cb6e754a04785e40e052dbd9e53b26
b605940f94fa3a25cbe926770c97af4034da38b4aabd3ebdf4c87c4dfe5c62ac

HTTP Headers

GET /cse/static/element/a9408e9443edd8dc/cse_element__no.js?usqp=CAI%3D HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 105485
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Apr 2023 06:52:52 GMT
expires: Sat, 20 Apr 2024 06:52:52 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 12 Apr 2023 21:05:10 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 364032
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

mc.us18.list-manage.com/subscribe/form-settings?u=45978c25d1c6a5f695218bffa&id=14af1f712e&u=45978c25d1c6a5f695218bffa&id=14af1f712e&c=dojo_request_script_callbacks.dojo_request_script0

104.110.24.122

6.1 kB

URL GET
mc.us18.list-manage.com/subscribe/form-settings?u=45978c25d1c6a5f695218bffa&id=14af1f712e&u=45978c25d1c6a5f695218bffa&id=14af1f712e&c=dojo_request_script_callbacks.dojo_request_script0
IP
104.110.24.122:0
ASN
#16625 AKAMAI-AS

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerDigiCert Inc
Subjectwildcardsan.list-manage.com
FingerprintE8:D7:63:51:A8:58:2A:46:78:9F:A4:57:6C:BA:F5:A0:50:D7:9F:75
ValidityMon, 27 Jun 2022 00:00:00 GMT - Thu, 29 Jun 2023 23:59:59 GMT

File type
ASCII text, with very long lines (12613), with no line terminators
Size
6.1 kB (6080 bytes)
Hash
4a9676ce477c88b76b0fd68e164a5148
1b4690d795ce75992852d2a745f0c20e88bd2c9e
012bb892c248eff90a81d31550985d5cfaa1117f68fab3de9cd3f3c97f2c90ce

HTTP Headers

GET /subscribe/form-settings?u=45978c25d1c6a5f695218bffa&id=14af1f712e&u=45978c25d1c6a5f695218bffa&id=14af1f712e&c=dojo_request_script_callbacks.dojo_request_script0 HTTP/1.1
Host: mc.us18.list-manage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=utf-8
referrer-policy: same-origin
x-ua-compatible: IE=edge,chrome=1
content-encoding: gzip
x-cloud-trace-context: 3ce55920738de91d31c73ef22fce0e8b
server: Google Frontend
content-length: 6080
cache-control: private, max-age=142
expires: Tue, 25 Apr 2023 12:02:26 GMT
date: Tue, 25 Apr 2023 12:00:04 GMT
vary: Accept-Encoding
set-cookie: _abck=E67732590F325C604668F00AA23E8F4D~-1~YAAQrU0kFzz74aCHAQAAl/5IuAn7IE7nUf2lsLID1whMuDl1FBHljEgxDiHT02F13yAVPnQsQUaRWVjgzfYolII0zexYF8xc1Wk5sOymxioPYXTiBxZjvmqOIRaBp36KWVVdoAq1prZHNzR5M0hmdSr4qCcaOkQcxYm1PKkcA42lBsedHWMH1qigSOWpiMwLUTGLeuNeAomKgRN1uXS11jGLWpst0m9yEKQj5tXg1Eaw28rghYGfDqMxJ0lWEBJ+lh0ct4z4im0OBkSQVh19FqBwdpIgvboQ6yvJTa7oT8LyCwOoAYKZkbr5S0MMrjtdvzdVYbZ69NKIv6c6CrNS0s5WNgPxFgIUJ1KMjWNORqxeB+nvCtF4qaX7n6atrdraGQ==~-1~-1~-1; Domain=.list-manage.com; Path=/; Expires=Wed, 24 Apr 2024 12:00:04 GMT; Max-Age=31536000; SameSite=None; Secure
ak_bmsc=D9ED5967403263630582D8F03153D177~000000000000000000000000000000~YAAQrU0kFz374aCHAQAAl/5IuBMvcpP4cMPLs9/ZePki2xXGfWgOibMC6j6rShe3pywlFHTc1Uxv1Aw5iq8EEcT4e06b7vaTDTRqiZeaSvZHOhB2W7cJbZFr2udRHZw1OitbVcCDNnvpyTcwJJs0z6wvDl6k6x/KbGRXfGoEY246FGI1EX5JdMtCYsz3ill6w6aXRsFQG/MbVnCnBxMs3oZbqles0i8jAeUlDVZ+B5OC8s3suCab+1zs6nQDozptfgkQNXsoDX5Knf7272YkgESdCrDclBKgkjQiqVoSE9USVcE8I9bdvSuUhHi9hlAcmVfPQHxdMSRQR9zssfaV9CHtLsQIq/9ZFPErJhwAoAqxmGXMhluRVNEZ+5UIPTARzt3b7DeQIvAthMI7tIxi+g==; Domain=.us18.list-manage.com; Path=/; Expires=Tue, 25 Apr 2023 14:00:04 GMT; Max-Age=7200; SameSite=None; Secure; HttpOnly
bm_sz=822A73CDF145548066EAAC5D3CD6109E~YAAQrU0kFz774aCHAQAAl/5IuBNs5+CkacXEBkVKXnEw2nKgOt3DmWBwM30adICNWw3hzo+Syaa8pNYsU6bLbgpTrJGBKTYjkwMaCtwlzobwYt35WhgvCuX51DZG9lRWAPVNV87/0MA5GGfob6M3imoML2ywfQM7e7YabC32z39NqN10rdHk7QKxFvm5iJpMyITOwkeDVp/zYhlJ3mlWAqzxl4tM3hQg/we5l2PLfl4nMAKIAbQj2A5gJ4yQtG2ixMga8MgmWstjCgoUYj51eJD2qouug1s8i/3+5R6hl6UpFfjHJ4BXWw==~4601652~3354676; Domain=.list-manage.com; Path=/; Expires=Tue, 25 Apr 2023 16:00:04 GMT; Max-Age=14400; SameSite=None; Secure
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCQmIvb0FRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--d18589cdbbab2b05414d3875e19d1a063a011642/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cheating-death-cover2.jpg

104.19.160.48

302 Found

1.2 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCQmIvb0FRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--d18589cdbbab2b05414d3875e19d1a063a011642/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cheating-death-cover2.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
data
Size
1.2 kB (1221 bytes)
Hash
4e377562f21da216526654c9d9b9afc2
05d80b7e580c39acd418be1042480819494ecc15
c4b5399ca4435311bc89283dfd8c2961003e21669256e51cba6a2b1d9a5e5e0c

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCQmIvb0FRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--d18589cdbbab2b05414d3875e19d1a063a011642/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cheating-death-cover2.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/3esky12merjxg8lroh0u180l3i2f/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: b2101e3b-5673-464e-a5a3-bfb23b638141
x-runtime: 0.053628
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60dd631c02-OSL
X-Firefox-Spdy: h2

yeet.revcontent.com/yeet/events/api-errors

34.242.11.224

200 OK

0 B

URL OPTIONS HTTP/2
yeet.revcontent.com/yeet/events/api-errors
IP
34.242.11.224:443
ASN
#16509 AMAZON-02

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerAmazon
Subjectrevcontent.com
FingerprintA0:6E:37:23:50:3A:D0:1D:9E:B5:2B:F6:82:2C:A7:A2:32:C1:C7:F2
ValidityTue, 14 Feb 2023 00:00:00 GMT - Sun, 16 Jul 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vtforeignpolicy.com/
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:04 GMT
content-length: 0
server: envoy
x-rc-region: eu-west-1c
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: *
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
x-envoy-upstream-service-time: 4
X-Firefox-Spdy: h2

clients1.google.com/generate_204

216.58.207.206

204 No Content

0 B

URL GET HTTP/2
clients1.google.com/generate_204
IP
216.58.207.206:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintD5:3A:80:A6:03:B0:E4:36:0E:46:7B:36:45:CB:50:4C:D6:98:CE:59
ValidityMon, 03 Apr 2023 08:17:58 GMT - Mon, 26 Jun 2023 08:17:57 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /generate_204 HTTP/1.1
Host: clients1.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Tue, 25 Apr 2023 12:00:04 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

yeet.revcontent.com/yeet/events/api-errors

34.242.11.224

200 OK

0 B

URL OPTIONS HTTP/2
yeet.revcontent.com/yeet/events/api-errors
IP
34.242.11.224:443
ASN
#16509 AMAZON-02

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerAmazon
Subjectrevcontent.com
FingerprintA0:6E:37:23:50:3A:D0:1D:9E:B5:2B:F6:82:2C:A7:A2:32:C1:C7:F2
ValidityTue, 14 Feb 2023 00:00:00 GMT - Sun, 16 Jul 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vtforeignpolicy.com/
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:04 GMT
content-length: 0
server: envoy
x-rc-region: eu-west-1c
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: *
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
x-envoy-upstream-service-time: 34
X-Firefox-Spdy: h2

yeet.revcontent.com/yeet/events/api-errors

34.242.11.224

200 OK

0 B

URL OPTIONS HTTP/2
yeet.revcontent.com/yeet/events/api-errors
IP
34.242.11.224:443
ASN
#16509 AMAZON-02

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerAmazon
Subjectrevcontent.com
FingerprintA0:6E:37:23:50:3A:D0:1D:9E:B5:2B:F6:82:2C:A7:A2:32:C1:C7:F2
ValidityTue, 14 Feb 2023 00:00:00 GMT - Sun, 16 Jul 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vtforeignpolicy.com/
Content-Type: application/json
Content-Length: 175
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Tue, 25 Apr 2023 12:00:04 GMT
server: envoy
x-rc-region: eu-west-1c
access-control-allow-origin: *
vary: Origin
x-envoy-upstream-service-time: 6
X-Firefox-Spdy: h2

yeet.revcontent.com/yeet/events/api-errors

34.242.11.224

200 OK

0 B

URL OPTIONS HTTP/2
yeet.revcontent.com/yeet/events/api-errors
IP
34.242.11.224:443
ASN
#16509 AMAZON-02

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerAmazon
Subjectrevcontent.com
FingerprintA0:6E:37:23:50:3A:D0:1D:9E:B5:2B:F6:82:2C:A7:A2:32:C1:C7:F2
ValidityTue, 14 Feb 2023 00:00:00 GMT - Sun, 16 Jul 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /yeet/events/api-errors HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vtforeignpolicy.com/
Content-Type: application/json
Content-Length: 173
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Tue, 25 Apr 2023 12:00:04 GMT
server: envoy
x-rc-region: eu-west-1c
access-control-allow-origin: *
vary: Origin
x-envoy-upstream-service-time: 7
X-Firefox-Spdy: h2

assets.revcontent.com/master/defaultWidget~feedWidget.delivery.js

151.139.128.10

200 OK

7.1 kB

URL GET HTTP/2
assets.revcontent.com/master/defaultWidget~feedWidget.delivery.js
IP
151.139.128.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectassets.revcontent.com
FingerprintAB:F6:FA:3D:1C:7E:BB:99:59:47:3B:E4:37:AB:C3:7F:53:4A:7E:2A
ValidityMon, 13 Mar 2023 00:05:46 GMT - Sun, 11 Jun 2023 00:05:45 GMT

