r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3150
Expires: Sat, 01 Apr 2023 04:29:36 GMT
Date: Sat, 01 Apr 2023 03:37:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 034b06325b334948200ef1d79d4ddeb7
b9a3c93cff37cbaaf20cca79b965b1a21c525ce8
417ce2093027b05cc34199c75e6b29f155c4dd3150651b6b3dbe8564098c4143
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "417CE2093027B05CC34199C75E6B29F155C4DD3150651B6B3DBE8564098C4143"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5100
Expires: Sat, 01 Apr 2023 05:02:06 GMT
Date: Sat, 01 Apr 2023 03:37:06 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 01 Apr 2023 03:28:26 GMT
content-type: application/json
age: 520
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a57eb49c1ac36edd2db6573eb357bd87
592724177530a39ce4af02874beb776b91fefbbe
0dd258adc062ad2b6f5ce8fec0457e55e594c942817f37509ca2d1f2e8152edf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0DD258ADC062AD2B6F5CE8FEC0457E55E594C942817F37509CA2D1F2E8152EDF"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12169
Expires: Sat, 01 Apr 2023 06:59:55 GMT
Date: Sat, 01 Apr 2023 03:37:06 GMT
Connection: keep-alive
meanwhilein.org/posts/142683-notice-the-old-spice-guy-in-the-background-that-s-the
192.64.119.174302 Found 116 B URL HTTP/1.1 meanwhilein.org/posts/142683-notice-the-old-spice-guy-in-the-background-that-s-the
IP 192.64.119.174:0
File type HTML document, ASCII text
Hash 2d33f4f25a5b7e57cee6eafb538f6d37
a3acb6cf1691701d96baa764bce8096e351c5c70
0b3430f59decb5097efad5233c2dec2c090663b11255ef36064a57a01980c196
Analyzer Verdict Alert fortinet Malware
NIDS Severity Alert suricata low ET INFO Namecheap URL Forward
GET /posts/142683-notice-the-old-spice-guy-in-the-background-that-s-the HTTP/1.1
Host: meanwhilein.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sat, 01 Apr 2023 03:37:06 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 116
Connection: keep-alive
Location: http://www.meanwhilein.org/posts/142683-notice-the-old-spice-guy-in-the-background-that-s-the
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: qbbGzCG+SSLGewtScgOjgVPyaDwtCFQ9GQbyfCXk7agfk1ltCqMt+1tyST66x2ZHY8ET4I5VF/w=
x-amz-request-id: C5GBXF107JD8ZJFR
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 01 Apr 2023 03:12:26 GMT
age: 1480
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 01 Apr 2023 03:37:06 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Last-Modified, Alert, Backoff, Content-Type, ETag, Cache-Control, Retry-After, Expires, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 01 Apr 2023 03:17:27 GMT
age: 1179
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 782ca4845ea5e0ec981e33231b1e61cb
032116b75e124c57877524e9e4f523b6d7c65820
94d007862fc7a4cd67f582ff22f2339619177435559c1dd5075a08c7240f3520
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94D007862FC7A4CD67F582FF22F2339619177435559C1DD5075A08C7240F3520"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11631
Expires: Sat, 01 Apr 2023 06:50:58 GMT
Date: Sat, 01 Apr 2023 03:37:07 GMT
Connection: keep-alive
www.meanwhilein.org/posts/142683-notice-the-old-spice-guy-in-the-background-that-s-the
52.21.227.162200 OK 28 kB URL HTTP/1.1 www.meanwhilein.org/posts/142683-notice-the-old-spice-guy-in-the-background-that-s-the
IP 52.21.227.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (327), with CRLF, CR, LF line terminators
Hash 0393148d83a795760835d571c22afbbf
fab8eba7b1ef54a490140ee8d409f1942f7b60a6
8baf9fcafbc4939fb00a5498cbcea0b98d0a35230ab0b46626de37d20820f54e
Analyzer Verdict Alert fortinet Malware
GET /posts/142683-notice-the-old-spice-guy-in-the-background-that-s-the HTTP/1.1
Host: www.meanwhilein.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: Cowboy
Date: Sat, 01 Apr 2023 03:37:06 GMT
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Content-Type: text/html; charset=utf-8
Etag: W/"8baf9fcafbc4939fb00a5498cbcea0b9"
Cache-Control: max-age=0, private, must-revalidate
Set-Cookie: _silos_r4_session=UlFWZHQ2WklHeWFKVlFHVGJINDkzUDljNlY0U1c4R3U3Y29hb2p5OHZTZC85UCtsNmFOdHBwMXRrY1JVUlhBWUttSmVNWnNGMUZwUk9FLzlnMjhoYXg2WUF5NmNhQUdIb2U4Z3RmVFhSWGxidDBtaXE5a2NKOUZadlJZT0ovNUl6a1FISWlMaTlRYnlHd0dOem4vSTlBPT0tLVRzejFTanNoSmRhL2lJSGw4blZzdmc9PQ%3D%3D--fc21b632c7d4dd502dd749e9832be383a971b50d; path=/; HttpOnly
X-Request-Id: 3918bf19-6265-4cda-89c1-4edfb686010d
X-Runtime: 0.211550
Transfer-Encoding: chunked
Via: 1.1 vegur
partner.googleadservices.com/gampad/google_service.js
216.58.207.226200 OK 373 B URL HTTP/1.1 partner.googleadservices.com/gampad/google_service.js
IP 216.58.207.226:0
Hash 661854aeecf12ceec3a47608501233da
f7b52c94982b73a5c5559dc166250c18e3af1ba6
12755200a7e22a322f3e6f9231be4a200dbac47873eafc18aecafe32e9dad068
GET /gampad/google_service.js HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.meanwhilein.org/
Connection: keep-alive
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 373
X-XSS-Protection: 0
Date: Sat, 01 Apr 2023 02:44:54 GMT
Expires: Sat, 01 Apr 2023 03:44:54 GMT
Cache-Control: public, max-age=3600
Age: 3133
ETag: 953604975598805376
Content-Type: text/javascript; charset=UTF-8
Vary: Accept-Encoding
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ac29d7d71ef6c0cc7547974c8c4f7b
29108a8370757ef63f347d1fd2ae696f5842342c
3371093d6dab54c7c3b612e3774435f0a592bee4e40fbcc2edd55d29d7715c26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 03:37:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.meanwhilein.org/assets/application-5c45a8438e62533dfb9bf9e93a6509241c54d62935630a4a09e6fb385e5fb203.css
52.21.227.162200 OK 8.5 kB URL HTTP/1.1 www.meanwhilein.org/assets/application-5c45a8438e62533dfb9bf9e93a6509241c54d62935630a4a09e6fb385e5fb203.css
IP 52.21.227.162:0
File type ASCII text, with very long lines (19816)
Hash e4977080f98d1d6990e289ed7eaf2ba2
6a1c89d8a74700cf68777f581cd1f1318f135929
7407d0c68f6e75f477ee9a46ed6aec69e150c870ab8532a8006e52ada6eab98b
GET /assets/application-5c45a8438e62533dfb9bf9e93a6509241c54d62935630a4a09e6fb385e5fb203.css HTTP/1.1
Host: www.meanwhilein.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.meanwhilein.org/posts/142683-notice-the-old-spice-guy-in-the-background-that-s-the
Connection: keep-alive
Cookie: _silos_r4_session=UlFWZHQ2WklHeWFKVlFHVGJINDkzUDljNlY0U1c4R3U3Y29hb2p5OHZTZC85UCtsNmFOdHBwMXRrY1JVUlhBWUttSmVNWnNGMUZwUk9FLzlnMjhoYXg2WUF5NmNhQUdIb2U4Z3RmVFhSWGxidDBtaXE5a2NKOUZadlJZT0ovNUl6a1FISWlMaTlRYnlHd0dOem4vSTlBPT0tLVRzejFTanNoSmRhL2lJSGw4blZzdmc9PQ%3D%3D--fc21b632c7d4dd502dd749e9832be383a971b50d
HTTP/1.1 200 OK
Server: Cowboy
Date: Sat, 01 Apr 2023 03:37:07 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: text/css
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 8458
Via: 1.1 vegur
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 02303126c6c390b3c06593625186f4bf
1b71c1b9a6e5c84536de78021f94f87424579298
2cffed5b6470da73dc57dd9c5c7a5683e83f0e947eb63fbd8a8e226b18192a76
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2202
Cache-Control: max-age=145134
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 03:37:07 GMT
Etag: "64273237-1d7"
Expires: Sun, 02 Apr 2023 19:56:01 GMT
Last-Modified: Fri, 31 Mar 2023 19:19:19 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
cdnjs.cloudflare.com/ajax/libs/tether/1.3.6/js/tether.min.js
104.17.25.14200 OK 6.7 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/tether/1.3.6/js/tether.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (24876), with no line terminators
Hash 71dd720ed379f79b86609c08881df411
256d2ee646b4af86a613c79d215b45882d7b26a5
daeb6a20968bef76bc607575c4675e198406e9b8b70c3b06870a66166dedd4f5
GET /ajax/libs/tether/1.3.6/js/tether.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 03:37:07 GMT
content-type: application/javascript; charset=utf-8
content-length: 6695
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ffc-612c"
last-modified: Mon, 04 May 2020 16:17:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 17930293
expires: Thu, 21 Mar 2024 03:37:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BbcoQjbWniMPGExitU%2BiFWAPgAGRTMqpvJ535GTNZ%2FC0wqJ4drK4dMuHFOIZ1fhMxfqKjjPirbyp81mw%2BupZLFcqDXF5wQ1%2FEbWoZoIdjfThUHqEuNMqQ7P7FULFQ5y4hUwYdOUg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7b0dcaac4a8db503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery-ujs/1.2.2/rails.min.js
104.17.25.14200 OK 2.3 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-ujs/1.2.2/rails.min.js