File type
ASCII text, with very long lines (23325)
Size
7.1 kB (7093 bytes)
Hash
00f330b415872c2a9d6b43aafff232a8
1d158c43103d7640b9092cb1d3fefee67c8230db
dd7e97f8c422cca0cc8d38eec15ef62555248c7f1c691033f83396c3ef779b4f

HTTP Headers

GET /master/defaultWidget~feedWidget.delivery.js HTTP/1.1
Host: assets.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:04 GMT
content-encoding: gzip
content-length: 7093
content-type: application/x-javascript
last-modified: Mon, 24 Apr 2023 20:14:07 GMT
accept-ranges: bytes
x-amz-id-2: QyqN1KLNweWAcawaWGrTB//L6X2LWE5Y/crXabUV0nuC/inDg7Iz/+bk4Umc/9L0vcrpts3HZwI=
x-amz-request-id: 9MXW4E6K555PQDZG
etag: "5172e10a0c5647fecf417a9dfa584fab"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=600
server: AmazonS3
x-hw: 1682424004.cds262.sk1.hn,1682424004.cds247.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRyt4NndRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--e2c598929a0d51d8b918436f8ee0aeac8473394c/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/vtradio-israel-final-solution-cover2.jpg

104.19.160.48

302 Found

6.4 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRyt4NndRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--e2c598929a0d51d8b918436f8ee0aeac8473394c/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/vtradio-israel-final-solution-cover2.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
data
Size
6.4 kB (6444 bytes)
Hash
363f8a620fafee4b277f07596f88e25c
e1a237c3b05024326496152f5429e64511a061a9
856ff4ec68ef513de1da6083f74966b15520d5f63682c9904e5b634b69257634

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRyt4NndRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--e2c598929a0d51d8b918436f8ee0aeac8473394c/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/vtradio-israel-final-solution-cover2.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/v8xo916rjdh04daf6yrt916z2np5/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: f0319274-e0c0-4503-8b48-0412895052e1
x-runtime: 0.049304
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60bd161c02-OSL
X-Firefox-Spdy: h2

assets.revcontent.com/master/commonModal.delivery.js

151.139.128.10

200 OK

1.7 kB

URL GET HTTP/2
assets.revcontent.com/master/commonModal.delivery.js
IP
151.139.128.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectassets.revcontent.com
FingerprintAB:F6:FA:3D:1C:7E:BB:99:59:47:3B:E4:37:AB:C3:7F:53:4A:7E:2A
ValidityMon, 13 Mar 2023 00:05:46 GMT - Sun, 11 Jun 2023 00:05:45 GMT

File type
ASCII text, with very long lines (3480)
Size
1.7 kB (1667 bytes)
Hash
51e85b2994c116c147a6ddad29ec2ca0
d4d83fffff97f5b12a0ff24ea9af710520384eba
7e82d4917fd91826aa3ba5bbcec79ad01f10539e4ea22566d48db20ac90de576

HTTP Headers

GET /master/commonModal.delivery.js HTTP/1.1
Host: assets.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:04 GMT
content-encoding: gzip
content-length: 1667
content-type: application/x-javascript
last-modified: Mon, 24 Apr 2023 20:14:05 GMT
accept-ranges: bytes
x-amz-id-2: xdDbgMray5sJkZ+9brSd31kyAIalIJW81upVaMrd2BEuL3zog1S1ENsGDcNlmty5s525JL4YUMc=
x-amz-request-id: 9MXN7WCEDRFZZDCW
etag: "3c59d541c0573b1f10264bd214def6cc"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=600
server: AmazonS3
x-hw: 1682424004.cds262.sk1.hn,1682424004.cds245.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/3
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Apr 2023 07:44:41 GMT
expires: Sun, 21 Apr 2024 07:44:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 274523
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

45 kB

URL GET HTTP/3
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint34:5A:0A:3B:4F:02:F9:C6:C9:D7:3F:CA:9D:17:0D:40:27:05:05:0A
ValidityMon, 03 Apr 2023 08:24:23 GMT - Mon, 26 Jun 2023 08:24:22 GMT

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Apr 2023 02:05:23 GMT
expires: Sat, 20 Apr 2024 02:05:23 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 381281
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.vtforeignpolicy.com/wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=12.3.1

208.109.36.109

200 OK

90 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=12.3.1
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
data
Size
90 kB (89925 bytes)
Hash
f84115b09cc6e42194e6508ec9e47b44
f5a88314b7c60b4d1d1afd75933209ef1403ec48
4751323b03d86bb42f61f64f01654b31b7b713c4714e9597598b0b37a6664a4c

HTTP Headers

GET /wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=12.3.1 HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 12 Apr 2023 08:22:38 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCR3ZNWmdRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--11d70ad14bccfb285569b4392d2338fb976184de/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/surveillance-police-state-barrett1-square.jpg

104.19.160.48

302 Found

45 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCR3ZNWmdRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--11d70ad14bccfb285569b4392d2338fb976184de/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/surveillance-police-state-barrett1-square.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
data
Size
45 kB (45059 bytes)
Hash
13d3529efa2ff89cac51b48386995ea8
ad40655f6b8bc15657de3dbbf866cf0a75d941cc
e2cdaa15f58e7a590c634b14b87fbe2148dc2ab124d93f22fa2ee0972ea54822

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCR3ZNWmdRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--11d70ad14bccfb285569b4392d2338fb976184de/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/surveillance-police-state-barrett1-square.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/4mvv00jtacy37igp4kr603m9y5ap/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: 957d5410-08cf-492f-904b-3cd88beb3bd0
x-runtime: 0.088075
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60fd8c1c02-OSL
X-Firefox-Spdy: h2

trends.revcontent.com/api/delivery/?is_blocked=undefined&w=276132&width=1280&rev_allow_cookies=undefined&site_url=https%3A%2F%2Fwww.vtforeignpolicy.com%2F&icr_url=&va=0&user_uuid=undefined&time=1682424244446&up=pc&bn=firefox&bv=109&widget_width=75&style_id=0&idhub[pubcid]=63c718c5-52df-4aba-aa58-44cffb68f4d4&an=false

34.242.11.224

200 OK

9.5 kB

URL GET HTTP/2
trends.revcontent.com/api/delivery/?is_blocked=undefined&w=276132&width=1280&rev_allow_cookies=undefined&site_url=https%3A%2F%2Fwww.vtforeignpolicy.com%2F&icr_url=&va=0&user_uuid=undefined&time=1682424244446&up=pc&bn=firefox&bv=109&widget_width=75&style_id=0&idhub[pubcid]=63c718c5-52df-4aba-aa58-44cffb68f4d4&an=false
IP
34.242.11.224:443
ASN
#16509 AMAZON-02

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerAmazon
Subjectrevcontent.com
FingerprintA0:6E:37:23:50:3A:D0:1D:9E:B5:2B:F6:82:2C:A7:A2:32:C1:C7:F2
ValidityTue, 14 Feb 2023 00:00:00 GMT - Sun, 16 Jul 2023 23:59:59 GMT

File type
data
Size
9.5 kB (9541 bytes)
Hash
2a3083d494e03da806850bed36f1091c
c5ecb7faf639408acba02d5d709d7fa6afc9a4d4
4444f89faf42932f83a36702c23b76774c8a7c87a4250850624129206365779e

HTTP Headers

GET /api/delivery/?is_blocked=undefined&w=276132&width=1280&rev_allow_cookies=undefined&site_url=https%3A%2F%2Fwww.vtforeignpolicy.com%2F&icr_url=&va=0&user_uuid=undefined&time=1682424244446&up=pc&bn=firefox&bv=109&widget_width=75&style_id=0&idhub[pubcid]=63c718c5-52df-4aba-aa58-44cffb68f4d4&an=false HTTP/1.1
Host: trends.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vtforeignpolicy.com/
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:04 GMT
content-type: application/json; charset=utf-8
server: envoy
x-rc-region: eu-west-1c
access-control-allow-credentials: true
access-control-allow-origin: https://www.vtforeignpolicy.com
vary: Origin
strict-transport-security: max-age=931536000; includeSubDomains
content-encoding: gzip
x-envoy-upstream-service-time: 128
X-Firefox-Spdy: h2

cdn.revcontent.com/assets/img/rc-logo.png

151.139.128.10

200 OK

2.1 kB

URL GET HTTP/2
cdn.revcontent.com/assets/img/rc-logo.png
IP
151.139.128.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.revcontent.com
Fingerprint1E:11:47:73:04:30:28:4E:F6:C4:19:73:F8:B0:92:63:76:9D:E0:94
ValidityThu, 09 Mar 2023 09:50:47 GMT - Wed, 07 Jun 2023 09:50:46 GMT

File type
PNG image data, 250 x 31, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2091 bytes)
Hash
4405c6e8202f91988ee39d113f8fb197
7915a09abe40508407ddcca88050b43c0e570bc1
f4241710e57486ad91102e31823e855469608e1aea362f1f0e059609c9eb9a56

HTTP Headers

GET /assets/img/rc-logo.png HTTP/1.1
Host: cdn.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:04 GMT
etag: "1681326769"
cache-control: max-age=10
content-length: 2091
content-type: image/png
last-modified: Wed, 12 Apr 2023 19:12:49 GMT
accept-ranges: bytes
x-hw: 1682424004.cds248.sk1.hn,1682424004.cds204.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTkdVOHdRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--59da62bdf2e783247a3963ca105fc21223f01cd7/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/king-charles-show2.jpg

104.19.160.48

302 Found

84 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTkdVOHdRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--59da62bdf2e783247a3963ca105fc21223f01cd7/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/king-charles-show2.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
data
Size
84 kB (83938 bytes)
Hash
dbd53aeb55a3082e6fd3fd85c1f2a2fb
5aef70227d529d2ab2f5c15e24c543e2bb553867
78526eb9747256dede8400349359ec49afd394643d4aa666dcca31464ab0d56e

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTkdVOHdRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--59da62bdf2e783247a3963ca105fc21223f01cd7/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/king-charles-show2.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/nnd9a3whks6x9qhqoah5cxq3h4ao/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: d9c0c876-9333-4c97-ad9d-5da7fe236ba6
x-runtime: 0.035284
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60bd111c02-OSL
X-Firefox-Spdy: h2

downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/common.css

54.230.167.125

200 OK

2.6 kB

URL GET HTTP/1.1
downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/common.css
IP
54.230.167.125:443
ASN
#16509 AMAZON-02

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerAmazon
Subjectdownloads.mailchimp.com
Fingerprint71:CA:F4:D1:5C:6A:B9:FA:41:B9:63:28:DB:BB:2F:BE:05:00:31:46
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 03 Aug 2023 23:59:59 GMT

File type
ASCII text
Size
2.6 kB (2603 bytes)
Hash
5e4789e49ab7f14e47d25f6d47c3d2ac
2365e3104a719fb8b01dc4f0e24b727002374585
32fc8a30611eebc0b9e794adc8a0b505b61c4ad088d3fae7459657a6716ffc72

HTTP Headers

GET /css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/common.css HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Mon, 24 Apr 2023 18:52:24 GMT
ETag: W/"82e72d627b04e1654282023cca1d1e69"
X-Cache: Hit from cloudfront
Via: 1.1 abe59040fa8834eedf4f2935b5097176.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ICN51-C2
X-Amz-Cf-Id: fFBQ8vAVg3YzrwfFg-LWjF8xCo-7OAQVWv1MASesjNjk578mH3uGtg==
Age: 61661
Vary: Accept-Encoding, Origin

downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/banner.css

54.230.167.125

200 OK

434 B

URL GET HTTP/1.1
downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/banner.css
IP
54.230.167.125:443
ASN
#16509 AMAZON-02

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerAmazon
Subjectdownloads.mailchimp.com
Fingerprint71:CA:F4:D1:5C:6A:B9:FA:41:B9:63:28:DB:BB:2F:BE:05:00:31:46
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 03 Aug 2023 23:59:59 GMT

File type
ASCII text
Size
434 B (434 bytes)
Hash
77e2ec850192780a802307067a5742a5
c9843c3c8575692c65f7fab5c86431301945c0d8
061b0574dc3176451ef412078330a632828153ea7bc134fdf6c98e2149e9f0ec

HTTP Headers

GET /css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/banner.css HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Mon, 24 Apr 2023 22:12:15 GMT
ETag: W/"78d1bdd981816cfbeb6954a85f9efa58"
X-Cache: Hit from cloudfront
Via: 1.1 612f66c69e94ca76cedbb60dd1460040.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ICN51-C2
X-Amz-Cf-Id: 6yfnqGvjQKDujN04VkWwpwRX8zjqNbQwXJ0twSp6OR7hO9KM7zZTnA==
Age: 49731
Vary: Accept-Encoding, Origin

images.revcontent.com/revcontent/image/fetch/f_jpg,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/5f764a928c5269-04793407.jpg

151.139.128.10

200 OK

11 kB

URL GET HTTP/2
images.revcontent.com/revcontent/image/fetch/f_jpg,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/5f764a928c5269-04793407.jpg
IP
151.139.128.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectimages.revcontent.com
Fingerprint6B:C8:32:9B:50:A4:10:87:39:B6:C2:60:0E:F7:2F:B8:91:92:94:5C
ValidityMon, 06 Mar 2023 16:36:02 GMT - Sun, 04 Jun 2023 16:36:01 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 225x150, components 3\012- data
Size
11 kB (11301 bytes)
Hash
18a33ba9b2193cb3aba92d8a03d18c24
8ce893aa5a2fcc0aa4bc8c6b8022a509891f7bf1
227412a298eec8c563897c85bd79870da865bace4c3cbf6d61e35a728a0b7838

HTTP Headers

GET /revcontent/image/fetch/f_jpg,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/5f764a928c5269-04793407.jpg HTTP/1.1
Host: images.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:05 GMT
content-length: 11301
content-type: image/jpeg
last-modified: Thu, 11 Nov 2021 17:39:08 GMT
accept-ranges: bytes
cf-ray: 7bd138bb4bdb98f4-ARN
access-control-allow-origin: *
cache-control: private, no-transform, immutable, max-age=604800
etag: "18a33ba9b2193cb3aba92d8a03d18c24"
strict-transport-security: max-age=604800
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,x-content-type-options
server-timing: cld-cloudflare;dur=142;start=2023-04-24T20:50:58.453Z;desc=miss,rtt;dur=1;cloudinary;dur=21;start=2023-04-24T20:50:58.524Z
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
vary: Save-Data
x-hw: 1682424005.cds227.sk1.hn,1682424005.cds264.sk1.c
X-Firefox-Spdy: h2

images.revcontent.com/revcontent/image/fetch/f_jpg,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/6446449b29eb59-00270535.jpg

151.139.128.10

200 OK

6.2 kB

URL GET HTTP/2
images.revcontent.com/revcontent/image/fetch/f_jpg,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/6446449b29eb59-00270535.jpg
IP
151.139.128.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectimages.revcontent.com
Fingerprint6B:C8:32:9B:50:A4:10:87:39:B6:C2:60:0E:F7:2F:B8:91:92:94:5C
ValidityMon, 06 Mar 2023 16:36:02 GMT - Sun, 04 Jun 2023 16:36:01 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 225x150, components 3\012- data
Size
6.2 kB (6182 bytes)
Hash
34ed9a4916be5d2fdc452bda0d3c1104
d9054df727620d9dd58b7aca34ec9c7d1e71743d
13442bacaa940f375ee1ad708008665cc3614279d9eaf00330adf66dd96a3836

HTTP Headers

GET /revcontent/image/fetch/f_jpg,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/6446449b29eb59-00270535.jpg HTTP/1.1
Host: images.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:05 GMT
content-length: 6182
content-type: image/jpeg
last-modified: Mon, 24 Apr 2023 17:44:53 GMT
accept-ranges: bytes
cf-ray: 7bd04558a89f09b0-ARN
access-control-allow-origin: *
cache-control: private, no-transform, immutable, max-age=604800
etag: "34ed9a4916be5d2fdc452bda0d3c1104"
strict-transport-security: max-age=604800
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,x-content-type-options
server-timing: cld-cloudflare;dur=22;start=2023-04-24T18:04:49.396Z;desc=hit,rtt;dur=1
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
vary: Save-Data
x-hw: 1682424005.cds227.sk1.hn,1682424005.cds252.sk1.c
X-Firefox-Spdy: h2

images.revcontent.com/revcontent/image/fetch/f_gif,fl_lossy,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/5fd408e4a6c062-00078348.gif

151.139.128.10

200 OK

15 kB

URL GET HTTP/2
images.revcontent.com/revcontent/image/fetch/f_gif,fl_lossy,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/5fd408e4a6c062-00078348.gif
IP
151.139.128.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectimages.revcontent.com
Fingerprint6B:C8:32:9B:50:A4:10:87:39:B6:C2:60:0E:F7:2F:B8:91:92:94:5C
ValidityMon, 06 Mar 2023 16:36:02 GMT - Sun, 04 Jun 2023 16:36:01 GMT

File type
GIF image data, version 89a, 225 x 150\012- data
Size
15 kB (15409 bytes)
Hash
f0d921e7fe05ff74d65690b335b9b334
31f77f561e7c5e81396fae833c12301ace78e743
8a4a399f52dea1e7a9fa7f83fcc08710f219fe6f489bf8f0f75485844a8e0b6e

HTTP Headers

GET /revcontent/image/fetch/f_gif,fl_lossy,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/5fd408e4a6c062-00078348.gif HTTP/1.1
Host: images.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:05 GMT
content-length: 15409
content-type: image/gif
last-modified: Mon, 11 Apr 2022 14:50:15 GMT
accept-ranges: bytes
etag: "f0d921e7fe05ff74d65690b335b9b334"
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=604800
server-timing: cld-fastly;mitm=po;dur=2;cpu=0;start=2023-04-08T14:56:04.207Z;desc=hit,rtt;dur=0
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
vary: Save-Data
x-hw: 1682424005.cds227.sk1.hn,1682424005.cds248.sk1.c
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCR0lkWmdRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--1b0be614ec1badefdc1e63611595ebbd0a57acaf/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/intel-report-ukraine-dankoff-square.jpg

104.19.160.48

302 Found

203 B

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCR0lkWmdRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--1b0be614ec1badefdc1e63611595ebbd0a57acaf/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/intel-report-ukraine-dankoff-square.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
HTML document text\012- HTML document, ASCII text, with no line terminators
Size
203 B (203 bytes)
Hash
08247364fbc2c97cb700f046d7f01ff7
552ff64ed044e9154863e094a9ae2e989dc34b33
c7a0042ce97e9052650f5f98671a2058a553c95ec44180584f94ad53bc8da76f

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCR0lkWmdRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--1b0be614ec1badefdc1e63611595ebbd0a57acaf/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/intel-report-ukraine-dankoff-square.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/zcw51f3m5gbum2hyiz5oustq9xfz/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: b41a489f-293e-4704-9ee4-1d4f8252f5af
x-runtime: 0.037457
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60fd8e1c02-OSL
X-Firefox-Spdy: h2

images.revcontent.com/revcontent/image/fetch/f_jpg,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/64464b515c3051-48921453.jpg

151.139.128.10

200 OK

5.0 kB

URL GET HTTP/2
images.revcontent.com/revcontent/image/fetch/f_jpg,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/64464b515c3051-48921453.jpg
IP
151.139.128.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectimages.revcontent.com
Fingerprint6B:C8:32:9B:50:A4:10:87:39:B6:C2:60:0E:F7:2F:B8:91:92:94:5C
ValidityMon, 06 Mar 2023 16:36:02 GMT - Sun, 04 Jun 2023 16:36:01 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 225x150, components 3\012- data
Size
5.0 kB (4982 bytes)
Hash
56f730ebd4b706440c8ec952774901c9
b9fe10483a5f28027d7bf0a8ece6890f02d91af3
f2c08d3b15a37b73186de2d3718af4e9cb4474bd7af558bcd49719da5d2458c7

HTTP Headers

GET /revcontent/image/fetch/f_jpg,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/64464b515c3051-48921453.jpg HTTP/1.1
Host: images.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:05 GMT
content-length: 4982
content-type: image/jpeg
last-modified: Mon, 24 Apr 2023 09:28:46 GMT
accept-ranges: bytes
etag: "56f730ebd4b706440c8ec952774901c9"
x-request-id: b6214cdc7e23cb01e48a27bb7b782f48
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=604800
server-timing: cld-fastly;mitm=po;dur=2;cpu=0;start=2023-04-24T18:20:50.308Z;desc=hit,rtt;dur=0
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
vary: Save-Data
x-hw: 1682424005.cds227.sk1.hn,1682424005.cds246.sk1.c
X-Firefox-Spdy: h2

vtforeignpolicy.pushengage.com/dialog.css

3.229.140.253

200 OK

11 kB

URL GET HTTP/2
vtforeignpolicy.pushengage.com/dialog.css
IP
3.229.140.253:443
ASN
#14618 AMAZON-AES