IP 104.17.25.14:0
File type C source, ASCII text, with very long lines (8676)
Hash 85eae9b96c8799cdf1c5da17f7ad80e9
4b0643b3f5b0597acd276fa68e4afd600c4ca441
12f1c36acd7e6f298bf94d5022a4d2d5847d8d0eba9cb3d7486b4aa01dd73167
GET /ajax/libs/jquery-ujs/1.2.2/rails.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 03:37:07 GMT
content-type: application/javascript; charset=utf-8
content-length: 2289
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-220a"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 18134232
expires: Thu, 21 Mar 2024 03:37:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BTq5IAqSMjFoNbwydC54dVoVb7IAzhzGGgqaWQ%2F0IamGIZm4RWxPOm26zzI69ULtLdg5sOCjX010ZrQtHzzEqIqx2NsxQIBRHkfwyTRVqxbCv9kSgADFpAL1zCiQU6Gld2%2FvQz19"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7b0dcaac4a8cb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jqueryui/1.11.4/jquery-ui.min.js
142.250.74.10200 OK 64 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jqueryui/1.11.4/jquery-ui.min.js
IP 142.250.74.10:0
File type ASCII text, with very long lines (32035)
Hash d42e0db378c3b7ae639f482be65ca7e0
febb6ba0cb20fbf345e42afbb194f557de4fdb3b
9a978650fc7920f6ce184b5febda53dfadb49086ee56326e0f7ca999b7e802ef
GET /ajax/libs/jqueryui/1.11.4/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 64481
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Mar 2023 17:25:29 GMT
expires: Fri, 29 Mar 2024 17:25:29 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 123098
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
142.250.74.10200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP 142.250.74.10:0
File type ASCII text, with very long lines (32065)
Hash 6d973c8b7e2439d958e09c0a1ab9fe50
05ae0830200c20b9a2dfd5a825adc400481a60fb
f3c122dc227e829ed96b2a754296809201bd78abbad7ba50ef5079654e1cc894
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Mar 2023 09:53:30 GMT
expires: Fri, 29 Mar 2024 09:53:30 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 150217
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.facebook.com/plugins/like.php?href=http://www.meanwhilein.org&width=0&layout=standard&action=like&size=small&show_faces=false&share=true&height=80&appId=561905967165839
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=http://www.meanwhilein.org&width=0&layout=standard&action=like&size=small&show_faces=false&share=true&height=80&appId=561905967165839
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://www.meanwhilein.org&width=0&layout=standard&action=like&size=small&show_faces=false&share=true&height=80&appId=561905967165839 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval';style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}, {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: eA9t9Y9gKJrs4bfw8b5oFXL3KK8/6GWLcJAUspsGoGSw9Dg/8rURcAOaeNFIXrMc199WxbmKzmVeTit4WPN9Eg==
content-length: 0
date: Sat, 01 Apr 2023 03:37:07 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ac29d7d71ef6c0cc7547974c8c4f7b
29108a8370757ef63f347d1fd2ae696f5842342c
3371093d6dab54c7c3b612e3774435f0a592bee4e40fbcc2edd55d29d7715c26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 03:37:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ac29d7d71ef6c0cc7547974c8c4f7b
29108a8370757ef63f347d1fd2ae696f5842342c
3371093d6dab54c7c3b612e3774435f0a592bee4e40fbcc2edd55d29d7715c26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 03:37:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 03:37:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.meanwhilein.org/assets/sites/meanwhilein.org/logo-61c6df5cadd64900407955ec017269d33e046a9f8c7a3d2dd99bf4f63b248f2f.png
52.21.227.162200 OK 4.4 kB URL HTTP/1.1 www.meanwhilein.org/assets/sites/meanwhilein.org/logo-61c6df5cadd64900407955ec017269d33e046a9f8c7a3d2dd99bf4f63b248f2f.png
IP 52.21.227.162:0
File type PNG image data, 205 x 90, 8-bit colormap, non-interlaced\012- data
Hash dac9adc56a6487dd9e089e00ca0e5b97
a7d0c8ca0f3d82130169fe19e65a0bd2a1bdbcfe
9851df5dd0aabafb84dd7417b9e721b22bf4ddf8b59bf5ecf897897e4441d234
GET /assets/sites/meanwhilein.org/logo-61c6df5cadd64900407955ec017269d33e046a9f8c7a3d2dd99bf4f63b248f2f.png HTTP/1.1
Host: www.meanwhilein.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.meanwhilein.org/posts/142683-notice-the-old-spice-guy-in-the-background-that-s-the
Connection: keep-alive
Cookie: _silos_r4_session=UlFWZHQ2WklHeWFKVlFHVGJINDkzUDljNlY0U1c4R3U3Y29hb2p5OHZTZC85UCtsNmFOdHBwMXRrY1JVUlhBWUttSmVNWnNGMUZwUk9FLzlnMjhoYXg2WUF5NmNhQUdIb2U4Z3RmVFhSWGxidDBtaXE5a2NKOUZadlJZT0ovNUl6a1FISWlMaTlRYnlHd0dOem4vSTlBPT0tLVRzejFTanNoSmRhL2lJSGw4blZzdmc9PQ%3D%3D--fc21b632c7d4dd502dd749e9832be383a971b50d
HTTP/1.1 200 OK
Server: Cowboy
Date: Sat, 01 Apr 2023 03:37:07 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: image/png
Content-Length: 4390
Via: 1.1 vegur
www.meanwhilein.org/assets/horseheadhuffer-seal-3f342e0f1838b64ade69a0973c38f9d587969bec1fd5962927b3a9c7bcfe3ff7.png
52.21.227.162200 OK 7.2 kB URL HTTP/1.1 www.meanwhilein.org/assets/horseheadhuffer-seal-3f342e0f1838b64ade69a0973c38f9d587969bec1fd5962927b3a9c7bcfe3ff7.png
IP 52.21.227.162:0
File type PNG image data, 63 x 53, 8-bit/color RGBA, non-interlaced\012- data
Hash f125eb436067ed7978ff02f7b3606dae
9318e3d224cc1e9702ba7db5bf2f40c8f9de6fe8
4d5ca215ca1380a05d05f1115017f642c7f48ddb105447f096797db9c6c0e362
GET /assets/horseheadhuffer-seal-3f342e0f1838b64ade69a0973c38f9d587969bec1fd5962927b3a9c7bcfe3ff7.png HTTP/1.1
Host: www.meanwhilein.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.meanwhilein.org/posts/142683-notice-the-old-spice-guy-in-the-background-that-s-the
Connection: keep-alive
Cookie: _silos_r4_session=UlFWZHQ2WklHeWFKVlFHVGJINDkzUDljNlY0U1c4R3U3Y29hb2p5OHZTZC85UCtsNmFOdHBwMXRrY1JVUlhBWUttSmVNWnNGMUZwUk9FLzlnMjhoYXg2WUF5NmNhQUdIb2U4Z3RmVFhSWGxidDBtaXE5a2NKOUZadlJZT0ovNUl6a1FISWlMaTlRYnlHd0dOem4vSTlBPT0tLVRzejFTanNoSmRhL2lJSGw4blZzdmc9PQ%3D%3D--fc21b632c7d4dd502dd749e9832be383a971b50d
HTTP/1.1 200 OK
Server: Cowboy
Date: Sat, 01 Apr 2023 03:37:07 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: image/png
Content-Length: 7160
Via: 1.1 vegur
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 02303126c6c390b3c06593625186f4bf
1b71c1b9a6e5c84536de78021f94f87424579298
2cffed5b6470da73dc57dd9c5c7a5683e83f0e947eb63fbd8a8e226b18192a76
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2202
Cache-Control: max-age=145134
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 03:37:07 GMT
Etag: "64273237-1d7"
Expires: Sun, 02 Apr 2023 19:56:01 GMT
Last-Modified: Fri, 31 Mar 2023 19:19:19 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
fonts.gstatic.com/s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
142.250.74.35200 OK 128 kB URL HTTP/2 fonts.gstatic.com/s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 128352, version 1.0\012- data
Size 128 kB (128352 bytes)
Hash 53436aca8627a49f4deaaa44dc9e3c05
0bc0c675480d94ec7e8609dda6227f88c5d08d2c
8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1
GET /s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.meanwhilein.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:31:24 GMT
expires: Wed, 27 Mar 2024 10:31:24 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 07 Mar 2023 19:51:56 GMT
content-type: font/woff2
age: 320743
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.35.45.19101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.45.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KEfpOiG0GLWHd6EwmyNLGg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oTEHEYpLVrfeKSpZ6yIlJ4HS1Gk=
www.meanwhilein.org/assets/application-36722df3dc142ab21a42badd65301f020fffeecf773a4428ca6a08da4ae5fb5d.js
52.21.227.162200 OK 26 kB URL HTTP/1.1 www.meanwhilein.org/assets/application-36722df3dc142ab21a42badd65301f020fffeecf773a4428ca6a08da4ae5fb5d.js
IP 52.21.227.162:0
Hash 19dc0b4638e0ff97db5cf820e1061dc8
a233dc9c463b44f24bef43e90c6dc52b4abcadb4
c6394a1e7887819ff53b8bfbfc023152034b63aae1c50bf40cbc51dfaa358474
GET /assets/application-36722df3dc142ab21a42badd65301f020fffeecf773a4428ca6a08da4ae5fb5d.js HTTP/1.1
Host: www.meanwhilein.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.meanwhilein.org/posts/142683-notice-the-old-spice-guy-in-the-background-that-s-the
Connection: keep-alive