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.pushengage.com
Fingerprint7F:1E:9A:71:F9:B7:D2:C4:1F:0A:76:D1:3E:FA:40:CD:9B:B1:B6:E9
ValidityTue, 07 Feb 2023 12:07:28 GMT - Sun, 10 Mar 2024 12:07:27 GMT

File type
data
Size
11 kB (10927 bytes)
Hash
78b9b5054b8bb86fea0f55b4e7399319
ebcfbfae1e31928c93e5f620e7f72b4df58050dd
2ea17934d549b4eca206e1385bd319a3f4589de3f3d737a6d7a4361a7adc81f1

HTTP Headers

GET /dialog.css HTTP/1.1
Host: vtforeignpolicy.pushengage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: text/css;charset=UTF-8
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2

yeet.revcontent.com/yeet/events/page-view

34.242.11.224

204 No Content

0 B

URL POST HTTP/2
yeet.revcontent.com/yeet/events/page-view
IP
34.242.11.224:443
ASN
#16509 AMAZON-02

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerAmazon
Subjectrevcontent.com
FingerprintA0:6E:37:23:50:3A:D0:1D:9E:B5:2B:F6:82:2C:A7:A2:32:C1:C7:F2
ValidityTue, 14 Feb 2023 00:00:00 GMT - Sun, 16 Jul 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /yeet/events/page-view HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vtforeignpolicy.com/
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:05 GMT
content-length: 0
server: envoy
x-rc-region: eu-west-1c
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: *
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
x-envoy-upstream-service-time: 8
X-Firefox-Spdy: h2

images.revcontent.com/revcontent/image/fetch/f_jpg,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/15736069540225496270.jpg

151.139.128.10

200 OK

10 kB

URL GET HTTP/2
images.revcontent.com/revcontent/image/fetch/f_jpg,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/15736069540225496270.jpg
IP
151.139.128.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectimages.revcontent.com
Fingerprint6B:C8:32:9B:50:A4:10:87:39:B6:C2:60:0E:F7:2F:B8:91:92:94:5C
ValidityMon, 06 Mar 2023 16:36:02 GMT - Sun, 04 Jun 2023 16:36:01 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 225x150, components 3\012- data
Size
10 kB (10129 bytes)
Hash
f7a69f8a5670dc67b6a8e62c1b67bba4
442fcec7f5406e5f9e1f03a0c4b4e16b24f4bbb7
86387feb102647ac23dd0f9d167e3b8e68d4bb0aeec5011b5cd6d7237a7d7b38

HTTP Headers

GET /revcontent/image/fetch/f_jpg,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/15736069540225496270.jpg HTTP/1.1
Host: images.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:05 GMT
content-length: 10129
content-type: image/jpeg
last-modified: Sat, 11 Feb 2023 15:43:18 GMT
accept-ranges: bytes
etag: "f7a69f8a5670dc67b6a8e62c1b67bba4"
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=604800
server-timing: cld-fastly;mitm=po;dur=2;cpu=1;start=2023-04-24T20:00:43.620Z;desc=hit,rtt;dur=0
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
vary: Save-Data
x-hw: 1682424005.cds227.sk1.hn,1682424005.cds206.sk1.c
X-Firefox-Spdy: h2

downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/layout-2.css

54.230.167.125

200 OK

460 B

URL GET HTTP/1.1
downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/layout-2.css
IP
54.230.167.125:443
ASN
#16509 AMAZON-02

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerAmazon
Subjectdownloads.mailchimp.com
Fingerprint71:CA:F4:D1:5C:6A:B9:FA:41:B9:63:28:DB:BB:2F:BE:05:00:31:46
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 03 Aug 2023 23:59:59 GMT

File type
ASCII text
Size
460 B (460 bytes)
Hash
633c2f860627c0a8e753366c8cd0865e
e2cff56f5dca706222c9a9ad635d45182fae26a7
2d8e9d6c61910f38ca95a5d4c653f047e0f121cf1375ce95bfd70dc34c7b43f6

HTTP Headers

GET /css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/layout-2.css HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 25 Apr 2023 07:53:38 GMT
ETag: W/"38f50a83c6d5d15facb231447fa1ac56"
X-Cache: Hit from cloudfront
Via: 1.1 abe59040fa8834eedf4f2935b5097176.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ICN51-C2
X-Amz-Cf-Id: L88d1_HaXmSJN3Mza1wCdCsguV7SppdaJzWMTK1fSKrTv6W2HwIb7w==
Age: 14802
Vary: Accept-Encoding, Origin

yeet.revcontent.com/yeet/events/widget-loaded

34.242.11.224

204 No Content

0 B

URL POST HTTP/2
yeet.revcontent.com/yeet/events/widget-loaded
IP
34.242.11.224:443
ASN
#16509 AMAZON-02

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerAmazon
Subjectrevcontent.com
FingerprintA0:6E:37:23:50:3A:D0:1D:9E:B5:2B:F6:82:2C:A7:A2:32:C1:C7:F2
ValidityTue, 14 Feb 2023 00:00:00 GMT - Sun, 16 Jul 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /yeet/events/widget-loaded HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vtforeignpolicy.com/
Content-Type: application/json
Content-Length: 205
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Tue, 25 Apr 2023 12:00:05 GMT
server: envoy
x-rc-region: eu-west-1c
access-control-allow-origin: *
vary: Origin
x-envoy-upstream-service-time: 12
X-Firefox-Spdy: h2

yeet.revcontent.com/yeet/events/page-view

34.242.11.224

204 No Content

0 B

URL POST HTTP/2
yeet.revcontent.com/yeet/events/page-view
IP
34.242.11.224:443
ASN
#16509 AMAZON-02

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerAmazon
Subjectrevcontent.com
FingerprintA0:6E:37:23:50:3A:D0:1D:9E:B5:2B:F6:82:2C:A7:A2:32:C1:C7:F2
ValidityTue, 14 Feb 2023 00:00:00 GMT - Sun, 16 Jul 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /yeet/events/page-view HTTP/1.1
Host: yeet.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vtforeignpolicy.com/
Content-Type: application/json
Content-Length: 161
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
date: Tue, 25 Apr 2023 12:00:05 GMT
server: envoy
x-rc-region: eu-west-1c
access-control-allow-origin: *
vary: Origin
x-envoy-upstream-service-time: 24
X-Firefox-Spdy: h2

downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/modal.css

54.230.167.125

200 OK

945 B

URL GET HTTP/1.1
downloads.mailchimp.com/css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/modal.css
IP
54.230.167.125:443
ASN
#16509 AMAZON-02

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerAmazon
Subjectdownloads.mailchimp.com
Fingerprint71:CA:F4:D1:5C:6A:B9:FA:41:B9:63:28:DB:BB:2F:BE:05:00:31:46
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 03 Aug 2023 23:59:59 GMT

File type
ASCII text
Size
945 B (945 bytes)
Hash
cff4710f863e85980b11cdc1a67e45e5
272b6b68af6d70bd7e1b69b251ac5821cf3daa25
8a3b8e717762c3e251de403a2f6b06da68e2fce957e10474b0a75c1f610799c3

HTTP Headers

GET /css/signup-forms/popup/73bf20a8fe762dee6abd0173cd576e53d748a0df/modal.css HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Tue, 25 Apr 2023 05:27:18 GMT
ETag: W/"aa6f4416185bd7f299dd89e11dac117f"
X-Cache: Hit from cloudfront
Via: 1.1 1a4e2cd39df08b5d01e107174cad1030.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ICN51-C2
X-Amz-Cf-Id: MVVSRnfkDskbWoFpTMflk7hyWf9_y6sV8sPgG2PgZQCH-mYCOS-bpw==
Age: 23568
Vary: Accept-Encoding, Origin

www.googletagmanager.com/a?v=3&t=l&pid=238162020&rv=34j0&cid=104913210&l=104913210.TC0.HTC0~*~*~GA559.603&qi=0

142.250.74.168

200 OK

0 B

URL GET HTTP/3
www.googletagmanager.com/a?v=3&t=l&pid=238162020&rv=34j0&cid=104913210&l=104913210.TC0.HTC0~*~*~GA559.603&qi=0
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint07:22:19:79:30:9E:4C:35:4E:21:BD:55:7D:44:2F:A9:71:9E:4C:AA
ValidityMon, 03 Apr 2023 08:16:11 GMT - Mon, 26 Jun 2023 08:16:10 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /a?v=3&t=l&pid=238162020&rv=34j0&cid=104913210&l=104913210.TC0.HTC0~*~*~GA559.603&qi=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.googletagmanager.com
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 25 Apr 2023 12:00:05 GMT
content-type: text/html
server: Google Tag Manager
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/a?v=3&t=l&pid=1253376861&rv=34j0&cid=G-91CV04FW8L&l=G-91CV04FW8L.L1937.S10.Y53.E4762.TC15.HTC0~gtm.init.S1.E116.TS5ogt1pdatav2.TE5.TS5ccdgalast.TE1.TS5ccdconversionmarking.TE1.TS5ccdemvideo.TE1.TS5ccdemsitesearch.TE3.TS5ccdemscroll.TE1.TS5ccdempageview.TE1.TS5ccdemoutboundclick.TE1.TS5ccdemform.TE1.TS5ccdemdownload.TE1.TS5ccdgaregscope.TE2.TS5ogtgooglesignals.TE1.TS5setproductsettings.TE1.TS5ccdgafirst.TE0~gtm.js.S0.E90.TS5gct.TE1~gtm.scrollDepth.S0.E29~gtm.dom.S1.E405~gtm.load.S1.E1~gtm.init_consent.S0.E66&qi=0