Cookie: _silos_r4_session=UlFWZHQ2WklHeWFKVlFHVGJINDkzUDljNlY0U1c4R3U3Y29hb2p5OHZTZC85UCtsNmFOdHBwMXRrY1JVUlhBWUttSmVNWnNGMUZwUk9FLzlnMjhoYXg2WUF5NmNhQUdIb2U4Z3RmVFhSWGxidDBtaXE5a2NKOUZadlJZT0ovNUl6a1FISWlMaTlRYnlHd0dOem4vSTlBPT0tLVRzejFTanNoSmRhL2lJSGw4blZzdmc9PQ%3D%3D--fc21b632c7d4dd502dd749e9832be383a971b50d
HTTP/1.1 200 OK
Server: Cowboy
Date: Sat, 01 Apr 2023 03:37:06 GMT
Connection: keep-alive
Last-Modified: Sun, 15 Nov 2020 00:41:30 GMT
Content-Type: application/javascript
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 25847
Via: 1.1 vegur
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 5d8615b541dbef4ed0a34040585d38a2
d5f8fdc266da138ceeb0fe08d23f538612ff2da2
cae5e24679c8d0ee7c08355a4de662df097ae4962746ca96cce19d70a9e28a1e
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=117181
Date: Sat, 01 Apr 2023 03:37:07 GMT
Etag: "6426c467-1d7"
Expires: Sun, 02 Apr 2023 12:10:08 GMT
Last-Modified: Fri, 31 Mar 2023 11:30:47 GMT
Server: ECAcc (nya/7919)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 30AfqLrGRxqa5ubus4F5UAPnmtmqi2TPNNeMgDLFsELqBo12nYi7mQ==
Age: 2361
www.meanwhilein.org/assets/sites/meanwhilein.org/rater-85e6762a87b86b25b95b00317454e5b81778d29ad7013c4932b58d83285d5854.png
52.21.227.162200 OK 1.6 kB URL HTTP/1.1 www.meanwhilein.org/assets/sites/meanwhilein.org/rater-85e6762a87b86b25b95b00317454e5b81778d29ad7013c4932b58d83285d5854.png
IP 52.21.227.162:0
File type PNG image data, 30 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 0ac8f1b683e456b8570cf8d32362eb19
d1a25ed1f116ebd3c635feb1ea776077ee050602
4489c566dab022fc84b381f99f3fe14462b131356df7a2d3311897b1c2f91041
GET /assets/sites/meanwhilein.org/rater-85e6762a87b86b25b95b00317454e5b81778d29ad7013c4932b58d83285d5854.png HTTP/1.1
Host: www.meanwhilein.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meanwhilein.org/assets/application-5c45a8438e62533dfb9bf9e93a6509241c54d62935630a4a09e6fb385e5fb203.css
Cookie: _silos_r4_session=UlFWZHQ2WklHeWFKVlFHVGJINDkzUDljNlY0U1c4R3U3Y29hb2p5OHZTZC85UCtsNmFOdHBwMXRrY1JVUlhBWUttSmVNWnNGMUZwUk9FLzlnMjhoYXg2WUF5NmNhQUdIb2U4Z3RmVFhSWGxidDBtaXE5a2NKOUZadlJZT0ovNUl6a1FISWlMaTlRYnlHd0dOem4vSTlBPT0tLVRzejFTanNoSmRhL2lJSGw4blZzdmc9PQ%3D%3D--fc21b632c7d4dd502dd749e9832be383a971b50d
HTTP/1.1 200 OK
Server: Cowboy
Date: Sat, 01 Apr 2023 03:37:07 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: image/png
Content-Length: 1569
Via: 1.1 vegur
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 5d8615b541dbef4ed0a34040585d38a2
d5f8fdc266da138ceeb0fe08d23f538612ff2da2
cae5e24679c8d0ee7c08355a4de662df097ae4962746ca96cce19d70a9e28a1e
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121085
Date: Sat, 01 Apr 2023 03:37:07 GMT
Etag: "6426c467-1d7"
Expires: Sun, 02 Apr 2023 13:15:12 GMT
Last-Modified: Fri, 31 Mar 2023 11:30:47 GMT
Server: ECAcc (nya/7968)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: iZl0lkrowYU8L3fIrerM724JAXFAnIVedgvqbnd3CN_JWnpodKs10g==
Age: 6265
www.meanwhilein.org/assets/header-logo-ae8d4dd0d3ca290f57c9d309f7ae3f99279a5a47a82f9bba52e18bded9bbb290.png
52.21.227.162200 OK 4.1 kB URL HTTP/1.1 www.meanwhilein.org/assets/header-logo-ae8d4dd0d3ca290f57c9d309f7ae3f99279a5a47a82f9bba52e18bded9bbb290.png
IP 52.21.227.162:0
File type PNG image data, 179 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 2586c24f3fbbed89a1e80ece4dc31047
8695e332e7fea8f2e181d4ec3173e06773760bf3
60365f5192a3462de7a52c6aec53d62dffde2a01e004629ac51db7b58a55d38a
GET /assets/header-logo-ae8d4dd0d3ca290f57c9d309f7ae3f99279a5a47a82f9bba52e18bded9bbb290.png HTTP/1.1
Host: www.meanwhilein.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.meanwhilein.org/posts/142683-notice-the-old-spice-guy-in-the-background-that-s-the
Connection: keep-alive
Cookie: _silos_r4_session=UlFWZHQ2WklHeWFKVlFHVGJINDkzUDljNlY0U1c4R3U3Y29hb2p5OHZTZC85UCtsNmFOdHBwMXRrY1JVUlhBWUttSmVNWnNGMUZwUk9FLzlnMjhoYXg2WUF5NmNhQUdIb2U4Z3RmVFhSWGxidDBtaXE5a2NKOUZadlJZT0ovNUl6a1FISWlMaTlRYnlHd0dOem4vSTlBPT0tLVRzejFTanNoSmRhL2lJSGw4blZzdmc9PQ%3D%3D--fc21b632c7d4dd502dd749e9832be383a971b50d
HTTP/1.1 200 OK
Server: Cowboy
Date: Sat, 01 Apr 2023 03:37:07 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: image/png
Content-Length: 4148
Via: 1.1 vegur
www.meanwhilein.org/assets/iab/leaderboard-spacer-dd5dcbea5885a795f1d29f823260e42336b50792d88d84d352a19baea90cf115.gif
52.21.227.162200 OK 1.5 kB URL HTTP/1.1 www.meanwhilein.org/assets/iab/leaderboard-spacer-dd5dcbea5885a795f1d29f823260e42336b50792d88d84d352a19baea90cf115.gif
IP 52.21.227.162:0
File type GIF image data, version 89a, 590 x 60\012- data
Hash d76e2951b1bb66e015c72b846ad5fc4c
1cb805b1df4533c12173e20a43cd8a00efa86711
bb7f82c3b3c19d3d8e25c19637e4e4f4d5757973473eb9af0fbf4ad013a43fe3
GET /assets/iab/leaderboard-spacer-dd5dcbea5885a795f1d29f823260e42336b50792d88d84d352a19baea90cf115.gif HTTP/1.1
Host: www.meanwhilein.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.meanwhilein.org/assets/application-5c45a8438e62533dfb9bf9e93a6509241c54d62935630a4a09e6fb385e5fb203.css
Cookie: _silos_r4_session=UlFWZHQ2WklHeWFKVlFHVGJINDkzUDljNlY0U1c4R3U3Y29hb2p5OHZTZC85UCtsNmFOdHBwMXRrY1JVUlhBWUttSmVNWnNGMUZwUk9FLzlnMjhoYXg2WUF5NmNhQUdIb2U4Z3RmVFhSWGxidDBtaXE5a2NKOUZadlJZT0ovNUl6a1FISWlMaTlRYnlHd0dOem4vSTlBPT0tLVRzejFTanNoSmRhL2lJSGw4blZzdmc9PQ%3D%3D--fc21b632c7d4dd502dd749e9832be383a971b50d
HTTP/1.1 200 OK
Server: Cowboy
Date: Sat, 01 Apr 2023 03:37:07 GMT
Connection: keep-alive
Last-Modified: Sat, 14 Nov 2020 04:43:05 GMT
Content-Type: image/gif
Content-Length: 1516
Via: 1.1 vegur
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 5d8615b541dbef4ed0a34040585d38a2
d5f8fdc266da138ceeb0fe08d23f538612ff2da2
cae5e24679c8d0ee7c08355a4de662df097ae4962746ca96cce19d70a9e28a1e
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121085
Date: Sat, 01 Apr 2023 03:37:07 GMT
Etag: "6426c467-1d7"
Expires: Sun, 02 Apr 2023 13:15:12 GMT
Last-Modified: Fri, 31 Mar 2023 11:30:47 GMT
Server: ECAcc (dcb/7EC4)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: U896Cq0ahfXM903fqgyVm2rOFhXbQe_039de00OUljur5IooOeVD1w==
Age: 6265
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 03:37:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 5d8615b541dbef4ed0a34040585d38a2
d5f8fdc266da138ceeb0fe08d23f538612ff2da2
cae5e24679c8d0ee7c08355a4de662df097ae4962746ca96cce19d70a9e28a1e
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=115226
Date: Sat, 01 Apr 2023 03:37:07 GMT
Etag: "6426c467-1d7"
Expires: Sun, 02 Apr 2023 11:37:33 GMT
Last-Modified: Fri, 31 Mar 2023 11:30:47 GMT
Server: ECAcc (dcb/7351)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: CatHhg1JcV8c-PfFykp3EHzmbIqGJddFsuX_ehirbQVyOEiO8uCO2w==
Age: 406
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 5d8615b541dbef4ed0a34040585d38a2
d5f8fdc266da138ceeb0fe08d23f538612ff2da2
cae5e24679c8d0ee7c08355a4de662df097ae4962746ca96cce19d70a9e28a1e
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=114820
Date: Sat, 01 Apr 2023 03:37:07 GMT
Etag: "6426c467-1d7"
Expires: Sun, 02 Apr 2023 11:30:47 GMT
Last-Modified: Fri, 31 Mar 2023 11:30:47 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MiV4xKVj2woFHHRHscJwNgYxXH_dgWUk1tXwp_sYE0IQJwdfcA7pDQ==
assets.horseheadhuffer.com/hashed_silo_content/silo_content/33623/icon/dauter.jpg
54.230.111.42200 OK 3.5 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/silo_content/33623/icon/dauter.jpg
IP 54.230.111.42:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash b67d47ac6ac85deaf2d7622bb8a6072d
f23ddd06a811645b8f2bb68d6a1c5fc1555b5033
4954dd1086141017f4f7d09c48200853fafcdfa62ea225ecbb9e2670a65710f1
GET /hashed_silo_content/silo_content/33623/icon/dauter.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 3512
date: Sat, 01 Apr 2023 03:37:08 GMT
last-modified: Fri, 03 Jun 2011 13:52:38 GMT
etag: "b67d47ac6ac85deaf2d7622bb8a6072d"
x-amz-meta-s3cmd-attrs: uid:500/gname:deploy/uname:deploy/gid:500/mode:33188/mtime:1283573676/atime:1303457664/ctime:1283573676
expires: Mon, 31 May 2021 04:34:31 GMT+00:00
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LpRGyB1tVoM6IqQVYO31Gubv8llXc4zXlYf-8BTPD7DCvF-JMGK7vg==
X-Firefox-Spdy: h2
assets.horseheadhuffer.com/hashed_silo_content/8d5/dcb/4ef/icon/adfailure-com-60352c.jpg
54.230.111.42200 OK 2.6 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/8d5/dcb/4ef/icon/adfailure-com-60352c.jpg
IP 54.230.111.42:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3\012- data
Hash 9b11c9836aec94ba6cdf82e65da38a21
7da73d5648fb478c797e5a055abc8e06b19913a9
6b2f22ce1060c83fd0722cf17d5ce4bfc9fefc4dd87ffb46b38b548b693960c5
GET /hashed_silo_content/8d5/dcb/4ef/icon/adfailure-com-60352c.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2556
date: Sat, 01 Apr 2023 03:37:08 GMT
last-modified: Wed, 21 Sep 2011 03:42:54 GMT
etag: "9b11c9836aec94ba6cdf82e65da38a21"
expires: Fri, 21 Sep 2012 02:02:18 GMT
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ez7TyyHx9nxfGO1Wo2AUyY9ppwpB_CcZXPxwToF_XzCksCO2w2gjEw==
X-Firefox-Spdy: h2
assets.horseheadhuffer.com/hashed_silo_content/8e8/91e/be9/icon/WTF.jpg
54.230.111.42200 OK 5.6 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/8e8/91e/be9/icon/WTF.jpg
IP 54.230.111.42:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 273970830d153d98bd264c2e77cd02e4
442f9f3700f482a324fb9eca7e8bfe7f0d9ddc0b
c903f6bcdd57123f9cc9f041a398af8d73f0abc2fba873895c55b2afac8cef70
GET /hashed_silo_content/8e8/91e/be9/icon/WTF.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 5649
last-modified: Mon, 30 May 2011 01:28:54 GMT
x-amz-meta-s3cmd-attrs: uid:500/gname:deploy/uname:deploy/gid:500/mode:33188/mtime:1293263844/atime:1303397476/ctime:1293263844
accept-ranges: bytes
server: AmazonS3
date: Sat, 01 Apr 2023 03:37:08 GMT
expires: Wed, 26 May 2021 18:56:46 GMT+00:00
etag: "273970830d153d98bd264c2e77cd02e4"
x-cache: RefreshHit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2EqSUaet1GOKBZKuxsEen9kR0eGrFOhIUdpSETgZzJjLagS8ZKKPbA==
X-Firefox-Spdy: h2
assets.horseheadhuffer.com/hashed_silo_content/silo_content/565/icon/engrish-funny-1221808885-34692.jpg
54.230.111.42200 OK 2.5 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/silo_content/565/icon/engrish-funny-1221808885-34692.jpg
IP 54.230.111.42:0
File type JPEG image data, baseline, precision 8, 100x100, components 3\012- data
Hash a04cee07f69edf73928719979d74f7ab
e9226021c14d3de2f36949271e0e29e341f43101
700298aa70f72009c0e81726277d0a845145f1b7abda223d43060bc3785d8f9d
GET /hashed_silo_content/silo_content/565/icon/engrish-funny-1221808885-34692.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2524
date: Sat, 01 Apr 2023 03:37:08 GMT
last-modified: Sat, 04 Jun 2011 03:11:17 GMT
etag: "a04cee07f69edf73928719979d74f7ab"
x-amz-meta-s3cmd-attrs: uid:500/gname:deploy/uname:deploy/gid:500/mode:33279/mtime:1267012989/atime:1303462557/ctime:1267012989
expires: Mon, 31 May 2021 04:34:31 GMT+00:00
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gDf4xpIbjASt9DPCtdhOivalAFA1P68twBiAavQtd_rtse5G1VrgOA==
X-Firefox-Spdy: h2
assets.horseheadhuffer.com/hashed_silo_content/silo_content/20180/icon/unseen.jpg
54.230.111.42200 OK 3.9 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/silo_content/20180/icon/unseen.jpg
IP 54.230.111.42:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 9b2804c10efd490ed058a76d45595ea3
836e542fc29527d9ca5899978decb174efd8438c
231003f94737e125d24524e7a46e829740a4ea117967ea6c9235e02644e43940
GET /hashed_silo_content/silo_content/20180/icon/unseen.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 3897
last-modified: Wed, 01 Jun 2011 19:19:12 GMT
x-amz-meta-s3cmd-attrs: uid:500/gname:deploy/uname:deploy/gid:500/mode:33188/mtime:1267917105/atime:1303386360/ctime:1267917105
accept-ranges: bytes
server: AmazonS3
date: Sat, 01 Apr 2023 03:37:08 GMT
expires: Sat, 29 May 2021 18:39:12 GMT+00:00
etag: "9b2804c10efd490ed058a76d45595ea3"
x-cache: RefreshHit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wU1aJNO_w73BaqNMCbPx6rKG3jJ1sSdZp4O_xCtNRZIFWI3sM8UlkQ==
X-Firefox-Spdy: h2
assets.horseheadhuffer.com/hashed_silo_content/dc1/2fa/3ff/resized/when_memes_unite4.jpg
54.230.111.42200 OK 82 kB URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/dc1/2fa/3ff/resized/when_memes_unite4.jpg
IP 54.230.111.42:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 650x451, components 3\012- data
Hash 1ec2cf2514626e1376bd41ce9da874dc
80444d36799fcb6be31e27b4e6bfacc0174b0a6c
02c15a9f98592b6463beebca197501676ceb18631a71beca959337dfd439f9e5
GET /hashed_silo_content/dc1/2fa/3ff/resized/when_memes_unite4.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 82056
date: Sat, 01 Apr 2023 03:37:08 GMT
last-modified: Mon, 30 May 2011 13:08:52 GMT
etag: "1ec2cf2514626e1376bd41ce9da874dc"
x-amz-meta-s3cmd-attrs: uid:500/gname:deploy/uname:deploy/gid:500/mode:33188/mtime:1295826223/atime:1303414089/ctime:1295826223
expires: Thu, 27 May 2021 06:30:33 GMT+00:00
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0HHIAILE9GJK3gBRZQ_A9yncRiJ-MCxbtTiLsSov9YxjZHhcKBftPQ==
X-Firefox-Spdy: h2
www.google-analytics.com/ga.js
142.250.74.110200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.meanwhilein.org/
Connection: keep-alive
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Sat, 01 Apr 2023 02:05:14 GMT
Expires: Sat, 01 Apr 2023 04:05:14 GMT
Cache-Control: public, max-age=7200
Age: 5514
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
Vary: Accept-Encoding
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 63d32ee86dd584ca3dbe7e71f92bb27b
b7cdc513fddf6a500b6f8e08a729a1c55b642a1f
6b7d730d6fb41b337acd1fd6fcc2b11a017c6e22a818f39d022c173399aab60d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 03:37:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
edge.quantserve.com/quant.js
91.228.74.166200 OK 9.1 kB URL HTTP/1.1 edge.quantserve.com/quant.js
IP 91.228.74.166:0
File type ASCII text, with very long lines (22007)
Hash 2886a7b591fd0f0ec7f9ac2c98beedbf
502dc0be7b891070f3f80bffbbe62fb36a2d495b
801121e8606acf065f824bd938b41cdbbff31bb6a80b641596f448e22feaa0e9
GET /quant.js HTTP/1.1
Host: edge.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.meanwhilein.org/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 03:37:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: private, max-age=604800
Content-Encoding: gzip
Etag: "DUHyBE1e2vdA+NAhXV6BXg=="
Expires: Sat, 08 Apr 2023 03:37:08 GMT
Vary: Accept-Encoding
www.recaptcha.net/recaptcha/api.js
142.250.74.131200 OK 559 B URL HTTP/2 www.recaptcha.net/recaptcha/api.js
IP 142.250.74.131:0
File type ASCII text, with very long lines (853), with no line terminators
Hash cac3a45b92048178a0f033cc6e1390b3
fd6b7532a8e168c12d672ccc65393db09fe2aaff
cf7c8d66c88f95248f58c5a8767790ee54064b6c56fa49d6b5079bbaf02d536e
GET /recaptcha/api.js HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 01 Apr 2023 03:37:08 GMT
date: Sat, 01 Apr 2023 03:37:08 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 559
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/__utm.gif?utmwv=5.7.2&utms=2&utmn=252888572&utmhn=www.meanwhilein.org&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%22Meanwhile%20In%22%20Funny%20Meme%20Pictures%20-%20Meanwhile%20In&utmhid=121562735&utmr=-&utmp=%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the&utmht=1680320226871&utmac=UA-2787617-18&utmcc=__utma%3D222880263.609946195.1680320227.1680320227.1680320227.1%3B%2B__utmz%3D222880263.1680320227.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=&utmmt=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
142.250.74.110200 OK 35 B URL HTTP/1.1 www.google-analytics.com/__utm.gif?utmwv=5.7.2&utms=2&utmn=252888572&utmhn=www.meanwhilein.org&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%22Meanwhile%20In%22%20Funny%20Meme%20Pictures%20-%20Meanwhile%20In&utmhid=121562735&utmr=-&utmp=%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the&utmht=1680320226871&utmac=UA-2787617-18&utmcc=__utma%3D222880263.609946195.1680320227.1680320227.1680320227.1%3B%2B__utmz%3D222880263.1680320227.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=&utmmt=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
IP 142.250.74.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /__utm.gif?utmwv=5.7.2&utms=2&utmn=252888572&utmhn=www.meanwhilein.org&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%22Meanwhile%20In%22%20Funny%20Meme%20Pictures%20-%20Meanwhile%20In&utmhid=121562735&utmr=-&utmp=%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the&utmht=1680320226871&utmac=UA-2787617-18&utmcc=__utma%3D222880263.609946195.1680320227.1680320227.1680320227.1%3B%2B__utmz%3D222880263.1680320227.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=&utmmt=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.meanwhilein.org/
Connection: keep-alive
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Pragma: no-cache
X-Content-Type-Options: nosniff
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