142.250.74.168

200 OK

0 B

URL GET HTTP/3
www.googletagmanager.com/a?v=3&t=l&pid=1253376861&rv=34j0&cid=G-91CV04FW8L&l=G-91CV04FW8L.L1937.S10.Y53.E4762.TC15.HTC0~gtm.init.S1.E116.TS5ogt1pdatav2.TE5.TS5ccdgalast.TE1.TS5ccdconversionmarking.TE1.TS5ccdemvideo.TE1.TS5ccdemsitesearch.TE3.TS5ccdemscroll.TE1.TS5ccdempageview.TE1.TS5ccdemoutboundclick.TE1.TS5ccdemform.TE1.TS5ccdemdownload.TE1.TS5ccdgaregscope.TE2.TS5ogtgooglesignals.TE1.TS5setproductsettings.TE1.TS5ccdgafirst.TE0~gtm.js.S0.E90.TS5gct.TE1~gtm.scrollDepth.S0.E29~gtm.dom.S1.E405~gtm.load.S1.E1~gtm.init_consent.S0.E66&qi=0
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint07:22:19:79:30:9E:4C:35:4E:21:BD:55:7D:44:2F:A9:71:9E:4C:AA
ValidityMon, 03 Apr 2023 08:16:11 GMT - Mon, 26 Jun 2023 08:16:10 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /a?v=3&t=l&pid=1253376861&rv=34j0&cid=G-91CV04FW8L&l=G-91CV04FW8L.L1937.S10.Y53.E4762.TC15.HTC0~gtm.init.S1.E116.TS5ogt1pdatav2.TE5.TS5ccdgalast.TE1.TS5ccdconversionmarking.TE1.TS5ccdemvideo.TE1.TS5ccdemsitesearch.TE3.TS5ccdemscroll.TE1.TS5ccdempageview.TE1.TS5ccdemoutboundclick.TE1.TS5ccdemform.TE1.TS5ccdemdownload.TE1.TS5ccdgaregscope.TE2.TS5ogtgooglesignals.TE1.TS5setproductsettings.TE1.TS5ccdgafirst.TE0~gtm.js.S0.E90.TS5gct.TE1~gtm.scrollDepth.S0.E29~gtm.dom.S1.E405~gtm.load.S1.E1~gtm.init_consent.S0.E66&qi=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.googletagmanager.com
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 25 Apr 2023 12:00:05 GMT
content-type: text/html
server: Google Tag Manager
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCUEV0d2dRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--0f05329a56a9a8cf928f219e94062bd303795251/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/dankof2.jpg

104.19.160.48

302 Found

359 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCUEV0d2dRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--0f05329a56a9a8cf928f219e94062bd303795251/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/dankof2.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type

Size
359 kB (358661 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCUEV0d2dRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--0f05329a56a9a8cf928f219e94062bd303795251/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/dankof2.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/bdgil2hc56u1ogjj94twuqyxmss7/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: 76f05242-7f57-4472-bf26-1954e3d80b7e
x-runtime: 0.087538
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60cd331c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/8cr696hjnciympo7wjxh8ub0sz9v/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

148 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/8cr696hjnciympo7wjxh8ub0sz9v/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
148 kB (147867 bytes)
Hash
82ea2e2cdb7aeced79020ba532689b8d
988ca9ef2c37c9db9368e3a535eb6db3378bfe32
19edca6640ddd39da02f8e551f75557ed8a98828119b14038f692f5eda52b7d6

HTTP Headers

GET /variants/8cr696hjnciympo7wjxh8ub0sz9v/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 147867
cf-bgj: h2pri
etag: "82ea2e2cdb7aeced79020ba532689b8d"
last-modified: Wed, 11 Jan 2023 04:43:58 GMT
via: 1.1 fb71d06ef6b006f750bfcf682863ded0.cloudfront.net (CloudFront)
x-amz-cf-id: 3Bje-a-JwX1WcuHXElxl_3YSKkxELZukDgY5DIvauqi-qhFl7eHBUg==
x-amz-cf-pop: ARN56-P1
x-cache: Hit from cloudfront
x-amz-version-id: mHaGIlSibDzrKqPXD3jgzFEDuniEsocY
cf-cache-status: HIT
age: 1149
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c65ab291c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/xum3ujywtjugk4iu8wayz8be3yf8/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

248 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/xum3ujywtjugk4iu8wayz8be3yf8/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
248 kB (247839 bytes)
Hash
ee3699f5447166145f2262c269fb1840
585a9d3f82cb1eaee13496f1ae87e975fdfd5d38
8c7a8630e2f9f86541fe2b46023f0937b0c1f8afb533df43db9b90044a1506e0

HTTP Headers

GET /variants/xum3ujywtjugk4iu8wayz8be3yf8/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 247839
cf-bgj: h2pri
etag: "ee3699f5447166145f2262c269fb1840"
last-modified: Tue, 28 Mar 2023 13:59:15 GMT
via: 1.1 5a96272b81254403ef5ef083d36ce62a.cloudfront.net (CloudFront)
x-amz-cf-id: As2AR6-vH4yg351TnU5_UXiZYSGN6KGbrqZXBcXAXSOM1Gz5aiPxig==
x-amz-cf-pop: ARN54-C1
x-cache: Miss from cloudfront
x-amz-server-side-encryption: AES256
x-amz-version-id: NCv2pnGHQ5iwvejTgGvn1Akp6nOlBtos
cf-cache-status: HIT
age: 1149
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c64297a1c02-OSL
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCREU2bHdRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--499e96fdf3b8777bd493d78c67cb8bc36726344e/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/world-gone-mad3.jpg

104.19.160.48

302 Found

189 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCREU2bHdRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--499e96fdf3b8777bd493d78c67cb8bc36726344e/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/world-gone-mad3.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type

Size
189 kB (188569 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCREU2bHdRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--499e96fdf3b8777bd493d78c67cb8bc36726344e/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/world-gone-mad3.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/x8xeqnceo2d81u5ajqpfgc1pyt3x/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: 8e0f6161-d34d-4125-8ab8-a63fb01874f1
x-runtime: 0.094166
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60fd751c02-OSL
X-Firefox-Spdy: h2

www.vtforeignpolicy.com/wp-content/uploads/2023/01/putin2-324x235.png

208.109.36.109

200 OK

122 kB

URL GET HTTP/2
www.vtforeignpolicy.com/wp-content/uploads/2023/01/putin2-324x235.png
IP
208.109.36.109:443
ASN
#398101 GO-DADDY-COM-LLC

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectmail.vtforeignpolicy.com
FingerprintBE:B3:C1:FA:76:99:90:E3:9E:8C:F5:A8:5D:42:0F:A9:BF:AB:AF:62
ValiditySat, 11 Mar 2023 05:08:41 GMT - Fri, 09 Jun 2023 05:08:40 GMT

File type
PNG image data, 324 x 235, 8-bit/color RGBA, non-interlaced\012- data
Size
122 kB (122413 bytes)
Hash
7b96a3033503f9e0bf019be238ae1fac
252c9bfe5a63d42ef691d410053b6f8e2c33155f
8ff8613b4bc03deeb1a7e79cccc4d042dfa93cc10ffa5e8bee836137eb44fb58

HTTP Headers

GET /wp-content/uploads/2023/01/putin2-324x235.png HTTP/1.1
Host: www.vtforeignpolicy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sat, 25 Mar 2023 13:03:55 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 25 May 2023 12:00:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: image/png
date: Tue, 25 Apr 2023 12:00:00 GMT
server: Apache
X-Firefox-Spdy: h2

cse.google.com/adsense/search/async-ads.js

142.250.74.174

200 OK

144 kB

URL GET HTTP/3
cse.google.com/adsense/search/async-ads.js
IP
142.250.74.174:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintD5:3A:80:A6:03:B0:E4:36:0E:46:7B:36:45:CB:50:4C:D6:98:CE:59
ValidityMon, 03 Apr 2023 08:17:58 GMT - Mon, 26 Jun 2023 08:17:57 GMT

File type
ASCII text, with very long lines (2193)
Size
144 kB (143964 bytes)
Hash
9d0a29d8f534ac71a027b21d1cfd223e
e29d69f6838feace87b4b29b5ed3932f75aa2394
3b6485b37c8ac640f38c0629770e188839bd18e46f0b11466974ee275d6204bb

HTTP Headers

GET /adsense/search/async-ads.js HTTP/1.1
Host: cse.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: cse.google.com
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Tue, 25 Apr 2023 12:00:04 GMT
expires: Tue, 25 Apr 2023 12:00:04 GMT
cache-control: private, max-age=3600
etag: "15811610874120592868"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

images.revcontent.com/revcontent/image/fetch/f_jpg,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/6446919f508ed0-40433382.jpg

151.139.128.10

200 OK

8.2 kB

URL GET HTTP/2
images.revcontent.com/revcontent/image/fetch/f_jpg,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/6446919f508ed0-40433382.jpg
IP
151.139.128.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectimages.revcontent.com
Fingerprint6B:C8:32:9B:50:A4:10:87:39:B6:C2:60:0E:F7:2F:B8:91:92:94:5C
ValidityMon, 06 Mar 2023 16:36:02 GMT - Sun, 04 Jun 2023 16:36:01 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 225x150, components 3\012- data
Size
8.2 kB (8223 bytes)
Hash
350edc17ef61be0f3cc5d36bea6f6d5f
b31fbc0ec0ed3fd45b14873c8220c283026148fd
13b1c13b9c8971aa4f0deb29e9432cbd9a2870bae378a25c5650082e7ef0ab88

HTTP Headers

GET /revcontent/image/fetch/f_jpg,q_auto,h_150,w_225,c_fill,g_face:auto/pg_1/https://media.revcontent.com/content/images/6446919f508ed0-40433382.jpg HTTP/1.1
Host: images.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:05 GMT
content-length: 8223
content-type: image/jpeg
last-modified: Mon, 24 Apr 2023 15:14:12 GMT
accept-ranges: bytes
etag: "350edc17ef61be0f3cc5d36bea6f6d5f"
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=604800
server-timing: cld-fastly;mitm=po;dur=113;cpu=0;start=2023-04-24T15:18:06.877Z;desc=miss,rtt;dur=1,cloudinary;dur=16;start=2023-04-24T15:18:06.924Z
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
vary: Save-Data
x-hw: 1682424005.cds227.sk1.hn,1682424005.cds220.sk1.c
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRUlWMkFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--be85d4b0bdac0b9d3bb3eb02d5027cbe5a61fff3/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/raising-israhell-vt-radio-cover4.jpg

104.19.160.48

302 Found

248 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRUlWMkFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--be85d4b0bdac0b9d3bb3eb02d5027cbe5a61fff3/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/raising-israhell-vt-radio-cover4.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type

Size
248 kB (247839 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRUlWMkFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--be85d4b0bdac0b9d3bb3eb02d5027cbe5a61fff3/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/raising-israhell-vt-radio-cover4.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/xum3ujywtjugk4iu8wayz8be3yf8/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: e5f30559-dd9f-4700-95ef-22b4581f7ae0
x-runtime: 0.099616
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60cd2e1c02-OSL
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCQ205dndRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--b87ed53f3902191d0eb25733275359caa07a893f/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/Fitz-Gould-secrets-cover2.jpg