Date: Fri, 31 Mar 2023 18:05:12 GMT
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Content-Type: image/gif
Age: 34316
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=842531651&utmhn=www.meanwhilein.org&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%22Meanwhile%20In%22%20Funny%20Meme%20Pictures%20-%20Meanwhile%20In&utmhid=121562735&utmr=-&utmp=%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the&utmht=1680320226866&utmac=UA-20523663-1&utmcc=__utma%3D222880263.609946195.1680320227.1680320227.1680320227.1%3B%2B__utmz%3D222880263.1680320227.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1364724056&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
142.250.74.110200 OK 35 B URL HTTP/1.1 www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=842531651&utmhn=www.meanwhilein.org&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%22Meanwhile%20In%22%20Funny%20Meme%20Pictures%20-%20Meanwhile%20In&utmhid=121562735&utmr=-&utmp=%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the&utmht=1680320226866&utmac=UA-20523663-1&utmcc=__utma%3D222880263.609946195.1680320227.1680320227.1680320227.1%3B%2B__utmz%3D222880263.1680320227.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1364724056&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
IP 142.250.74.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=842531651&utmhn=www.meanwhilein.org&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%22Meanwhile%20In%22%20Funny%20Meme%20Pictures%20-%20Meanwhile%20In&utmhid=121562735&utmr=-&utmp=%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the&utmht=1680320226866&utmac=UA-20523663-1&utmcc=__utma%3D222880263.609946195.1680320227.1680320227.1680320227.1%3B%2B__utmz%3D222880263.1680320227.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1364724056&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.meanwhilein.org/
Connection: keep-alive
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Date: Sat, 01 Apr 2023 03:37:08 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
www.meanwhilein.org/favicon.ico
52.21.227.162200 OK 0 B URL HTTP/1.1 www.meanwhilein.org/favicon.ico
IP 52.21.227.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.meanwhilein.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.meanwhilein.org/posts/142683-notice-the-old-spice-guy-in-the-background-that-s-the
Connection: keep-alive
Cookie: _silos_r4_session=UlFWZHQ2WklHeWFKVlFHVGJINDkzUDljNlY0U1c4R3U3Y29hb2p5OHZTZC85UCtsNmFOdHBwMXRrY1JVUlhBWUttSmVNWnNGMUZwUk9FLzlnMjhoYXg2WUF5NmNhQUdIb2U4Z3RmVFhSWGxidDBtaXE5a2NKOUZadlJZT0ovNUl6a1FISWlMaTlRYnlHd0dOem4vSTlBPT0tLVRzejFTanNoSmRhL2lJSGw4blZzdmc9PQ%3D%3D--fc21b632c7d4dd502dd749e9832be383a971b50d
HTTP/1.1 200 OK
Server: Cowboy
Date: Sat, 01 Apr 2023 03:37:07 GMT
Connection: keep-alive
Last-Modified: Tue, 17 Nov 2020 16:16:51 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 0
Via: 1.1 vegur
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 63d32ee86dd584ca3dbe7e71f92bb27b
b7cdc513fddf6a500b6f8e08a729a1c55b642a1f
6b7d730d6fb41b337acd1fd6fcc2b11a017c6e22a818f39d022c173399aab60d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 03:37:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rules.quantcount.com/rules-p-1fNsFWH97du16.js
54.230.111.47301 Moved Permanently 167 B URL HTTP/1.1 rules.quantcount.com/rules-p-1fNsFWH97du16.js
IP 54.230.111.47:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /rules-p-1fNsFWH97du16.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.meanwhilein.org/
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sat, 01 Apr 2023 03:37:08 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://rules.quantcount.com/rules-p-1fNsFWH97du16.js
X-Cache: Redirect from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mQfMjfMrEKpWw8Gn523YLigo87aAoHrUWbpQnI-vfu1j1OtXMvJgTA==
cdn.taboola.com/libtrc/horsehead-network/loader.js
151.101.129.44200 OK 47 kB URL HTTP/1.1 cdn.taboola.com/libtrc/horsehead-network/loader.js
IP 151.101.129.44:0
File type ASCII text, with very long lines (65509)
Hash 3e05426583814a0801c6aeafbd509481
85fcadc0a2a31b8bf57c5ee060e840849752152f
987738c22a93b1343ff4a254c31161d9796fea5bfec69b539f3d92c6afcfcda3
GET /libtrc/horsehead-network/loader.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.meanwhilein.org/
Connection: keep-alive
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 47357
x-amz-id-2: QJtHS8K+n3dpMxPcIsj6+CawMxI/Uet9SqdJIVXd87h8Rzos6KC+frsUQGe7mCAkyfpkgdLRVu0=
x-amz-request-id: H03EFW38WM51EMW7
x-amz-replication-status: FAILED
Last-Modified: Thu, 30 Mar 2023 09:32:55 GMT
ETag: "422519d5f7a17b2b6b312525986f6386"
x-amz-server-side-encryption: AES256
x-amz-version-id: jjE.yt4teQW.4j8xTAG.hwSty7MQzVfm
Content-Type: application/javascript; charset=utf-8
Server: AmazonS3
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Sat, 01 Apr 2023 03:37:08 GMT
Via: 1.1 varnish
Age: 0
X-Served-By: cache-bma1676-BMA
X-Cache: HIT
X-Cache-Hits: 1
X-Timer: S1680320228.167764,VS0,VE103
Cache-Control: private,max-age=14401
Vary: Accept-Encoding
abp: 38
Access-Control-Allow-Origin: *
www.gstatic.com/recaptcha/releases/NZrMWHVy58-S9gVvad9HVGxk/recaptcha__en.js
216.58.211.3200 OK 166 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/NZrMWHVy58-S9gVvad9HVGxk/recaptcha__en.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (582)
Size 166 kB (166464 bytes)
Hash b81d6636c3ad72c63e532e5180eaf7f9
ddcd059999fff6218e98af62dbe3fa9c885a0de8
2fb4351c49b47b7cdaa9516237a8b1e690e4448339d09d70a84c658729e461ef
GET /recaptcha/releases/NZrMWHVy58-S9gVvad9HVGxk/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Origin: http://www.meanwhilein.org
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166464
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 08:50:01 GMT
expires: Wed, 27 Mar 2024 08:50:01 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 28 Mar 2023 00:02:54 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 326827
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-1fNsFWH97du16.js
54.230.111.47200 OK 160 B URL HTTP/2 rules.quantcount.com/rules-p-1fNsFWH97du16.js
IP 54.230.111.47:0
Hash 93d3f379d960770838afbd940546c010
e6980f4eb98f9c62093cabdfa221747e69e04364
9aec79b9c04e0230aca79c162f19a9988ffb5c80c9c98f126bae82870b6a46f4
GET /rules-p-1fNsFWH97du16.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 160
last-modified: Fri, 14 Oct 2022 00:47:15 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Sat, 01 Apr 2023 02:57:48 GMT
cache-control: max-age=3600
etag: "93d3f379d960770838afbd940546c010"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YDnINFE0IPh-R1GKSGtZY1eJlhlVQOFxgEdOwHvNkUVwA8oVGRYKhw==
age: 2360
X-Firefox-Spdy: h2
whos.amung.us/swidget/m9bk7sxoa8jz.png
172.67.8.141307 Temporary Redirect 319 B URL HTTP/2 whos.amung.us/swidget/m9bk7sxoa8jz.png
IP 172.67.8.141:0
File type PNG image data, 80 x 15, 8-bit colormap, non-interlaced\012- data
Hash 52be211330111afd620876775a503dc6
815faa6a4d8b1d795eddc5808feaa4e06cbd1766
fcea93ff3ebb838b05a7e1e9b3c335df105178143bf7e2b2f893c5759e381687
GET /swidget/m9bk7sxoa8jz.png HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
date: Sat, 01 Apr 2023 03:37:08 GMT
content-type: text/html; charset=UTF-8
location: https://widgets.amung.us/small/00/12.png
cache-control: no-cache, no-store, must-revalidate
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7b0dcab20adb0afe-OSL
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/impl.20230330-9-RELEASE.js
151.101.129.44200 OK 158 kB URL HTTP/2 cdn.taboola.com/libtrc/impl.20230330-9-RELEASE.js
IP 151.101.129.44:0
File type ASCII text, with very long lines (65509)
Size 158 kB (158223 bytes)
Hash 3d06c2d79fe1c2084ad91740af380c51
6d381292aaeb00ba5a5f618e9d08371f27b9f008
de840c7a00c7757efa46d94642084b4864b61e915376a8abddcfe6151eb34c07
GET /libtrc/impl.20230330-9-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: BA2AhnFqjp+RnZsMuCDD9T1G9nVKPgbyst4p4KNFPougONmSARSLBeA9KPOItCeClBkV0DtMYng=
x-amz-request-id: 82N8F88Q8GTX2GCC
last-modified: Thu, 30 Mar 2023 09:08:34 GMT
etag: "3d06c2d79fe1c2084ad91740af380c51"
x-amz-server-side-encryption: AES256
content-encoding: br
x-amz-version-id: 58MMc5iZ2qo1EObP0YBU7PAZmP.GBrWw
content-type: application/javascript
accept-ranges: bytes
date: Sat, 01 Apr 2023 03:37:08 GMT
via: 1.1 varnish
age: 8756
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1542
x-timer: S1680320228.400620,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 99
server: AmazonS3-br
access-control-allow-origin: *
content-length: 158223
X-Firefox-Spdy: h2
sb.scorecardresearch.com/beacon.js
143.204.55.8200 OK 0 B URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 143.204.55.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 31 Mar 2023 05:47:23 GMT
last-modified: Thu, 09 Mar 2023 09:22:40 GMT
x-amz-server-side-encryption: AES256
cache-control: max-age=86400
server: AmazonS3
content-encoding: gzip
etag: W/"a06e7a176f40dc26aa5e9567ac9d2d5e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: O8cAWWljkHQYOPvGE1uBu2qGmtrVnnBAtIolHIzuLT8YG-KbGnZeMg==
age: 78586
X-Firefox-Spdy: h2
pixel.quantserve.com/pixel;r=1113184199;rf=0;a=p-1fNsFWH97du16;url=http%3A%2F%2Fwww.meanwhilein.org%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the;uht=2;fpan=1;fpa=P0-1222687953-1680320226893;pbc=;ns=0;ce=1;qjs=1;qv=93f4cf8b-20230329153214;cm=;gdpr=0;ref=;d=meanwhilein.org;dst=0;et=1680320227021;tzo=0;ogl=image.https%3A%2F%2Fassets%252Ehorseheadhuffer%252Ecom%2Fhashed_silo_content%2Fdc1%2F2fa%2F3ff%2Fresized%2Fwhen_;ses=e492a756-ff37-44e2-a04c-ce2c4847107f
91.228.74.251200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=1113184199;rf=0;a=p-1fNsFWH97du16;url=http%3A%2F%2Fwww.meanwhilein.org%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the;uht=2;fpan=1;fpa=P0-1222687953-1680320226893;pbc=;ns=0;ce=1;qjs=1;qv=93f4cf8b-20230329153214;cm=;gdpr=0;ref=;d=meanwhilein.org;dst=0;et=1680320227021;tzo=0;ogl=image.https%3A%2F%2Fassets%252Ehorseheadhuffer%252Ecom%2Fhashed_silo_content%2Fdc1%2F2fa%2F3ff%2Fresized%2Fwhen_;ses=e492a756-ff37-44e2-a04c-ce2c4847107f
IP 91.228.74.251:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=1113184199;rf=0;a=p-1fNsFWH97du16;url=http%3A%2F%2Fwww.meanwhilein.org%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the;uht=2;fpan=1;fpa=P0-1222687953-1680320226893;pbc=;ns=0;ce=1;qjs=1;qv=93f4cf8b-20230329153214;cm=;gdpr=0;ref=;d=meanwhilein.org;dst=0;et=1680320227021;tzo=0;ogl=image.https%3A%2F%2Fassets%252Ehorseheadhuffer%252Ecom%2Fhashed_silo_content%2Fdc1%2F2fa%2F3ff%2Fresized%2Fwhen_;ses=e492a756-ff37-44e2-a04c-ce2c4847107f HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 03:37:08 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=6427a6e4-8d954-48f3b-fdf89; expires=Wed, 01-May-2024 03:37:08 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4719
Expires: Sat, 01 Apr 2023 04:55:47 GMT
Date: Sat, 01 Apr 2023 03:37:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4719
Expires: Sat, 01 Apr 2023 04:55:47 GMT
Date: Sat, 01 Apr 2023 03:37:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4719
Expires: Sat, 01 Apr 2023 04:55:47 GMT
Date: Sat, 01 Apr 2023 03:37:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4719
Expires: Sat, 01 Apr 2023 04:55:47 GMT
Date: Sat, 01 Apr 2023 03:37:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ddcef2c96778d9fdee670e187a43ab32
e8c98891a1ffdbb6d30cf8746e067d56fe65d964
4e6fb506079b1daab0b1913a31c6252452f133af9276e18d25fe6fb622ce54ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3800
x-amzn-requestid: a182fb32-649a-4228-a591-080aae8c053a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VEY2oAMFf5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-3a1abb584aa61a954dbd52c1;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 8_m0xs9JUsoheDqkfPQdh3kzcE3zhX2Io1kl_Y4sDqLr2_03TiK2eA==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:50:35 GMT
etag: "e8c98891a1ffdbb6d30cf8746e067d56fe65d964"
content-type: image/jpeg
age: 20793
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c193cd4520e8ee5d17cd1f3faadc1c73
b46effcb93e0ad066474ec1f67bcd54020615caf
bc824341b884278e7e69ae3bb87484ad914e5909544959ebc8f8661a545cb929
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10128
x-amzn-requestid: bdd46a1d-4b43-4450-be32-3e3947d2fcd7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VELdIAMFmmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-346e92d143f6fcf46db741c8;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: TzZpij5xeF-mrrMvpNNPJQA62GcNd0qPNAh_7IAme7SI3WwmZ4itcg==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:47:54 GMT
etag: "b46effcb93e0ad066474ec1f67bcd54020615caf"
content-type: image/jpeg
age: 20954
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F365dc310-6867-454a-8e83-d6a28e4bc177.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F365dc310-6867-454a-8e83-d6a28e4bc177.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f992b95cc46e20672fed03dc4a3f8a7a
944f46cbcfaf9335466bfd1b23c5ef57a3503cd1
b7ee66b81aa60b9a5d8976b9e36161899aa03fab4676d44de21789231b18f658
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F365dc310-6867-454a-8e83-d6a28e4bc177.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10885
x-amzn-requestid: 129c4e54-5f31-45ab-bd0c-0ca20d561503
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm7NFNWoAMFXcA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751e1-25d9470c2225c57512a18cd6;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:25 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Iy-8AOJptoYjQnUOhZyvPFr1W-vhYD7QpjBuXrODaWudOwdFkIS4WA==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:38:48 GMT
age: 21500
etag: "944f46cbcfaf9335466bfd1b23c5ef57a3503cd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da174e6ccc9451c5071ba10eeb97f6f6
c38827a9ac1218768839877263e1f2984fbdc454
76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9859
x-amzn-requestid: 526d70f5-3eab-410e-97d4-e489e152bd43
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cl6tIFhxoAMFa-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64257186-14e697b924e79d1e5bc6d040;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 11:24:54 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: qKEs-bdLIfTk7TjXU0kLNzqEBDhhUXkX_osB-9p5LdfJfUbo8LwyuQ==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Apr 2023 01:27:32 GMT
age: 7776
etag: "c38827a9ac1218768839877263e1f2984fbdc454"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b04f715-df83-425c-b3e1-5703d926f759.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b04f715-df83-425c-b3e1-5703d926f759.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a88f6c7b5bce83cc00e9e8271cf56702
21835a62ac378c55a61a762636b811a837749648
40b4e80bf0a5ac477804025c56beb2263d77a9f84933eabf6d464589e6f1d573
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b04f715-df83-425c-b3e1-5703d926f759.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5257
x-amzn-requestid: 694e361b-d59f-4a35-b547-de5a42689670
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ClU6mHJuIAMF5Iw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64253510-4f0d883b2f15ceee32b013da;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 07:06:56 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: -nOAcLEHo6i5uOJHpDTP9r7bI0F9okpHJ77bPkOEvUpPKmRWebrwZw==
via: 1.1 4e4278a2778e72cc34feef6db603088c.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 07:30:05 GMT
age: 72423
etag: "21835a62ac378c55a61a762636b811a837749648"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157302 Found 0 B URL HTTP/1.1 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.meanwhilein.org/
Connection: keep-alive
HTTP/1.1 302 Found
content-length: 0
location: https://gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
cache-control: no-cache
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab3267a3-5b54-4897-9b87-b135a35c1c32.avif
34.120.237.76400 Bad Request 3 B URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab3267a3-5b54-4897-9b87-b135a35c1c32.avif
IP 34.120.237.76:0
File type ASCII text, with no line terminators
Hash fcc3d7489d15ef49dbbf735234234cf7
654e0aaee80e38636c503629d32225db31a616de
52109349dabf69106e04ec2f493fb8b6ade94ea100227cccce6559ab8b96553f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab3267a3-5b54-4897-9b87-b135a35c1c32.avif HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
server: nginx
date: Sat, 01 Apr 2023 03:37:08 GMT
content-type: application/json
content-length: 3
x-amzn-requestid: 543d50ef-3b5b-4ac6-bfb4-8940b5eb820e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CrbpoEMGoAMF4eQ=
cache-control: max-age=120,public
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6427a63d-5fff66743882e31f603d8f8c;Sampled=0;lineage=69363f46:0