104.19.160.48

302 Found

422 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCQ205dndRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--b87ed53f3902191d0eb25733275359caa07a893f/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/Fitz-Gould-secrets-cover2.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type

Size
422 kB (421838 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCQ205dndRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--b87ed53f3902191d0eb25733275359caa07a893f/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/Fitz-Gould-secrets-cover2.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/kek2t0xep48xkmkiexzpqgu5852e/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: 93713c27-942e-4bb4-9ca4-459fb91f2ffa
x-runtime: 0.031620
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60cd341c02-OSL
X-Firefox-Spdy: h2

www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large

104.19.160.48

200 OK

350 kB

URL GET HTTP/2
www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type

Size
350 kB (350356 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
etag: W/"31deae1ea2473f3358d7e0072b6ba6b4"
cache-control: max-age=0, private, must-revalidate
x-request-id: 9dfa22e6-7d3a-4bd9-a25e-744c005e81e5
x-runtime: 0.467567
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c5c0e691c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/3esky12merjxg8lroh0u180l3i2f/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

306 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/3esky12merjxg8lroh0u180l3i2f/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
306 kB (305925 bytes)
Hash
2632a1e44ca05b7ef6c507f1a06169bc
3e6cf7df7dbb233e5237723080bfa349a91dc3ae
01b82f9c7c73a41a93e5b1ac228f9ddf45f8891041dd974149316f7b136df191

HTTP Headers

GET /variants/3esky12merjxg8lroh0u180l3i2f/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 305925
cf-bgj: h2pri
etag: "2632a1e44ca05b7ef6c507f1a06169bc"
last-modified: Mon, 27 Feb 2023 13:58:36 GMT
via: 1.1 e6df4fdec76c527da827cfa84260c772.cloudfront.net (CloudFront)
x-amz-cf-id: iOybEZdLmI4IfddUYorDtRPwXLhlu4WQcKK-CFugiH3QsYxnF5Q4Vw==
x-amz-cf-pop: ARN54-C1
x-cache: Hit from cloudfront
x-amz-server-side-encryption: AES256
x-amz-version-id: hgDnPA8BRGKwBD0gJLCE0lUVtF1yNl85
cf-cache-status: HIT
age: 3375
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c6429741c02-OSL
X-Firefox-Spdy: h2

assets.buzzsprout.com/assets/players/wave-player-145cf7a17c6f7c0b7dd1fd47bb85af41a0be45a66ad9e3d962d879831553e793.css

104.19.160.48

200 OK

25 kB

URL GET HTTP/2
assets.buzzsprout.com/assets/players/wave-player-145cf7a17c6f7c0b7dd1fd47bb85af41a0be45a66ad9e3d962d879831553e793.css
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type

Size
25 kB (25089 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/players/wave-player-145cf7a17c6f7c0b7dd1fd47bb85af41a0be45a66ad9e3d962d879831553e793.css HTTP/1.1
Host: assets.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/css
last-modified: Fri, 17 Feb 2023 14:36:27 GMT
vary: Accept-Encoding
expires: Sat, 17 Feb 2024 14:39:07 GMT
cache-control: max-age=31536000, public
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 5779218
server: cloudflare
cf-ray: 7bd66c60cd291c02-OSL
X-Firefox-Spdy: h2

trends.revcontent.com/api/demand/?w=276132

0.0.0.0

0 B

URL GET
trends.revcontent.com/api/demand/?w=276132
IP
0.0.0.0:0
ASN
#0

Requested by
https://www.vtforeignpolicy.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /api/demand/?w=276132 HTTP/1.1
Host: trends.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vtforeignpolicy.com/
Origin: https://www.vtforeignpolicy.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

storage.buzzsprout.com/variants/qfc8xz6qohrcg8bxalabmaigb0xl/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

354 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/qfc8xz6qohrcg8bxalabmaigb0xl/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
354 kB (353783 bytes)
Hash
eee54b6fffa62952ffbe5de5486b6633
f244714707a59db2cbe13b98e51ee76b09f810ba
7e8cbafed595f8eac968dd8c352c25172e8fc6e8c7ca50aaec135b1d259a5b55

HTTP Headers

GET /variants/qfc8xz6qohrcg8bxalabmaigb0xl/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 353783
cf-bgj: h2pri
etag: "eee54b6fffa62952ffbe5de5486b6633"
last-modified: Fri, 06 Jan 2023 04:05:47 GMT
via: 1.1 e3d7e26a5df51c85de01773b18b95a58.cloudfront.net (CloudFront)
x-amz-cf-id: YgbITTUzCPYeGeJvOCc_gLgBgHZYhi1kGH2ONQ3V-lM7eJCpw7pBmA==
x-amz-cf-pop: HEL51-P1
x-cache: Hit from cloudfront
x-amz-version-id: zAlVYnYhu0w13EJbD2oMaULGNYKeJ818
cf-cache-status: HIT
age: 3375
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c6489f71c02-OSL
X-Firefox-Spdy: h2

downloads.mailchimp.com/js/signup-forms/popup/unique-methods/73bf20a8fe762dee6abd0173cd576e53d748a0df/popup.js

54.230.167.125

200 OK

104 kB

URL GET HTTP/1.1
downloads.mailchimp.com/js/signup-forms/popup/unique-methods/73bf20a8fe762dee6abd0173cd576e53d748a0df/popup.js
IP
54.230.167.125:443
ASN
#16509 AMAZON-02

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerAmazon
Subjectdownloads.mailchimp.com
Fingerprint71:CA:F4:D1:5C:6A:B9:FA:41:B9:63:28:DB:BB:2F:BE:05:00:31:46
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 03 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65526)
Size
104 kB (104181 bytes)
Hash
d3149280c831cbf6538770c71a916f43
e72b88e8691c7fde33671cd95670f5378a7877ce
b0755de9edee41abdef304a877ee3174f92c3429feaf7c06437822970addbb4f

HTTP Headers

GET /js/signup-forms/popup/unique-methods/73bf20a8fe762dee6abd0173cd576e53d748a0df/popup.js HTTP/1.1
Host: downloads.mailchimp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Sep 2022 15:39:29 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Mon, 24 Apr 2023 19:18:51 GMT
ETag: W/"d3149280c831cbf6538770c71a916f43"
X-Cache: Hit from cloudfront
Via: 1.1 abe59040fa8834eedf4f2935b5097176.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ICN51-C2
X-Amz-Cf-Id: aAEtP8LTpdkZXKGn8SdVrI-GNf7-6wM9A-OiybhiO3DCh4hdNlP6_w==
Age: 60144
Vary: Accept-Encoding, Origin

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCSzdjclFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--745c1c5f1d340e095de394709ff4cc6fe2479e3c/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cover2.jpg

104.19.160.48

302 Found

236 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCSzdjclFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--745c1c5f1d340e095de394709ff4cc6fe2479e3c/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cover2.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type

Size
236 kB (236366 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCSzdjclFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--745c1c5f1d340e095de394709ff4cc6fe2479e3c/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cover2.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/mboo7oazhq8z6500uf5fj74cpxhn/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: a5eb23fa-c13b-4033-9c60-91119964dac8
x-runtime: 0.299398
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60dd601c02-OSL
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/x8xeqnceo2d81u5ajqpfgc1pyt3x/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

189 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/x8xeqnceo2d81u5ajqpfgc1pyt3x/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
189 kB (188569 bytes)
Hash
61ec46eb31d716bcffc41782ebb21019
3724a6c7c343366f6fd116a323c87932938b2e91
e381cf5a7bf3aa3d962b9eac71d97f3ee213bffc83497392eb62cb1b5470278c

HTTP Headers

GET /variants/x8xeqnceo2d81u5ajqpfgc1pyt3x/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 188569
cf-bgj: h2pri
etag: "61ec46eb31d716bcffc41782ebb21019"
last-modified: Tue, 21 Feb 2023 08:17:28 GMT
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-id: PbA_6JhbX-IYOYKOVQOoUNzGIkKtT8mk9cykU77X5PSJozCREXFRbA==
x-amz-cf-pop: OSL50-P1
x-cache: Hit from cloudfront
x-amz-version-id: U467UfOUVM5QsKdlLVXj6E1rFnGUzjVD
cf-cache-status: HIT
age: 1149
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c6439a51c02-OSL
X-Firefox-Spdy: h2

www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large

104.19.160.48

200 OK

754 B

URL GET HTTP/2
www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
ASCII text, with very long lines (807), with no line terminators
Size
754 B (754 bytes)
Hash
698ba124da6cb88be7f9d6c080bb5074
4b7590fb84a6a68f0308f6e7521348e8987936c2
ee001bdc6f4bc866270e4f2ad12634358fb189830deaddf256952b8d36b819a8

HTTP Headers

GET /2071926.js?container_id=buzzsprout-large-player&player=large HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:00 GMT
content-type: text/javascript; charset=utf-8
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
vary: Accept, Origin, Accept-Encoding
etag: W/"fd859fc036ad626d55688b03a068c489"
cache-control: max-age=0, private, must-revalidate
x-request-id: 2626ae55-1b19-44e8-824c-4b73848d079e
x-runtime: 0.007598
strict-transport-security: max-age=63072000; includeSubDomains
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c53ba041c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCS25hckFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--c73c67d2557a059e184cf937f62eaea03079b68b/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cover2.jpg

104.19.160.48

302 Found

313 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCS25hckFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--c73c67d2557a059e184cf937f62eaea03079b68b/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cover2.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type

Size
313 kB (313328 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCS25hckFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--c73c67d2557a059e184cf937f62eaea03079b68b/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cover2.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/darysyu2bkmfalamzrln4vsr89gd/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: 3b07b645-5175-4341-bfcf-c9495a298ab3
x-runtime: 0.108355
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60dd611c02-OSL
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTWNRU1FRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--7fc0b12547f74af70479187a5dfa801206c7ec74/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cover-square.jpg

104.19.160.48

302 Found

148 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTWNRU1FRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--7fc0b12547f74af70479187a5dfa801206c7ec74/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cover-square.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type

Size
148 kB (147867 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTWNRU1FRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--7fc0b12547f74af70479187a5dfa801206c7ec74/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cover-square.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/8cr696hjnciympo7wjxh8ub0sz9v/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: 640fb8f2-1a71-48f2-993b-9fd9cf35fab3
x-runtime: 0.094720
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c610da01c02-OSL
X-Firefox-Spdy: h2

clientcdn.pushengage.com/core/b89bd485-5008-47f6-beef-247aa772373c.js

194.242.11.186

200 OK

124 kB

URL GET HTTP/2
clientcdn.pushengage.com/core/b89bd485-5008-47f6-beef-247aa772373c.js
IP
194.242.11.186:443
ASN
#34989 ServeTheWorld AS