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Error from cloudfront
x-amz-cf-id: PW8N5kjchVZbnbgdZcYtQ7p162VYNwP24fsbn4AyY2a8gfrwI2rSOQ==
age: 54
via: 1.1 185f4b03b711932fc7e735c08fdc5abe.cloudfront.net (CloudFront), 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/direct?url=https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab3267a3-5b54-4897-9b87-b135a35c1c32.avif&resize=w450
34.120.237.76200 OK 1 B URL HTTP/2 img-getpocket.cdn.mozilla.net/direct?url=https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab3267a3-5b54-4897-9b87-b135a35c1c32.avif&resize=w450
IP 34.120.237.76:0
File type very short file (no magic)
Hash 7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
GET /direct?url=https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab3267a3-5b54-4897-9b87-b135a35c1c32.avif&resize=w450 HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 1
x-amzn-requestid: aee588f0-3799-4d5e-af78-82a5ba5b7dfd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CrT8mFfwoAMFUvw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642799e9-3bfed5f209fc3c633ad4e894;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date:
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: aW4GBRm9xottzEwXxugFKdfy5NlJE_Uek7QPbype9eKbpVUP9_M3-A==
via: 1.1 304b956e2039e07753fa39109152d594.cloudfront.net (CloudFront), 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Apr 2023 02:58:41 GMT
age: 2307
etag:
content-type: application/x-empty; charset=binary
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 069f9934a0e19f21997dc3f7fa07ff1d
0ebd6000c5dac38829ffae5e624d32da5ef2c9a8
f7a956f911c7bafb32638f7e09e81602a4599728a8ba7994fcb8dd03b92f14ea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1622
Cache-Control: max-age=129050
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 03:37:08 GMT
Etag: "6426f5a8-1d7"
Expires: Sun, 02 Apr 2023 15:27:58 GMT
Last-Modified: Fri, 31 Mar 2023 15:00:56 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.0.157200 OK 24 kB URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.0.157:0
Hash c28ff1d908ed19c93c1cf9ecbc6c8fcd
f5bad0d684da5d09daf2c1a448011cdaea48cb09
6a4c89034ac11681ff2b5612baf142077d579fd168e13f6ffedd724aa8fc53af
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 03:37:08 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 687578
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 73a381456d51335b0e6832cb2d6438d2
56707bf55891c06b77e863ec7855f44d09b989e6
294155af054d4af4009915bed99dc4bbd50585b5409fb2148c33f6ca86b602f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 687
Cache-Control: max-age=134983
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 03:37:09 GMT
Etag: "6427107d-138"
Expires: Sun, 02 Apr 2023 17:06:52 GMT
Last-Modified: Fri, 31 Mar 2023 16:55:25 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 312
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 03:37:08 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0-alpha.2/css/bootstrap.min.css
104.18.10.207200 OK 18 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0-alpha.2/css/bootstrap.min.css
IP 104.18.10.207:0
File type ASCII text, with very long lines (65363)
Hash f0a52ec1f6ff8eb69bfc7ab4b75ee647
02e0cb9f6db13d6aec35f42f6efbf3677050e97a
c74acd54afe7421758599f26238034dca2f0862ab40a9fc29105d82ba91faa72
GET /bootstrap/4.0.0-alpha.2/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Origin: http://www.meanwhilein.org
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 03:37:07 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"b00faad199b5b881d17b2cd7fac04a56"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 11/15/2022 10:31:50
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1053
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 942b85b3422357718c9fe44391943829
cdn-cache: HIT
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7b0dcaabdeebb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 03:37:08 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=NGW9t180M0RITmhlJTJCZkMwOUJGQlhaMUN2czVESUJETll2Y3dGSkpIUm0xNmc3R0xhYlZzdnRCRHhEazZ3S0ZOTUdCYW4; expires=Thu, 25 Apr 2024 03:37:09 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 339422
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 313 B IP 192.229.221.95:0
Hash c937e0e0b65ebe47b8bd26295ae17ce4
39e28ac35d6dced4fa170d3fb9ef2955dcfab320
52e314aa8dead3e4224eb075dffe8c6cc14d7aa453ba5b157dd37cc9ccd1cf82
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1026
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 03:37:09 GMT
Last-Modified: Sat, 01 Apr 2023 03:20:03 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
192.229.221.95200 OK 313 B IP 192.229.221.95:0
Hash c937e0e0b65ebe47b8bd26295ae17ce4
39e28ac35d6dced4fa170d3fb9ef2955dcfab320
52e314aa8dead3e4224eb075dffe8c6cc14d7aa453ba5b157dd37cc9ccd1cf82
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1026
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 01 Apr 2023 03:37:09 GMT
Etag: "64267711-139"
Last-Modified: Sat, 01 Apr 2023 03:20:03 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 313
gum.criteo.com/sid/json?origin=rtus&domain=meanwhilein.org&sn=FirefoxSyncframe&so=0&topUrl=www.meanwhilein.org&info=N3r_u180M0RITmhlJTJCZkMwOUJGQlhaMUN2czVESUJETll2Y3dGSkpIUm0xNmc3R0tHOUhVMDhIJTJCV0liNGFJaDNxUGVoJTJC&idsd=-87132498,-36652546&cw=1&rtusCallerId=72&lsw=1
178.250.0.157200 OK 321 B URL HTTP/2 gum.criteo.com/sid/json?origin=rtus&domain=meanwhilein.org&sn=FirefoxSyncframe&so=0&topUrl=www.meanwhilein.org&info=N3r_u180M0RITmhlJTJCZkMwOUJGQlhaMUN2czVESUJETll2Y3dGSkpIUm0xNmc3R0tHOUhVMDhIJTJCV0liNGFJaDNxUGVoJTJC&idsd=-87132498,-36652546&cw=1&rtusCallerId=72&lsw=1
IP 178.250.0.157:0
File type JSON data\012- , ASCII text, with very long lines (393), with no line terminators
Hash 96d2281e4bde037bd6c5fed6469fe56b
1388d8179c37893bf6de143a1d74469e3ec21795
e5861de2d4217aa50f6c6cd543007994cc86289996fc4d9927ccb95de44e20cc
GET /sid/json?origin=rtus&domain=meanwhilein.org&sn=FirefoxSyncframe&so=0&topUrl=www.meanwhilein.org&info=N3r_u180M0RITmhlJTJCZkMwOUJGQlhaMUN2czVESUJETll2Y3dGSkpIUm0xNmc3R0tHOUhVMDhIJTJCV0liNGFJaDNxUGVoJTJC&idsd=-87132498,-36652546&cw=1&rtusCallerId=72&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=www.meanwhilein.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 03:37:08 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 919227
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1&entry=c~Idfs.Rtus.72.Events.FetchError~1
178.250.0.162200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1&entry=c~Idfs.Rtus.72.Events.FetchError~1
IP 178.250.0.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1&entry=c~Idfs.Rtus.72.Events.FetchError~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 03:37:09 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
trc-events.taboola.com/unknown-site-on-horsehead-network/log/2/debug?tim=03%3A37%3A08.003&type=warn&msg=Invalid%20ajax%20response%20from%20server&llvl=2&id=4106&cv=20230330-9-RELEASE<=deflated&pct=1
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/unknown-site-on-horsehead-network/log/2/debug?tim=03%3A37%3A08.003&type=warn&msg=Invalid%20ajax%20response%20from%20server&llvl=2&id=4106&cv=20230330-9-RELEASE<=deflated&pct=1
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /unknown-site-on-horsehead-network/log/2/debug?tim=03%3A37%3A08.003&type=warn&msg=Invalid%20ajax%20response%20from%20server&llvl=2&id=4106&cv=20230330-9-RELEASE<=deflated&pct=1 HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sat, 01 Apr 2023 03:37:09 GMT
x-fastly-to-nlb-rtt: 22104
access-control-allow-credentials: true
X-Firefox-Spdy: h2
trc-events.taboola.com/unknown-site-on-horsehead-network/log/2/debug?tim=03%3A37%3A07.998&type=error&msg=Server%20did%20not%20respond%20to%20loadRBox&llvl=2&id=6934&cv=20230330-9-RELEASE<=deflated&pct=1
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/unknown-site-on-horsehead-network/log/2/debug?tim=03%3A37%3A07.998&type=error&msg=Server%20did%20not%20respond%20to%20loadRBox&llvl=2&id=6934&cv=20230330-9-RELEASE<=deflated&pct=1
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /unknown-site-on-horsehead-network/log/2/debug?tim=03%3A37%3A07.998&type=error&msg=Server%20did%20not%20respond%20to%20loadRBox&llvl=2&id=6934&cv=20230330-9-RELEASE<=deflated&pct=1 HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sat, 01 Apr 2023 03:37:09 GMT
x-fastly-to-nlb-rtt: 22522
access-control-allow-credentials: true
X-Firefox-Spdy: h2
trc-events.taboola.com/unknown-site-on-horsehead-network/log/2/debug?tim=03%3A37%3A08.001&type=error&msg=loadRBox%20failed%2C%20aborting.&llvl=2&id=1204&cv=20230330-9-RELEASE<=deflated&pct=1
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/unknown-site-on-horsehead-network/log/2/debug?tim=03%3A37%3A08.001&type=error&msg=loadRBox%20failed%2C%20aborting.&llvl=2&id=1204&cv=20230330-9-RELEASE<=deflated&pct=1
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /unknown-site-on-horsehead-network/log/2/debug?tim=03%3A37%3A08.001&type=error&msg=loadRBox%20failed%2C%20aborting.&llvl=2&id=1204&cv=20230330-9-RELEASE<=deflated&pct=1 HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sat, 01 Apr 2023 03:37:09 GMT
x-fastly-to-nlb-rtt: 22522
access-control-allow-credentials: true
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=rtus&topUrl=www.meanwhilein.org
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=www.meanwhilein.org
IP 178.250.0.157:0
GET /syncframe?origin=rtus&topUrl=www.meanwhilein.org HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 03:37:08 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=ece3fac4-f929-4d1b-bbd3-87b83d4e8e91; expires=Thu, 25 Apr 2024 03:37:08 GMT; domain=.criteo.com; path=/; secure; samesite=none
optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 366360
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
assets.horseheadhuffer.com/hashed_silo_content/079/16f/bdf/icon/creepycover-com-53262d.jpg
54.230.111.42403 Forbidden 0 B URL HTTP/2 assets.horseheadhuffer.com/hashed_silo_content/079/16f/bdf/icon/creepycover-com-53262d.jpg
IP 54.230.111.42:0
GET /hashed_silo_content/079/16f/bdf/icon/creepycover-com-53262d.jpg HTTP/1.1
Host: assets.horseheadhuffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
content-type: application/xml
date: Sat, 01 Apr 2023 03:37:07 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 76EmMQby2m4tEFFuj7aX5i5uLxYntGxFqr-0zE8fmZ_gFkKoz9tP4Q==
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
185.235.84.65200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.65:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 03:37:08 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 117173
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
trc.taboola.com/unknown-site-on-horsehead-network/trc/3/json?tim=03%3A37%3A07.865<i=deflated&data=%7B%22id%22%3A708%2C%22ii%22%3A%22%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1680168768843%2C%22vi%22%3A1680320227861%2C%22cv%22%3A%2220230330-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.meanwhilein.org%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the%22%2C%22bv%22%3A%220%22%2C%22wc%22%3Atrue%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22http%3A%2F%2Fwww.meanwhilein.org%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the%22%2C%22vpi%22%3A%22%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A1280%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A939%2C%22dw%22%3A1268%2C%22dh%22%3A3330%2C%22nsid%22%3A%22horsehead-network%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A8%2C%22uim%22%3A%22thumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22cd%22%3A2715.199951171875%2C%22mw%22%3A1110%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the%2CBelow%20Article%20Thumbnails%3Dthumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2
151.101.129.44200 OK 0 B URL HTTP/2 trc.taboola.com/unknown-site-on-horsehead-network/trc/3/json?tim=03%3A37%3A07.865<i=deflated&data=%7B%22id%22%3A708%2C%22ii%22%3A%22%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1680168768843%2C%22vi%22%3A1680320227861%2C%22cv%22%3A%2220230330-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.meanwhilein.org%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the%22%2C%22bv%22%3A%220%22%2C%22wc%22%3Atrue%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22http%3A%2F%2Fwww.meanwhilein.org%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the%22%2C%22vpi%22%3A%22%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A1280%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A939%2C%22dw%22%3A1268%2C%22dh%22%3A3330%2C%22nsid%22%3A%22horsehead-network%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A8%2C%22uim%22%3A%22thumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22cd%22%3A2715.199951171875%2C%22mw%22%3A1110%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the%2CBelow%20Article%20Thumbnails%3Dthumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2
IP 151.101.129.44:0
GET /unknown-site-on-horsehead-network/trc/3/json?tim=03%3A37%3A07.865<i=deflated&data=%7B%22id%22%3A708%2C%22ii%22%3A%22%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the%22%2C%22it%22%3A%22text%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22uifp%22%3Anull%2C%22lbt%22%3A1680168768843%2C%22vi%22%3A1680320227861%2C%22cv%22%3A%2220230330-9-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.meanwhilein.org%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the%22%2C%22bv%22%3A%220%22%2C%22wc%22%3Atrue%2C%22ul%22%3A%5B%22en-US%22%2C%22en%22%5D%2C%22btv%22%3A%220%22%2C%22bu%22%3A%22http%3A%2F%2Fwww.meanwhilein.org%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the%22%2C%22vpi%22%3A%22%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the%22%2C%22bad%22%3A-1%2C%22sw%22%3A1280%2C%22sh%22%3A1002%2C%22bw%22%3A1280%2C%22sde%22%3A%221.000%22%2C%22bh%22%3A939%2C%22dw%22%3A1268%2C%22dh%22%3A3330%2C%22nsid%22%3A%22horsehead-network%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-t2m%22%2C%22s%22%3A8%2C%22uim%22%3A%22thumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22orig_uip%22%3A%22Below%20Article%20Thumbnails%22%2C%22cd%22%3A2715.199951171875%2C%22mw%22%3A1110%7D%5D%2C%22cacheKey%22%3A%22text%3D%2Fposts%2F142683-notice-the-old-spice-guy-in-the-background-that-s-the%2CBelow%20Article%20Thumbnails%3Dthumbnails-a%3Apub%3Dhorsehead-network%3Aabp%3D0%22%2C%22cb%22%3A%22TRC.callbacks.recommendations_1%22%2C%22lt%22%3A%22deflated%22%7D&llvl=2 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Content-Type: text/plain
Origin: http://www.meanwhilein.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/plain;charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: http://www.meanwhilein.org
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Sat, 01 Apr 2023 03:37:09 GMT
via: 1.1 varnish
x-served-by: cache-bma1671-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1680320229.235708,VS0,VE98
vary: Accept-Encoding
x-vcl-time-ms: 98
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0-alpha.2/js/bootstrap.min.js
104.18.10.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0-alpha.2/js/bootstrap.min.js
IP 104.18.10.207:0
GET /bootstrap/4.0.0-alpha.2/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 03:37:07 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 12/25/2021 08:22:17
cdn-edgestorageid: 756
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.02
cdn-requestid: a345528ce49c1eb27b860d1c993c5c61
cdn-cache: HIT
cf-cache-status: HIT
age: 706735
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7b0dcaac0b88b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=NGW9t180M0RITmhlJTJCZkMwOUJGQlhaMUN2czVESUJETll2Y3dGSkpIUm0xNmc3R0xhYlZzdnRCRHhEazZ3S0ZOTUdCYW4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 03:37:08 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=N3r_u180M0RITmhlJTJCZkMwOUJGQlhaMUN2czVESUJETll2Y3dGSkpIUm0xNmc3R0tHOUhVMDhIJTJCV0liNGFJaDNxUGVoJTJC; expires=Thu, 25 Apr 2024 03:37:09 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 410964
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400,700|Droid+Sans:400,700|Material+Icons
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400,700|Droid+Sans:400,700|Material+Icons
IP 142.250.74.106:0
GET /css?family=Roboto:400,700|Droid+Sans:400,700|Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.meanwhilein.org/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 01 Apr 2023 03:37:07 GMT
date: Sat, 01 Apr 2023 03:37:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.87.100200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.87.100:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 03:37:08 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 67166
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2