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGlobalSign nv-sa
Subject*.pushengage.com
Fingerprint7F:1E:9A:71:F9:B7:D2:C4:1F:0A:76:D1:3E:FA:40:CD:9B:B1:B6:E9
ValidityTue, 07 Feb 2023 12:07:28 GMT - Sun, 10 Mar 2024 12:07:27 GMT

File type
ASCII text, with very long lines (21477)
Size
124 kB (123968 bytes)
Hash
c7f59ec6b92b77bc24611c2f123e4474
9a0b6d4f9ff2064cb525b5b078b233e0adddbed6
e6ebd4b22d7adc588baa32d4a47b5a4b83331f3a119c54a1eb600a007a481e05

HTTP Headers

GET /core/b89bd485-5008-47f6-beef-247aa772373c.js HTTP/1.1
Host: clientcdn.pushengage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:00 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 1148540
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=180
content-encoding: br
cdn-cachedat: 04/25/2023 11:45:23
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 148a373637620c83b5b081273c1d8713
cdn-cache: STALE
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans%3A400%2C600%2C700%2C300%7CRoboto%3A400%2C500%2C700%2C300&display=swap&ver=12.3.1

142.250.74.106

200 OK

21 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans%3A400%2C600%2C700%2C300%7CRoboto%3A400%2C500%2C700%2C300&display=swap&ver=12.3.1
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:8B:BB:40:DD:1D:5B:E9:7B:AA:CC:94:45:44:7F:FD:56:6E:E4:60
ValidityMon, 03 Apr 2023 08:24:24 GMT - Mon, 26 Jun 2023 08:24:23 GMT

File type
ASCII text
Size
21 kB (21212 bytes)
Hash
05a7d428b7d8d1f6454aefd704068f1c
17b2ef304532207f40e0a5054d2790cf4ab15366
4fb8dcb743bfbe4d782eeebc1fed296e261864b549b967b9b683055ef21fdc8a

HTTP Headers

GET /css?family=Open+Sans%3A400%2C600%2C700%2C300%7CRoboto%3A400%2C500%2C700%2C300&display=swap&ver=12.3.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 25 Apr 2023 12:00:00 GMT
date: Tue, 25 Apr 2023 12:00:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRXYwYWdRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--67f86c0ee07a687b2232d0344a822c5f9e726805/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/ME-Jadallah-square.jpg

104.19.160.48

302 Found

278 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRXYwYWdRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--67f86c0ee07a687b2232d0344a822c5f9e726805/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/ME-Jadallah-square.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type

Size
278 kB (277766 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRXYwYWdRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--67f86c0ee07a687b2232d0344a822c5f9e726805/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/ME-Jadallah-square.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/p5ei6jyb4g7ct128p1nrqfcufyyp/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: a9436214-f99c-4d88-b005-3d322ef912a9
x-runtime: 0.050659
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60fd881c02-OSL
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Open+Sans:wght@400;700&family=Roboto:wght@400;500&display=swap

142.250.74.106

200 OK

11 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Open+Sans:wght@400;700&family=Roboto:wght@400;500&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:8B:BB:40:DD:1D:5B:E9:7B:AA:CC:94:45:44:7F:FD:56:6E:E4:60
ValidityMon, 03 Apr 2023 08:24:24 GMT - Mon, 26 Jun 2023 08:24:23 GMT

File type
ASCII text
Size
11 kB (10592 bytes)
Hash
fcc9ca80eaac8797c6158bb413cee823
0af60fabd97491ad375e87aab1ec07c2277bc0c5
301cc165c2bbc13d9e59bbe525dea52c7b7755fd55e7f1f5e2d886b730f476e5

HTTP Headers

GET /css2?family=Open+Sans:wght@400;700&family=Roboto:wght@400;500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: fonts.googleapis.com
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 25 Apr 2023 12:00:04 GMT
date: Tue, 25 Apr 2023 12:00:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

assets.buzzsprout.com/assets/public_players/listen_on_small-139e5a87d26ada60e09928ccf2e031e000f0c47bdf55dd912c55162b9201d7ee.svg

104.19.160.48

200 OK

160 kB

URL GET HTTP/2
assets.buzzsprout.com/assets/public_players/listen_on_small-139e5a87d26ada60e09928ccf2e031e000f0c47bdf55dd912c55162b9201d7ee.svg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (40435)
Size
160 kB (159476 bytes)
Hash
29a8d0b9a07b806aa122179d0f4f35b1
d9fb45c68eed0f857743e0fc7332919e69ed5a66
bd80f3340729a475f3e27c9cf61abda825b92eeb44e6b65d215c146b3bc673e9

HTTP Headers

GET /assets/public_players/listen_on_small-139e5a87d26ada60e09928ccf2e031e000f0c47bdf55dd912c55162b9201d7ee.svg HTTP/1.1
Host: assets.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets.buzzsprout.com/assets/players/wave-player-145cf7a17c6f7c0b7dd1fd47bb85af41a0be45a66ad9e3d962d879831553e793.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: max-age=31536000, public
expires: Tue, 26 Sep 2023 18:46:54 GMT
last-modified: Mon, 26 Sep 2022 18:40:55 GMT
cf-cache-status: HIT
age: 18205988
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c629fad1c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/d6/e8/37/d6e83777d7311d26f1ac5b2b62a81218/1588233535.jpg

45.133.44.9

200 OK

28 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/d6/e8/37/d6e83777d7311d26f1ac5b2b62a81218/1588233535.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint6F:9C:41:9B:BA:6A:17:A2:42:F8:28:FF:ED:09:F8:26:12:F1:4C:7B
ValidityThu, 30 Mar 2023 06:08:09 GMT - Wed, 28 Jun 2023 06:08:08 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Size
28 kB (27832 bytes)
Hash
1dcde64d47d24d151a1433ecf4403dd7
443d6704b5a294e000084d7a8ac823e526093928
d11bcd65a82589c2c31d6fd87cb16ec673dd5640462ad3d20ff53e014a435376

HTTP Headers

GET /cti/d6/e8/37/d6e83777d7311d26f1ac5b2b62a81218/1588233535.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 27832
server: nginx/1.17.6
last-modified: Thu, 30 Apr 2020 07:58:58 GMT
etag: "5eaa8542-6cb8"
expires: Thu, 27 Apr 2023 12:00:03 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.google.com/cse/static/css/v2/clear.png

216.58.207.228

200 OK

1.0 kB

URL GET HTTP/3
www.google.com/cse/static/css/v2/clear.png
IP
216.58.207.228:443
ASN
#15169 GOOGLE

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintD5:3A:80:A6:03:B0:E4:36:0E:46:7B:36:45:CB:50:4C:D6:98:CE:59
ValidityMon, 03 Apr 2023 08:17:58 GMT - Mon, 26 Jun 2023 08:17:57 GMT

File type
PNG image data, 10 x 10, 8-bit/color RGBA, non-interlaced\012- data
Size
1.0 kB (1018 bytes)
Hash
2df778bf2e22d52fe849babb330ec977
0f833f030bb43f282473bddd3a33b5f8cba7a845
329d1a750114920332eadc55c129957d9dbe5a1b25745e2f7e0ed4fad75e04cd

HTTP Headers

GET /cse/static/css/v2/clear.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: https://www.google.com/cse/static/element/a9408e9443edd8dc/default+no.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 1018
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Apr 2023 18:06:16 GMT
expires: Sun, 21 Apr 2024 18:06:16 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 25 May 2020 08:30:00 GMT
content-type: image/png
age: 237228
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

storage.buzzsprout.com/variants/c5q67adpchgjtc4y3f1bnt2p7j36/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

422 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/c5q67adpchgjtc4y3f1bnt2p7j36/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
422 kB (422301 bytes)
Hash
976598790746b45b7d81b1017ce530cc
38197bd5a0be43592b1161931f8a0970539125f7
c30cd9ccacc289685ce3fbfa73b8aeea2f996ef02ba3dfa3b1f48281b33332b5

HTTP Headers

GET /variants/c5q67adpchgjtc4y3f1bnt2p7j36/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 422301
cf-bgj: h2pri
etag: "976598790746b45b7d81b1017ce530cc"
last-modified: Tue, 10 Jan 2023 12:33:27 GMT
via: 1.1 40e20db187b9959d3846f32db35de9bc.cloudfront.net (CloudFront)
x-amz-cf-id: 3oUy_tSyyYqrIyfeJWL3jcu2fDGxvkky-bpjBZGrtUAq-XqumTu6PA==
x-amz-cf-pop: CPH50-P1
x-cache: Hit from cloudfront
x-amz-version-id: FOxfR_RyD2ym8.okxWkWf8bRDfOpluHz
cf-cache-status: HIT
age: 3375
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c6469ea1c02-OSL
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRGYxVVFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--7da5ffa3137191887b604fbfea27387d43fdf3f7/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/retire-mexico-kristina-square.jpg

104.19.160.48

302 Found

265 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRGYxVVFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--7da5ffa3137191887b604fbfea27387d43fdf3f7/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/retire-mexico-kristina-square.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type

Size
265 kB (264718 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRGYxVVFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--7da5ffa3137191887b604fbfea27387d43fdf3f7/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/retire-mexico-kristina-square.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/5qb2h0il101mwjuo5wlgkce8inzk/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: e9bf3d90-6fcf-4a30-9ec1-69f5dec2a385
x-runtime: 0.118907
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60fd941c02-OSL
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCSnFRUndRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--761131af9bda9f5fce0d2604dc9e2344cab37112/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cover-square.jpg

104.19.160.48

302 Found

422 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCSnFRUndRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--761131af9bda9f5fce0d2604dc9e2344cab37112/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cover-square.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type

Size
422 kB (422301 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCSnFRUndRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--761131af9bda9f5fce0d2604dc9e2344cab37112/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cover-square.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/c5q67adpchgjtc4y3f1bnt2p7j36/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: a4624c96-44c2-4073-a780-5346a24bcb1a
x-runtime: 0.089273
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c610da11c02-OSL
X-Firefox-Spdy: h2

assets.revcontent.com/master/defaultWidget.delivery.js

151.139.128.10

200 OK

17 kB

URL GET HTTP/2
assets.revcontent.com/master/defaultWidget.delivery.js
IP
151.139.128.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectassets.revcontent.com
FingerprintAB:F6:FA:3D:1C:7E:BB:99:59:47:3B:E4:37:AB:C3:7F:53:4A:7E:2A
ValidityMon, 13 Mar 2023 00:05:46 GMT - Sun, 11 Jun 2023 00:05:45 GMT

File type
ASCII text, with very long lines (17265)
Size
17 kB (17342 bytes)
Hash
961eb543d63c9297b50208eb1dc0446e
da05c6360f73d57f1c057699307dce9d21c86f96
2957d29abe3bf43009e02990a5aa7687f3fb6067a61e2bd70ff67cccda16eb7c

HTTP Headers

GET /master/defaultWidget.delivery.js HTTP/1.1
Host: assets.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:04 GMT
content-encoding: gzip
content-length: 6241
content-type: application/x-javascript
last-modified: Mon, 24 Apr 2023 20:14:05 GMT
accept-ranges: bytes
x-amz-id-2: c7nd9d/XktjhRqGdAr0VDIQ/coV5i/hCK2Hm38LzkfNco5LMSE48wZrFok5zLVYmdeXqRPxPdBg=
x-amz-request-id: 9MXQ0GZ45CSQS9Y8
etag: "961eb543d63c9297b50208eb1dc0446e"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=600
server: AmazonS3
x-hw: 1682424004.cds262.sk1.hn,1682424004.cds228.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/5e/78/a9/5e78a94057ff65f06ec19e727c7be04f/1588233511.jpg

45.133.44.9

200 OK

24 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/5e/78/a9/5e78a94057ff65f06ec19e727c7be04f/1588233511.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint6F:9C:41:9B:BA:6A:17:A2:42:F8:28:FF:ED:09:F8:26:12:F1:4C:7B
ValidityThu, 30 Mar 2023 06:08:09 GMT - Wed, 28 Jun 2023 06:08:08 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Size
24 kB (24518 bytes)
Hash
d71c872fb9f50bd9383abc0721d1d51e
1f69b40ef2f95798b4e0fd738d630ad4319cd739
6b4a622b9de1ffab8fe905fc8c4633994c732476664b5190ceedd62a3795ab08

HTTP Headers

GET /cti/5e/78/a9/5e78a94057ff65f06ec19e727c7be04f/1588233511.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 24518
server: nginx/1.17.6
last-modified: Thu, 30 Apr 2020 07:58:34 GMT
etag: "5eaa852a-5fc6"
expires: Thu, 27 Apr 2023 12:00:03 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

img.revcontent.com/?url=https://cdn.revcontent.com/assets/img/full_color.png&static=true

151.139.128.10

200 OK

1.4 kB

URL GET HTTP/2
img.revcontent.com/?url=https://cdn.revcontent.com/assets/img/full_color.png&static=true
IP
151.139.128.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://www.vtforeignpolicy.com/
Certificate
IssuerLet's Encrypt
Subjectimg.revcontent.com
Fingerprint9C:24:82:57:49:03:2A:C6:E3:9F:EB:2B:83:F2:45:AA:7B:CD:AC:0C
ValidityMon, 13 Mar 2023 15:20:45 GMT - Sun, 11 Jun 2023 15:20:44 GMT

File type
PNG image data, 64 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1351 bytes)
Hash
624cba89d4a9bbe9c882fdbe4c11621d
a798d6ed9b193888fbc8a4a5bd7b51c236f8aa33
94d3b3f21c82e9004e1a95aba77f256573a3406d0782d451d50ac8e4bb4df7c5

HTTP Headers

GET /?url=https://cdn.revcontent.com/assets/img/full_color.png&static=true HTTP/1.1
Host: img.revcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.vtforeignpolicy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:04 GMT
etag: "1654183362"
cache-control: max-age=31536000
content-length: 1351
content-type: image/png
last-modified: Thu, 02 Jun 2022 15:22:42 GMT
accept-ranges: bytes
x-hw: 1682424004.cds002.sk1.hn,1682424004.cds242.sk1.c
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRmYxelFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--93264ee485051a591b044a62970dd797034e6fae/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/30min-cover2.jpg

104.19.160.48

302 Found

220 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRmYxelFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--93264ee485051a591b044a62970dd797034e6fae/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/30min-cover2.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type

Size
220 kB (220375 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRmYxelFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--93264ee485051a591b044a62970dd797034e6fae/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/30min-cover2.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/0hfx6rtnh5z639sh7t6njew8qowe/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: 98d3823f-d293-48f6-91fa-57df9cc72565
x-runtime: 0.081133
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60cd301c02-OSL
X-Firefox-Spdy: h2

www.buzzsprout.com/player/wave/8

104.19.160.48

200 OK

20 kB

URL GET HTTP/2
www.buzzsprout.com/player/wave/8
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text
Size
20 kB (19734 bytes)
Hash
ad39da5266476215434d9cd0179d1b1d
72f8dc21868808f0f1f1660ec65d83014c788ed3
4bb9c80776004d492cacbdc9270271329e0d32091dcca537f74c549bfede3cb1

HTTP Headers

GET /player/wave/8 HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/svg+xml; charset=utf-8
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
etag: W/"4bb9c80776004d492cacbdc927027132"
cache-control: max-age=0, private, must-revalidate
x-request-id: 7f6152bb-c0fe-4c36-8f7e-7f19a4c0bda1
x-runtime: 0.004729
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c629fa81c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

storage.buzzsprout.com/variants/fj3y32bapo1rkawwbitse9n0yepc/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg

104.19.160.48

200 OK

305 kB

URL GET HTTP/2
storage.buzzsprout.com/variants/fj3y32bapo1rkawwbitse9n0yepc/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1400x1400, components 3\012- data
Size
305 kB (304909 bytes)
Hash
c8659d81467b01118656151b4cf1938f
5206c0b0695e5b7aa08b0a2c3de97b5b2c418759
8ed3ff4a4179b04690ab2b4a26c543b16e3f04b56a6203b5440d9d2fd485cca5

HTTP Headers

GET /variants/fj3y32bapo1rkawwbitse9n0yepc/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg HTTP/1.1
Host: storage.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 25 Apr 2023 12:00:03 GMT
content-type: image/jpeg
content-length: 304909
cf-bgj: h2pri
etag: "c8659d81467b01118656151b4cf1938f"
last-modified: Sat, 11 Feb 2023 14:29:09 GMT
via: 1.1 82636c8aa9a5ece412a0bc535c0ca124.cloudfront.net (CloudFront)
x-amz-cf-id: RYQp5JkHr1ZlTAiAgL-TJ_cGLEZB91fWhv4r9M4tWebNp02dJw6FTg==
x-amz-cf-pop: HEL51-P1
x-cache: Hit from cloudfront
x-amz-version-id: pZt2GKd0fvoFHYUgRzqy6srrOCpXEinH
cf-cache-status: HIT
age: 3375
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7bd66c64297b1c02-OSL
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRlpkUVFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--00ba8dcded3b2227c419d1e572258bbabadbda3c/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/01-04-23-Dankof-square.jpg

104.19.160.48

302 Found

354 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRlpkUVFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--00ba8dcded3b2227c419d1e572258bbabadbda3c/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/01-04-23-Dankof-square.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type

Size
354 kB (353783 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCRlpkUVFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--00ba8dcded3b2227c419d1e572258bbabadbda3c/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/01-04-23-Dankof-square.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/qfc8xz6qohrcg8bxalabmaigb0xl/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: fa0a4de5-8444-430c-97d8-6bf2580a27e8
x-runtime: 0.090560
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c610dae1c02-OSL
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTGlXMndRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--3d81f774da815159cb839f2a03969c597d9cb909/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/dankof-cover2.jpg

104.19.160.48

302 Found

271 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTGlXMndRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--3d81f774da815159cb839f2a03969c597d9cb909/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/dankof-cover2.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type

Size
271 kB (270863 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCTGlXMndRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--3d81f774da815159cb839f2a03969c597d9cb909/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/dankof-cover2.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/68kbcz2gceaeq4el68jz3dfiibyv/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: 7b4a1b6c-b976-4bba-b9f7-ad0bbabc02f3
x-runtime: 0.163681
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60bd1d1c02-OSL
X-Firefox-Spdy: h2

www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCSjRGaVFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--12033d120adc30b4ef6946292bc5c78c0c0ba67c/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cover2.jpg

104.19.160.48

302 Found

305 kB

URL GET HTTP/2
www.buzzsprout.com/rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCSjRGaVFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--12033d120adc30b4ef6946292bc5c78c0c0ba67c/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cover2.jpg
IP
104.19.160.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA4:67:2B:05:3E:B9:F9:83:7D:93:DA:9C:55:56:A5:F9:FD:26:95:8E
ValidityWed, 08 Jun 2022 00:00:00 GMT - Wed, 07 Jun 2023 23:59:59 GMT

File type

Size
305 kB (304909 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rails/active_storage/representations/redirect/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaHBCSjRGaVFRPSIsImV4cCI6bnVsbCwicHVyIjoiYmxvYl9pZCJ9fQ==--12033d120adc30b4ef6946292bc5c78c0c0ba67c/eyJfcmFpbHMiOnsibWVzc2FnZSI6IkJBaDdDem9MWm05eWJXRjBTU0lJYW5CbkJqb0dSVlE2QzNKbGMybDZaVWtpRHpFME1EQjRNVFF3TUY0R093WlVPZ3huY21GMmFYUjVTU0lMWTJWdWRHVnlCanNHVkRvTFpYaDBaVzUwU1NJT01UUXdNSGd4TkRBd0Jqc0dWRG9NY1hWaGJHbDBlV2xWT2c5amIyeHZjbk53WVdObFNTSUpjMUpIUWdZN0JsUT0iLCJleHAiOm51bGwsInB1ciI6InZhcmlhdGlvbiJ9fQ==--ba61da96b1aafb226473d067fb9b416582e45878/cover2.jpg HTTP/1.1
Host: www.buzzsprout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.buzzsprout.com/2071926?client_source=large_player&iframe=true&referrer=https://www.buzzsprout.com/2071926.js?container_id=buzzsprout-large-player&player=large
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 25 Apr 2023 12:00:02 GMT
content-type: text/html; charset=utf-8
location: https://storage.buzzsprout.com/variants/fj3y32bapo1rkawwbitse9n0yepc/60854458c4d1acdf4e1c2f79c4137142d85d78e379bdafbd69bd34c85f5819ad.jpg
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=300, private
x-request-id: 2726bc48-e1a7-4d27-9e7e-1e8af96e4308
x-runtime: 0.072812
strict-transport-security: max-age=63072000; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: MISS
server: cloudflare
cf-ray: 7bd66c60fd7a1c02-OSL
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (85)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash