r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2e72d45afe3d391c204b5391599607c
149d68b9d00a720b6f380fa2324779dca9dbe26d
f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12836
Expires: Tue, 31 Jan 2023 20:31:56 GMT
Date: Tue, 31 Jan 2023 16:58:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4426
Expires: Tue, 31 Jan 2023 18:11:46 GMT
Date: Tue, 31 Jan 2023 16:58:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4550
Expires: Tue, 31 Jan 2023 18:13:50 GMT
Date: Tue, 31 Jan 2023 16:58:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 16:43:17 GMT
content-type: application/json
age: 883
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: uIScpxIyqjq1nP4S282H5h6Gbl8LTOhgiLHgZpU3HjI0nw/G1hgutGp+rt13CiW3yI39evdVrIM=
x-amz-request-id: T3NSGHW5X4W3EGVZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 16:22:17 GMT
age: 2143
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
nationaltoday.com/national-drink-wine-day/
162.159.135.42301 Moved Permanently 162 B URL HTTP/1.1 nationaltoday.com/national-drink-wine-day/
IP 162.159.135.42:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /national-drink-wine-day/ HTTP/1.1
Host: nationaltoday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 31 Jan 2023 16:58:00 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://nationaltoday.com/national-drink-wine-day/
CF-Ray: 7923fd587cd91bfa-OSL
CF-Cache-Status: DYNAMIC
ki-cache-type: None
Ki-CF-Cache-Status: BYPASS
ki-edge: v=17.17
X-Content-Type-Options: nosniff
X-Edge-Location-Klb: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FxIQxGG3IOwdDBqvKKl6%2F4rhgJDAGL7rGTMH25IptY7z0GeToT8QGBJ25X4jOAyCncrhzLB2mfC3Wuwksty5s7pMxr7Lb%2B3GmVFPpuR63YcRzTKELKluH%2B0r8E2odthYgCD4"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash f0e1fdec114882b090c1d0f6201cc566
949d1182497590f1e5b2d08beb32e398b593e7f0
4bee45833bf2020105589a4c067e8bd97963cb114390a86abe8e43ada01834ee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5800
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:00 GMT
Last-Modified: Tue, 31 Jan 2023 15:21:20 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 278
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 16:58:00 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 16:41:42 GMT
age: 979
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10314
Expires: Tue, 31 Jan 2023 19:49:55 GMT
Date: Tue, 31 Jan 2023 16:58:01 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash f0e1fdec114882b090c1d0f6201cc566
949d1182497590f1e5b2d08beb32e398b593e7f0
4bee45833bf2020105589a4c067e8bd97963cb114390a86abe8e43ada01834ee
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5801
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:01 GMT
Last-Modified: Tue, 31 Jan 2023 15:21:20 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash d35f396d9527b37a17f37494bfd430da
aca6151dab60057d9d0cc536f1934b2469073dc2
3174f21f094562685047a983e6632473cc6941fb9ec719f2e6bd30fac9a2d959
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5823
Cache-Control: max-age=161151
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:01 GMT
Etag: "63d90459-118"
Expires: Thu, 02 Feb 2023 13:43:52 GMT
Last-Modified: Tue, 31 Jan 2023 12:06:49 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 280
nationaltoday.com/national-drink-wine-day/
162.159.135.42200 OK 107 kB URL HTTP/2 nationaltoday.com/national-drink-wine-day/
IP 162.159.135.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (15195)
Size 107 kB (107332 bytes)
Hash e1eec1b4c1553d64ca042f774bd692c7
03e9178d6ef939787d8677f5dbb649ad9bcc680a
b51c615a224ca6c9d2c355cca30f7d2648f6af7af109066ab9ee147672aa1aec
GET /national-drink-wine-day/ HTTP/1.1
Host: nationaltoday.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:01 GMT
content-type: text/html; charset=UTF-8
cf-ray: 7923fd5aed2e0b69-OSL
link: <https://nationaltoday.com/wp-json/>; rel="https://api.w.org/", <https://nationaltoday.com/wp-json/wp/v2/posts/1041>; rel="alternate"; type="application/json", <https://nationaltoday.com/?p=1041>; rel=shortlink
vary: Accept-Encoding
cf-cache-status: DYNAMIC
ki-cache-type: None
ki-cf-cache-status: BYPASS
ki-edge: v=17.17
x-content-type-options: nosniff
x-edge-location-klb: 1
x-kinsta-cache: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=julJjPajYBwwnL6eycMLgvSdImfP%2BvBFEWox6ybFF1TiIX3OXpfZFfbNfLNkJByFF2u08KGfmb2u2M23%2FjhRU2K3ZoIfi0Px%2F122GfVawqyRSuTgIDSysuscBlsKAWxN46Dn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.214.84.191101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.84.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vMx3M5jdh1/aitRlcemXzQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jYUgeXG3NbjkQz7qiWIvMlGYMPU=
cdnjs.cloudflare.com/ajax/libs/ScrollMagic/2.0.6/ScrollMagic.min.js
104.17.24.14200 OK 5.5 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/ScrollMagic/2.0.6/ScrollMagic.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (17276)
Hash 24267c4c8275092f1903290e9b42e56d
eb1a14c4ebb707509b6b56b25acd82091d963a27
7c7dca1502bf8ebf002227e4af8f12357e8a5f423e51fb3992982bceae8ab10b
GET /ajax/libs/ScrollMagic/2.0.6/ScrollMagic.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:01 GMT
content-type: application/javascript; charset=utf-8
content-length: 5480
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03cf2-43e1"
last-modified: Mon, 04 May 2020 16:04:02 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5426177
expires: Sun, 21 Jan 2024 16:58:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6H5BhUVo%2Bpmk%2Fwt%2FqkBH%2B8MBZ6W71E1ZYLt46FsQSk4Tz2wLkfkZJhwxylXoRTpO0GQ9hqLTaSm3MexNhynizA13%2BDeVZ4A7lSyJ25HnNy5PJL%2FuiWeHytplv4hbG8oH9q65ZfPP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7923fd60184d0b02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 1.3 kB IP 93.184.220.29:0
Hash 00ae632178627529073f46fdb95ff1e0
85aae35aeb0643964a32129c56d336fbc850b708
6becc3a747acec44b69ce2325f88007bbecfab13c08a0a2fa3c917b855f6366e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5823
Cache-Control: max-age=161151
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:01 GMT
Etag: "63d90459-118"
Expires: Thu, 02 Feb 2023 13:43:52 GMT
Last-Modified: Tue, 31 Jan 2023 12:06:49 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 280
cdn.tpdads.com/configs/nationaltoday.js
23.3.90.104200 OK 1.2 kB URL HTTP/2 cdn.tpdads.com/configs/nationaltoday.js
IP 23.3.90.104:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (5595)
Hash f0c7c02ff4be9c1f7422938c773b917a
d25cd04b374544eb84941a85560bb20c69a4e392
75052033d0c85a508fed07f83be3297299d29eb462e726b183d04b4006ff8514
GET /configs/nationaltoday.js HTTP/1.1
Host: cdn.tpdads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
accept-ranges: bytes
content-encoding: br
etag: "0df955b13700377ae38baee334689c1e:1673039714.436201"
last-modified: Tue, 31 Jan 2023 03:22:56 GMT
server: Akamai Resource Optimizer
content-length: 1243
cache-control: max-age=3731
expires: Tue, 31 Jan 2023 18:00:12 GMT
date: Tue, 31 Jan 2023 16:58:01 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 5.8 kB URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash e9eddbdf1933b23583888d358b394e03
3a1544d51a5994ef74b1b4808b7fac497f221ade
ce31bae44c9fc12ee27952f6c18a5f09ada2d3105ed49bac571c904d437fe908
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 16:58:01 GMT
Last-Modified: Tue, 31 Jan 2023 15:39:28 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dzrJIQsklz9rW0dOXYQXEqCTB7_f0UBqxaO5ka97fk_gB6Stc4NVVw==
Age: 4713
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 803cc0d40d427c69ade0e56cab728255
8538c70af34d8706c913762794f036bdd7129233
a60e0d2f85518e7ad323163c8d87939f3150d8944c3e9519c664346f1bc6b329
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A60E0D2F85518E7AD323163C8D87939F3150D8944C3E9519C664346F1BC6B329"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2551
Expires: Tue, 31 Jan 2023 17:40:32 GMT
Date: Tue, 31 Jan 2023 16:58:01 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d81f874741beb45c89de8bb5c6de438e
a251ab903e654953631d84721479bbae55aa5cdf
ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
use.fontawesome.com/releases/v5.5.0/webfonts/fa-solid-900.woff2
172.64.133.15200 OK 107 kB URL HTTP/2 use.fontawesome.com/releases/v5.5.0/webfonts/fa-solid-900.woff2
IP 172.64.133.15:0
Size 107 kB (107200 bytes)
Hash dd308f6635d3d0c03784dc1fd5de1b77
9419b55955dcb57d14caf3ff2939d89ffc84e878
470771235a42ba1622b05053403f36a0d09c7c1e2e0a810db9d36d254dcf89a1
GET /releases/v5.5.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:01 GMT
content-type: font/woff2
content-length: 73852
x-amz-id-2: khLlf4ljbeuL372IgDiCOkOzCeZPrHYw808J2BtHxm6ESRNb2LmcBNHv1zG0Z85lwxHB9zDoVSs=
x-amz-request-id: E6N5X2TJDSZ8GNGZ
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:43:51 GMT
etag: "fb493903265cad425ccdf8e04fc2de61"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 358682
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZA5dJAWnwmw9AdH0W8QPRqKBRECV4%2Bxn801mteXB1NX3xHIgxVCmfxljM0zxTsv%2F8tBBdTaoR0Asg9%2FgCGeCpCWfpTC0y8XydWgUmVVpPpd6kRbH9bGr5mZ3zyHzxGtLqkQ8OGGN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7923fd60ec6271cf-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 9.0 kB IP 142.250.74.131:0
Hash 7b956d11b2df0313d9c0f17532efd4db
e1596aecab5d4a00511481cbf781db96a67a127f
358b87e57ed09c8da3bebd333d46cf85e540b948323c8d79e9c90a1b1b64f58b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 789b41f1f8027d4275a66ac9cb2f124d
c5eff6750f9a50fc52a7a6ec6e30a7afaf28fc79
e053b0b29fc44721473ed39ddfe41064f09b56b3531c765228fa322d599e770f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v18/JTURjIg1_i6t8kCHKm45_c5H3gnD_vx3rCs.woff2
142.250.74.163200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v18/JTURjIg1_i6t8kCHKm45_c5H3gnD_vx3rCs.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 14048, version 1.0\012- data
Hash e79e5ab16efa6ffbbfe17debe37a7040
d3ba4ce26daeb559fd19c9580e5e1f33736063f1
39fa7e98ae2c9c54d6bf53973c32930a8eca120f32e0ed5536e1950971a2ebc5
GET /s/montserrat/v18/JTURjIg1_i6t8kCHKm45_c5H3gnD_vx3rCs.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:10:59 GMT
expires: Sat, 27 Jan 2024 02:10:59 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 10 Aug 2021 00:21:48 GMT
content-type: font/woff2
age: 398822
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v18/JTURjIg1_i6t8kCHKm45_dJE3gnD_vx3rCs.woff2
142.250.74.163200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v18/JTURjIg1_i6t8kCHKm45_dJE3gnD_vx3rCs.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 14116, version 1.0\012- data
Hash 5ab61438d801d1ea795d3682b83f8b2c
5cb2a643a53df411862ed712b87e0a640b9d80dc
430f110b314a582b55dd6853c36759df601baa2c608a029fcb3f427c4719f73b
GET /s/montserrat/v18/JTURjIg1_i6t8kCHKm45_dJE3gnD_vx3rCs.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 18:07:03 GMT
expires: Sat, 27 Jan 2024 18:07:03 GMT
cache-control: public, max-age=31536000
age: 341458
last-modified: Tue, 10 Aug 2021 00:21:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v18/JTUSjIg1_i6t8kCHKm459WlhyyTh89Y.woff2
142.250.74.163200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v18/JTUSjIg1_i6t8kCHKm459WlhyyTh89Y.woff2
IP 142.250.74.163:0
Hash 125cb707c67aa5927a79482b1a0badd4
a9958d00fd3dabe4aa71fd345a720542b583f2bf
a6b0876ebad9f1d5b1e55d3888e19e0d0080c9a4c8061d5f3a4813fb667cb0ce
GET /s/montserrat/v18/JTUSjIg1_i6t8kCHKm459WlhyyTh89Y.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14172
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 12:47:10 GMT
expires: Wed, 31 Jan 2024 12:47:10 GMT
cache-control: public, max-age=31536000
age: 15051
last-modified: Tue, 10 Aug 2021 00:19:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d81f874741beb45c89de8bb5c6de438e
a251ab903e654953631d84721479bbae55aa5cdf
ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.tpdads.com/tag-v2.min.js
23.3.90.104200 OK 25 kB URL HTTP/2 cdn.tpdads.com/tag-v2.min.js
IP 23.3.90.104:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash e543170059ba1a8da66d29f8cc3e6e27
8ab9ce2a4e8775062f46bde9932f34e9a4fe17cf
1899e9726d7cd47690b7303190d79040eec5f05bfc7d4f0ad1bd323e1dae0070
GET /tag-v2.min.js HTTP/1.1
Host: cdn.tpdads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
accept-ranges: bytes
content-encoding: br
etag: "0770d535646116f16d3950873ac0d8cd:1674764407.799579"
last-modified: Thu, 26 Jan 2023 21:20:37 GMT
server: Akamai Resource Optimizer
content-length: 25229
cache-control: max-age=5454
expires: Tue, 31 Jan 2023 18:28:55 GMT
date: Tue, 31 Jan 2023 16:58:01 GMT
X-Firefox-Spdy: h2
cdn.tpdads.com/publisher-data/nationaltoday.com.js
23.3.90.104200 OK 78 kB URL HTTP/2 cdn.tpdads.com/publisher-data/nationaltoday.com.js
IP 23.3.90.104:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (65536), with no line terminators
Hash 0a8b2a1aecb0c393463ea19e2e8c533b
02bf6d3e46e6b31bea681229168ac65408d72215
530873618c41c48f3e29095e025400ac6bc1670f99e93fd451ec9eff4f98f1dd
GET /publisher-data/nationaltoday.com.js HTTP/1.1
Host: cdn.tpdads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
accept-ranges: bytes
content-encoding: br
etag: "a0bfe126ddde95df49ba5945460cd521:1675102520.968274"
last-modified: Tue, 31 Jan 2023 09:06:05 GMT
server: Akamai Resource Optimizer
content-length: 78304
cache-control: max-age=4890
expires: Tue, 31 Jan 2023 18:19:32 GMT
date: Tue, 31 Jan 2023 16:58:02 GMT
X-Firefox-Spdy: h2
api.omappapi.com/v2/embed/31089/n1ckfw2xewacbaibb9nm
54.230.111.48401 Unauthorized 165 B URL HTTP/2 api.omappapi.com/v2/embed/31089/n1ckfw2xewacbaibb9nm
IP 54.230.111.48:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7c9894282d3f92c471d29c461ec73b8f
4c4c6edb3817c9fb9687a57b9c76e4f38543b3bf
b934ce9883949e7bceb88fa78a354125eefc85715f7e54da8ff529c94ebab0fe
GET /v2/embed/31089/n1ckfw2xewacbaibb9nm HTTP/1.1
Host: api.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 401 Unauthorized
content-type: application/json
content-length: 165
date: Tue, 31 Jan 2023 16:58:09 GMT
access-control-allow-origin: *
access-control-allow-headers: X-CSRF-Token
expires: Tue, 31 Jan 2023 16:59:19 GMT
cache-control: public, max-age=120, stale-while-revalidate=1800
x-user-agent: standard--
x-cache-config: 0 0
vary: Accept-Encoding, User-Agent
server: Pagely Gateway/1.5.1
x-cache: Error from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pfPUFkQCEr2Rvrur_4bU0j6S4M9j2xkYuzXbneYo1aIVhODdQKsrow==
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/K-jlOqKn9CY
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/K-jlOqKn9CY
IP 142.250.74.131:0
Hash b6173dfe63065f5e97516c3aaaaa7fe3
4933340033fa7a788251271dd33d33d1902483ea
6e047dbbcf8d841b9eb11a39d8cdc26b011e0bebf538b09d2cf0ee67163f6892
POST /s/gts1p5/K-jlOqKn9CY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:02 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:05:58 GMT
expires: Fri, 26 Jan 2024 10:05:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 456724
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 03:13:01 GMT
expires: Fri, 26 Jan 2024 03:13:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 481501
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6f5db0d14cef44c752e3e1a9fca90975
ab51df14cfb2c0faeb18434cf9f6c91ca27c9ca5
c42990daeefb10b0c86080335524e88e5953009d31ef93f06265bbb5f997507a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5963
Cache-Control: max-age=140036
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:02 GMT
Etag: "63d8b153-117"
Expires: Thu, 02 Feb 2023 07:51:58 GMT
Last-Modified: Tue, 31 Jan 2023 06:12:35 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6f5db0d14cef44c752e3e1a9fca90975
ab51df14cfb2c0faeb18434cf9f6c91ca27c9ca5
c42990daeefb10b0c86080335524e88e5953009d31ef93f06265bbb5f997507a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5963
Cache-Control: max-age=140036
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:02 GMT
Etag: "63d8b153-117"
Expires: Thu, 02 Feb 2023 07:51:58 GMT
Last-Modified: Tue, 31 Jan 2023 06:12:35 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6f5db0d14cef44c752e3e1a9fca90975
ab51df14cfb2c0faeb18434cf9f6c91ca27c9ca5
c42990daeefb10b0c86080335524e88e5953009d31ef93f06265bbb5f997507a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5963
Cache-Control: max-age=140036
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:02 GMT
Etag: "63d8b153-117"
Expires: Thu, 02 Feb 2023 07:51:58 GMT
Last-Modified: Tue, 31 Jan 2023 06:12:35 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
e.infogram.com/api/stylesheets/280
54.230.111.103200 OK 1.6 kB URL HTTP/2 e.infogram.com/api/stylesheets/280
IP 54.230.111.103:0
Hash 8406cacbc46d33335ffa0a9efb0fec69
880696251801d4efe1f2f026d9f6cc7d76628540
9920bdc106ac2d3dd0ea9d8b51bba4feb8c17a1c05fbf1b4daab04fb19ec78ff
GET /api/stylesheets/280 HTTP/1.1
Host: e.infogram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
server: nginx
x-dns-prefetch-control: off
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-download-options: noopen
x-content-type-options: nosniff
referrer-policy: no-referrer
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
access-control-allow-origin: *
content-encoding: gzip
date: Tue, 31 Jan 2023 16:42:06 GMT
etag: W/"1016-i6O8vuz0iV3t+rAhOeLfWDcuc+8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tFHmzUuJhsvyl6jkR0WVw7kALuYHSgACTAC1adhQaqqp4TwBHjpzjg==
age: 956
X-Firefox-Spdy: h2
e.infogram.com/6071b1dc-b78e-4be2-b050-42c07be9ce7b?parent_url=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&src=embed
54.230.111.103200 OK 38 kB URL HTTP/2 e.infogram.com/6071b1dc-b78e-4be2-b050-42c07be9ce7b?parent_url=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&src=embed
IP 54.230.111.103:0
Hash 0c7b85fd717e7ee2e3f1db7e37d0e05b
c4a3b4e948318f79299114b35323c0eafaf52f44
3af00706942400905c3bf9d04f53e852ad7d576f36d4f3e019032d40e0687975
GET /6071b1dc-b78e-4be2-b050-42c07be9ce7b?parent_url=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&src=embed HTTP/1.1
Host: e.infogram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Tue, 31 Jan 2023 16:58:02 GMT
server: nginx
x-dns-prefetch-control: off
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-download-options: noopen
x-content-type-options: nosniff
referrer-policy: no-referrer
x-xss-protection: 1; mode=block
etag: W/"253ab-eVYx+ZR/JQm3w+dm8+3Qxy6I9F8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2N-f64LepYcU_jlaAirrD74IZvmS7ljBQH0wxYeuaantop_Bs5akjQ==
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/K-jlOqKn9CY
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/K-jlOqKn9CY
IP 142.250.74.131:0
Hash b6173dfe63065f5e97516c3aaaaa7fe3
4933340033fa7a788251271dd33d33d1902483ea
6e047dbbcf8d841b9eb11a39d8cdc26b011e0bebf538b09d2cf0ee67163f6892
POST /s/gts1p5/K-jlOqKn9CY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:02 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 069f6fcc90c5109c1d9712655dfb5775
c8eef46a01b45b63a1487cc7cdec3ee70260c7e9
0fc8cb8ed9448fc6fabd885a4617c563bd80a0fbac006243f3e345b8b1144683
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3617
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:02 GMT
Last-Modified: Tue, 31 Jan 2023 15:57:45 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
s.infogram.com/t.js?v3
52.208.121.130200 OK 8.8 kB IP 52.208.121.130:0
Hash c1cc5ba2e9e0f7640b1d385e9338dda4
021d36d485fa1edf938884e7bbf8ab0808675c98
f08c0e6493989be2d41448ac236468dbb09adca42f31713542af7c611f1e7e4a
GET /t.js?v3 HTTP/1.1
Host: s.infogram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:02 GMT
content-type: application/javascript; charset=UTF-8
content-length: 8674
x-powered-by: Express
vary: Accept-Encoding
content-encoding: gzip
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 10 Jan 2023 14:05:23 GMT
etag: W/"21e2-1859bfffcb8"
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/pwt/158084/5895/pwt.js
2.18.172.200200 OK 66 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/158084/5895/pwt.js
IP 2.18.172.200:0
File type ASCII text, with very long lines (64598)
Hash 4782b61c155b59de945a968da1511627
08f4d81be337f8d01554c9e83a39798591e0c947
350226661a56ed8e38efec31ce53d95b417a1564378362194ed707650d6f3a14
GET /AdServer/js/pwt/158084/5895/pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 15:58:52 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: application/javascript
content-length: 65749
cache-control: max-age=121819
expires: Thu, 02 Feb 2023 02:48:21 GMT
date: Tue, 31 Jan 2023 16:58:02 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
d3qxef4rp70elm.cloudfront.net/m.js
54.230.245.216200 OK 6.0 kB URL HTTP/1.1 d3qxef4rp70elm.cloudfront.net/m.js
IP 54.230.245.216:0
File type C source, ASCII text, with very long lines (21862), with no line terminators
Hash 638a01574168428e60ac3f3a34e61482
3f1e2026bdb14cc6a74678a28d6088b158fb414d
337e72aa2dad3fddc5d8b5094b0dcb18b1e368bc61b1fe3f631b6d7f1fd2d378
GET /m.js HTTP/1.1
Host: d3qxef4rp70elm.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 21 Apr 2022 22:35:23 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Mon, 30 Jan 2023 20:36:39 GMT
ETag: W/"68b6cc160ead684ac82254e6c1e536f7"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1D3D_R4pgqKzMumAZep-LMoyiYuoi2YMqvxHXoFo85I862ywFCd3Mw==
Age: 73284
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5991
Expires: Tue, 31 Jan 2023 18:37:53 GMT
Date: Tue, 31 Jan 2023 16:58:02 GMT
Connection: keep-alive
connect.facebook.net/en_US/sdk.js
157.240.205.11200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (1957)
Hash 722a83c464c01fa0ba6b0f0144b9b669
e44f12accab7b9834c53084de60b53b109b938e4
d7656f5ecb6267f34cf5ce5909024ed92e043615fdaf19e11c8da82c01b59703
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 839e6e2bce749b441751db3623c81ee9
etag: "2e5f41017bed8f2bdb45f15f46c67acc"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 31 Jan 2023 17:13:54 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: ciqDxGTAH6C6aw8BRLm2aQ==
x-fb-debug: UUBOhBhqqPTj5wsWDz/NUteme68ROE3IRCAs8uV1Zuw4Hw9mmLnoHMG9g/A4XC/JXeAnpH9qX2tsCbWydxK3SA==
priority: u=3,i
content-length: 1688
x-fb-trip-id: 1679558926
date: Tue, 31 Jan 2023 16:58:02 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5991
Expires: Tue, 31 Jan 2023 18:37:53 GMT
Date: Tue, 31 Jan 2023 16:58:02 GMT
Connection: keep-alive
get.geojs.io/v1/ip/country.json
172.67.70.233200 OK 28 kB URL HTTP/2 get.geojs.io/v1/ip/country.json
IP 172.67.70.233:0
File type JSON data\012- , ASCII text
Hash 7bf205c15225834a85566013994573db
c6bfd25220637dcef542ac99998dac84caad767a
03fcde3d5f77ae19fa6cb834de405a6500226f2a95a5a37ec3f78dbc660c406d
GET /v1/ip/country.json HTTP/1.1
Host: get.geojs.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nationaltoday.com/
Origin: https://nationaltoday.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:02 GMT
content-type: application/json
x-request-id: bbe8f459da1f917387d37be7a199b83c-AMS
strict-transport-security: max-age=15552000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, private, max-age=0
x-geojs-location: AMS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c0OeUoq0bNhzUIQuzBqQ9AeampBf6GsoGXKFAHwggM9mABBWPlcSsoAjTUcVOWL2UyVb954d51NGB0ZvUpJzSUF47ko5tY7AR7NGagBrt%2Fw%2FpJYKwW0H7yFdEB4OyA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7923fd66de150b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 976dda397f9292a498ca9db5599c0378
dad9e9c3462907a2475046aee36d57f8309cd44e
7ed9ccf2ff75ca53f5ba56a1d2127e0f09b0ae941cad8b042e8df01ad01e614b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6844
x-amzn-requestid: 0542cf46-5045-459f-a35f-f6c0d3f5f7b7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flZsxH0YIAMF9ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86feb-692d50f710a131df2ee49aa8;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oLMUuQVwUyKMuYAvTkA4wlVDb3-kZjStTJFfUZRb7JwKcK11waY0kQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:42:39 GMT
age: 54923
etag: "dad9e9c3462907a2475046aee36d57f8309cd44e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5991
Expires: Tue, 31 Jan 2023 18:37:53 GMT
Date: Tue, 31 Jan 2023 16:58:02 GMT
Connection: keep-alive
cdn.confiant-integrations.net/6lO5GsKczTxF31rGhzgp1weATnw/gpt_and_prebid/config.js
104.18.16.107200 OK 95 kB URL HTTP/2 cdn.confiant-integrations.net/6lO5GsKczTxF31rGhzgp1weATnw/gpt_and_prebid/config.js
IP 104.18.16.107:0
File type ASCII text, with very long lines (64490)
Hash 0ec91b0b541cf3936a099fd0541ce129
ee0b4bd12130b5f8b0661d40f3de08cd06ed78fe
cd0f13bbb88743eb35c1ff3daa4b1928b1246648af562fcf03295fb57c548985
GET /6lO5GsKczTxF31rGhzgp1weATnw/gpt_and_prebid/config.js HTTP/1.1
Host: cdn.confiant-integrations.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:02 GMT
content-type: text/javascript
x-amz-id-2: YlCRCgW/pLgxZ5PSAXhKx5fAU+x55RyNjjAjMrcjDD6Wgwv5gm6uyHjIwg/2/FtXG8uM3DIdp0+9twa3jWc6QQ==
x-amz-request-id: 1XPKNMXGJD30HS3Z
last-modified: Tue, 31 Jan 2023 16:12:46 GMT
etag: W/"edd70719ebdbc445f0cdd125d270ee67"
cache-control: public, max-age=900, stale-while-revalidate=3600
cf-cache-status: HIT
age: 365
vary: Accept-Encoding
server: cloudflare
cf-ray: 7923fd650e0db51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 961 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 963f53ce09f25f0ef9bce9870568db4b
ca2a8c6a5aec0b1799b839ee218ae1e9be24e473
471c3e3adddfc8ad2dee8c81cad6e3123328472cdefad952886915ccc4da0961
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5991
Expires: Tue, 31 Jan 2023 18:37:53 GMT
Date: Tue, 31 Jan 2023 16:58:02 GMT
Connection: keep-alive
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.74200 OK 126 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.74:0
File type ASCII text, with very long lines (2846)
Size 126 kB (126544 bytes)
Hash 08170b094847c66f3b89d5a577c739ea
ea3f55dae751aaa5fb5b0fd0d74354c26d76dccd
598ef4c4803f256ff79120afe545bc162d0d84bc1224acff09a1dcd2f0bd9b35
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 126544
date: Tue, 31 Jan 2023 16:58:02 GMT
expires: Tue, 31 Jan 2023 16:58:02 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c4934be94898028e2ab696561b51462
6cf734e2d29938688913daacfb75506d8e004a94
239adcbb538b7a6d1483c65c7694d4a9f9fa9cadf456ab5681c4b764185e3596
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 67109f87-6073-4991-b540-cdeedc2d7b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flYlPF9uIAMFXMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86e21-60ac2c7b37c72e6e54a5c69d;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:25:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Gif_csWkacU59D_hnOrJpK6u2aPI8Ylf2JyQEJZ2RLNMCrXSmmMa9w==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:56:35 GMT
age: 54087
etag: "6cf734e2d29938688913daacfb75506d8e004a94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 42a648f9d34d8fb703f0b80a52e0deec
7ccefd66211d249ae5266c3b6ae3375a19e5cb6d
a57f8792e8caa2a31045a141d019f53f51b633d5d04baebdae97387740c6639d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5903
x-amzn-requestid: f6fca787-17c1-4edd-9ab0-a00e2fccc7a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboufGeSoAMF-1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d487f6-58be6bdc5e3e767e1ea47b86;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:27:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tAR5c5rQD0h5YZ6TU8pZKhUFUf5d0-l794EaYnwwkts3QXPhdYm6vA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:03:25 GMT
age: 71677
etag: "7ccefd66211d249ae5266c3b6ae3375a19e5cb6d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a72c84c41c5e0adf55862720ffab859c
671408b7eb5f09e4a2dac07a7ee2150ea7be1972
0aada318970f4e1d24d6411787b9f43b8ce0c1d64d76b61b5ac0589a1323f066
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 633
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:02 GMT
Last-Modified: Tue, 31 Jan 2023 16:47:29 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2797bfd35b7ec24888de84be14f7f2ec
8e315ac5856967286eaa8769e081d827fb4ca39e
b99f3bd73eb4395194bc7bb6a1b801750182239e5b70f3207f99e494b60b72ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11129
x-amzn-requestid: 74f2a4dd-7d5d-4839-90a8-d2e74f6d785d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffDBZGRPoAMFedg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e53b-3de444596550bb41188ada5b;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:17:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9Fga247EZZqiGmdMJ72resdBZR2KLgflGDBPESmuw9cFVs4hSzMzTw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 03:50:52 GMT
age: 47230
etag: "8e315ac5856967286eaa8769e081d827fb4ca39e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jifo.co/js/dist/embed_viewer-8ef243d658976fa47fe9-1-webpack.js
104.26.7.6200 OK 471 B URL HTTP/2 cdn.jifo.co/js/dist/embed_viewer-8ef243d658976fa47fe9-1-webpack.js
IP 104.26.7.6:0
Hash 0dea93a9adb1e26a6ebfaf2e12c22cd5
e286810b718e374858f11adf0aae18dc65f27d66
73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
GET /js/dist/embed_viewer-8ef243d658976fa47fe9-1-webpack.js HTTP/1.1
Host: cdn.jifo.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://e.infogram.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:02 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-expose-headers: ETag
access-control-max-age: 3000
last-modified: Tue, 31 Jan 2023 10:02:30 GMT
etag: W/"fa89d5a3a09cde77a51e8cab83489f46"
timing-allow-origin: *
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method, Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CI-sP6GpcjnNtu8o8tUfuSb4k9RI6y0Za6aXO1kv0U01cn0LQo5yvg==
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3154
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0u6hvC9z34YxIrRM6ZfclTbChE9BhgDq0Wx7tZ%2FJ8JHEa7HyuzM%2BtO%2FhrLvqS0koTkw6v%2BJ8HsI6p8sw46eZG19CzVBnM95St8rPFTuJkgYw%2BBYbGa1o%2FRqMnYvc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7923fd65de24b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js?hash=4648d55483725fc42cdf16d65174e067
157.240.205.11200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=4648d55483725fc42cdf16d65174e067
IP 157.240.205.11:0
File type ASCII text, with very long lines (13192)
Hash 4f119ef21ba92f2df84dcaa11744f8ef
7961e062d41ef83f98402c939d1fcb0da7860b36
23e65ac7e5ebfe22d33d7a015b7d65110b48c672c6479af807d81c364a908d2f
GET /en_US/sdk.js?hash=4648d55483725fc42cdf16d65174e067 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: ef334a8417014d47d2ef792a691d9aa9
etag: "7e17907f523ac3a3867849b1ebd1f49a"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 31 Jan 2024 15:59:54 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: TxGe8hupLy34TcqhF0T47w==
x-fb-debug: sv1bNpKZyx9hAdhFJGvJ2eXyhkVeWK2VRg9097E9jqmw49SEgGdZ5bTSPpu9OmW7M49Px0vpiDnRtO+ZHpPGmQ==
content-length: 86977
x-fb-trip-id: 1679558926
date: Tue, 31 Jan 2023 16:58:03 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fnationaltoday.com
192.229.233.25200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fnationaltoday.com
IP 192.229.233.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56166)
Size 105 kB (105435 bytes)
Hash 58f06e7d628e7e207cad8e48c9cc76be
9042f057d52be00c9535ce93b0ce4c03707e0c41
ea6c34f2e7acfea93ba722fe283f2704392dc518c9a0d1eeca0ba03a0b63d789
GET /widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=https%3A%2F%2Fnationaltoday.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 587688
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Tue, 31 Jan 2023 16:58:03 GMT
Etag: "95e1b50b0c179aefb47b5b211bb347b5+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:13 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F709)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105435
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 33e403367d183257be0f03f28da923d2
a586e4052008741f8f535e7bd12a94bde81b264e
82ce104749546e6a6f76a8ddf19b67795784c06256581c13f499e80e4f713131
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
142.250.74.162302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Tue, 31 Jan 2023 16:58:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.doubleclick.net/instream/ad_status.js
142.250.74.134200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.134:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 16:57:52 GMT
expires: Tue, 31 Jan 2023 17:12:52 GMT
cache-control: public, max-age=900
age: 11
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 33e403367d183257be0f03f28da923d2
a586e4052008741f8f535e7bd12a94bde81b264e
82ce104749546e6a6f76a8ddf19b67795784c06256581c13f499e80e4f713131
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 28e4b37d4bc9427fa8f2a13582a47e49
cc3882a0022d597d7535a7b785946298387ff201
5a5be9332de84160ba881908c33f141fe3f69e56463f8032562c51ceff11b263
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A5BE9332DE84160BA881908C33F141FE3F69E56463F8032562C51CEFF11B263"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8039
Expires: Tue, 31 Jan 2023 19:12:03 GMT
Date: Tue, 31 Jan 2023 16:58:04 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f05280f3b6585309cc122d7e1273bbe6
900fd9ca57f4c0c173be4eabd61b7b596c26c29a
82efaee85dab4763ddaa8f4c6cb2ef3ff7ff94662be09f305b99a09a2f7f8825
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6156
Cache-Control: max-age=152463
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:04 GMT
Etag: "63d8e11f-1d7"
Expires: Thu, 02 Feb 2023 11:19:07 GMT
Last-Modified: Tue, 31 Jan 2023 09:36:31 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
prebid.a-mo.net/a/c
147.75.85.234204 No Content 0 B IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3584
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://nationaltoday.com
cache-control: max-age=0, private, must-revalidate
date: Tue, 31 Jan 2023 16:58:03 GMT
server: envoy
vary: origin, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
185.89.210.82200 OK 295 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 185.89.210.82:0
File type JSON data\012- , ASCII text, with very long lines (808), with no line terminators
Hash a081d4d69ec5ee93f2ec9a062100a0a6
cc8c002d7691adc189e059348a16c15d23fa9ffb
46e75679233c992f44eba50084a195edbd46bb0e08705449633a7c908c30ceff
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2522
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Tue, 31 Jan 2023 16:58:04 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://nationaltoday.com
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 27140087-50d3-448f-bed2-ae0efdea1130
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
Content-Encoding: gzip
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg
34.120.237.76200 OK 471 B URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg
IP 34.120.237.76:0
Hash 37486a77ee443257d935fcc35a39a720
dbf603fd04815400da21aab784a5227d6c2847dd
4bc01957d014036a9a20d2a237aff9d939c6145c75be938b343facefcc6747b2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13853
x-amzn-requestid: ca6ea6e7-3e13-4194-87f5-20a07b813e21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zzF4hIAMFwWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-772487cb1b7495c52c552d36;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lUGjUSIkoacdmaO1jnMwIuNMONhjyVfAIcTQ3B5d5da_g9eEnCtW7g==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:48:17 GMT
age: 68985
etag: "1959fdd94846fa3791c4890578dd15336b909dcc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 14e4670813164b6608c41315c32d3bee
5c7e029c375b5265230c02880fc2ecce1c3d117e
eb1e3d7d07de142b66256d265b3b9d3dd0dccdbbc2674ba51dfd00182be452ca
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 16:58:04 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 07:45:27 GMT
Expires: Sat, 04 Feb 2023 07:45:26 GMT
Etag: "5c7e029c375b5265230c02880fc2ecce1c3d117e"
Cache-Control: max-age=311841,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7923fd6f49b6fac4-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 37486a77ee443257d935fcc35a39a720
dbf603fd04815400da21aab784a5227d6c2847dd
4bc01957d014036a9a20d2a237aff9d939c6145c75be938b343facefcc6747b2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 16:58:04 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 11:23:32 GMT
Expires: Mon, 06 Feb 2023 11:23:31 GMT
Etag: "dbf603fd04815400da21aab784a5227d6c2847dd"
Cache-Control: max-age=497726,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7923fd6f49d5fabc-OSL
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 31 Jan 2023 16:58:04 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2ac1bcdceabf1fc4e07017906aa8a815
ba00b737325fc50b35af8d851ced0fe13d1cba22
c6c54f5dbbfc40b454b9c67a7972827f500d83b10a1594f7cb56c69158278c08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
targeting.unrulymedia.com/unruly_prebid
213.19.147.43204 No Content 574 B URL HTTP/2 targeting.unrulymedia.com/unruly_prebid
IP 213.19.147.43:0
Hash 06853d4f4f35dd1ff4b59db64d602612
e4a69958c42bf19a8ab3bfb8e5792a5d0081705b
fad79c53563c5faaf44df12836a9e1f517279a5d5d30e4941d06599bd48e4e07
OPTIONS /unruly_prebid HTTP/1.1
Host: targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://nationaltoday.com/
Origin: https://nationaltoday.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 16:58:04 GMT
access-control-allow-origin: https://nationaltoday.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Accept-Encoding,Origin,Accept-Language,X-CSRF-Token,x-unruly-override
access-control-max-age: 1728000
content-type: text/plain charset=UTF-8
content-length: 0
X-Firefox-Spdy: h2
www.google.com/js/th/wBNXk7Q6V2dkHawik5TUb6id0fydDqlxfrWFyJdQ6Xw.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/wBNXk7Q6V2dkHawik5TUb6id0fydDqlxfrWFyJdQ6Xw.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36000)
Hash b40bdd235c7883921e2b18743b3aea21
9aaa96e2ec231327ba976911513989568c56c7c1
8b00f3a7d9b7acabf6b991926d7543944771ce1431efd342dea743192ec667e3
GET /js/th/wBNXk7Q6V2dkHawik5TUb6id0fydDqlxfrWFyJdQ6Xw.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14173
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 21:20:34 GMT
expires: Sat, 27 Jan 2024 21:20:34 GMT
cache-control: public, max-age=31536000
age: 329850
last-modified: Tue, 03 Jan 2023 15:00:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash dc57a4d24025b9caf15edb5edded0167
70dbf27779b024c89a3e8e7edff30dc11728018a
32879d047ce90ca7956fc45d5289dcbba0cf4a448426730c0676acfac15f10be
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 31 Jan 2023 16:58:04 GMT
server: ESF
cache-control: private
content-length: 30947
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c3a242e6132fe39e40953523bb8d3175
c9914952910c863f533f0c7bf6451b77b12d10b7
423bd4744c6b389c23fccdfab4dc8731bf553232a6bf14782c946183e8119a04
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/R5JEoz6gXy0/default.jpg?sqp=-oaymwEkCHgQWvKriqkDGvABAfgBzgWAAtAFigIMCAAQARhyIFYoNDAP&rs=AOn4CLB5il05UiMcoY7H2EEXRkyaV7-SqQ
142.250.74.118200 OK 2.4 kB URL HTTP/2 i.ytimg.com/vi/R5JEoz6gXy0/default.jpg?sqp=-oaymwEkCHgQWvKriqkDGvABAfgBzgWAAtAFigIMCAAQARhyIFYoNDAP&rs=AOn4CLB5il05UiMcoY7H2EEXRkyaV7-SqQ
IP 142.250.74.118:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3\012- data
Hash 643b5ac7e6c6e6ade4758ab40f5169ad
ac6987137eaedf8488869c4febcdb7dbe38be4fd
355dc8ae73cbc5a4315cb452d116d137e626e75e0211cdf5868127fcf1861244
GET /vi/R5JEoz6gXy0/default.jpg?sqp=-oaymwEkCHgQWvKriqkDGvABAfgBzgWAAtAFigIMCAAQARhyIFYoNDAP&rs=AOn4CLB5il05UiMcoY7H2EEXRkyaV7-SqQ HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 2437
date: Tue, 31 Jan 2023 16:58:04 GMT
expires: Tue, 31 Jan 2023 18:58:04 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 403245b72f4a949d2133dd84f16291dd
e357d21db37a95ea7586c85cee76ee8fc7851d89
cfc952564db03567db2d8846119eb2ac6fa850902b1bced80ab04bbaf2d2a05b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
targeting.unrulymedia.com/unruly_prebid
213.19.147.43204 No Content 0 B URL HTTP/2 targeting.unrulymedia.com/unruly_prebid
IP 213.19.147.43:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unruly_prebid HTTP/1.1
Host: targeting.unrulymedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 11926
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 16:58:04 GMT
access-control-allow-origin: https://nationaltoday.com
access-control-allow-credentials: true
pragma: no-cache
cache-control: private, max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
gfonts.jifo.co/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
104.26.7.6200 OK 11 kB URL HTTP/2 gfonts.jifo.co/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP 104.26.7.6:0
File type Web Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data
Hash 1f6d3cf6d38f25d83d95f5a800b8cac3
279f300ca2cbbdf9f5036ef2f438607fbf377daa
796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: gfonts.jifo.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://e.infogram.com
Connection: keep-alive
Referer: https://gfonts.jifo.co/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:04 GMT
content-type: font/woff2
content-length: 11028
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: max-age=31560000
age: 40
last-modified: Wed, 11 May 2022 19:24:50 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ENQ6PO9yY4pHtrNK6CMztjFdfeMGmAhbc04lPMyxhlL0ATx4bYlvAQvkmQOD3sgM2ueA6kuREo49BF2Yx%2BmZMzmNZlg1imfCu1xgLIzei6OTyKVjEhsSB41BMTpJ%2FDBy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7923fd70be42b50b-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c3a242e6132fe39e40953523bb8d3175
c9914952910c863f533f0c7bf6451b77b12d10b7
423bd4744c6b389c23fccdfab4dc8731bf553232a6bf14782c946183e8119a04
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.189.112204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.189.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2666
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://nationaltoday.com
cache-control: no-cache, no-store, must-revalidate
date: Tue, 31 Jan 2023 16:58:03 GMT
X-Firefox-Spdy: h2
yt3.ggpht.com/ytc/AL5GRJVCdHOYx4R9R7OhX0qqVxGxXmzbc-n_Xjvcy-FH=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.0 kB URL HTTP/2 yt3.ggpht.com/ytc/AL5GRJVCdHOYx4R9R7OhX0qqVxGxXmzbc-n_Xjvcy-FH=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 9c3ddd3e92ae5c1e3696857ba6ffa053
3abaed0251c367fcefaf4e4a58403ff05a846cea
5cf538289b814d441cdc7cf90adaadd8eabbd469fb6aac0d2838beee67c1a21c
GET /ytc/AL5GRJVCdHOYx4R9R7OhX0qqVxGxXmzbc-n_Xjvcy-FH=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3030
x-xss-protection: 0
date: Tue, 31 Jan 2023 16:58:04 GMT
expires: Thu, 26 Jan 2023 09:06:05 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1d"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
services.brid.tv/services/get/playlist/38551/20559.json
54.230.111.121200 OK 2.9 kB URL HTTP/2 services.brid.tv/services/get/playlist/38551/20559.json
IP 54.230.111.121:0
File type JSON data\012- , ASCII text, with very long lines (9717), with no line terminators
Hash ac90290320f9951abef699430e728eda
d184b656d00a5bdf2e936d700c24e6509b18bd94
1ad4d85a90ba8f5645bd907be299afa64451b73b307297c27f5b9d89cd496be6
GET /services/get/playlist/38551/20559.json HTTP/1.1
Host: services.brid.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
date: Tue, 31 Jan 2023 16:55:39 GMT
server: Apache
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-served-by: i-0eacd17cd309f5bfd
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-allow-headers: origin, x-requested-with, content-type, accept
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: EvCP07cdHVQ_WTXm1uACTVEqkjhndw5s6x9m-ezPy59DQ1Tt4WXppw==
age: 143
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 750f718797fc50f8465259f62a6da6ba
e9b7abb1a4dff4896c9fb48e7c7b1407885790de
8e3c0c96771c92bcee1d63055e2aa46aa5e0e3125da993844a9297340166873d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 4867f25d0deeac2ee7e5f001331f35e0
884c3adc8ca1fc39dd80535df2ab45a6a203d9fb
5e414dce0306d561545b08e33a9c09e68f9cf932289e74a1808056e8bfa0a615
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4708
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:04 GMT
Last-Modified: Tue, 31 Jan 2023 15:39:36 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 313
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 462d51c7bdf6be56ef07c9ecb7ec4bd0
d0cc0ca6c134661696eb822f311f6c7094f21ff4
92f05fc3ec268fee9296582490d081a1d02abb395deb33fd547501aacca4c366
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "92F05FC3EC268FEE9296582490D081A1D02ABB395DEB33FD547501AACCA4C366"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12135
Expires: Tue, 31 Jan 2023 20:20:19 GMT
Date: Tue, 31 Jan 2023 16:58:04 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 462d51c7bdf6be56ef07c9ecb7ec4bd0
d0cc0ca6c134661696eb822f311f6c7094f21ff4
92f05fc3ec268fee9296582490d081a1d02abb395deb33fd547501aacca4c366
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "92F05FC3EC268FEE9296582490D081A1D02ABB395DEB33FD547501AACCA4C366"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4773
Expires: Tue, 31 Jan 2023 18:17:37 GMT
Date: Tue, 31 Jan 2023 16:58:04 GMT
Connection: keep-alive
syndication.twitter.com/settings?session_id=ed12f8ada8da3f8344e99236152b87588e2570b5
104.244.42.136200 OK 326 B URL HTTP/2 syndication.twitter.com/settings?session_id=ed12f8ada8da3f8344e99236152b87588e2570b5
IP 104.244.42.136:0
File type JSON data\012- , ASCII text, with very long lines (919), with no line terminators
Hash 11f6a2d6bb52340b52d53f9cf72973e8
ea0c3e5d850a2659b3344d84957b691a6f7942b8
a0b2545f4adeaf91f7a23b95f43c682557bdfd1e59d2cf394d10a01f97c886ff
GET /settings?session_id=ed12f8ada8da3f8344e99236152b87588e2570b5 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:04 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Tue, 31 Jan 2023 16:58:04 GMT
content-length: 326
content-encoding: gzip
x-transaction-id: 6700561613a37a08
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 106
x-connection-hash: 0b0f423f44a5bc8cce9095b3453a4bfbcd87d958885ee1ac421518786eaac189
X-Firefox-Spdy: h2
prebid.tpdads.com/cookie_sync
165.227.249.173200 OK 221 B URL HTTP/1.1 prebid.tpdads.com/cookie_sync
IP 165.227.249.173:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text
Hash 02e71790d72661a1ebb1cb8700a55535
a9d83797894f2ab4fd41b8500f22ff582ce194a6
1a31023656fe6f58f203e1fb07babaf0c3d453b3d0cc751e5b8eabbea4795b6e
POST /cookie_sync HTTP/1.1
Host: prebid.tpdads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 83
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://nationaltoday.com
cache-control: no-cache, no-store, must-revalidate
content-type: application/json; charset=utf-8
expires: 0
pragma: no-cache
vary: Origin
date: Tue, 31 Jan 2023 16:58:04 GMT
content-length: 221
prebid.tpdads.com/openrtb2/auction
165.227.249.173200 OK 233 B URL HTTP/1.1 prebid.tpdads.com/openrtb2/auction
IP 165.227.249.173:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text
Hash 2c7b6cad805a3bc4b5eb36ac806bd28d
26c8454b6c2fb7aa4eca3188df382c6f21c25db1
093293c929710c930420a2a830244a2d0538a1abc296a7f65c18211554629dbb
POST /openrtb2/auction HTTP/1.1
Host: prebid.tpdads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3069
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://nationaltoday.com
cache-control: no-cache, no-store, must-revalidate
content-type: application/json
expires: 0
pragma: no-cache
vary: Origin
x-prebid: pbs-go/unknown
date: Tue, 31 Jan 2023 16:58:04 GMT
content-length: 233
c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fnationaltoday.com&pubid=8f0be570-94e3-4c8a-8dac-4372ca412efd
54.230.111.210200 OK 291 B URL HTTP/2 c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fnationaltoday.com&pubid=8f0be570-94e3-4c8a-8dac-4372ca412efd
IP 54.230.111.210:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9a88bcc632bb80bdc7527dde45ad4ebf
7e71773afffdd31c21ea1850e609b2c515c55df1
7ccdc7e41a281852e9b7feadd558fe09de5890c3b9e9a00a459cf24e30b49c13
GET /cdn/prod/config?src=600&u=https%3A%2F%2Fnationaltoday.com&pubid=8f0be570-94e3-4c8a-8dac-4372ca412efd HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
content-length: 291
access-control-allow-origin: https://nationaltoday.com
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Tue, 31 Jan 2023 14:03:48 GMT
server: Server
x-cache: Hit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 97rrUeQbmrRvF6g-zx1DtSyNE1qLB6Evg-3BT9IV-zzPv3IsPSSY0w==
age: 10456
X-Firefox-Spdy: h2
s.infogram.com/t2
52.208.121.130204 No Content 0 B IP 52.208.121.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /t2 HTTP/1.1
Host: s.infogram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://e.infogram.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 16:58:04 GMT
x-powered-by: Express
access-control-allow-origin: https://e.infogram.com
vary: Origin, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.138200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 31 Jan 2023 16:58:04 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s.infogram.com/t2
52.208.121.130200 OK 2 B IP 52.208.121.130:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /t2 HTTP/1.1
Host: s.infogram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://e.infogram.com
Content-Length: 140
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:04 GMT
content-type: text/html; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: https://e.infogram.com
vary: Origin
access-control-allow-credentials: true
etag: W/"2-eoX0dku9ba8cNUXvu/DyeabcC+s"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.138200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 187ed80cf623b795c84ccc9ca267e0af
267444e5b01ab0681a3ed24ff6dcab67d766023d
61beb7792f8f27b490f8f60ba8a4f9213aff2d2b0c0b4a40498edb8d368a5842
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1012
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 31 Jan 2023 16:58:04 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
secure.cdn.fastclick.net/js/pubcid/latest/pubcid.min.js
23.61.233.63200 OK 17 kB URL HTTP/2 secure.cdn.fastclick.net/js/pubcid/latest/pubcid.min.js
IP 23.61.233.63:0
File type Unicode text, UTF-8 text, with very long lines (36525), with NEL line terminators
Hash 65875d9adc4599663a61e744c57d3e08
da7689e79bd92cd1c676badf0fb897f045d48653
830050c7e3b735c29efa65defb4de8dc42969a8cbb12e520479f9d067a90f4bf
GET /js/pubcid/latest/pubcid.min.js HTTP/1.1
Host: secure.cdn.fastclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
last-modified: Thu, 13 Oct 2022 18:14:48 GMT
etag: "d4ed-5eaee7c12df48-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 17131
content-type: application/javascript
cache-control: max-age=900
expires: Tue, 31 Jan 2023 17:13:04 GMT
date: Tue, 31 Jan 2023 16:58:04 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 41a4a3693b6cf7e1a345afbe00934ca7
6f072cde84187c4124dd88fab10a1296bcba998c
9e426a348b95f52ca2e18f09932f0e48046abd55f30c8a884da00d8e89d45bc4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4755
Cache-Control: max-age=120485
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:04 GMT
Etag: "63d869ae-1d7"
Expires: Thu, 02 Feb 2023 02:26:09 GMT
Last-Modified: Tue, 31 Jan 2023 01:06:54 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
gfonts.jifo.co/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459WlhyyTh89Y.woff2
104.26.7.6200 OK 31 kB URL HTTP/2 gfonts.jifo.co/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459WlhyyTh89Y.woff2
IP 104.26.7.6:0
File type Web Open Font Format (Version 2), TrueType, length 30856, version 1.0\012- data
Hash d5de368ad6cb9721be72319431de3adb
0799da07002c5bc2250f2743b574320d4aa199fc
7eeb99e9f0563d79a34bf9d13c260f0552269bbde05b145d331cdf1aae47c25a
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459WlhyyTh89Y.woff2 HTTP/1.1
Host: gfonts.jifo.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://e.infogram.com
Connection: keep-alive
Referer: https://gfonts.jifo.co/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:04 GMT
content-type: font/woff2
content-length: 30856
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: max-age=31560000
age: 917
last-modified: Mon, 11 Jul 2022 18:56:16 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3vy8O1gmqMb1yhwYzMbJOtx1RVTQNKw0jJWEh4nPvTDSw0R%2FTrs8FFwpBNxWel3p%2Bm%2ByzBgI0sdSIguKy9q8Bu7pjSZ2rZclZU5C7Jd8umvbyvD%2F5RiS6Q8G04cgcT%2Bt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7923fd742b84b50b-OSL
X-Firefox-Spdy: h2
gfonts.jifo.co/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m0dR9pA.woff2
104.26.7.6200 OK 32 kB URL HTTP/2 gfonts.jifo.co/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m0dR9pA.woff2
IP 104.26.7.6:0
File type Web Open Font Format (Version 2), TrueType, length 31780, version 1.0\012- data
Hash 87731ed9cd8f30640f09cd170925ef6d
729058b8072d1b239b6698428e7d7c4ddbac1cfe
5452a9118127ba6c1b4474a7e5184d64e3f50548983e6918ce8ddf4bb2cfb174
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m0dR9pA.woff2 HTTP/1.1
Host: gfonts.jifo.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://e.infogram.com
Connection: keep-alive
Referer: https://gfonts.jifo.co/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:04 GMT
content-type: font/woff2
content-length: 31780
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: max-age=31560000
age: 917
last-modified: Mon, 11 Jul 2022 18:55:57 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XEO9oT8U1BUGShZXhSqb6VS75H4FgyltyTm%2F3jFfi%2Bi18h2A1IQ7lBx3NkNmFXmlx2So2iSjWOXDTY8JP3WxV%2FtcnqdAPJAsTz0Smn44UORFEh0yUROnYIPE84PPKKPA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7923fd742b94b50b-OSL
X-Firefox-Spdy: h2
gfonts.jifo.co/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2
104.26.7.6200 OK 39 kB URL HTTP/2 gfonts.jifo.co/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2
IP 104.26.7.6:0
File type Web Open Font Format (Version 2), TrueType, length 39372, version 1.0\012- data
Hash 40b6965b5cd26213faf61e5ab6765bb9
8b040e0fc0c40e0e7ce54eba07eda98f35512948
fbeb296c1ecc216a17bda77bf65e833cc0410cfbe1908e121f7a4549cc390675
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-mu0SC55I.woff2 HTTP/1.1
Host: gfonts.jifo.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://e.infogram.com
Connection: keep-alive
Referer: https://gfonts.jifo.co/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:04 GMT
content-type: font/woff2
content-length: 39372
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: max-age=31560000
last-modified: Mon, 15 Aug 2022 18:20:48 GMT
age: 1779
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l3%2BNY25HZmxrKW%2Bncw8WR%2B9hdl3o%2BUKeWdCprxOnG2dBzzzGt3QM5zx6g6UCKf%2F1TLx%2BvguUgKz69CKEW%2Fn6yHScJO8%2FP0cyw9CBCu1nLke%2Fce7xnKID9lSY659trd%2Fl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7923fd743ba1b50b-OSL
X-Firefox-Spdy: h2
pixel.rubiconproject.com/exchange/sync.php?p=pb_publisher_desk&gdpr=&gdpr_consent=&us_privacy=
213.19.162.80204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/exchange/sync.php?p=pb_publisher_desk&gdpr=&gdpr_consent=&us_privacy=
IP 213.19.162.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/sync.php?p=pb_publisher_desk&gdpr=&gdpr_consent=&us_privacy= HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 1da0c96602e9a1076eae4f5554c05cf3
Content-Type: image/gif
gfonts.jifo.co/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6FxZCJgg.woff2
104.26.7.6200 OK 43 kB URL HTTP/2 gfonts.jifo.co/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6FxZCJgg.woff2
IP 104.26.7.6:0
File type Web Open Font Format (Version 2), TrueType, length 42900, version 1.0\012- data
Hash ef7e7a205f0f00208a6edb007083c9ef
84e04bead4db2d13b48e4453dbfb9c57702ecd79
4fcc5a257cb11bef495a924221e1beccc7d612a68bce5465b1c925f7a4682322
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6FxZCJgg.woff2 HTTP/1.1
Host: gfonts.jifo.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://e.infogram.com
Connection: keep-alive
Referer: https://gfonts.jifo.co/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:04 GMT
content-type: font/woff2
content-length: 42900
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: max-age=31560000
age: 825
last-modified: Mon, 15 Aug 2022 18:16:24 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZNWRR%2FSQjsieWEa5fhr%2B59JLTLpis4hlVKjgMoi2uJ32gBsykmY7dt9CcWlByI7kkcTr67NtLdPX42%2FJeC3G90vvhiwfmjK5xfQ2OrMRHwhmH68I1o7HEMB6P%2FUOXloC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7923fd744bbab50b-OSL
X-Firefox-Spdy: h2
gfonts.jifo.co/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
104.26.7.6200 OK 11 kB URL HTTP/2 gfonts.jifo.co/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
IP 104.26.7.6:0
File type Web Open Font Format (Version 2), TrueType, length 11072, version 1.0\012- data
Hash e7df3d0942815909add8f9d0c40d00d9
cf5032eea3399a58870e8a05e629b006a8c7c3c7
bce2f309470952b7affa62ff4d91b454334c68cefa541429b502904d20696875
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1
Host: gfonts.jifo.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://e.infogram.com
Connection: keep-alive
Referer: https://gfonts.jifo.co/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:04 GMT
content-type: font/woff2
content-length: 11072
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: max-age=31560000
age: 2307
last-modified: Wed, 11 May 2022 19:24:53 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BLv7D0IHNRC62jwXYJlXOcevEcWXicszgOp8GaKIPrdWNiLa4rW1AHJpp4eBBvVDhr%2FV1fRIyR43J%2BeIcKaAoxJ%2BdWu3kgqsWMjJrE5hiaK7IXK5F%2BAn5eUdWwtop4uU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7923fd744bc6b50b-OSL
X-Firefox-Spdy: h2
gfonts.jifo.co/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2
104.26.7.6200 OK 11 kB URL HTTP/2 gfonts.jifo.co/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2
IP 104.26.7.6:0
File type Web Open Font Format (Version 2), TrueType, length 11040, version 1.0\012- data
Hash 5e22a46c04d947a36ea0cad07afcc9e1
6091d981c2a4ee975c7f6b56186ee698040bb804
0f53e8b0a717ca4ce313eec62b90d41db62c2f4946259a65c93bf8e84c5b0c44
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2 HTTP/1.1
Host: gfonts.jifo.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://e.infogram.com
Connection: keep-alive
Referer: https://gfonts.jifo.co/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:04 GMT
content-type: font/woff2
content-length: 11040
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: max-age=31560000
age: 919
last-modified: Wed, 11 May 2022 19:24:42 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G33UrXSgI8WaCAGgh%2BWsNGC%2B3iz5sIZ59t1Gct1PeDq8nIFEvwWRD0IFUHdCDKpE6EQ95Z9PocrHpJ43VoZD%2FwamXoeKXwJePRcBU7WjVQt6Idtx5KHndkZdr6bBJoyV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7923fd744bd0b50b-OSL
X-Firefox-Spdy: h2
gfonts.jifo.co/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzIXKMny.woff2
104.26.7.6200 OK 13 kB URL HTTP/2 gfonts.jifo.co/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzIXKMny.woff2
IP 104.26.7.6:0
File type Web Open Font Format (Version 2), TrueType, length 12684, version 1.0\012- data
Hash d83f1599340e8afa7a36461059a80b81
2e90b6c64c1c312c5a872cdaa05e6fc0d38ea7cb
1af0ee2e409d753adfedb8a11628be961881ad5139d1a9252fcc4984cbce5f2d
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzIXKMny.woff2 HTTP/1.1
Host: gfonts.jifo.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://e.infogram.com
Connection: keep-alive
Referer: https://gfonts.jifo.co/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:04 GMT
content-type: font/woff2
content-length: 12684
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: max-age=31560000
age: 950
last-modified: Wed, 11 May 2022 19:24:42 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hhpZliRPeyOEjlL9mfQ25rWJhPDamXogyYMcdxFGj97K8imf1eZP2p09xx6jfZ%2FmQ0T0Z%2FfeTHcU90G0aar0T7TzXYOdFYuQwacdVn8XH6i1uLRbJ9pJIijNeE9GQYrW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7923fd745beeb50b-OSL
X-Firefox-Spdy: h2
gfonts.jifo.co/s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsTYl4BO.woff2
104.26.7.6200 OK 13 kB URL HTTP/2 gfonts.jifo.co/s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsTYl4BO.woff2
IP 104.26.7.6:0
File type Web Open Font Format (Version 2), TrueType, length 12732, version 1.0\012- data
Hash 90550970095780af2d9df97c732853ec
fbf27e0da85bf00d3e4d5bdbbe755f363053b288
c8eabbb5502fb7a73076383db8e9feaa31a0f14bd82a318e46aceb8144982763
GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsTYl4BO.woff2 HTTP/1.1
Host: gfonts.jifo.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://e.infogram.com
Connection: keep-alive
Referer: https://gfonts.jifo.co/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:04 GMT
content-type: font/woff2
content-length: 12732
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: max-age=31560000
age: 2307
last-modified: Wed, 11 May 2022 19:24:42 GMT
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QBsb67hSrb680WBcVE4GN%2BckyixHDblTJzNjZQeWYq90KNmQbShSWGxl0AkQoGaAuDKaH9dmQd7OoK8AP1Wg5snciT024TMcIF7Iajw29ZlyA2WoNLIEfpoPJ4I1E8QU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7923fd746c0eb50b-OSL
X-Firefox-Spdy: h2
platform.twitter.com/js/button.e7f9415a2e000feaab02c86dd5802747.js
192.229.233.25200 OK 2.6 kB URL HTTP/1.1 platform.twitter.com/js/button.e7f9415a2e000feaab02c86dd5802747.js
IP 192.229.233.25:0
File type ASCII text, with very long lines (7891), with no line terminators
Hash 50af2557985d9ae5ef0bb111a4066237
b164d515f502d950df3ba208cc32bbe74e70d3d2
a3b6dbbc4e57c65eb23f84b312095c86a69ff47fc57fc745f464394158bda9af
GET /js/button.e7f9415a2e000feaab02c86dd5802747.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 587688
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Tue, 31 Jan 2023 16:58:04 GMT
Etag: "506673dbdb9085e7201e137e893cc152+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:06 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F706)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2618
s.skimresources.com/js/203274X1682195.skimlinks.js
151.139.128.10200 OK 21 kB URL HTTP/2 s.skimresources.com/js/203274X1682195.skimlinks.js
IP 151.139.128.10:0
File type ASCII text, with very long lines (687)
Hash 623df04360c9d907717198558cef9eaf
7467838169e03823bc233d3dec0c5b5f3fe53870
0bc31e1334079961c512750aa1b3d084156950443745c618c6405e8c442b5356
GET /js/203274X1682195.skimlinks.js HTTP/1.1
Host: s.skimresources.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:04 GMT
cache-control: max-age=3600
content-encoding: gzip
content-length: 21300
content-type: application/octet-stream
last-modified: Mon, 12 Dec 2022 13:41:42 GMT
accept-ranges: bytes
x-amz-id-2: BWBh8eG/C0MWXED68he8jhocjgrigyrr9dS2n+t7Xs58ukPC7myDxo99QqpJVr18M6395AredYI=
x-amz-request-id: VN00T1QD5C526R5E
etag: "99867a8b994530ef16af6aa0e0710319"
server: AmazonS3
x-hw: 1675184284.cds001.sk1.hn,1675184284.cds236.sk1.c
X-Firefox-Spdy: h2
aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&pid=QXbPP2k8dmTsR&cb=0&ws=1280x939&v=23.123.1617&t=850&slots=%5B%7B%22sd%22%3A%22dsk-banner-ad-a%22%2C%22s%22%3A%5B%22970x90%22%2C%22728x90%22%2C%22468x60%22%5D%7D%2C%7B%22sd%22%3A%22dsk-banner-ad-b%22%2C%22s%22%3A%5B%22970x90%22%2C%22728x90%22%2C%22468x60%22%5D%7D%2C%7B%22sd%22%3A%22dsk-box-ad-a%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22160x600%22%2C%22120x600%22%5D%7D%2C%7B%22sd%22%3A%22dsk-box-ad-b%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22160x600%22%2C%22120x600%22%5D%7D%2C%7B%22sd%22%3A%22dsk-box-ad-c%22%2C%22s%22%3A%5B%22600x300%22%2C%22468x60%22%2C%22300x250%22%5D%7D%2C%7B%22sd%22%3A%22dsk-box-ad-d%22%2C%22s%22%3A%5B%22600x300%22%2C%22468x60%22%2C%22300x250%22%5D%7D%2C%7B%22sd%22%3A%22dsk-box-ad-e%22%2C%22s%22%3A%5B%22600x300%22%2C%22468x60%22%2C%22300x250%22%5D%7D%5D&schain=1.0%2C1!publisherdesk.com%2C100628%2C1%2C%2C%2C&pubid=8f0be570-94e3-4c8a-8dac-4372ca412efd&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
54.230.241.131200 OK 183 B URL HTTP/2 aax-dtb-cf.amazon-adsystem.com/e/dtb/bid?src=600&u=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&pid=QXbPP2k8dmTsR&cb=0&ws=1280x939&v=23.123.1617&t=850&slots=%5B%7B%22sd%22%3A%22dsk-banner-ad-a%22%2C%22s%22%3A%5B%22970x90%22%2C%22728x90%22%2C%22468x60%22%5D%7D%2C%7B%22sd%22%3A%22dsk-banner-ad-b%22%2C%22s%22%3A%5B%22970x90%22%2C%22728x90%22%2C%22468x60%22%5D%7D%2C%7B%22sd%22%3A%22dsk-box-ad-a%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22160x600%22%2C%22120x600%22%5D%7D%2C%7B%22sd%22%3A%22dsk-box-ad-b%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22160x600%22%2C%22120x600%22%5D%7D%2C%7B%22sd%22%3A%22dsk-box-ad-c%22%2C%22s%22%3A%5B%22600x300%22%2C%22468x60%22%2C%22300x250%22%5D%7D%2C%7B%22sd%22%3A%22dsk-box-ad-d%22%2C%22s%22%3A%5B%22600x300%22%2C%22468x60%22%2C%22300x250%22%5D%7D%2C%7B%22sd%22%3A%22dsk-box-ad-e%22%2C%22s%22%3A%5B%22600x300%22%2C%22468x60%22%2C%22300x250%22%5D%7D%5D&schain=1.0%2C1!publisherdesk.com%2C100628%2C1%2C%2C%2C&pubid=8f0be570-94e3-4c8a-8dac-4372ca412efd&gdprl=%7B%22status%22%3A%22no-cmp%22%7D
IP 54.230.241.131:0
File type ASCII text, with no line terminators
Hash b4155f97b63498fac1268d3ecffd83d9
267b36c3e311e0f7f39d8fa0ae538de13557d4e6
6023ea61b628bea34922ff402d7e9604cc02806c41ef9dc2a22df7a288e07436
GET /e/dtb/bid?src=600&u=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&pid=QXbPP2k8dmTsR&cb=0&ws=1280x939&v=23.123.1617&t=850&slots=%5B%7B%22sd%22%3A%22dsk-banner-ad-a%22%2C%22s%22%3A%5B%22970x90%22%2C%22728x90%22%2C%22468x60%22%5D%7D%2C%7B%22sd%22%3A%22dsk-banner-ad-b%22%2C%22s%22%3A%5B%22970x90%22%2C%22728x90%22%2C%22468x60%22%5D%7D%2C%7B%22sd%22%3A%22dsk-box-ad-a%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22160x600%22%2C%22120x600%22%5D%7D%2C%7B%22sd%22%3A%22dsk-box-ad-b%22%2C%22s%22%3A%5B%22300x600%22%2C%22300x250%22%2C%22160x600%22%2C%22120x600%22%5D%7D%2C%7B%22sd%22%3A%22dsk-box-ad-c%22%2C%22s%22%3A%5B%22600x300%22%2C%22468x60%22%2C%22300x250%22%5D%7D%2C%7B%22sd%22%3A%22dsk-box-ad-d%22%2C%22s%22%3A%5B%22600x300%22%2C%22468x60%22%2C%22300x250%22%5D%7D%2C%7B%22sd%22%3A%22dsk-box-ad-e%22%2C%22s%22%3A%5B%22600x300%22%2C%22468x60%22%2C%22300x250%22%5D%7D%5D&schain=1.0%2C1!publisherdesk.com%2C100628%2C1%2C%2C%2C&pubid=8f0be570-94e3-4c8a-8dac-4372ca412efd&gdprl=%7B%22status%22%3A%22no-cmp%22%7D HTTP/1.1
Host: aax-dtb-cf.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
content-length: 183
server: Server
date: Tue, 31 Jan 2023 16:58:05 GMT
x-amz-rid: 4KY4PGE2T1JYHJYX3GVC
access-control-allow-origin: https://nationaltoday.com
access-control-allow-credentials: true
timing-allow-origin: *
strict-transport-security: max-age=47474747; includeSubDomains; preload
vary: Accept-Encoding,User-Agent
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZZKC1h01FGMlqGlcETT9BIjH6Bo9aTdtEOic51TTNGlEUjoJTk4IiA==
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=179692745920433&ev=fb_page_view&dl=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&rl=&if=false&ts=1675184302632&sw=1280&sh=1024&at=
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=179692745920433&ev=fb_page_view&dl=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&rl=&if=false&ts=1675184302632&sw=1280&sh=1024&at=
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=179692745920433&ev=fb_page_view&dl=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&rl=&if=false&ts=1675184302632&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 31 Jan 2023 16:58:05 GMT
X-Firefox-Spdy: h2
p.skimresources.com/px.gif?ch=1&rn=6.583791756448774
35.190.91.160200 OK 43 B URL HTTP/2 p.skimresources.com/px.gif?ch=1&rn=6.583791756448774
IP 35.190.91.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /px.gif?ch=1&rn=6.583791756448774 HTTP/1.1
Host: p.skimresources.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 43
content-type: image/gif
p3p: policyref="http://skimlinks.com/w3c/p3p.xml", CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
server: Skimlinks Pixel 1.0
date: Tue, 31 Jan 2023 16:58:05 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
p.skimresources.com/px.gif?ch=2&rn=6.583791756448774
35.190.91.160200 OK 43 B URL HTTP/2 p.skimresources.com/px.gif?ch=2&rn=6.583791756448774
IP 35.190.91.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /px.gif?ch=2&rn=6.583791756448774 HTTP/1.1
Host: p.skimresources.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 43
content-type: image/gif
p3p: policyref="http://skimlinks.com/w3c/p3p.xml", CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
server: Skimlinks Pixel 1.0
date: Tue, 31 Jan 2023 16:58:05 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
platform.twitter.com/widgets/follow_button.2b2d73daf636805223fb11d48f3e94f7.en.html
192.229.233.25200 OK 15 kB URL HTTP/1.1 platform.twitter.com/widgets/follow_button.2b2d73daf636805223fb11d48f3e94f7.en.html
IP 192.229.233.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (27020)
Hash f309a005b7edf0170f47ce66997f34cf
48f37d60104273e91b82bc3310a5e0b85eababcf
344076f00500fd6e3a16f9ea2ae0eec44d4b502dc04427680ac7e90a3de04fe2
GET /widgets/follow_button.2b2d73daf636805223fb11d48f3e94f7.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 587679
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Tue, 31 Jan 2023 16:58:05 GMT
Etag: "4fdb0b5f121db02fe652a6f4fe49d886+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:07 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F706)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 14965
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb3f2412c2667be12985cd3e4faf60f1
f2765606382aa4a7b6dfa4b4d414f26135d30bcd
287ebbd6612f1973a3ba354a368c7d0c4817f93589e70257004ccff08ecad508
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2254
Cache-Control: max-age=102878
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:05 GMT
Etag: "63d82ead-1d7"
Expires: Wed, 01 Feb 2023 21:32:43 GMT
Last-Modified: Mon, 30 Jan 2023 20:55:09 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
adservice.google.com/adsid/integrator.js?domain=nationaltoday.com
216.58.211.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=nationaltoday.com
IP 216.58.211.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=nationaltoday.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 31 Jan 2023 16:58:05 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=nationaltoday.com
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=nationaltoday.com
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=nationaltoday.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 31 Jan 2023 16:58:05 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-SQZQY2VH8E&cid=645190607.1675184303>m=2oe1p0&aip=1&z=722640397
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-SQZQY2VH8E&cid=645190607.1675184303>m=2oe1p0&aip=1&z=722640397
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-SQZQY2VH8E&cid=645190607.1675184303>m=2oe1p0&aip=1&z=722640397 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 16:58:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22natltoday%22%2C%22widget_creator_screen_name%22%3A%22natltoday%22%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1675184302745%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=ed12f8ada8da3f8344e99236152b87588e2570b5
104.244.42.136200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22natltoday%22%2C%22widget_creator_screen_name%22%3A%22natltoday%22%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1675184302745%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=ed12f8ada8da3f8344e99236152b87588e2570b5
IP 104.244.42.136:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F%22%2C%22widget_frame%22%3Afalse%2C%22widget_site_screen_name%22%3A%22natltoday%22%2C%22widget_creator_screen_name%22%3A%22natltoday%22%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Awithcount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1675184302745%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22aaf4084522e3a%3A1674595607486%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=ed12f8ada8da3f8344e99236152b87588e2570b5 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:04 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Tue, 31 Jan 2023 16:58:05 GMT
content-length: 43
x-transaction-id: d356273e9105bb00
strict-transport-security: max-age=631138519
x-response-time: 116
x-connection-hash: 0b0f423f44a5bc8cce9095b3453a4bfbcd87d958885ee1ac421518786eaac189
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023012601&st=env
142.250.74.34200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023012601&st=env
IP 142.250.74.34:0
File type JSON data\012- , ASCII text, with very long lines (14773), with no line terminators
Hash 86711f4f5d8be3498f97a8859fc8e95b
c88abce8da74e792f3f4fb627f0c3a7e2b0c7185
68b53d6e1e8a32d04a89f4fc6b47a4e0a4598746f5bbb509809f24ae892b3d43
GET /getconfig/sodar?sv=200&tid=gpt&tv=2023012601&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Tue, 31 Jan 2023 16:58:05 GMT
server: cafe
content-length: 11151
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2817f4c2aadb90f65ffdaac2fbf25721.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
142.250.74.97200 OK 2.7 kB URL HTTP/2 2817f4c2aadb90f65ffdaac2fbf25721.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: 2817f4c2aadb90f65ffdaac2fbf25721.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Tue, 31 Jan 2023 16:58:05 GMT
expires: Wed, 31 Jan 2024 16:58:05 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-29697889-1&cid=645190607.1675184303&jid=1168012104&gjid=850495204&_gid=649718993.1675184303&_u=YEBAAEAAAAAAACAAI~&z=1628276483
64.233.162.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-29697889-1&cid=645190607.1675184303&jid=1168012104&gjid=850495204&_gid=649718993.1675184303&_u=YEBAAEAAAAAAACAAI~&z=1628276483
IP 64.233.162.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-29697889-1&cid=645190607.1675184303&jid=1168012104&gjid=850495204&_gid=649718993.1675184303&_u=YEBAAEAAAAAAACAAI~&z=1628276483 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://nationaltoday.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 31 Jan 2023 16:58:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
images.jifo.co/5794202_1510693448957.png
104.26.7.6200 OK 1.6 kB URL HTTP/2 images.jifo.co/5794202_1510693448957.png
IP 104.26.7.6:0
File type PNG image data, 601 x 91, 8-bit/color RGB, non-interlaced\012- data
Hash d304a0016d0cc9260d3a6f07a5170010
fc9561f558d98cf548b1c2233f129b8a541e1922
1c6ccbe37836f3938051bd5a0174f0b45ffa8b801fb615e6e1e1776cef200fb3
GET /5794202_1510693448957.png HTTP/1.1
Host: images.jifo.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:05 GMT
content-type: application/octet-stream
content-length: 1633
last-modified: Tue, 14 Nov 2017 21:04:10 GMT
x-amz-version-id: null
etag: "d304a0016d0cc9260d3a6f07a5170010"
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2AfS0nObu5nZLgFLr4x6K5PDsBe4lwlL7yAQVsYZGYlquRKcAcc3uA==
age: 6547
cache-control: max-age=3600
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1iNsBbCWzwRkVvMX25EdTyT%2FRypwSRxOB7N6Acnjy%2BWR64Al9wOwSBTKTjAbJfWW8Xgzyzjv23foam81Gs9BR2GQccjqpBqmeANVKBxtBX8qbHsArNC4zyw0MaQ4ehUh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7923fd782a2eb50b-OSL
X-Firefox-Spdy: h2
images.jifo.co/5794202_1486170231113.png
104.26.7.6200 OK 10 kB URL HTTP/2 images.jifo.co/5794202_1486170231113.png
IP 104.26.7.6:0
File type PNG image data, 613 x 336, 8-bit/color RGBA, non-interlaced\012- data
Hash 6bdd58a1e46a4ea19ab99f2b28d2a2b6
1407b60bbca56bc31c63834007bc592f70ec0805
b4c178dc3e1ec9da47dcfd70249e33235d8de36d7681f3fb7c44bf27e85c9fa3
GET /5794202_1486170231113.png HTTP/1.1
Host: images.jifo.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:05 GMT
content-type: application/octet-stream
content-length: 10242
last-modified: Sat, 04 Feb 2017 01:03:52 GMT
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-version-id: null
etag: "6bdd58a1e46a4ea19ab99f2b28d2a2b6"
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zHm8i4Pu-FpL0aGHH4oS_QABjBjQO6dpSr26q51jLP8iAH_uh-ZEOA==
age: 6547
cache-control: max-age=3600
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2inqWxplfwcgI0Cg54E5apT9iZWRUkU2p5yRZ7fpVWPZ6S03YR99UwPRdKo1gEuzl8toCvo6tqCu3alYwZsT5MF0tgWy0CUyVlcNCjiSrGPI8BGlNUeOEi1Le1fq%2BnnA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7923fd782a38b50b-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash fac8be8cf632a008cb377ac953dd755c
1c397f779b8d357fcc9994396204bed4beec1d06
97e40ea51c81b4a552656d6556da89bde56209edf71cd810a710e04895f3297f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d30y9cdsu7xlg0.cloudfront.net/png/369083-42.png
54.230.245.9200 OK 356 B URL HTTP/2 d30y9cdsu7xlg0.cloudfront.net/png/369083-42.png
IP 54.230.245.9:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash 62e3d0cd99452d9ae4c4e06182a68046
6a9530edc0e9ed8491d65da6f334de43e3a48866
1f6b52d66d908cfdbe5b018a0f8fabd52dd5eff6b8b4348b8c87605bc5253908
GET /png/369083-42.png HTTP/1.1
Host: d30y9cdsu7xlg0.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 356
date: Tue, 31 Jan 2023 08:13:33 GMT
last-modified: Mon, 04 Apr 2022 17:24:40 GMT
etag: "62e3d0cd99452d9ae4c4e06182a68046"
cache-control: max-age=604800, public
x-amz-version-id: K.E2Lyx2V.cctoXnri0i4jvFo7rCmLf2
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kUnt5mdW6HNqoclSXAXzziKdy8g1W64H7V9ZMEG3owDxEofAwXQi8A==
age: 31473
X-Firefox-Spdy: h2
d30y9cdsu7xlg0.cloudfront.net/png/618615-42.png
54.230.245.9200 OK 764 B URL HTTP/2 d30y9cdsu7xlg0.cloudfront.net/png/618615-42.png
IP 54.230.245.9:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash 1a091b8182e54ae0fa5d5ef17c2fbca1
ae895ed4aa6facde1b3ce9eded193569d1f5f97e
f420875f884109dc9d3855ea1bca2d8a9e3b8c3b3e37bd2d3be6896f56739fcd
GET /png/618615-42.png HTTP/1.1
Host: d30y9cdsu7xlg0.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 764
date: Tue, 31 Jan 2023 08:13:34 GMT
last-modified: Thu, 08 Sep 2016 09:48:21 GMT
etag: "1a091b8182e54ae0fa5d5ef17c2fbca1"
cache-control: max-age=604800, public
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -L1lrxS28rbrPmMPPZiYAw3uz6TY8KE9lVa6rZRjc9GM4raT9J6usQ==
age: 31472
X-Firefox-Spdy: h2
d30y9cdsu7xlg0.cloudfront.net/png/1064746-42.png
54.230.245.9200 OK 849 B URL HTTP/2 d30y9cdsu7xlg0.cloudfront.net/png/1064746-42.png
IP 54.230.245.9:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash d565a4c347247955c28df6e37e72c344
dd41c4b38b14708018ccdb34336a6c0c00e70d7b
2fb1af7af70a6b322ec6525ee0464ab94cc634565d3e0eb6909e9d5c218b6cec
GET /png/1064746-42.png HTTP/1.1
Host: d30y9cdsu7xlg0.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 849
date: Tue, 31 Jan 2023 08:13:34 GMT
last-modified: Fri, 19 May 2017 22:47:58 GMT
etag: "d565a4c347247955c28df6e37e72c344"
cache-control: max-age=604800, public
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tDfZLSrGQlmj6Pt8LjafdWQ3JV7LvMkffsMLTum0FmVPamzShO4mCQ==
age: 31472
X-Firefox-Spdy: h2
d30y9cdsu7xlg0.cloudfront.net/png/440888-42.png
54.230.245.9200 OK 1.4 kB URL HTTP/2 d30y9cdsu7xlg0.cloudfront.net/png/440888-42.png
IP 54.230.245.9:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash 4881c0b291579615844d3a3ca6e72966
314aab578abfb6841487cc9b640657669560143b
5f5ea3ea7a31bea47d3df93ec2f9c0135e17b4156c339e2c9e5954acefdc0e9f
GET /png/440888-42.png HTTP/1.1
Host: d30y9cdsu7xlg0.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1361
date: Tue, 31 Jan 2023 08:13:33 GMT
last-modified: Fri, 22 Apr 2016 01:16:24 GMT
etag: "4881c0b291579615844d3a3ca6e72966"
cache-control: max-age=604800, public
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p0MMnkWZiWvn4twGAKowWvQ6Ufsb54nIRAfRJvSD6g3ObII2kLkSgA==
age: 31473
X-Firefox-Spdy: h2
d30y9cdsu7xlg0.cloudfront.net/png/545063-42.png
54.230.245.9200 OK 716 B URL HTTP/2 d30y9cdsu7xlg0.cloudfront.net/png/545063-42.png
IP 54.230.245.9:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash b28c93f8537aba987c0175b6919ed4ef
3c26b2e6e7a2b9c58f4dadcba935ea897694c9ae
85f494673d866dc08c1af0904c3e09369c21ce32fd7e90472b430a72c4706afe
GET /png/545063-42.png HTTP/1.1
Host: d30y9cdsu7xlg0.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 716
date: Wed, 25 Jan 2023 08:47:06 GMT
last-modified: Sun, 25 Jun 2017 23:00:10 GMT
etag: "b28c93f8537aba987c0175b6919ed4ef"
cache-control: max-age=604800, public
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fmjj-2zfQeTtSG4GbZHfJeeRs8MPbI69fx6dNgpD_turZKOba6jiSA==
age: 547860
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2.js
172.217.21.161200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 172.217.21.161:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Tue, 31 Jan 2023 16:58:05 GMT
expires: Tue, 31 Jan 2023 16:58:05 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
d30y9cdsu7xlg0.cloudfront.net/png/5289-42.png
54.230.245.9200 OK 861 B URL HTTP/2 d30y9cdsu7xlg0.cloudfront.net/png/5289-42.png
IP 54.230.245.9:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash 6d918f798fd8e8c1fa8ec8095e66b72a
6a52e5dc3917c645c1b9a3298095b45d6b6bc625
d5478d202a430b6e9d861f735efb20666bc966808a35af09b5b5802d9fc6efea
GET /png/5289-42.png HTTP/1.1
Host: d30y9cdsu7xlg0.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 861
date: Fri, 27 Jan 2023 09:51:24 GMT
last-modified: Thu, 06 Aug 2015 21:28:36 GMT
etag: "6d918f798fd8e8c1fa8ec8095e66b72a"
cache-control: max-age=604800, public
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Mzixi3415NdyUUx_jqX1uON-1yt7kPL4HRQTSJPIpy-YFWx0Ohngmw==
age: 371202
X-Firefox-Spdy: h2
d30y9cdsu7xlg0.cloudfront.net/png/16715-42.png
54.230.245.9200 OK 701 B URL HTTP/2 d30y9cdsu7xlg0.cloudfront.net/png/16715-42.png
IP 54.230.245.9:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash 18d1b325d20200444a7428e618abe305
f15a7d6df184d1d6e74bf97b7fb76a573b74cc97
7905f62a93d4e5cd0a421f6b4615a7267e0cf9978f8758b4e3a252e64ce9fa25
GET /png/16715-42.png HTTP/1.1
Host: d30y9cdsu7xlg0.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 701
date: Tue, 31 Jan 2023 08:13:34 GMT
last-modified: Sat, 08 Aug 2015 13:21:49 GMT
etag: "18d1b325d20200444a7428e618abe305"
cache-control: max-age=604800, public
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aP5c3u0818Z7qRHWXb4BU1cUgfQgFr1Qn1ds__GtJW0ZETrz2UFqog==
age: 31472
X-Firefox-Spdy: h2
d30y9cdsu7xlg0.cloudfront.net/png/146217-42.png
54.230.245.9200 OK 1.0 kB URL HTTP/2 d30y9cdsu7xlg0.cloudfront.net/png/146217-42.png
IP 54.230.245.9:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash d10392843a8c6165aa8914da316d86c8
be1af48dcee8e0da1bdbd4dbf531ffa87d0c4c9c
01a7a236535070a304b2d1acbed7021f706410ca46cbcd1cafd18bebd953b158
GET /png/146217-42.png HTTP/1.1
Host: d30y9cdsu7xlg0.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 1002
date: Tue, 31 Jan 2023 08:13:33 GMT
last-modified: Fri, 07 Aug 2015 21:44:29 GMT
etag: "d10392843a8c6165aa8914da316d86c8"
cache-control: max-age=604800, public
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ii3rUKvxnm1FyfC3pSGstLCXAIpQ6oIt5FrN1YkkfRGQai48Tk2PKQ==
age: 31473
X-Firefox-Spdy: h2
d30y9cdsu7xlg0.cloudfront.net/png/29822-42.png
54.230.245.9200 OK 659 B URL HTTP/2 d30y9cdsu7xlg0.cloudfront.net/png/29822-42.png
IP 54.230.245.9:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash b466eadb5a5682e4c9c2ae91a62d1576
9cbb17db7077f8dce86c99c7c67e66b023d3c673
e74316e4c402be291a319abb129b11aacdee228429a6a822c98d77a887551b69
GET /png/29822-42.png HTTP/1.1
Host: d30y9cdsu7xlg0.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 659
date: Sat, 28 Jan 2023 10:57:48 GMT
last-modified: Fri, 07 Aug 2015 01:37:38 GMT
etag: "b466eadb5a5682e4c9c2ae91a62d1576"
cache-control: max-age=604800, public
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MD4aMj312v71rBYvG0ppN6JHJmKEtLsIg9SKBK5gzVUdqGdvwl3K7Q==
age: 280817
X-Firefox-Spdy: h2
d30y9cdsu7xlg0.cloudfront.net/png/92467-42.png
54.230.245.9200 OK 493 B URL HTTP/2 d30y9cdsu7xlg0.cloudfront.net/png/92467-42.png
IP 54.230.245.9:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash 4d6bbfacc6c9cf6891b2afd93655b373
dce0e837e9b66640c98b6c3f21abe00fce143a8a
2f68f8f2d12cc6ab5eec88e3f841a8a65d2dc92cbef8fd1cb5f27eee3048508c
GET /png/92467-42.png HTTP/1.1
Host: d30y9cdsu7xlg0.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 493
date: Tue, 31 Jan 2023 08:13:32 GMT
last-modified: Fri, 07 Aug 2015 12:26:22 GMT
etag: "4d6bbfacc6c9cf6891b2afd93655b373"
cache-control: max-age=604800, public
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -k_VvC9awWbNNc94sBb7raNJ3PXNt2LZRRL0lbg0PCA1iSDCj_tyiQ==
age: 31474
X-Firefox-Spdy: h2
d30y9cdsu7xlg0.cloudfront.net/png/59774-42.png
54.230.245.9200 OK 968 B URL HTTP/2 d30y9cdsu7xlg0.cloudfront.net/png/59774-42.png
IP 54.230.245.9:0
File type PNG image data, 42 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash 4418b89dd1b305c0e0d4e9c3671652b2
fbaad31cb9b7b67cba5a9c6dd175c469e3bf1007
87d2049d3c88cce924a4ae270e0bf941fd4267b7a09811b983382ec347173558
GET /png/59774-42.png HTTP/1.1
Host: d30y9cdsu7xlg0.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 968
date: Tue, 31 Jan 2023 08:13:33 GMT
last-modified: Mon, 10 Aug 2015 01:26:35 GMT
etag: "4418b89dd1b305c0e0d4e9c3671652b2"
cache-control: max-age=604800, public
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bZLr6b2wQzWGDoQ0cYO7mOARW-j7yCvq16GprOs8BfbIq1yEe9nEsA==
age: 31473
X-Firefox-Spdy: h2
aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-index_n-LoopMe_pm-db5_rbd_rx_n-MediaNet_smrt_n-nativo_3lift_n-Outbrain
52.95.115.196302 Found 0 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-index_n-LoopMe_pm-db5_rbd_rx_n-MediaNet_smrt_n-nativo_3lift_n-Outbrain
IP 52.95.115.196:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-index_n-LoopMe_pm-db5_rbd_rx_n-MediaNet_smrt_n-nativo_3lift_n-Outbrain HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Tue, 31 Jan 2023 16:58:05 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: T7PFN93PH61X7ZMN4AAC
Set-Cookie: ad-id=A3jS3lCELUr4pQgU8DlgDYY|t; Domain=.amazon-adsystem.com; Expires=Sun, 01-Oct-2023 16:58:05 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-index_n-LoopMe_pm-db5_rbd_rx_n-MediaNet_smrt_n-nativo_3lift_n-Outbrain&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 5a3b8ee23f21740c11c01213a2a19819
9887d6fe0b1669d9f1905bb76d085ec7ded8e158
abbd84d6812e9a405ae14e563c4bb30f11186e0c782280b2aebed054921e4fb7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1766
Cache-Control: max-age=156398
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:05 GMT
Etag: "63d901a5-138"
Expires: Thu, 02 Feb 2023 12:24:43 GMT
Last-Modified: Tue, 31 Jan 2023 11:55:17 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 5a3b8ee23f21740c11c01213a2a19819
9887d6fe0b1669d9f1905bb76d085ec7ded8e158
abbd84d6812e9a405ae14e563c4bb30f11186e0c782280b2aebed054921e4fb7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1755
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:05 GMT
Last-Modified: Tue, 31 Jan 2023 16:28:50 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 312
aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-index_n-LoopMe_pm-db5_rbd_rx_n-MediaNet_smrt_n-nativo_3lift_n-Outbrain&dcc=t
52.95.115.196200 OK 64 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-index_n-LoopMe_pm-db5_rbd_rx_n-MediaNet_smrt_n-nativo_3lift_n-Outbrain&dcc=t
IP 52.95.115.196:0
File type HTML document, ASCII text
Hash be99f9f8ced5e5eb1f9721d861712f89
4291ee98f7ce20471796ec89961abb1acb2af1d8
f17fe415b91a13ea86b93344389e18c996384323ca3c2f4267b18c96b8314a12
GET /s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-smaato_n-index_n-LoopMe_pm-db5_rbd_rx_n-MediaNet_smrt_n-nativo_3lift_n-Outbrain&dcc=t HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nationaltoday.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Tue, 31 Jan 2023 16:58:05 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 64
Connection: keep-alive
x-amz-rid: XR7P7PCSZQQ8J70TTZ29
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
ocsp.pki.goog/s/gts1d4/fXs_L39cqkM
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/fXs_L39cqkM
IP 142.250.74.131:0
Hash 52eff94281ce273b21d9d0243c4f97a8
8d93a080e772595405e5172a7fb2b048f4498da5
1271b07b961c52a32bb75996f221bf2d071f8f5a6188447ed2a953443270330b
POST /s/gts1d4/fXs_L39cqkM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:05 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash b88199b068f53586c81c478d5ff82985
756b869d9244159933c9c2accb10c2d38755323f
17d03424be834e3740911c49a939d23810d516524bac3d5e8784217e4ad97896
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=170684
Date: Tue, 31 Jan 2023 16:58:05 GMT
Etag: "63d92a55-1d7"
Expires: Thu, 02 Feb 2023 16:22:49 GMT
Last-Modified: Tue, 31 Jan 2023 14:48:53 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OfMt6aJbzIpjPKLOGiuXNL5lIde4G_lqA2Ybd6JgEYgAiOp3Y3VjlQ==
Age: 5636
c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
54.230.111.210200 OK 3.1 kB URL HTTP/2 c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
IP 54.230.111.210:0
Hash cfd0edaccb86ba3dd62ea127452bf1ea
30d638f118c6c3d2a39dc4495e53f57d5edd73d9
c513815b068852567bfcda06ae6e2a80e6c5c8ef1d73ef2d65defb22a2f84895
GET /bao-csm/aps-comm/aps_csm.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Fri, 23 Dec 2022 01:05:48 GMT
x-amz-version-id: 1R3b4YI9dI20q9Y7Gq1DHxVUnq3Fp2gn
server: AmazonS3
content-encoding: gzip
date: Tue, 31 Jan 2023 04:54:44 GMT
cache-control: public, max-age=86400
etag: W/"a4d296427fc806b21335359e398c025c"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -rvZHQ7lDGAHkAJyGpCKGaRh7PjNqEcWVWyiWUV02hK3qlhfniOGcA==
age: 45744
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2858552359164001
142.250.74.34200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2858552359164001
IP 142.250.74.34:0
File type ASCII text, with very long lines (3642)
Hash ec8cd2fb4ff8ea6a7a097ff434e819d8
edb32df84968f9d5e2244db9a15e0175017d6fd3
b4c0443a8d3647d6fd6e50c85a1728ec7df517ddf2ba9fd275721f710efa17c4
GET /pagead/js/adsbygoogle.js?client=ca-pub-2858552359164001 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 31 Jan 2023 16:58:05 GMT
expires: Tue, 31 Jan 2023 16:58:05 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3989030509531870352
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50063
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
id5-sync.com/g/v2/1120.json
162.19.138.83200 12 kB URL HTTP/1.1 id5-sync.com/g/v2/1120.json
IP 162.19.138.83:0
Hash 01ed4df6e59ba746c1c13d9313efaace
f3545de0daa5388294335e3bf8b791b78c27068e
71911c375f8564d68da607e4ae054b3646378dacdf234a2908cdedcefde7ecbf
POST /g/v2/1120.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 218
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://nationaltoday.com
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Tue, 31 Jan 2023 16:58:04 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
region1.analytics.google.com/g/collect?v=2&tid=G-SQZQY2VH8E>m=2oe1p0&_p=1900419903&_gaz=1&cid=645190607.1675184303&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675184302&sct=1&seg=0&dl=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&dt=NATIONAL%20DRINK%20WINE%20DAY%20-%20February%2018%2C%202023%20-%20National%20Today&en=page_view&_fv=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-SQZQY2VH8E>m=2oe1p0&_p=1900419903&_gaz=1&cid=645190607.1675184303&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675184302&sct=1&seg=0&dl=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&dt=NATIONAL%20DRINK%20WINE%20DAY%20-%20February%2018%2C%202023%20-%20National%20Today&en=page_view&_fv=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-SQZQY2VH8E>m=2oe1p0&_p=1900419903&_gaz=1&cid=645190607.1675184303&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675184302&sct=1&seg=0&dl=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&dt=NATIONAL%20DRINK%20WINE%20DAY%20-%20February%2018%2C%202023%20-%20National%20Today&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://nationaltoday.com
date: Tue, 31 Jan 2023 16:58:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 41d2b408c565a53e25c6d188e62b3e25
cdc269e35ce41c25f5c4001825a982cdd967bbff
6e17347c1f85f7341cb92e3cc2d29b9149384cf223ac7d073d5eb65cee85af0f
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 16:58:05 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sat, 04 Feb 2023 15:22:56 GMT
ETag: "cdc269e35ce41c25f5c4001825a982cdd967bbff"
Last-Modified: Tue, 31 Jan 2023 15:22:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2427
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7923fd7aecc0b4fd-OSL
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gpt_2023012601&jk=2419608197246279&rc=
142.250.74.34204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gpt_2023012601&jk=2419608197246279&rc=
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&li=gpt_2023012601&jk=2419608197246279&rc= HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 31 Jan 2023 16:58:05 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sqs.us-east-1.amazonaws.com/397719490216/Test_oPS_Script_Loads?Action=SendMessage&MessageBody=cid%3D68%26bt%3DFirefox
52.94.238.237200 OK 378 B URL HTTP/1.1 sqs.us-east-1.amazonaws.com/397719490216/Test_oPS_Script_Loads?Action=SendMessage&MessageBody=cid%3D68%26bt%3DFirefox
IP 52.94.238.237:0
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (378), with no line terminators
Hash 5f5e91a1ee46695d3b260bb4f46d497d
20c1de6f561948a035233580d63bcd58098b1a06
a392ca80d2d9207744b3c4738fa04d85f9fcfce95077dd30ad2444b8928878ad
POST /397719490216/Test_oPS_Script_Loads?Action=SendMessage&MessageBody=cid%3D68%26bt%3DFirefox HTTP/1.1
Host: sqs.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
x-amzn-RequestId: 7a09fbb5-edf5-5657-8c02-a7e6a728680e
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amzn-ErrorMessage,Date
Date: Tue, 31 Jan 2023 16:58:05 GMT
Content-Type: text/xml
Content-Length: 378
match.adsrvr.org/track/rid?ttd_pid=pubmatic&fmt=json
3.33.220.150200 OK 63 B URL HTTP/2 match.adsrvr.org/track/rid?ttd_pid=pubmatic&fmt=json
IP 3.33.220.150:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2b88e6ce709faebfb3f97efc910973d6
8ee071ed38fd84dfc077c1009bad94fd7a7f47f0
86a0a28f8039b85a9739d0359ac67cc5cf05cd66f66744fdd6d6cbb0cec62ed2
GET /track/rid?ttd_pid=pubmatic&fmt=json HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:05 GMT
content-type: application/json; charset=utf-8
content-length: 63
cache-control: private
expires: Thu, 02 Mar 2023 16:58:05 GMT
vary: Origin
access-control-allow-origin: https://nationaltoday.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Content-Length, Content-Encoding, Vary, Cache-Control, Accept
x-aspnet-version: 4.0.30319
X-Firefox-Spdy: h2
lexicon.33across.com/v1/envelope?pid=0010b00002OCk5oAAD&gdpr=0
35.244.193.51200 OK 49 B URL HTTP/2 lexicon.33across.com/v1/envelope?pid=0010b00002OCk5oAAD&gdpr=0
IP 35.244.193.51:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c466bd434db29cf02793f8522fde5f3a
f39a01bb0264479dbe9a4bfb0b80ae0b3b0e8154
d0d2e098cd489ef7bc528c86de8ab5c51b5d6cdf9b76a8b08766036992f0d2f4
GET /v1/envelope?pid=0010b00002OCk5oAAD&gdpr=0 HTTP/1.1
Host: lexicon.33across.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://nationaltoday.com
cache-control: private, must-revalidate, max-age=28800
content-type: application/json
content-length: 49
date: Tue, 31 Jan 2023 16:58:05 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fnationaltoday.com%2F&domain=nationaltoday.com&cw=1&lsw=1
178.250.2.146200 OK 1.8 kB URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fnationaltoday.com%2F&domain=nationaltoday.com&cw=1&lsw=1
IP 178.250.2.146:0
Hash 68813adda463615581fb68ab62f14747
efc036793333c223ecfa636d294bb904b2a94b87
8c9016250703ea928f988864cd68b1a7d127cb3a271f66c5650acdf777c686e1
OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Fnationaltoday.com%2F&domain=nationaltoday.com&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://nationaltoday.com/
Origin: https://nationaltoday.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:05 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://nationaltoday.com
server-processing-duration-in-ticks: 423369
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 8ef1dbe04ff3834735b0659e7ae82c62
56d86283c8861f679162e92c70bbea59f819b8dc
a41623bee3b144f94362b7351bf88236e4291f113068361be33209f550fb3373
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 16:58:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 01:42:55 GMT
Expires: Sun, 05 Feb 2023 01:42:54 GMT
Etag: "56d86283c8861f679162e92c70bbea59f819b8dc"
Cache-Control: max-age=376488,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7923fd7a6949fac4-OSL
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202301170101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-2858552359164001&plah=nationaltoday.com&bust=31071722
142.250.74.34200 OK 121 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202301170101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-2858552359164001&plah=nationaltoday.com&bust=31071722
IP 142.250.74.34:0
File type ASCII text, with very long lines (3988)
Size 121 kB (121327 bytes)
Hash ea55a77011f7e95d7d8bd8c7bd7f8f32
6c4008f6149302ebdbf6906151e090f26124d4ca
71325e09324e2fda81b95b4e70354b83df23acf857cb5e1badbd6e8b236d7cd5
GET /pagead/managed/js/adsense/m202301170101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-2858552359164001&plah=nationaltoday.com&bust=31071722 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 31 Jan 2023 16:58:06 GMT
expires: Tue, 31 Jan 2023 16:58:06 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 10076047855479049184
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 121327
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/fXs_L39cqkM
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/fXs_L39cqkM
IP 142.250.74.131:0
Hash 52eff94281ce273b21d9d0243c4f97a8
8d93a080e772595405e5172a7fb2b048f4498da5
1271b07b961c52a32bb75996f221bf2d071f8f5a6188447ed2a953443270330b
POST /s/gts1d4/fXs_L39cqkM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:06 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.rlcdn.com/api/identity/envelope?pid=1258
34.120.133.55401 Unauthorized 19 B URL HTTP/2 api.rlcdn.com/api/identity/envelope?pid=1258
IP 34.120.133.55:0
Hash 63dfbd2b39fe4f536a04e7b32ada47b4
207298c4a215ad5d97d888522927910ae772ba48
26e51290d12b4fea0bb98da3ed118837b744555ba723061771ab3df30000b6b7
GET /api/identity/envelope?pid=1258 HTTP/1.1
Host: api.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 401 Unauthorized
content-type: text/plain; charset=utf-8
x-content-type-options: nosniff
date: Tue, 31 Jan 2023 16:58:06 GMT
content-length: 19
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
id.crwdcntrl.net/id
176.34.217.189200 OK 43 B IP 176.34.217.189:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 90eeff5111bbbdce769d4130cc3cca3c
d62886c1a85d51814cb7f124761c5e6aca6d8933
a96e1e97d62ab9747678b947bdf0a0ea5f81790b1e3a1df2d4607a86bf802596
GET /id HTTP/1.1
Host: id.crwdcntrl.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:06 GMT
content-type: application/json;charset=utf-8
content-length: 43
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.13.119
access-control-allow-credentials: true
access-control-allow-origin: https://nationaltoday.com
server: Jetty(9.4.38.v20210224)
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/skimlinks-publishers/loader.js
151.101.193.44200 OK 38 kB URL HTTP/2 cdn.taboola.com/libtrc/skimlinks-publishers/loader.js
IP 151.101.193.44:0
File type ASCII text, with very long lines (64963)
Hash 25dbe73c464cfc1a47686aa2d33b032d
a1b8d8bf3db15a4de180b6fc9ff2833768b85714
47a5b8aa8cf86ea476ca41afe103953669f001b00e0fe1036fc0f727943bbb9e
GET /libtrc/skimlinks-publishers/loader.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
content-encoding: gzip
etag: "73f42795a1944be9661a22daf5660234cb6c7034"
last-modified: Mon, 30 Jan 2023 15:51:44 UTC
x-amz-id-2: TOfGF30+v3+U9OHW5VhwgwiB87ZAF9DzVU6DysVpoFMm3TNFNppa6q4x7H7F1QQsFJTT81YUTnY=
x-amz-request-id: 86MQ9XNK360YKTSX
x-amz-version-id: LgzlLdIRXEQjG4cMwo8GIHopI.pJtBQy
x-from-cache: 1
x-envoy-upstream-service-time: 6
accept-ranges: bytes
date: Tue, 31 Jan 2023 16:58:06 GMT
via: 1.1 varnish
age: 7225
x-served-by: cache-bma1678-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675184286.130523,VS0,VE1
cache-control: private,max-age=14400
vary: Accept-Encoding, Accept-Encoding
abp: 20
content-length: 37841
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 1.1 kB IP 142.250.74.131:0
File type gzip compressed data, max compression\012- data
Hash 4bc4872ba3efa67e4e685cbecee40a3c
995acfdee936f95c47b8fdde4df67cc4de91ae85
dff2468d4caeafbc875250dbdcac56b654e987713f57f247f03d570ed374ab5e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash fbc6e141a7c7ec3aee1dfa4e309da411
7dbb86266e59273ddbbc5a7238f4d2329fd3d0a7
23a330037372c846907904fc7f920828f617237779c80b779c9000fb4e5594d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash fbc6e141a7c7ec3aee1dfa4e309da411
7dbb86266e59273ddbbc5a7238f4d2329fd3d0a7
23a330037372c846907904fc7f920828f617237779c80b779c9000fb4e5594d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012301181928000/v0/amp-ad-exit-0.1.mjs
172.217.21.161200 OK 5.2 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-ad-exit-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (14751)
Hash 73e00d54af81c3fab604b50e24c8e9c3
69acac1ec53fcbcf886bb240adabd050520197f9
3347e49ea6e174315c1bee3660a9988e4c7fe184a7a1176cf2aceb307c73125a
GET /rtv/012301181928000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nationaltoday.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5218
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:37 GMT
expires: Tue, 30 Jan 2024 18:04:37 GMT
cache-control: public, max-age=31536000
etag: "47662644ea8653a3"
content-type: text/javascript; charset=UTF-8
age: 82409
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/bg/61GpKCApVLYQT9jNIt6Sy6gazCCT9Y8KR4-jaxve3Xw.js
142.250.74.34200 OK 14 kB URL HTTP/2 pagead2.googlesyndication.com/bg/61GpKCApVLYQT9jNIt6Sy6gazCCT9Y8KR4-jaxve3Xw.js
IP 142.250.74.34:0
File type ASCII text, with very long lines (35976)
Hash b5a88a454418649c77980131bfed1b68
f864bcf7df3f697869862cd06d845470d7503703
942f239fafcd89b9c03cf4e74e3be3ebe64b1d9e96d069ed5531720f681cbe89
GET /bg/61GpKCApVLYQT9jNIt6Sy6gazCCT9Y8KR4-jaxve3Xw.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14211
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 10:00:29 GMT
expires: Mon, 29 Jan 2024 10:00:29 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 24 Jan 2023 13:48:00 GMT
content-type: text/javascript
age: 197857
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301181928000/amp4ads-v0.mjs
172.217.21.161200 OK 62 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/amp4ads-v0.mjs
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (65008)
Hash c84202220125aee9bd368d2036235130
a18a7c9251c3bc1a5a96de74db84ed5af86ba618
f2f5cf1534589a8934ca4ac301eb38863fc89c48648da9a8807656a2d4a22b94
GET /rtv/012301181928000/amp4ads-v0.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 61734
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:37 GMT
expires: Tue, 30 Jan 2024 18:04:37 GMT
cache-control: public, max-age=31536000
etag: "5b4f5406239652c8"
content-type: text/javascript; charset=UTF-8
age: 82409
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301181928000/v0/amp-analytics-0.1.mjs
172.217.21.161200 OK 29 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-analytics-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (65534)
Hash 71f3ba24b0a01ade500d97ad0b8f3617
508b7affbf3e3c2b8bf4f46ebcb69ea29855bf9a
34c90f195073264a8f3e51bb9582b73665f65d7b053a031400c48bf627ca9d69
GET /rtv/012301181928000/v0/amp-analytics-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nationaltoday.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 28817
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:37 GMT
expires: Tue, 30 Jan 2024 18:04:37 GMT
cache-control: public, max-age=31536000
etag: "6eb387830c268337"
content-type: text/javascript; charset=UTF-8
age: 82409
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301181928000/v0/amp-form-0.1.mjs
172.217.21.161200 OK 13 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-form-0.1.mjs
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (41057)
Hash d002971e2ddb3b4efd4dc02db13ee630
da135f871d06963e22f3dc6ec251cfbaed9740ad
a464154b965a79018453f4b97ffa8412a5059b0b521472bfc0e84df5c74d8fac
GET /rtv/012301181928000/v0/amp-form-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nationaltoday.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12960
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:37 GMT
expires: Tue, 30 Jan 2024 18:04:37 GMT
cache-control: public, max-age=31536000
etag: "f74ebce85e2cb18a"
content-type: text/javascript; charset=UTF-8
age: 82409
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash fbc6e141a7c7ec3aee1dfa4e309da411
7dbb86266e59273ddbbc5a7238f4d2329fd3d0a7
23a330037372c846907904fc7f920828f617237779c80b779c9000fb4e5594d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r.skimresources.com/api/
35.190.59.101200 OK 617 B IP 35.190.59.101:0
Hash f76fc68383e923f996cc13ea3da3b7d2
757bc346ccf055ca3dd08153c00b3142457bd0a6
21de806ff5ff3665ead67ec3aad9ff5952a72c8394812934038f0b07ae9c36c8
POST /api/ HTTP/1.1
Host: r.skimresources.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 309
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Tue, 31 Jan 2023 16:58:05 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://nationaltoday.com
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301181928000/v0/amp-fit-text-0.1.mjs
172.217.21.161200 OK 1.9 kB URL HTTP/2 cdn.ampproject.org/rtv/012301181928000/v0/amp-fit-text-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (5021)
Hash 15dbec6a43680f6683938949e1b50562
fd479e89a3460ca0e48b5001aad0a2836df31dab
d08eefabc738f11545330db83c2d3e9a855add08db6b9d9217a15dd783c4f5c8
GET /rtv/012301181928000/v0/amp-fit-text-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nationaltoday.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1914
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:04:37 GMT
expires: Tue, 30 Jan 2024 18:04:37 GMT
cache-control: public, max-age=31536000
etag: "f13d3e1d36b26a3d"
content-type: text/javascript; charset=UTF-8
age: 82409
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash fbc6e141a7c7ec3aee1dfa4e309da411
7dbb86266e59273ddbbc5a7238f4d2329fd3d0a7
23a330037372c846907904fc7f920828f617237779c80b779c9000fb4e5594d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 76d6564cece91533ccca2d6bd0f0a589
685c3aa804742b0dcc9bc537fdd809b6b4e544a7
67123cdc9f3c607dd1cc308a3a6b1faa945bead7968cd769dde7df663076dd03
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 16:58:06 GMT
Last-Modified: Tue, 31 Jan 2023 16:12:55 GMT
Server: ECS (nyb/1D0E)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uj5HrSZrHcSLMZhFCy7VRn6DhQPacWICNgBGsaOeRcbS6a-W5lhXhQ==
Age: 2711
protected-by.clarium.io/pixel?tag=wt_NmxPNUdzS2N6VHhGMzFyR2h6Z3Axd2VBVG53LzA6NzI4eDkw&v=5&s=v31go4c7rlc&sb=-1&h=nationaltoday.com&cb=709015&d=eyJ3aCI6Ik5teFBOVWR6UzJONlZIaEdNekZ5UjJoNlozQXhkMlZCVkc1M0x6QTZOekk0ZURrdyIsIndkIjp7Im8iOjAsInciOiI3MjgiLCJoIjoiOTAifSwid3IiOjJ9&id=eyJkZnAiOnsiYWQiOjAsImMiOm51bGwsImwiOjAsIm8iOjAsIkEiOiIvMTM0NzAyOTMyLDIyODQxNTI2MzQwLzA2MjgtbmF0aW9uYWx0b2RheS5jb20vMDYyOC1kc2stYmFubmVyLWFkLWIiLCJ5Ijo5OTQ2NSwiY28iOjAsInMiOiJkc2stYmFubmVyLWFkLWIifSwidHBfY3JpZCI6bnVsbH0%3D
13.51.104.111200 OK 68 B URL HTTP/2 protected-by.clarium.io/pixel?tag=wt_NmxPNUdzS2N6VHhGMzFyR2h6Z3Axd2VBVG53LzA6NzI4eDkw&v=5&s=v31go4c7rlc&sb=-1&h=nationaltoday.com&cb=709015&d=eyJ3aCI6Ik5teFBOVWR6UzJONlZIaEdNekZ5UjJoNlozQXhkMlZCVkc1M0x6QTZOekk0ZURrdyIsIndkIjp7Im8iOjAsInciOiI3MjgiLCJoIjoiOTAifSwid3IiOjJ9&id=eyJkZnAiOnsiYWQiOjAsImMiOm51bGwsImwiOjAsIm8iOjAsIkEiOiIvMTM0NzAyOTMyLDIyODQxNTI2MzQwLzA2MjgtbmF0aW9uYWx0b2RheS5jb20vMDYyOC1kc2stYmFubmVyLWFkLWIiLCJ5Ijo5OTQ2NSwiY28iOjAsInMiOiJkc2stYmFubmVyLWFkLWIifSwidHBfY3JpZCI6bnVsbH0%3D
IP 13.51.104.111:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 2a637d3d825673c0e3462fa4ed9a1c5c
81668d396da22832d75a986407ff10035e0d5899
69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7
GET /pixel?tag=wt_NmxPNUdzS2N6VHhGMzFyR2h6Z3Axd2VBVG53LzA6NzI4eDkw&v=5&s=v31go4c7rlc&sb=-1&h=nationaltoday.com&cb=709015&d=eyJ3aCI6Ik5teFBOVWR6UzJONlZIaEdNekZ5UjJoNlozQXhkMlZCVkc1M0x6QTZOekk0ZURrdyIsIndkIjp7Im8iOjAsInciOiI3MjgiLCJoIjoiOTAifSwid3IiOjJ9&id=eyJkZnAiOnsiYWQiOjAsImMiOm51bGwsImwiOjAsIm8iOjAsIkEiOiIvMTM0NzAyOTMyLDIyODQxNTI2MzQwLzA2MjgtbmF0aW9uYWx0b2RheS5jb20vMDYyOC1kc2stYmFubmVyLWFkLWIiLCJ5Ijo5OTQ2NSwiY28iOjAsInMiOiJkc2stYmFubmVyLWFkLWIifSwidHBfY3JpZCI6bnVsbH0%3D HTTP/1.1
Host: protected-by.clarium.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:06 GMT
content-type: image/png
server: nginx/1.18.0 (Ubuntu)
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
expires: Sat, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
cdn.taboola.com/libtrc/tr5?abgroup=aa_test_for_monitoring_ctrl
151.101.193.44200 OK 3 B URL HTTP/2 cdn.taboola.com/libtrc/tr5?abgroup=aa_test_for_monitoring_ctrl
IP 151.101.193.44:0
File type ASCII text, with no line terminators
Hash cf1731f1eadf52f064e6059d699e7615
816201b65af045985cf47b5c7c58089759d00a45
2e34af284c28bf285781a36241b6e00ec74c81e6ae6858d52bdede5ebf7e37c1
GET /libtrc/tr5?abgroup=aa_test_for_monitoring_ctrl HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Varnish
retry-after: 0
content-type: text/html
accept-ranges: bytes
date: Tue, 31 Jan 2023 16:58:06 GMT
via: 1.1 varnish
x-served-by: cache-bma1678-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1675184286.468397,VS0,VE0
cache-control: private,max-age=14400
content-length: 3
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1b05a0b3c19155ff38f58b7dd4606775
ef6a909125ff3c1e9ea077163a86df4028ff490e
b0708b95554274b9cf8bced7a8668069a39b99a5e216c11b6c277bb912dcecf7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.taboola.com/libtrc/impl.20230130-10-RELEASE.js
151.101.193.44200 OK 155 kB URL HTTP/2 cdn.taboola.com/libtrc/impl.20230130-10-RELEASE.js
IP 151.101.193.44:0
File type ASCII text, with very long lines (65508)
Size 155 kB (154945 bytes)
Hash 43778d68df6d87b14b6213d7da695373
e0e175bec38f969786ca8bd60e2506388f8bef84
9d6f3588f483939da574b9dba9969567f908cb49112e52e0476b36946c44a48b
GET /libtrc/impl.20230130-10-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: WKsJwXKK8700x0OG/BqtbC1xYFDrYn7WhMUYMZvtUuGzRx9Sx7LHlxdyyGSLy0fywzedbI4JCXk=
x-amz-request-id: RC7Q4V9RPK0RFKMF
last-modified: Mon, 30 Jan 2023 12:17:26 GMT
etag: "43778d68df6d87b14b6213d7da695373"
content-encoding: br
x-amz-version-id: 7KtBpzCZ9UBmHYvmPnPTDTmEw3m_5.hv
content-type: application/javascript
accept-ranges: bytes
date: Tue, 31 Jan 2023 16:58:06 GMT
via: 1.1 varnish
age: 16695
x-served-by: cache-bma1678-BMA
x-cache: HIT
x-cache-hits: 7890
x-timer: S1675184286.472648,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 47
server: AmazonS3-br
content-length: 154945
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=nationaltoday.com&callback=_gfp_s_&client=ca-pub-2858552359164001&cookie=ID%3D60a7c5387906472f%3AT%3D1675184285%3AS%3DALNI_Mb69LHGQ9vVAJ20Nry8hnMd5IeLNA&gpic=UID%3D00000bad31968234%3AT%3D1675184285%3ART%3D1675184285%3AS%3DALNI_MYrppDVJ-jbwqVRpw1LbMHRPS2G3Q
216.58.207.226200 OK 205 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=nationaltoday.com&callback=_gfp_s_&client=ca-pub-2858552359164001&cookie=ID%3D60a7c5387906472f%3AT%3D1675184285%3AS%3DALNI_Mb69LHGQ9vVAJ20Nry8hnMd5IeLNA&gpic=UID%3D00000bad31968234%3AT%3D1675184285%3ART%3D1675184285%3AS%3DALNI_MYrppDVJ-jbwqVRpw1LbMHRPS2G3Q
IP 216.58.207.226:0
File type ASCII text, with no line terminators
Hash a7034a4c1b7f3a3ec3394dfa04153c5c
9c7e1c8aee052c13ed8e0db751c52ce016bd8aa7
88cfa9cbfcd193ff81d09c48c36d00033427511904a4f151c9693c9a66acdd6a
GET /gampad/cookie.js?domain=nationaltoday.com&callback=_gfp_s_&client=ca-pub-2858552359164001&cookie=ID%3D60a7c5387906472f%3AT%3D1675184285%3AS%3DALNI_Mb69LHGQ9vVAJ20Nry8hnMd5IeLNA&gpic=UID%3D00000bad31968234%3AT%3D1675184285%3ART%3D1675184285%3AS%3DALNI_MYrppDVJ-jbwqVRpw1LbMHRPS2G3Q HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 31 Jan 2023 16:58:06 GMT
server: cafe
cache-control: private
content-length: 205
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2263a1e1250ae338c282d1688740d8c1
4d7f8a14fe6382ae92bfa31048d6cf7802ebd989
587dfb385435f78a53392aa45b9e268c61c62ba97b3c081ba3f4795122305e40
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sb.scorecardresearch.com/b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1675184304183&ns_c=UTF-8&c7=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&c8=NATIONAL%20DRINK%20WINE%20DAY%20-%20February%2018%2C%202023%20-%20National%20Today&c9=
54.230.111.73204 No Content 0 B URL HTTP/2 sb.scorecardresearch.com/b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1675184304183&ns_c=UTF-8&c7=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&c8=NATIONAL%20DRINK%20WINE%20DAY%20-%20February%2018%2C%202023%20-%20National%20Today&c9=
IP 54.230.111.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1675184304183&ns_c=UTF-8&c7=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&c8=NATIONAL%20DRINK%20WINE%20DAY%20-%20February%2018%2C%202023%20-%20National%20Today&c9= HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 16:58:06 GMT
set-cookie: UID=14967064cce83bd3b52b09f1675184286; domain=.scorecardresearch.com; path=/; max-age=62208000
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: y7sywCSq-ZRDZbhuRG9FZ8WyXIWkQnF9vpT0norkGQ0i-90m4ZL9JA==
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.2.146200 OK 8.9 kB URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.2.146:0
File type C source, ASCII text, with very long lines (29462)
Hash 80c4c0ec6fa288d3e400623fcdbaa482
eab48956a02727f63389668d59cf1c8f29c635ae
ccff1cdb646e78c32f2e82dcae3a438e8092434819153fc476f6e0828ba9fb7c
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:06 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 849922
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
protected-by.clarium.io/pixel?tag=wt_NmxPNUdzS2N6VHhGMzFyR2h6Z3Axd2VBVG53LzA6NDY4eDI1MA==&v=5&s=v31go4c7s9t&sb=-1&h=nationaltoday.com&cb=6032847&d=eyJ3aCI6Ik5teFBOVWR6UzJONlZIaEdNekZ5UjJoNlozQXhkMlZCVkc1M0x6QTZORFk0ZURJMU1BPT0iLCJ3ZCI6eyJvIjowLCJ3IjoiNDY4IiwiaCI6IjI1MCJ9LCJ3ciI6Mn0=&id=eyJkZnAiOnsiYWQiOjAsImMiOm51bGwsImwiOjAsIm8iOjAsIkEiOiIvMTM0NzAyOTMyLDIyODQxNTI2MzQwLzA2MjgtbmF0aW9uYWx0b2RheS5jb20vMDYyOC1kc2stYm94LWFkLWMiLCJ5Ijo5OTQ2NSwiY28iOjAsInMiOiJkc2stYm94LWFkLWMifSwidHBfY3JpZCI6bnVsbH0%3D
13.51.104.111200 OK 168 B URL HTTP/2 protected-by.clarium.io/pixel?tag=wt_NmxPNUdzS2N6VHhGMzFyR2h6Z3Axd2VBVG53LzA6NDY4eDI1MA==&v=5&s=v31go4c7s9t&sb=-1&h=nationaltoday.com&cb=6032847&d=eyJ3aCI6Ik5teFBOVWR6UzJONlZIaEdNekZ5UjJoNlozQXhkMlZCVkc1M0x6QTZORFk0ZURJMU1BPT0iLCJ3ZCI6eyJvIjowLCJ3IjoiNDY4IiwiaCI6IjI1MCJ9LCJ3ciI6Mn0=&id=eyJkZnAiOnsiYWQiOjAsImMiOm51bGwsImwiOjAsIm8iOjAsIkEiOiIvMTM0NzAyOTMyLDIyODQxNTI2MzQwLzA2MjgtbmF0aW9uYWx0b2RheS5jb20vMDYyOC1kc2stYm94LWFkLWMiLCJ5Ijo5OTQ2NSwiY28iOjAsInMiOiJkc2stYm94LWFkLWMifSwidHBfY3JpZCI6bnVsbH0%3D
IP 13.51.104.111:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 90c0dd6ec39ae080cecd4ea88a59996b
c2a0d65e2f1f5f73de5b46e820d17f2c0607f7b3
9519e7f416e6667095abd9838756ccd5afc8444d7ffdac00c68b1b1818fdecc1
GET /pixel?tag=wt_NmxPNUdzS2N6VHhGMzFyR2h6Z3Axd2VBVG53LzA6NDY4eDI1MA==&v=5&s=v31go4c7s9t&sb=-1&h=nationaltoday.com&cb=6032847&d=eyJ3aCI6Ik5teFBOVWR6UzJONlZIaEdNekZ5UjJoNlozQXhkMlZCVkc1M0x6QTZORFk0ZURJMU1BPT0iLCJ3ZCI6eyJvIjowLCJ3IjoiNDY4IiwiaCI6IjI1MCJ9LCJ3ciI6Mn0=&id=eyJkZnAiOnsiYWQiOjAsImMiOm51bGwsImwiOjAsIm8iOjAsIkEiOiIvMTM0NzAyOTMyLDIyODQxNTI2MzQwLzA2MjgtbmF0aW9uYWx0b2RheS5jb20vMDYyOC1kc2stYm94LWFkLWMiLCJ5Ijo5OTQ2NSwiY28iOjAsInMiOiJkc2stYm94LWFkLWMifSwidHBfY3JpZCI6bnVsbH0%3D HTTP/1.1
Host: protected-by.clarium.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:06 GMT
content-type: image/png
server: nginx/1.18.0 (Ubuntu)
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
expires: Sat, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
trc-events.taboola.com/skimlinks-publishers/log/2/debug?tim=16%3A58%3A24.400&type=usage&msg=rtus&llvl=2&id=2841&cv=20230130-10-RELEASE<=aa_test_for_monitoring_ctrl&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/skimlinks-publishers/log/2/debug?tim=16%3A58%3A24.400&type=usage&msg=rtus&llvl=2&id=2841&cv=20230130-10-RELEASE<=aa_test_for_monitoring_ctrl&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /skimlinks-publishers/log/2/debug?tim=16%3A58%3A24.400&type=usage&msg=rtus&llvl=2&id=2841&cv=20230130-10-RELEASE<=aa_test_for_monitoring_ctrl&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Tue, 31 Jan 2023 16:58:06 GMT
x-fastly-to-nlb-rtt: 22055
access-control-allow-credentials: true
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-crto-bundle
Referer: https://nationaltoday.com/
Origin: https://nationaltoday.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:06 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-headers: X-CRTO-SID, X-CRTO-IDCPY, X-CRTO-OPTOUT, X-CRTO-BUNDLE
access-control-allow-origin: https://nationaltoday.com
server-processing-duration-in-ticks: 622399
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
router.infolinks.com/usync/lcmanage?pid=3192193&wsid=106&pdom=nationaltoday.com&purl=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F
172.66.41.9200 OK 0 B URL HTTP/2 router.infolinks.com/usync/lcmanage?pid=3192193&wsid=106&pdom=nationaltoday.com&purl=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F
IP 172.66.41.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/lcmanage?pid=3192193&wsid=106&pdom=nationaltoday.com&purl=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:07 GMT
content-length: 0
cache-control: no-store
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7923fd80d8ffb524-OSL
X-Firefox-Spdy: h2
resources.infolinks.com/js/infolinks_main.js
172.66.41.9200 OK 2.1 kB URL HTTP/2 resources.infolinks.com/js/infolinks_main.js
IP 172.66.41.9:0
File type ASCII text, with very long lines (3516)
Hash 741d4539ade502694e3a48456c56924d
6819ad38a573bf627546d1dae30486e1d00acbd8
58a4eb914b410d946b83dd7b1926a9aa864fff71faefcd2cab7a962a35345fed
GET /js/infolinks_main.js HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:06 GMT
content-type: application/javascript
last-modified: Tue, 31 Jan 2023 12:13:34 GMT
etag: W/"dbd-5f38e42c95beb"
cache-control: max-age=3600
expires: Tue, 31 Jan 2023 17:13:51 GMT
via: 1.1 google
cf-cache-status: HIT
age: 2655
vary: Accept-Encoding
server: cloudflare
cf-ray: 7923fd7e5df2b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fapn-usync%3Fuser_id%3D%24UID
185.89.210.82307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fapn-usync%3Fuser_id%3D%24UID
IP 185.89.210.82:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fapn-usync%3Fuser_id%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Tue, 31 Jan 2023 16:58:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fapn-usync%253Fuser_id%253D%2524UID
AN-X-Request-Uuid: f69bfa0d-e475-4ccf-931e-9fc11dd64a5b
Set-Cookie: uuid2=5183184535869005093; SameSite=None; Path=/; Max-Age=7776000; Expires=Mon, 01-May-2023 16:58:07 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ib.adnxs.com/getuid?https://s.cpx.to/ca.png?ref=https%253A%252F%252Fnationaltoday.com%252Fnational-drink-wine-day%252F&pid=12306&adnxs_uid=$UID
185.89.210.82307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://s.cpx.to/ca.png?ref=https%253A%252F%252Fnationaltoday.com%252Fnational-drink-wine-day%252F&pid=12306&adnxs_uid=$UID
IP 185.89.210.82:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://s.cpx.to/ca.png?ref=https%253A%252F%252Fnationaltoday.com%252Fnational-drink-wine-day%252F&pid=12306&adnxs_uid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Tue, 31 Jan 2023 16:58:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fs.cpx.to%2Fca.png%3Fref%3Dhttps%25253A%25252F%25252Fnationaltoday.com%25252Fnational-drink-wine-day%25252F%26pid%3D12306%26adnxs_uid%3D%24UID
AN-X-Request-Uuid: e3f63e64-46ce-4463-8a46-ac29b9d2876b
Set-Cookie: uuid2=2888040549777635029; SameSite=None; Path=/; Max-Age=7776000; Expires=Mon, 01-May-2023 16:58:07 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 98412dd252c04329ba9eb75fb625219b
f9d6fd61278ab735f3fefe2919a5623031b69483
6b859f095bada348ec7475183420dece362f71e9db97dc4bd9936b3a5de26930
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5096
Cache-Control: max-age=130884
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:07 GMT
Etag: "63d890fb-117"
Expires: Thu, 02 Feb 2023 05:19:31 GMT
Last-Modified: Tue, 31 Jan 2023 03:54:35 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 84f1b3e71879bcc9878f7ae9774d8b26
c412346fb3405ce5a3d467d1c22a7024c6875adc
ce417e6ce23c5f347b73515525ff9d20a2adf412df44ae7ff75ca363c9219f71
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1490
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:07 GMT
Last-Modified: Tue, 31 Jan 2023 16:33:17 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 313
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 552d6aeb530e72fb0c023623653fef7a
ed3e4a754b3e71edb045bf2a31f174b264064eb6
5f30424c29aa6ea1762b72c9741f44f424a5c88d376c1c0b5369b43ce5d035ef
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4681
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:07 GMT
Last-Modified: Tue, 31 Jan 2023 15:40:06 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
router.infolinks.com/dyn/iq-usync
172.66.41.9200 OK 0 B URL HTTP/2 router.infolinks.com/dyn/iq-usync
IP 172.66.41.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dyn/iq-usync HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/usync/manage?pid=3192193&wsid=106&pdom=nationaltoday.com&purl=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:07 GMT
content-length: 0
cache-control: no-store
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7923fd837ca6b524-OSL
X-Firefox-Spdy: h2
onetag-sys.com/usync/?pubId=598ce3ddaee8c90
51.89.9.251204 No Content 0 B URL HTTP/2 onetag-sys.com/usync/?pubId=598ce3ddaee8c90
IP 51.89.9.251:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usync/?pubId=598ce3ddaee8c90 HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-store
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?s=191306&cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fix-usync%3Fuid%3D
104.18.33.19302 Found 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?s=191306&cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fix-usync%3Fuid%3D
IP 104.18.33.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch?s=191306&cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fix-usync%3Fuid%3D HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 16:58:07 GMT
content-length: 0
location: /usermatch?cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fix-usync%3Fuid%3D&s=191306&C=1
cf-ray: 7923fd842f36b503-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y9lIn-jLJL9i6pNOsI8X2AAA; Path=/; Domain=casalemedia.com; Expires=Wed, 31 Jan 2024 16:58:07 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=1866; Path=/; Domain=casalemedia.com; Expires=Mon, 01 May 2023 16:58:07 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=1866; Path=/; Domain=casalemedia.com; Expires=Mon, 01 May 2023 16:58:07 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NQbNhTN7g8cXofa7jsi3DAvZFTr3aSdslavtfQZXjNExxUoVXhT9CKBxL1mG0dK70W7BeDghg7kqMxt1JqJjXJnqhO%2BqarwJ52VQUbwKe9sutXAMxjBJGHMXi3Zpck2pI86sMDKngRSkuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
u.openx.net/w/1.0/cm?id=9b5994f2-035d-46de-8c12-bc0e9a4e66c2&r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fox-usync%3Fuid%3D
34.98.64.218200 OK 56 B URL HTTP/2 u.openx.net/w/1.0/cm?id=9b5994f2-035d-46de-8c12-bc0e9a4e66c2&r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fox-usync%3Fuid%3D
IP 34.98.64.218:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 15669dda86db3cbff7835fa202dc0b16
ce788cab9c1aa7e458a3971a59702c410b37e64d
5cc3f958039a8885c4e9526e22d454da47d579b9a02861e7a60b41fa0ba910df
GET /w/1.0/cm?id=9b5994f2-035d-46de-8c12-bc0e9a4e66c2&r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fox-usync%3Fuid%3D HTTP/1.1
Host: u.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept, Accept-Encoding
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Tue, 31 Jan 2023 16:58:07 GMT
content-type: text/html
content-length: 56
content-encoding: gzip
cache-control: private, max-age=0, no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
router.infolinks.com/gsd?evt=afterGSD&pid=3192193&wsid=106&pdom=nationaltoday.com&purl=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&jsv=1845.006-3.025&_cb=16751843043740
172.66.41.9200 OK 30 kB URL HTTP/2 router.infolinks.com/gsd?evt=afterGSD&pid=3192193&wsid=106&pdom=nationaltoday.com&purl=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&jsv=1845.006-3.025&_cb=16751843043740
IP 172.66.41.9:0
Hash 44f466afb61025e407972dd2fc510621
34ba93b0d5311cc3c6f80bcda28e83171dbb4185
b20c5837d4f327e18db6dba7a25a72dc09fd8ef0e982cfda171ba1f3ec62c8fd
GET /gsd?evt=afterGSD&pid=3192193&wsid=106&pdom=nationaltoday.com&purl=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&jsv=1845.006-3.025&_cb=16751843043740 HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:06 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: max-age=0
p3p: CP="NON DSP NID OUR COR"
set-cookie: cuid=d17d8d6a-a456-4217-b8a4-28c9af5b4e53; Domain=infolinks.com; Expires=Thu, 30-Jan-2025 16:58:06 GMT; Path=/; SameSite=None; Secure
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7923fd80d901b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 239bcbe509e76cd1b7f3280de740283b
e571fe316abb3ceb22fd6a4b1d3a055bf7a0703f
a399105f22b465ad2b65bf92a56f40a8d3da62ad836f69e97d7af1dd5a96aa21
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=161597
Date: Tue, 31 Jan 2023 16:58:07 GMT
Etag: "63d9111f-1d7"
Expires: Thu, 02 Feb 2023 13:51:24 GMT
Last-Modified: Tue, 31 Jan 2023 13:01:19 GMT
Server: ECS (nyb/1DCD)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MWzJkTvfHIftaMEH5MI3BIhxK7mStPEUDZecr-wVt2zy13EnshaRzA==
Age: 3005
image8.pubmatic.com/AdServer/ImgSync?p=156872&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156872%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fpbm-usync%253Fuid%253D%2523PMUID
198.47.127.18302 Found 267 B URL HTTP/2 image8.pubmatic.com/AdServer/ImgSync?p=156872&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156872%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fpbm-usync%253Fuid%253D%2523PMUID
IP 198.47.127.18:0
File type HTML document, ASCII text
Hash 4c3b0ed5d0694dfc6293df9d26db3427
d24a807f496ede8c6860cdfaef65db160c5bd622
bd7d1d9ab7cd90754ced171b8a2a5f8585295a99cbdaeeb377019e772442efe4
GET /AdServer/ImgSync?p=156872&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156872%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fpbm-usync%253Fuid%253D%2523PMUID HTTP/1.1
Host: image8.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=utf-8
location: /AdServer/ImgSync?p=156872&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156872%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fpbm-usync%253Fuid%253D%2523PMUID&rdf=1
set-cookie: KTPCACOOKIE=YES; domain=pubmatic.com; path=/; max-age=86400; secure;
date: Tue, 31 Jan 2023 16:58:06 GMT
content-length: 267
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fs.cpx.to%2Fca.png%3Fref%3Dhttps%25253A%25252F%25252Fnationaltoday.com%25252Fnational-drink-wine-day%25252F%26pid%3D12306%26adnxs_uid%3D%24UID
185.89.210.82302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fs.cpx.to%2Fca.png%3Fref%3Dhttps%25253A%25252F%25252Fnationaltoday.com%25252Fnational-drink-wine-day%25252F%26pid%3D12306%26adnxs_uid%3D%24UID
IP 185.89.210.82:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fs.cpx.to%2Fca.png%3Fref%3Dhttps%25253A%25252F%25252Fnationaltoday.com%25252Fnational-drink-wine-day%25252F%26pid%3D12306%26adnxs_uid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Tue, 31 Jan 2023 16:58:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://s.cpx.to/ca.png?ref=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&pid=12306&adnxs_uid=0
AN-X-Request-Uuid: 33ed67f0-7aad-4211-bc3a-c42a98fc2f0f
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
image8.pubmatic.com/AdServer/ImgSync?p=60809&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D60809%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fusersync%253Fpmuservalue%253D%2523PMUID
198.47.127.18302 Found 272 B URL HTTP/2 image8.pubmatic.com/AdServer/ImgSync?p=60809&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D60809%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fusersync%253Fpmuservalue%253D%2523PMUID
IP 198.47.127.18:0
File type HTML document, ASCII text
Hash ebb92a4e4bfa9f49081d6d5490b87169
e986871fb2a1067935b9f45ff4ba155383056b29
fd3de728a94f948ba814f33b0020466ae949a4c493784a6b7a5f23687385747d
GET /AdServer/ImgSync?p=60809&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D60809%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fusersync%253Fpmuservalue%253D%2523PMUID HTTP/1.1
Host: image8.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=utf-8
location: /AdServer/ImgSync?p=60809&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D60809%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fusersync%253Fpmuservalue%253D%2523PMUID&rdf=1
set-cookie: KTPCACOOKIE=YES; domain=pubmatic.com; path=/; max-age=86400; secure;
date: Tue, 31 Jan 2023 16:58:06 GMT
content-length: 272
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6dca001902790a696797268697c11e63
8b4712b998ef301650ac58ef455fa6f6f72974ee
c61856dd63dd38f59c0b6ae17032ebd48a9a341d77862b85db793e0e67d228be
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4094
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:07 GMT
Last-Modified: Tue, 31 Jan 2023 15:49:53 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
il-trc-events.taboola.com/skimlinks-publishers/log/2/debug?tim=16%3A58%3A24.681&type=error&msg=Exit%20TRCRBox.loadScriptCallback(retry%3D0)%3A%20no%20items%20in%20response%20-%20rbox-tracking&llvl=2&id=6189&cv=20230130-10-RELEASE<=aa_test_for_monitoring_ctrl&pct=1
185.106.33.48204 No Content 0 B URL HTTP/2 il-trc-events.taboola.com/skimlinks-publishers/log/2/debug?tim=16%3A58%3A24.681&type=error&msg=Exit%20TRCRBox.loadScriptCallback(retry%3D0)%3A%20no%20items%20in%20response%20-%20rbox-tracking&llvl=2&id=6189&cv=20230130-10-RELEASE<=aa_test_for_monitoring_ctrl&pct=1
IP 185.106.33.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /skimlinks-publishers/log/2/debug?tim=16%3A58%3A24.681&type=error&msg=Exit%20TRCRBox.loadScriptCallback(retry%3D0)%3A%20no%20items%20in%20response%20-%20rbox-tracking&llvl=2&id=6189&cv=20230130-10-RELEASE<=aa_test_for_monitoring_ctrl&pct=1 HTTP/1.1
Host: il-trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Tue, 31 Jan 2023 16:58:07 GMT
x-fastly-to-nlb-rtt: 74974
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cs.media.net/cksync?cs=41&ovsid=setstatuscode&type=inf&redirect=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fmnet-usync%3Fuid%3D%3Cvsid%3E
23.38.200.22302 Moved Temporarily 154 B URL HTTP/1.1 cs.media.net/cksync?cs=41&ovsid=setstatuscode&type=inf&redirect=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fmnet-usync%3Fuid%3D%3Cvsid%3E
IP 23.38.200.22:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 52558d05355ee6e9d14ff3cf8a5a3ef0
52cfd7dd3859dc0578849a7b1c91bb8f91ad84c2
bac5546ea0f819f461c9023592ec2398a45a6c3aab78e55fed8b7c908dce6060
GET /cksync?cs=41&ovsid=setstatuscode&type=inf&redirect=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fmnet-usync%3Fuid%3D%3Cvsid%3E HTTP/1.1
Host: cs.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: Apache
Content-Length: 154
Content-Type: text/html
Location: https://router.infolinks.com/dyn/mnet-usync?uid=0000EEA
Set-Cookie: data-inf=setstatuscode~~41;Expires=Mon, 01 May 2023 16:58:07 GMT;path=/;domain=.media.net;
P3P: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
X-MNET-HL2: E
Expires: Tue, 31 Jan 2023 16:58:07 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Tue, 31 Jan 2023 16:58:07 GMT
Connection: keep-alive
eb2.3lift.com/getuid?redir=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Ftplift%3Fuid%3D%24UID
76.223.111.18200 OK 37 B URL HTTP/2 eb2.3lift.com/getuid?redir=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Ftplift%3Fuid%3D%24UID
IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /getuid?redir=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Ftplift%3Fuid%3D%24UID HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:07 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58422/occ
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58422/occ
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58422/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 16:58:07 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58422/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBJ9I2WMCEGrioDgwtoaM4tpTytNdHmcFEgEBAQGa2mPjYwAAAAAA_eMAAA&S=AQAAAhwL50964JJQiPuNuxA33-Q; Expires=Wed, 31 Jan 2024 22:58:07 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 52a3e0c5034136c55a93bf76cda2ad0b
9ed3d69e206199d5150379cffcdc8b2954cda1d2
d89e26b2d4ba8284860613ad3614dbe8f1e59c1b8c211505feac9adacb83431f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3103
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:07 GMT
Last-Modified: Tue, 31 Jan 2023 16:06:24 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 312
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fapn-usync%253Fuser_id%253D%2524UID
185.89.210.82302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fapn-usync%253Fuser_id%253D%2524UID
IP 185.89.210.82:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fapn-usync%253Fuser_id%253D%2524UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Tue, 31 Jan 2023 16:58:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://router.infolinks.com/dyn/apn-usync?user_id=0
AN-X-Request-Uuid: b941a355-c2db-4203-96f9-4b7f427764b4
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6dca001902790a696797268697c11e63
8b4712b998ef301650ac58ef455fa6f6f72974ee
c61856dd63dd38f59c0b6ae17032ebd48a9a341d77862b85db793e0e67d228be
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4094
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:07 GMT
Last-Modified: Tue, 31 Jan 2023 15:49:53 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
178.250.2.150200 OK 43 B URL HTTP/2 csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
IP 178.250.2.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1 HTTP/1.1
Host: csm.nl.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:06 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 552d6aeb530e72fb0c023623653fef7a
ed3e4a754b3e71edb045bf2a31f174b264064eb6
5f30424c29aa6ea1762b72c9741f44f424a5c88d376c1c0b5369b43ce5d035ef
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2880
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:07 GMT
Last-Modified: Tue, 31 Jan 2023 16:10:07 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 98412dd252c04329ba9eb75fb625219b
f9d6fd61278ab735f3fefe2919a5623031b69483
6b859f095bada348ec7475183420dece362f71e9db97dc4bd9936b3a5de26930
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5096
Cache-Control: max-age=130884
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:07 GMT
Etag: "63d890fb-117"
Expires: Thu, 02 Feb 2023 05:19:31 GMT
Last-Modified: Tue, 31 Jan 2023 03:54:35 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
image8.pubmatic.com/AdServer/ImgSync?p=156872&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156872%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fpbm-usync%253Fuid%253D%2523PMUID&rdf=1
198.47.127.18200 OK 0 B URL HTTP/2 image8.pubmatic.com/AdServer/ImgSync?p=156872&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156872%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fpbm-usync%253Fuid%253D%2523PMUID&rdf=1
IP 198.47.127.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AdServer/ImgSync?p=156872&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D156872%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fpbm-usync%253Fuid%253D%2523PMUID&rdf=1 HTTP/1.1
Host: image8.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:07 GMT
content-length: 0
X-Firefox-Spdy: h2
image8.pubmatic.com/AdServer/ImgSync?p=60809&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D60809%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fusersync%253Fpmuservalue%253D%2523PMUID&rdf=1
198.47.127.18200 OK 103 kB URL HTTP/2 image8.pubmatic.com/AdServer/ImgSync?p=60809&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D60809%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fusersync%253Fpmuservalue%253D%2523PMUID&rdf=1
IP 198.47.127.18:0
File type gzip compressed data, from Unix\012- data
Size 103 kB (102816 bytes)
Hash fec68a4a426eace9b44000d57263563b
058d60c6cbed9e902510158b3d106094083f5bae
7ae71b35ec0ace90f207f1f0cd96e286f250a9c5e80d00afe5c32b9cc15b8620
GET /AdServer/ImgSync?p=60809&gdpr=&gdpr_consent=&pu=https%3A%2F%2Fimage4.pubmatic.com%2FAdServer%2FSPug%3Fp%3D60809%26pmc%3DPM_PMC%26pr%3Dhttps%253A%252F%252Frouter.infolinks.com%252Fdyn%252Fusersync%253Fpmuservalue%253D%2523PMUID&rdf=1 HTTP/1.1
Host: image8.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:06 GMT
content-length: 0
X-Firefox-Spdy: h2
pixel.advertising.com/ups/58237/sync?&gdpr=&gdpr_consent=&redir=true
18.156.0.31301 Moved Permanently 360 B URL HTTP/2 pixel.advertising.com/ups/58237/sync?&gdpr=&gdpr_consent=&redir=true
IP 18.156.0.31:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash ef184c6b065a63adf6c94f609c0a0c72
12e8af72d7af8f029d4300991e1eda7ec9f2545b
b01d8ed4f119579d92815a648e454327ae4af8a4592e98462fb72f414ddba9af
GET /ups/58237/sync?&gdpr=&gdpr_consent=&redir=true HTTP/1.1
Host: pixel.advertising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Tue, 31 Jan 2023 16:58:07 GMT
server: ATS/9.1.10.25
cache-control: no-store
location: https://ups.analytics.yahoo.com/ups/58237/sync?&gdpr=&gdpr_consent=&redir=true
content-type: text/html
content-language: en
set-cookie: A3=d=AQABBJ9I2WMCEPrsqpsSZOqCgzEqOPMFIB8FEgEBAQGa2mPjYwAAAAAA_eMAAA&S=AQAAAk9eC3kEMbowuAcoTxsg_f8; Expires=Wed, 31 Jan 2024 22:58:07 GMT; Max-Age=31557600; Domain=.advertising.com; Path=/; SameSite=None; Secure; HttpOnly
content-length: 360
X-Firefox-Spdy: h2
resources.infolinks.com/js/vidice/2.0/vidice.js
172.66.41.9200 OK 88 kB URL HTTP/2 resources.infolinks.com/js/vidice/2.0/vidice.js
IP 172.66.41.9:0
File type Unicode text, UTF-8 text, with very long lines (46979), with CRLF line terminators
Hash 9ad896d19f9e04f44b116a452bf8b8b7
c72c409421b22a51242f9b95e2c7c9f913c460a0
0c67d4ec0d23ddc306fbfd0482fa6aef9c7d751b45b9d1fb1ac78c77c2bcacc6
GET /js/vidice/2.0/vidice.js HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:07 GMT
content-type: application/javascript
last-modified: Tue, 25 Jan 2022 09:20:02 GMT
etag: W/"5344d-5d6649709d511"
cache-control: max-age=2592000
expires: Thu, 02 Mar 2023 16:16:34 GMT
via: 1.1 google
cf-cache-status: HIT
age: 2493
vary: Accept-Encoding
server: cloudflare
cf-ray: 7923fd856fa7b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
a.omappapi.com/app/js/api.min.js
194.242.11.186200 OK 68 kB URL HTTP/2 a.omappapi.com/app/js/api.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type C source, ASCII text, with very long lines (51147), with no line terminators
Hash cea301b21368b6c987c35c348223d9ba
90ade1f51db6b4fb0acc8ac3eedfb440d9a246b4
69a00c9a20f8ad119218074f6ef8b1f086c6bd13fc51f95cf23619a325af7ccf
GET /app/js/api.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:01 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"314bf25d1ff2ba3f8f8f192cbfd69aa9"
last-modified: Wed, 25 Jan 2023 19:57:44 GMT
cdn-storagebalancer: SE-318
perma-cache: MISS
x-amz-id-2: lFoJ4hMgtSrui5y5WHFg2Q3fYgR8sQTxI/1bC6di9aSe95VF8K8qHJwwUNaH6IbicQzDbgPV/Ek=
x-amz-request-id: G964MH9B8CDRT2MZ
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/25/2023 21:46:41
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 2d0501981619fdea1b705cf22c71e1f7
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7a216b4cdc1c95c59f5463b19f22b873
5aa561794c0e05c475bef80e5e6270b4d7da29fc
8c3ae8bd5d76089e1a403ec1fb1cba3c74e581063c0f6c007302aa2b4039b095
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 16:58:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 11:33:40 GMT
Expires: Sun, 05 Feb 2023 11:33:39 GMT
Etag: "5aa561794c0e05c475bef80e5e6270b4d7da29fc"
Cache-Control: max-age=411931,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7923fd85cfcc0b69-OSL
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 8b4033ce2ad139c7c70f653fb347c945
02b5407f5c73d65294ce35e21fc2a274505c3af3
14b3fca4421b42bc6c05ebc6fdb9b12cb443fb0c8799264620e8f138e40b47c6
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 31 Jan 2023 16:58:07 GMT
Last-Modified: Tue, 31 Jan 2023 15:26:34 GMT
Server: ECS (nyb/1D12)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xz6mv5tiad6-Jn0J04WcXw7YBxpDVEKfheqU4uZzGyMCyXxpkLJnxg==
Age: 5493
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e24b648009bb4c419c3bf2c995832b00
457168a7a1f2cfff41ebcd7855410c08001eb5d4
c4f888188d5b4c7885cd16c39e5e4915a45bc91e8303a6e62fcd2e433a80aee1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 145
Cache-Control: max-age=127780
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:07 GMT
Etag: "63d89832-139"
Expires: Thu, 02 Feb 2023 04:27:47 GMT
Last-Modified: Tue, 31 Jan 2023 04:25:22 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 313
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash b97ad0c4e38416b835c110eec4f887db
0717e35c69abe5ae150e793cec1072bee4aa3bf2
da8f5c4fddfe509e2df8198363e7a4b50fd46b4ae2daf3969d38b75084660457
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 31 Jan 2023 16:58:07 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 30 Jan 2023 21:15:25 GMT
Expires: Tue, 31 Jan 2023 21:15:25 GMT
ETag: "0717e35c69abe5ae150e793cec1072bee4aa3bf2"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
router.infolinks.com/dyn/mnet-usync?uid=0000EEA
172.66.41.9200 OK 35 B URL HTTP/2 router.infolinks.com/dyn/mnet-usync?uid=0000EEA
IP 172.66.41.9:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash c0a97b478925284bd94e3271f6197c08
543e1556715b858c654397c62c0894dd6f294703
16957a3bb9422d4ba380be3b630db7a310e87e65f224e2be865dd64dd0b5664d
GET /dyn/mnet-usync?uid=0000EEA HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:07 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, private
set-cookie: MNETUSERCOOKIE=0000EEA; Domain=infolinks.com; Expires=Mon, 01-May-2023 16:58:07 GMT; Path=/; SameSite=None; Secure
pragma: no-cache
expires: Mon, 31 Jan 2022 16:58:07 GMT
p3p: CP="NON DSP NID OUR COR"
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7923fd859fffb524-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 13ca8cf34579e9ddd8df7c66ab0acc85
baad9dc334cffb5812807e98e60ef2cccd8f73a3
a69d6592687b2d0c373e1022b3ead3341e8c05b65d344dad5b2bded790bd0b22
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5377
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:07 GMT
Last-Modified: Tue, 31 Jan 2023 15:28:31 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 123576bd6a1869baa6a8398a11e2cce5
c5d6e361762442e2d4fe6229219df5ffb1655be9
5e90e40113a52a7995a9a9fd5ceae180195c2820315a1c57067b65e274567fa3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3270
Cache-Control: max-age=123343
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:07 GMT
Etag: "63d87aa8-1d7"
Expires: Thu, 02 Feb 2023 03:13:50 GMT
Last-Modified: Tue, 31 Jan 2023 02:19:20 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ad.360yield.com/server_match?r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fimd-usync%3Fuser_id%3D%7BPUB_USER_ID%7D%26partner_id%3D1531
52.58.241.65302 Found 0 B URL HTTP/2 ad.360yield.com/server_match?r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fimd-usync%3Fuser_id%3D%7BPUB_USER_ID%7D%26partner_id%3D1531
IP 52.58.241.65:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /server_match?r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fimd-usync%3Fuser_id%3D%7BPUB_USER_ID%7D%26partner_id%3D1531 HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 16:58:07 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/server_match?r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fimd-usync%3Fuser_id%3D%7BPUB_USER_ID%7D%26partner_id%3D1531
set-cookie: tuuid=625872c4-71e7-4eb1-8388-f7a7c34fbd8c; Expires=Mon, 01 May 2023 16:58:07 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1675184287; Expires=Mon, 01 May 2023 16:58:07 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
178.250.6.124200 OK 353 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 178.250.6.124:0
Hash cf3adc0054e7bc90dd924191af174ed3
362485d87e100db3276c9ca0a5f9e3a3c36c5781
6b824e2417efb1220ea4b66f76e7e9387d647b870f7fa2b1e129e92f1e050c9a
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:07 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 132226
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cms.quantserve.com/pixel/p-u1vdacBMXAcfT.gif?idmatch=0
91.228.74.166302 Found 0 B URL HTTP/2 cms.quantserve.com/pixel/p-u1vdacBMXAcfT.gif?idmatch=0
IP 91.228.74.166:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/p-u1vdacBMXAcfT.gif?idmatch=0 HTTP/1.1
Host: cms.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 16:58:07 GMT
content-length: 0
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
location: https://router.infolinks.com/dyn/qc-usync?&uid=puA266Tra7S9sGPkouR_tvTia-e9sDS2p-ACexiS
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: d=EEYBDQGXKM2aswA; expires=Mon, 01-May-2023 16:58:07 GMT; path=/; domain=.quantserve.com
mc=63d9489f-c1627-dd195-cfd73; expires=Sat, 02-Mar-2024 16:58:07 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
de.tynt.com/deb/?m=xch&rt=html&sid=0010b00002CpYhEAAV
67.202.105.34200 OK 75 B URL HTTP/2 de.tynt.com/deb/?m=xch&rt=html&sid=0010b00002CpYhEAAV
IP 67.202.105.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 1ca09ed98f39d2adb7fab3878d13c0cb
da2a6f2431a34dfcc99b6f4500833f783f149d19
e170d20dbbd5a22f50118e25fa2eefb1e85d2ad780e5477ed3a9643186090442
GET /deb/?m=xch&rt=html&sid=0010b00002CpYhEAAV HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
expires: Wed, 01 Feb 2023 16:58:07 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
referrer-policy: unsafe-url
content-type: text/html
content-length: 75
date: Tue, 31 Jan 2023 16:58:07 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
router.infolinks.com/dyn/apn-usync?user_id=0
172.66.41.9200 OK 35 B URL HTTP/2 router.infolinks.com/dyn/apn-usync?user_id=0
IP 172.66.41.9:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash c0a97b478925284bd94e3271f6197c08
543e1556715b858c654397c62c0894dd6f294703
16957a3bb9422d4ba380be3b630db7a310e87e65f224e2be865dd64dd0b5664d
GET /dyn/apn-usync?user_id=0 HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:07 GMT
content-type: image/gif
content-length: 35
cache-control: no-store
p3p: CP="NON DSP NID OUR COR"
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7923fd85a80cb524-OSL
X-Firefox-Spdy: h2
t.skimresources.com/api/v2/page
35.201.67.47200 OK 22 B URL HTTP/2 t.skimresources.com/api/v2/page
IP 35.201.67.47:0
File type ASCII text, with no line terminators
Hash 0af18ddd75419d12bc31a9cdcd445d2f
76efe421633b1b494f9f374a5f3a758436eee0a9
fcc83a5b6aef86420c1ad553167106df96bd0ff4192ffe52b1647599948edbcf
POST /api/v2/page HTTP/1.1
Host: t.skimresources.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 284
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-content-type-options: nosniff
access-control-allow-origin: https://nationaltoday.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, X-CSRF-Token
access-control-allow-credentials: true
content-length: 22
date: Tue, 31 Jan 2023 16:58:07 GMT
server: Python/3.10 aiohttp/3.8.3
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sync.go.sonobi.com/us?loc=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fsonobi-usync%3Fuid%3D%5BUID%5D
69.166.1.12302 Found 0 B URL HTTP/1.1 sync.go.sonobi.com/us?loc=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fsonobi-usync%3Fuid%3D%5BUID%5D
IP 69.166.1.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /us?loc=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fsonobi-usync%3Fuid%3D%5BUID%5D HTTP/1.1
Host: sync.go.sonobi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Tue, 31 Jan 2023 16:58:07 GMT
Content-Type: text/plain; charset=utf8
Content-Length: 0
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Cache-Control: no-cache, no-store, private
P3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Pragma: no-cache
Tcn: Choice
Vary: negotiate,Accept-Encoding
X-Go-Server: go-iad-2-5-41
X-Xss-Protection: 0
Location: https://router.infolinks.com/dyn/sonobi-usync?uid=bafd3785-951e-4e78-9cea-d2a061f3fa99
Server: sonobi-go
Set-Cookie: __uis=bafd3785-951e-4e78-9cea-d2a061f3fa99; expires=Thu, 02 Mar 2023 16:58:07 GMT; domain=.go.sonobi.com; path=/; secure; SameSite=None
HAPLB8S=s8541|Y9lIo; path=/; domain=.go.sonobi.com; SameSite=None; secure
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:07 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=dXmGhl80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3dWRjhIdVJSd0Q2ZDJ2QmZYTWZEM3ROWGNGaVU5b2o0JTJCb293VTFKcUQ0Rg; expires=Sun, 25 Feb 2024 16:58:07 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 413765
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
b1sync.zemanta.com/usersync/infolinks/?cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fzmn-usync%3Fuid%3D__ZUID__
70.42.32.127302 Found 70 B URL HTTP/1.1 b1sync.zemanta.com/usersync/infolinks/?cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fzmn-usync%3Fuid%3D__ZUID__
IP 70.42.32.127:0
File type HTML document, ASCII text
Hash 16ccc9da763aca428789e4f469fc7ff1
4a873c523b8d9bdbc30b8c48189817413a19ee7a
5be7e833013b4b10333a904010b01217263df39c501a29b146d072110ceea4a1
GET /usersync/infolinks/?cb=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fzmn-usync%3Fuid%3D__ZUID__ HTTP/1.1
Host: b1sync.zemanta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Content-Length: 70
Cache-Control: no-cache, no-store, must-revalidate
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Location: https://router.infolinks.com/dyn/zmn-usync?uid=
Pragma: no-cache
Date: Tue, 31 Jan 2023 16:58:07 GMT
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 5840ed33d67f2c5070d740ff8433f0d2
bb2eac66cda8beb2f1aa1ae8adba88f1476b743a
076afc09428b4d8d46c3a6973d2dd61dc414b4883a5d5e7ad843ab99bdb61d62
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 16:58:07 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 07:14:51 GMT
Expires: Mon, 06 Feb 2023 07:14:50 GMT
Etag: "bb2eac66cda8beb2f1aa1ae8adba88f1476b743a"
Cache-Control: max-age=482802,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7923fd8729390b69-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash ccefce3e2d533b3ad7bcfd5721807c50
c5bc309b1b69ac0d2b9c852ac90dc205d7751d02
e1b0528efc847eea32f4b995490b109c75244f7838021234a3c1b231df4c85af
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 16:58:07 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 13:55:53 GMT
Expires: Sat, 04 Feb 2023 13:55:52 GMT
Etag: "c5bc309b1b69ac0d2b9c852ac90dc205d7751d02"
Cache-Control: max-age=334064,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7923fd86484ffabc-OSL
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 38a6af05d425d948533273319db6d065
11cabfb4c1df29a0e8e5f241431c0e84bb5b709d
9ce1a139a60961fee1ea94aecdd0fdfec600ef1ffc71af69958b2ef0c9a95846
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=155276
Date: Tue, 31 Jan 2023 16:58:07 GMT
Etag: "63d9030e-1d7"
Expires: Thu, 02 Feb 2023 12:06:03 GMT
Last-Modified: Tue, 31 Jan 2023 12:01:18 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dtghbK-s4WLQdG8JNnmR9OZC2eWAviPTXwQesaOGo6y9dBtewBrqMQ==
Age: 285
s.cpx.to/ca.png?ref=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&pid=12306&adnxs_uid=0
52.50.35.7200 OK 95 B URL HTTP/1.1 s.cpx.to/ca.png?ref=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&pid=12306&adnxs_uid=0
IP 52.50.35.7:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 9606fa62df0ffe87253f3baf418f0e42
fe8520ab0bf1622350513d685ece5faf70b4e8c1
bf27786b4381176350787d768bf5f7c5310ba640aa48ee98a3d2c310ddd971ab
GET /ca.png?ref=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&pid=12306&adnxs_uid=0 HTTP/1.1
Host: s.cpx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 16:58:07 GMT
Content-Type: image/png
Content-Length: 95
Connection: keep-alive
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'self'
x-permitted-cross-domain-policies: none
cache-control: no-store, must-revalidate, private, max-age=0, no-store, must-revalidate, private, max-age=0
pragma: no-cache, no-cache
set-cookie: cpSess=a9e528bbef9e4c8; Expires=Wed, 31 Jan 2024 16:58:07 GMT; Domain=.cpx.to; Path=/; Secure; HttpOnly; SameSite=None
p3p: CP="NOI DEV ADM"
expires: Tue, 31 Jan 2023 16:58:07 UTC
ups.analytics.yahoo.com/ups/58237/sync?&gdpr=&gdpr_consent=&redir=true
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58237/sync?&gdpr=&gdpr_consent=&redir=true
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58237/sync?&gdpr=&gdpr_consent=&redir=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 31 Jan 2023 16:58:07 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58237/sync?&gdpr=&gdpr_consent=&redir=true&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBJ9I2WMCEGzy6GnC2eN2hO6oYzEqEuoFEgEBAQGa2mPjYwAAAAAA_eMAAA&S=AQAAAhnw9nKgAxjsTq6rmst60gw; Expires=Wed, 31 Jan 2024 22:58:07 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.50200 OK 39 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.50:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a6eb5052c365d38a9651da5e263db51e
3bffff3a5332bf58498377c04192d577c32e0970
99fda129ae586e26d712469e7c2b072978255628ef6e80b405c7ff84896a58dd
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:07 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 106197
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash ccefce3e2d533b3ad7bcfd5721807c50
c5bc309b1b69ac0d2b9c852ac90dc205d7751d02
e1b0528efc847eea32f4b995490b109c75244f7838021234a3c1b231df4c85af
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 16:58:08 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 13:55:53 GMT
Expires: Sat, 04 Feb 2023 13:55:52 GMT
Etag: "c5bc309b1b69ac0d2b9c852ac90dc205d7751d02"
Cache-Control: max-age=334063,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7923fd85398dfac4-OSL
ad.360yield.com/ul_cb/server_match?r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fimd-usync%3Fuser_id%3D%7BPUB_USER_ID%7D%26partner_id%3D1531
52.58.241.65200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/server_match?r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fimd-usync%3Fuser_id%3D%7BPUB_USER_ID%7D%26partner_id%3D1531
IP 52.58.241.65:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/server_match?r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fimd-usync%3Fuser_id%3D%7BPUB_USER_ID%7D%26partner_id%3D1531 HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:08 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4d58b1248799e7a16bd8578528899c66
97516097daa4325cf13da1afbc3a5c4dd9f5c2bc
eb4d0090d6c27e8ccf6af95c37f2e13620205567d1ba3699dec91d2bcbe40767
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 16:58:08 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 13:57:51 GMT
Expires: Sat, 04 Feb 2023 13:57:50 GMT
Etag: "97516097daa4325cf13da1afbc3a5c4dd9f5c2bc"
Cache-Control: max-age=334181,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7923fd8789a8fabc-OSL
ups.analytics.yahoo.com/ups/58237/sync?&gdpr=&gdpr_consent=&redir=true&verify=true
18.156.0.31204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58237/sync?&gdpr=&gdpr_consent=&redir=true&verify=true
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58237/sync?&gdpr=&gdpr_consent=&redir=true&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 16:58:08 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKBI2WMCEO9tu4ZaiGiqMhdgRPlEbgcFEgEBAQGa2mPjYwAAAAAA_eMAAA&S=AQAAAl-J3d2MJ7b31DkbfyPcMw4; Expires=Wed, 31 Jan 2024 22:58:08 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
router.infolinks.com/dyn/sonobi-usync?uid=bafd3785-951e-4e78-9cea-d2a061f3fa99
172.66.41.9200 OK 35 B URL HTTP/2 router.infolinks.com/dyn/sonobi-usync?uid=bafd3785-951e-4e78-9cea-d2a061f3fa99
IP 172.66.41.9:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash c0a97b478925284bd94e3271f6197c08
543e1556715b858c654397c62c0894dd6f294703
16957a3bb9422d4ba380be3b630db7a310e87e65f224e2be865dd64dd0b5664d
GET /dyn/sonobi-usync?uid=bafd3785-951e-4e78-9cea-d2a061f3fa99 HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:08 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, private
set-cookie: SONOBIUSERCOOKIE=bafd3785-951e-4e78-9cea-d2a061f3fa99; Domain=infolinks.com; Expires=Mon, 01-May-2023 16:58:08 GMT; Path=/; SameSite=None; Secure
pragma: no-cache
expires: Mon, 31 Jan 2022 16:58:08 GMT
p3p: CP="NON DSP NID OUR COR"
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7923fd884bbcb524-OSL
X-Firefox-Spdy: h2
router.infolinks.com/dyn/zmn-usync?uid=
172.66.41.9200 OK 35 B URL HTTP/2 router.infolinks.com/dyn/zmn-usync?uid=
IP 172.66.41.9:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash c0a97b478925284bd94e3271f6197c08
543e1556715b858c654397c62c0894dd6f294703
16957a3bb9422d4ba380be3b630db7a310e87e65f224e2be865dd64dd0b5664d
GET /dyn/zmn-usync?uid= HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:08 GMT
content-type: image/gif
content-length: 35
cache-control: no-store
p3p: CP="NON DSP NID OUR COR"
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7923fd885bc6b524-OSL
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.2.146200 OK 229 B IP 178.250.2.146:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9a5aa40a18c2f49c4cd89448172ecbbd
68d361c3fecbacb4c1fdc76dbdf67278bf4ba3a1
f73e0f8135d792a4fe76a914ef15583bb55b24f579955e66375e84fe49d82a82
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=dXmGhl80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3dWRjhIdVJSd0Q2ZDJ2QmZYTWZEM3ROWGNGaVU5b2o0JTJCb293VTFKcUQ0Rg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:07 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=P1mew180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3dWRjhIdVJSd0Q2ZDJ2QmZYTWZEM3NtWWRkMFcxcFclMkY3RzAlMkJNQlA2Q2h2; expires=Sun, 25 Feb 2024 16:58:08 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 305898
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:400,700,800
142.250.74.106200 OK 584 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:400,700,800
IP 142.250.74.106:0
Hash 88b62a659505bc0394cff0d5bbdf8ae7
de1759c8e6fdda7cf39a31ab153f0d2b0a39d6cb
f2622364a69feaece2f08bd3c8873786415f2690d815732d6dfbdc13bc82d7a8
GET /css?family=Montserrat:400,700,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 31 Jan 2023 16:58:03 GMT
date: Tue, 31 Jan 2023 16:58:03 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
router.infolinks.com/dyn/qc-usync?&uid=puA266Tra7S9sGPkouR_tvTia-e9sDS2p-ACexiS
172.66.41.9200 OK 35 B URL HTTP/2 router.infolinks.com/dyn/qc-usync?&uid=puA266Tra7S9sGPkouR_tvTia-e9sDS2p-ACexiS
IP 172.66.41.9:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash c0a97b478925284bd94e3271f6197c08
543e1556715b858c654397c62c0894dd6f294703
16957a3bb9422d4ba380be3b630db7a310e87e65f224e2be865dd64dd0b5664d
GET /dyn/qc-usync?&uid=puA266Tra7S9sGPkouR_tvTia-e9sDS2p-ACexiS HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:08 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, private
set-cookie: QCUSERCOOKIE=puA266Tra7S9sGPkouR_tvTia-e9sDS2p-ACexiS; Domain=infolinks.com; Expires=Mon, 01-May-2023 16:58:08 GMT; Path=/; SameSite=None; Secure
pragma: no-cache
expires: Mon, 31 Jan 2022 16:58:08 GMT
p3p: CP="NON DSP NID OUR COR"
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7923fd884bbbb524-OSL
X-Firefox-Spdy: h2
ssc-cms.33across.com/ps/?ri=0010b00002CpYhEAAV&ru=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2F33a-usync%3Fuid%3D33XUSERID33X
67.202.105.23204 No Content 0 B URL HTTP/2 ssc-cms.33across.com/ps/?ri=0010b00002CpYhEAAV&ru=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2F33a-usync%3Fuid%3D33XUSERID33X
IP 67.202.105.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ps/?ri=0010b00002CpYhEAAV&ru=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2F33a-usync%3Fuid%3D33XUSERID33X HTTP/1.1
Host: ssc-cms.33across.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
x-33x-status: 2000208
server: 33XP003
date: Tue, 31 Jan 2023 16:58:07 GMT
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=rtus&domain=nationaltoday.com&sn=FirefoxSyncframe&so=3&topUrl=nationaltoday.com&bundle=uoT_Kl9QVTZvMVBITjNHUzJQWFN0c3dtVVVuczJIdnRNdTRtSlhRQXpvbkRXajhxTFlhbUdOcWxkZ3B4aVU3Nmlkd3dSUnM1VUclMkZIM2Y5OUkwTzIzbUVMVVZ1aUcxUzYyTllwS1V2RnB2ZnZwMWJYc3p6c3VzRWwlMkI4WmVpQVBIZ1l3V0s&info=P1mew180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3dWRjhIdVJSd0Q2ZDJ2QmZYTWZEM3NtWWRkMFcxcFclMkY3RzAlMkJNQlA2Q2h2&idsd=-349098009,-909235829&cw=1&rtusCallerId=72&lsw=1
178.250.2.146200 OK 315 B URL HTTP/2 gum.criteo.com/sid/json?origin=rtus&domain=nationaltoday.com&sn=FirefoxSyncframe&so=3&topUrl=nationaltoday.com&bundle=uoT_Kl9QVTZvMVBITjNHUzJQWFN0c3dtVVVuczJIdnRNdTRtSlhRQXpvbkRXajhxTFlhbUdOcWxkZ3B4aVU3Nmlkd3dSUnM1VUclMkZIM2Y5OUkwTzIzbUVMVVZ1aUcxUzYyTllwS1V2RnB2ZnZwMWJYc3p6c3VzRWwlMkI4WmVpQVBIZ1l3V0s&info=P1mew180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3dWRjhIdVJSd0Q2ZDJ2QmZYTWZEM3NtWWRkMFcxcFclMkY3RzAlMkJNQlA2Q2h2&idsd=-349098009,-909235829&cw=1&rtusCallerId=72&lsw=1
IP 178.250.2.146:0
File type JSON data\012- , ASCII text, with very long lines (393), with no line terminators
Hash ba28ab42c8aef3f3e09b68465199a580
dd3c1fef53cbea5279af59f4af0107d0aa3a8ef5
8870b9d3347f3e940c230fc97b41aacec09bfea9bc005e73cd68e2f7907e0901
GET /sid/json?origin=rtus&domain=nationaltoday.com&sn=FirefoxSyncframe&so=3&topUrl=nationaltoday.com&bundle=uoT_Kl9QVTZvMVBITjNHUzJQWFN0c3dtVVVuczJIdnRNdTRtSlhRQXpvbkRXajhxTFlhbUdOcWxkZ3B4aVU3Nmlkd3dSUnM1VUclMkZIM2Y5OUkwTzIzbUVMVVZ1aUcxUzYyTllwS1V2RnB2ZnZwMWJYc3p6c3VzRWwlMkI4WmVpQVBIZ1l3V0s&info=P1mew180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3dWRjhIdVJSd0Q2ZDJ2QmZYTWZEM3NtWWRkMFcxcFclMkY3RzAlMkJNQlA2Q2h2&idsd=-349098009,-909235829&cw=1&rtusCallerId=72&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=rtus&topUrl=nationaltoday.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:07 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1084203
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ssp.disqus.com/redirectuser?r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fdisus%3Fuid%3D%24UID&partner=infolinks
35.169.63.61302 Found 0 B URL HTTP/2 ssp.disqus.com/redirectuser?r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fdisus%3Fuid%3D%24UID&partner=infolinks
IP 35.169.63.61:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirectuser?r=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fdisus%3Fuid%3D%24UID&partner=infolinks HTTP/1.1
Host: ssp.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 16:58:08 GMT
content-length: 0
location: https://ce.lijit.com/merge?pid=279534&3pid=ua-bd93c5a6-a48a-3062-a9eb-49db1b2d204a&gdpr=&gdpr_consent=&us_privacy=&location=https%3A%2F%2Fssp.disqus.com%2Fmatch%3Fbidder%3D12%26buyeruid%3D%5BSOVRNID%5D%26r%3DCid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpSaHR0cHM6Ly9yb3V0ZXIuaW5mb2xpbmtzLmNvbS9keW4vZGlzdXM_dWlkPXVhLWJkOTNjNWE2LWE0OGEtMzA2Mi1hOWViLTQ5ZGIxYjJkMjA0YTICDBs4AQ==
cache-control: no-store
pragma: no-cache
expires: 0
set-cookie: zeta-ssp-user-id=ua-bd93c5a6-a48a-3062-a9eb-49db1b2d204a; Max-Age=31536000; Expires=Wed, 31 Jan 2024 16:58:08 GMT; Path=/; Domain=disqus.com; Secure; SameSite=None
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/infolinks?zcc=1&cb=1675184288092
213.19.147.44302 Found 35 B URL HTTP/2 sync.1rx.io/usersync2/infolinks?zcc=1&cb=1675184288092
IP 213.19.147.44:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash c0a97b478925284bd94e3271f6197c08
543e1556715b858c654397c62c0894dd6f294703
16957a3bb9422d4ba380be3b630db7a310e87e65f224e2be865dd64dd0b5664d
GET /usersync2/infolinks?zcc=1&cb=1675184288092 HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 31 Jan 2023 16:58:08 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
location: https://router.infolinks.com/dyn/r1-usync?uid=OPTOUT
etag: OPTOUT
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/infolinks
213.19.147.44302 Found 30 kB URL HTTP/2 sync.1rx.io/usersync2/infolinks
IP 213.19.147.44:0
Hash 2b25ac2800b19671a86ec8ff57a71122
247ff12f6913a93782bcacbba7bad47c37f18d3e
85ea9c26c52544b776f5ccfc9d67ff9f8d11c71e4db171ce5ce1aac5ed1a162a
GET /usersync2/infolinks HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 16:58:08 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _rxuuid=%7B%22rx_uuid%22%3A%22RX-c05dcb7e-c7fb-49c2-a38c-41a4fc0a454d-003%22%2C%22zdxidn%22%3A%222109%22%7D; path=/; expires=Wed, 31 Jan 2024 16:58:08 GMT; domain=.1rx.io; samesite=none; secure; httponly
p3p: CP="This is not a P3P policy! See https://www.rhythmone.com/p3p to learn why"
location: https://sync.1rx.io/usersync2/infolinks?zcc=1&cb=1675184288092
etag: RXc05dcb7ec7fb49c2a38c41a4fc0a454d003
X-Firefox-Spdy: h2
csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1
178.250.2.150200 OK 43 B URL HTTP/2 csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1
IP 178.250.2.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1 HTTP/1.1
Host: csm.nl.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:07 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
protected-by.clarium.io/log
13.51.104.111200 OK 6.5 kB URL HTTP/2 protected-by.clarium.io/log
IP 13.51.104.111:0
Hash 10405b310b46719a31c2eb0d98af72a2
4d3014a67bbef07d52942af3fbf88b58b7f80b86
6739136a806bd9982228fa8f299bcab74c310eb1b132dd102c83eb0a70835a47
POST /log HTTP/1.1
Host: protected-by.clarium.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 242220
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:06 GMT
content-type: text/html; charset=UTF-8
server: nginx/1.18.0 (Ubuntu)
access-control-allow-origin: *
access-control-allow-methods:
access-control-allow-headers:
access-control-max-age:
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 81564bc74267cb108a69c81a9769941f
b780e9db44b3437288759c9d18478862ce32c70b
0de558bc06157161472262357365352168102c4cff9d04ca616d95c5bee2eba9
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 31 Jan 2023 16:58:08 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 30 Jan 2023 21:36:16 GMT
Expires: Tue, 31 Jan 2023 21:36:16 GMT
ETag: "b780e9db44b3437288759c9d18478862ce32c70b"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ap.lijit.com/pixel?redir=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fsovrn-usync%3Fuid%3D%24UID
72.251.249.13204 No Content 0 B URL HTTP/1.1 ap.lijit.com/pixel?redir=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fsovrn-usync%3Fuid%3D%24UID
IP 72.251.249.13:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?redir=https%3A%2F%2Frouter.infolinks.com%2Fdyn%2Fsovrn-usync%3Fuid%3D%24UID HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Tue, 31 Jan 2023 16:58:08 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
X-Sovrn-Pod: ad_ap2ams1
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 224c8cf29cc17891aed221b568944626
c781815e336ed98a2db32d16164fdf9d76a0d698
98ea33c3800e0750a252e74e2232edcadfa920d9ea03ac301c4b41713c1edb15
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 16:58:08 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 14:15:46 GMT
Expires: Sat, 04 Feb 2023 14:15:45 GMT
Etag: "c781815e336ed98a2db32d16164fdf9d76a0d698"
Cache-Control: max-age=335256,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7923fd8b2e0efac4-OSL
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssyqSRDQJJaGgjD7BarQ4nDzdE0O7qif5Kq61cIpqMsAezgLJIJOXdoRlr4YDEImNhREC9b6mXMjInlryXTAo11o8JPk3_Al1oisrtc9cYgcg5vLh4ZlZC28_0bTATZpuNacqGdfw-TBvlis-mKybASnwAwAt5y7-1k4AGCfPayjbAb9VRK8HqNKkLZ5t6t25VoIjGhIeLBq0DyGT5gGg0C3ZraZPbz_Yot57d2j0o5MgXuD9NVssPhjbDSPc9zTcrG5HEkRzg2U-cPIiU_jIf3YvMsz7b0Z1dkACYbjhIMlXF4x9NTR2rgBZ0w_TJrYyYf5fwXWW_Xsz0h3FXe3qpXwH9Ss-VocTzfZsLXvR_eS5n3BC3ee84ujEDv_jGWWVlXhHhim5TkDhv2uNKN4XvTnlr2Dpe3IrV2ioNuziYWufQRV9OEFEImIlGEqfUIdsBMo-lbRzxAPisP9f4lX29ti2zIQ0C20JQMhAgYVUsTCR5mio2w4zoSzfNIfmK4Ug6_AE1EBqlRfCyfMUpyMjPnyJrOqwRKg76r4Pl_pBznVeRD6Ft9qrt_IiurCIvNwfv23JXzoum0zP7EcH9XjLfEGpOp9ayZE8N1C4wGYK93U897rVyIu2j6FcXSNJR13ngytsvHuoQ3y8_ouImnoYpzW-lft9CpaTUcBnvzQvkFwvmJE0l4I3k3c3NNxGvW0EKhWyceX3LMfo9TvuYrdYWOdp_DO1uUYM24F1GAms0jFTUdvpg3CzoZ5Ll6KIXddkKbsSkPxOagrn2Mh4b7i_6TlNlPDUAF_8ayQg-KvFDYyP1S0zFSsjHDHhi5DnP4P2bM1yl1QnUe9IP2kyy3vRBKnou-NWHJI1VXDLLd-Q9M30wsj-dWUPWjdy86ZUktQFWkJFKhR6cqK60QbM5kiv2aGofeYpXg7MFXFJNRjDB5EEpkhvsYEf3yiF-vJqY2DqIiqLFsfLlfw0yDUKeTRc4hUjQMp5n53SCGugS_1Bi0rO3uTwM3Y7aEom75WRqqJTTWJ4HZihsnoKua_D5iIoU8PHRL7MOSMPy3RB0l92FO3WQzUuGl0417U862otgg_BhDCSu26vXDQaiRyAGgHdXu4qoXl-MTkg&sai=AMfl-YSjAxMInFQzOiKqGuXd9Cfxi4O4h6q4sXw5EcOv3tNh4fmZFMVgGeGcx8orzX3N-o04burH7-jOZst-OfQRX0wB8RJjLaHKle003vRlJBboFth7JECg8WrVllsa3YqAMzzB8Lo5VBEc-efGZoAS7mvd-JgOCMO6hG9A&sig=Cg0ArKJSzL4JAY6Jh6PgEAE&cid=CAQSSwDUE5ymGjBGzGRBfyz4ZIoVdYDukhRNgNF0XSTUogyPQfzSGnQRrjDg-Rha70Elhp2TYT3Lb9_JKgx7DnkbnUA1Oa0Zsx38aGwwYRgBIBM&id=ampim&o=270,100&d=728,90&ss=1280,1024&bs=1280,898&mcvt=1054&mtos=0,0,1054,1054,1054&tos=0,0,1054,0,0&tfs=1339&tls=2393&g=100&h=100&tt=2393&r=v&avms=ampa&uap=&uapv=&uaa=&uam=&uafv=&uab=&uafvl=&uaw=&adk=0
142.250.74.34200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjssyqSRDQJJaGgjD7BarQ4nDzdE0O7qif5Kq61cIpqMsAezgLJIJOXdoRlr4YDEImNhREC9b6mXMjInlryXTAo11o8JPk3_Al1oisrtc9cYgcg5vLh4ZlZC28_0bTATZpuNacqGdfw-TBvlis-mKybASnwAwAt5y7-1k4AGCfPayjbAb9VRK8HqNKkLZ5t6t25VoIjGhIeLBq0DyGT5gGg0C3ZraZPbz_Yot57d2j0o5MgXuD9NVssPhjbDSPc9zTcrG5HEkRzg2U-cPIiU_jIf3YvMsz7b0Z1dkACYbjhIMlXF4x9NTR2rgBZ0w_TJrYyYf5fwXWW_Xsz0h3FXe3qpXwH9Ss-VocTzfZsLXvR_eS5n3BC3ee84ujEDv_jGWWVlXhHhim5TkDhv2uNKN4XvTnlr2Dpe3IrV2ioNuziYWufQRV9OEFEImIlGEqfUIdsBMo-lbRzxAPisP9f4lX29ti2zIQ0C20JQMhAgYVUsTCR5mio2w4zoSzfNIfmK4Ug6_AE1EBqlRfCyfMUpyMjPnyJrOqwRKg76r4Pl_pBznVeRD6Ft9qrt_IiurCIvNwfv23JXzoum0zP7EcH9XjLfEGpOp9ayZE8N1C4wGYK93U897rVyIu2j6FcXSNJR13ngytsvHuoQ3y8_ouImnoYpzW-lft9CpaTUcBnvzQvkFwvmJE0l4I3k3c3NNxGvW0EKhWyceX3LMfo9TvuYrdYWOdp_DO1uUYM24F1GAms0jFTUdvpg3CzoZ5Ll6KIXddkKbsSkPxOagrn2Mh4b7i_6TlNlPDUAF_8ayQg-KvFDYyP1S0zFSsjHDHhi5DnP4P2bM1yl1QnUe9IP2kyy3vRBKnou-NWHJI1VXDLLd-Q9M30wsj-dWUPWjdy86ZUktQFWkJFKhR6cqK60QbM5kiv2aGofeYpXg7MFXFJNRjDB5EEpkhvsYEf3yiF-vJqY2DqIiqLFsfLlfw0yDUKeTRc4hUjQMp5n53SCGugS_1Bi0rO3uTwM3Y7aEom75WRqqJTTWJ4HZihsnoKua_D5iIoU8PHRL7MOSMPy3RB0l92FO3WQzUuGl0417U862otgg_BhDCSu26vXDQaiRyAGgHdXu4qoXl-MTkg&sai=AMfl-YSjAxMInFQzOiKqGuXd9Cfxi4O4h6q4sXw5EcOv3tNh4fmZFMVgGeGcx8orzX3N-o04burH7-jOZst-OfQRX0wB8RJjLaHKle003vRlJBboFth7JECg8WrVllsa3YqAMzzB8Lo5VBEc-efGZoAS7mvd-JgOCMO6hG9A&sig=Cg0ArKJSzL4JAY6Jh6PgEAE&cid=CAQSSwDUE5ymGjBGzGRBfyz4ZIoVdYDukhRNgNF0XSTUogyPQfzSGnQRrjDg-Rha70Elhp2TYT3Lb9_JKgx7DnkbnUA1Oa0Zsx38aGwwYRgBIBM&id=ampim&o=270,100&d=728,90&ss=1280,1024&bs=1280,898&mcvt=1054&mtos=0,0,1054,1054,1054&tos=0,0,1054,0,0&tfs=1339&tls=2393&g=100&h=100&tt=2393&r=v&avms=ampa&uap=&uapv=&uaa=&uam=&uafv=&uab=&uafvl=&uaw=&adk=0
IP 142.250.74.34:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjssyqSRDQJJaGgjD7BarQ4nDzdE0O7qif5Kq61cIpqMsAezgLJIJOXdoRlr4YDEImNhREC9b6mXMjInlryXTAo11o8JPk3_Al1oisrtc9cYgcg5vLh4ZlZC28_0bTATZpuNacqGdfw-TBvlis-mKybASnwAwAt5y7-1k4AGCfPayjbAb9VRK8HqNKkLZ5t6t25VoIjGhIeLBq0DyGT5gGg0C3ZraZPbz_Yot57d2j0o5MgXuD9NVssPhjbDSPc9zTcrG5HEkRzg2U-cPIiU_jIf3YvMsz7b0Z1dkACYbjhIMlXF4x9NTR2rgBZ0w_TJrYyYf5fwXWW_Xsz0h3FXe3qpXwH9Ss-VocTzfZsLXvR_eS5n3BC3ee84ujEDv_jGWWVlXhHhim5TkDhv2uNKN4XvTnlr2Dpe3IrV2ioNuziYWufQRV9OEFEImIlGEqfUIdsBMo-lbRzxAPisP9f4lX29ti2zIQ0C20JQMhAgYVUsTCR5mio2w4zoSzfNIfmK4Ug6_AE1EBqlRfCyfMUpyMjPnyJrOqwRKg76r4Pl_pBznVeRD6Ft9qrt_IiurCIvNwfv23JXzoum0zP7EcH9XjLfEGpOp9ayZE8N1C4wGYK93U897rVyIu2j6FcXSNJR13ngytsvHuoQ3y8_ouImnoYpzW-lft9CpaTUcBnvzQvkFwvmJE0l4I3k3c3NNxGvW0EKhWyceX3LMfo9TvuYrdYWOdp_DO1uUYM24F1GAms0jFTUdvpg3CzoZ5Ll6KIXddkKbsSkPxOagrn2Mh4b7i_6TlNlPDUAF_8ayQg-KvFDYyP1S0zFSsjHDHhi5DnP4P2bM1yl1QnUe9IP2kyy3vRBKnou-NWHJI1VXDLLd-Q9M30wsj-dWUPWjdy86ZUktQFWkJFKhR6cqK60QbM5kiv2aGofeYpXg7MFXFJNRjDB5EEpkhvsYEf3yiF-vJqY2DqIiqLFsfLlfw0yDUKeTRc4hUjQMp5n53SCGugS_1Bi0rO3uTwM3Y7aEom75WRqqJTTWJ4HZihsnoKua_D5iIoU8PHRL7MOSMPy3RB0l92FO3WQzUuGl0417U862otgg_BhDCSu26vXDQaiRyAGgHdXu4qoXl-MTkg&sai=AMfl-YSjAxMInFQzOiKqGuXd9Cfxi4O4h6q4sXw5EcOv3tNh4fmZFMVgGeGcx8orzX3N-o04burH7-jOZst-OfQRX0wB8RJjLaHKle003vRlJBboFth7JECg8WrVllsa3YqAMzzB8Lo5VBEc-efGZoAS7mvd-JgOCMO6hG9A&sig=Cg0ArKJSzL4JAY6Jh6PgEAE&cid=CAQSSwDUE5ymGjBGzGRBfyz4ZIoVdYDukhRNgNF0XSTUogyPQfzSGnQRrjDg-Rha70Elhp2TYT3Lb9_JKgx7DnkbnUA1Oa0Zsx38aGwwYRgBIBM&id=ampim&o=270,100&d=728,90&ss=1280,1024&bs=1280,898&mcvt=1054&mtos=0,0,1054,1054,1054&tos=0,0,1054,0,0&tfs=1339&tls=2393&g=100&h=100&tt=2393&r=v&avms=ampa&uap=&uapv=&uaa=&uam=&uafv=&uab=&uafvl=&uaw=&adk=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nationaltoday.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Tue, 31 Jan 2023 16:58:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ce.lijit.com/merge?pid=279534&3pid=ua-bd93c5a6-a48a-3062-a9eb-49db1b2d204a&gdpr=&gdpr_consent=&us_privacy=&location=https%3A%2F%2Fssp.disqus.com%2Fmatch%3Fbidder%3D12%26buyeruid%3D%5BSOVRNID%5D%26r%3DCid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpSaHR0cHM6Ly9yb3V0ZXIuaW5mb2xpbmtzLmNvbS9keW4vZGlzdXM_dWlkPXVhLWJkOTNjNWE2LWE0OGEtMzA2Mi1hOWViLTQ5ZGIxYjJkMjA0YTICDBs4AQ==
72.251.249.13204 No Content 0 B URL HTTP/1.1 ce.lijit.com/merge?pid=279534&3pid=ua-bd93c5a6-a48a-3062-a9eb-49db1b2d204a&gdpr=&gdpr_consent=&us_privacy=&location=https%3A%2F%2Fssp.disqus.com%2Fmatch%3Fbidder%3D12%26buyeruid%3D%5BSOVRNID%5D%26r%3DCid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpSaHR0cHM6Ly9yb3V0ZXIuaW5mb2xpbmtzLmNvbS9keW4vZGlzdXM_dWlkPXVhLWJkOTNjNWE2LWE0OGEtMzA2Mi1hOWViLTQ5ZGIxYjJkMjA0YTICDBs4AQ==
IP 72.251.249.13:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge?pid=279534&3pid=ua-bd93c5a6-a48a-3062-a9eb-49db1b2d204a&gdpr=&gdpr_consent=&us_privacy=&location=https%3A%2F%2Fssp.disqus.com%2Fmatch%3Fbidder%3D12%26buyeruid%3D%5BSOVRNID%5D%26r%3DCid1YS1iZDkzYzVhNi1hNDhhLTMwNjItYTllYi00OWRiMWIyZDIwNGEQ____________ASpSaHR0cHM6Ly9yb3V0ZXIuaW5mb2xpbmtzLmNvbS9keW4vZGlzdXM_dWlkPXVhLWJkOTNjNWE2LWE0OGEtMzA2Mi1hOWViLTQ5ZGIxYjJkMjA0YTICDBs4AQ== HTTP/1.1
Host: ce.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Tue, 31 Jan 2023 16:58:08 GMT
X-MERGE: GDPR Optout true
Cache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0
Pragma: no-cache
Expires: Fri, 20 Mar 2009 00:00:00 GMT
P3P: CP="CUR ADM OUR NOR STA NID"
X-Sovrn-Pod: ad_ap2ams1
p.rfihub.com/cm?pub=43153&in=1
193.0.160.129302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=43153&in=1
IP 193.0.160.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=43153&in=1 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Tue, 31 Jan 2023 16:58:08 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rud=H4sIAAAAAAAA_-MSNjU0MjE2MjI2MrEwNjQ0MzIwNhTiM9R1D0jXzQ3V9SqK140HAAmz2Q0lAAAA; Path=/; Domain=.rfihub.com; Expires=Sun, 25 Feb 2024 16:58:08 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0MjE2MjI2MrEwNjQ0MzIwNhTiM9R1D0jXzQ3V9SqK140HAAmz2Q0lAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_1slzmtoZm5qaGFiZGFham4IAJEoaKgQAAAA; Path=/; Domain=.rfihub.com; Expires=Sun, 25 Feb 2024 16:58:08 GMT; Secure; SameSite=None
Location: https://router.infolinks.com/dyn/zeta-usync?uid=5124322324831162031
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
router.infolinks.com/dyn/zeta-usync?uid=5124322324831162031
172.66.41.9200 OK 35 B URL HTTP/2 router.infolinks.com/dyn/zeta-usync?uid=5124322324831162031
IP 172.66.41.9:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash c0a97b478925284bd94e3271f6197c08
543e1556715b858c654397c62c0894dd6f294703
16957a3bb9422d4ba380be3b630db7a310e87e65f224e2be865dd64dd0b5664d
GET /dyn/zeta-usync?uid=5124322324831162031 HTTP/1.1
Host: router.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://router.infolinks.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:08 GMT
content-type: image/gif
content-length: 35
cache-control: no-store, no-cache, private
set-cookie: ZTUSERCOOKIE=5124322324831162031; Domain=infolinks.com; Expires=Mon, 01-May-2023 16:58:08 GMT; Path=/; SameSite=None; Secure
pragma: no-cache
expires: Mon, 31 Jan 2022 16:58:08 GMT
p3p: CP="NON DSP NID OUR COR"
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7923fd8bf8fdb524-OSL
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gpt_2023012601&jk=2419608197246279&bg=!kZKlktbNAAbFy4Ck5cs7ACkAdvg8WrCLy8SNkQnv9R8yqTfWwLYaw2zXi-YU2osEFVrbQO0oO6YWnwIAAAcGUgAAAARoAQeZAnrhVvadoGkmRLrVfZJmN1oSBFojQ-LfovZfkCDmcBlRgzAUvjXYMo98oE0VBZVN7l3BXBOGZ-iAAKUfwJ7hjHmT9-N6a130egbp5dk1VRleTQG8I7LcDU0jFn2JSJnnRP6Tr65bHjkGOZZyi85EQvzYfB-_S57j4WWC_miTQlgOY70tqASvmGxG6MwAxhVkylnMaJhRr9GtvNB0ZV6bQAvej38f0xd0F_1WWkslg7N0JMNTS1joYbuPSVR6Kv5ZN6NFF_vKyEY_2r7XJd-l9L38qLh-nucKCKsvjtYZP09xK1j_ldgz4eyacP7InfEjqAJaBbEbJfzAl8W54e619S_cuPP3lT_Zv3ODffQCsnXDO_94gNVYWUokgMzG1-R1CKEH1hkjPGaNa8lj-1Q_2jYQqjRbQAzZ04LQht6_x6Qjp9z39DqX6mH9B_exPs0S_SyNiOI05_8B7O81Q4WjdzcgMLFCGtd2iTjpF2Kf47qt9xmXS1phn42Djh5CaqdSg5H4dMAHbF876AlpdMXt1-vd5eE11Alfr2A8CwzvqFrgw03SYSICTn5vqVm7OSKBzH2BhhE8dfu_sIFKArUs8woFZoA68sHT8kieu7Bv1jTUu5l9ZANKQagrjDl3FVGgPZ0r6jG8u7Kzg2dgqkQr0Wgu150UysvD25dgAbmOwvh2f_1PwhFcHmC_eKMqJ7Ajz7Ui2p9Q_kZC1duOzzm07_6zMKA4AgG5zs4RrrRK0cICFKbNCSP3wMMVUXazax85o0eRIlJ0OppGWZiFf2FpExiXq6mUn_yfb6o3HwDl4TXnt3v69YMl6ZMGKVBGcW3L8kV616cwzN8RhTmt
142.250.74.34204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gpt_2023012601&jk=2419608197246279&bg=!kZKlktbNAAbFy4Ck5cs7ACkAdvg8WrCLy8SNkQnv9R8yqTfWwLYaw2zXi-YU2osEFVrbQO0oO6YWnwIAAAcGUgAAAARoAQeZAnrhVvadoGkmRLrVfZJmN1oSBFojQ-LfovZfkCDmcBlRgzAUvjXYMo98oE0VBZVN7l3BXBOGZ-iAAKUfwJ7hjHmT9-N6a130egbp5dk1VRleTQG8I7LcDU0jFn2JSJnnRP6Tr65bHjkGOZZyi85EQvzYfB-_S57j4WWC_miTQlgOY70tqASvmGxG6MwAxhVkylnMaJhRr9GtvNB0ZV6bQAvej38f0xd0F_1WWkslg7N0JMNTS1joYbuPSVR6Kv5ZN6NFF_vKyEY_2r7XJd-l9L38qLh-nucKCKsvjtYZP09xK1j_ldgz4eyacP7InfEjqAJaBbEbJfzAl8W54e619S_cuPP3lT_Zv3ODffQCsnXDO_94gNVYWUokgMzG1-R1CKEH1hkjPGaNa8lj-1Q_2jYQqjRbQAzZ04LQht6_x6Qjp9z39DqX6mH9B_exPs0S_SyNiOI05_8B7O81Q4WjdzcgMLFCGtd2iTjpF2Kf47qt9xmXS1phn42Djh5CaqdSg5H4dMAHbF876AlpdMXt1-vd5eE11Alfr2A8CwzvqFrgw03SYSICTn5vqVm7OSKBzH2BhhE8dfu_sIFKArUs8woFZoA68sHT8kieu7Bv1jTUu5l9ZANKQagrjDl3FVGgPZ0r6jG8u7Kzg2dgqkQr0Wgu150UysvD25dgAbmOwvh2f_1PwhFcHmC_eKMqJ7Ajz7Ui2p9Q_kZC1duOzzm07_6zMKA4AgG5zs4RrrRK0cICFKbNCSP3wMMVUXazax85o0eRIlJ0OppGWZiFf2FpExiXq6mUn_yfb6o3HwDl4TXnt3v69YMl6ZMGKVBGcW3L8kV616cwzN8RhTmt
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&t=2&li=gpt_2023012601&jk=2419608197246279&bg=!kZKlktbNAAbFy4Ck5cs7ACkAdvg8WrCLy8SNkQnv9R8yqTfWwLYaw2zXi-YU2osEFVrbQO0oO6YWnwIAAAcGUgAAAARoAQeZAnrhVvadoGkmRLrVfZJmN1oSBFojQ-LfovZfkCDmcBlRgzAUvjXYMo98oE0VBZVN7l3BXBOGZ-iAAKUfwJ7hjHmT9-N6a130egbp5dk1VRleTQG8I7LcDU0jFn2JSJnnRP6Tr65bHjkGOZZyi85EQvzYfB-_S57j4WWC_miTQlgOY70tqASvmGxG6MwAxhVkylnMaJhRr9GtvNB0ZV6bQAvej38f0xd0F_1WWkslg7N0JMNTS1joYbuPSVR6Kv5ZN6NFF_vKyEY_2r7XJd-l9L38qLh-nucKCKsvjtYZP09xK1j_ldgz4eyacP7InfEjqAJaBbEbJfzAl8W54e619S_cuPP3lT_Zv3ODffQCsnXDO_94gNVYWUokgMzG1-R1CKEH1hkjPGaNa8lj-1Q_2jYQqjRbQAzZ04LQht6_x6Qjp9z39DqX6mH9B_exPs0S_SyNiOI05_8B7O81Q4WjdzcgMLFCGtd2iTjpF2Kf47qt9xmXS1phn42Djh5CaqdSg5H4dMAHbF876AlpdMXt1-vd5eE11Alfr2A8CwzvqFrgw03SYSICTn5vqVm7OSKBzH2BhhE8dfu_sIFKArUs8woFZoA68sHT8kieu7Bv1jTUu5l9ZANKQagrjDl3FVGgPZ0r6jG8u7Kzg2dgqkQr0Wgu150UysvD25dgAbmOwvh2f_1PwhFcHmC_eKMqJ7Ajz7Ui2p9Q_kZC1duOzzm07_6zMKA4AgG5zs4RrrRK0cICFKbNCSP3wMMVUXazax85o0eRIlJ0OppGWZiFf2FpExiXq6mUn_yfb6o3HwDl4TXnt3v69YMl6ZMGKVBGcW3L8kV616cwzN8RhTmt HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 31 Jan 2023 16:58:08 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.taboola.com/scripts/cds-pips.js
151.101.193.44200 OK 1.3 kB URL HTTP/2 cdn.taboola.com/scripts/cds-pips.js
IP 151.101.193.44:0
File type ASCII text, with very long lines (3545), with no line terminators
Hash 780c5c514014519ce276709f515905a0
04fe86d00b9c9077effe05171d066d243ecab221
015db06150b62ad2ad533883652174ebb6f07e24a7147fdac01a0ccd266e3f30
GET /scripts/cds-pips.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 2KBeU0d7OyPXtZDYUoIqlTBmhGhsve90tjYoemCxISjKQrNgcxT28sPXVt5KfJt+6r7dFoJgA8g=
x-amz-request-id: NFWGDQGY1WQ95XHE
x-amz-replication-status: COMPLETED
last-modified: Wed, 12 Oct 2022 13:57:57 GMT
etag: "383fa66d2a0a09f4a6e64a9593ad43bb"
x-amz-version-id: z5FoayaLm_Bvew3pbkytkoHczFCvkPwT
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 16:58:09 GMT
via: 1.1 varnish
age: 2898
x-served-by: cache-bma1678-BMA
x-cache: HIT
x-cache-hits: 2533
x-timer: S1675184289.109882,VS0,VE0
vary: Accept-Encoding
abp: 47
cache-control: private, max-age=3600
content-length: 1340
X-Firefox-Spdy: h2
pips.taboola.com/
151.101.1.44200 OK 4 B IP 151.101.1.44:0
File type ASCII text, with no line terminators
Hash 6c3e226b4d4795d518ab341b0824ec29
eef19c54306daa69eda49c0272623bdb5e2b341f
fb329000228cc5a24c264c57139de8bf854fc86fc18bf1c04ab61a2b5cb4b921
GET / HTTP/1.1
Host: pips.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
access-control-allow-methods: GET
access-control-allow-origin: https://nationaltoday.com
accept-ranges: bytes
date: Tue, 31 Jan 2023 16:58:09 GMT
via: 1.1 varnish
x-served-by: cache-bma1637-BMA
x-cache: HIT
x-cache-hits: 0
cache-control: no-store
content-length: 4
X-Firefox-Spdy: h2
trc.taboola.com/skimlinks-publishers/log/3/bulk?route=AM%3AIL%3AV<i=aa_test_for_monitoring_ctrl&bulkSize=1
151.101.193.44204 No Content 0 B URL HTTP/2 trc.taboola.com/skimlinks-publishers/log/3/bulk?route=AM%3AIL%3AV<i=aa_test_for_monitoring_ctrl&bulkSize=1
IP 151.101.193.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /skimlinks-publishers/log/3/bulk?route=AM%3AIL%3AV<i=aa_test_for_monitoring_ctrl&bulkSize=1 HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1258
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
content-type: image/gif
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://nationaltoday.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
accept-ranges: bytes
date: Tue, 31 Jan 2023 16:58:09 GMT
via: 1.1 varnish
x-served-by: cache-bma1678-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675184289.231371,VS0,VE87
x-vcl-time-ms: 87
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 00:33:02 GMT
age: 59107
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8af22d99c696243b808bd8119f29030a
4cafa5f8ad7e6ea26178e9853aa23788d1dbb9e6
cba398d4813a75e01d7ee9d018617a3c66cd76208b8b13a91782bf56d5784c03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5a05e84b227665f735ec60c670208865
208025e8d85e06c601f358e263e0ab000a904418
1c3ebe2af14480c9e799707d79adb02c689051f64e2dd4421fc5b3eca5b89ec5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 16:58:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.amazon-adsystem.com/aax2/apstag.js
54.230.111.210200 OK 0 B URL HTTP/2 c.amazon-adsystem.com/aax2/apstag.js
IP 54.230.111.210:0
GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 31 Jan 2023 16:26:50 GMT
last-modified: Wed, 25 Jan 2023 21:28:24 GMT
etag: W/"8a6d0f2d51de2b80e524e04684f71215"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
server: AmazonS3
content-encoding: gzip
via: 1.1 fd38301adb0ceb6cf6c42567f371a2f4.cloudfront.net (CloudFront), 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-P1
x-amz-cf-id: OgDsFu_NN7VmxxcL_bCblr-W7CeHTNR7cCnC4R_zXNUYnlz3RUAzEQ==
age: 1874
X-Firefox-Spdy: h2
cdn.jifo.co/js/dist/assets-embed_view-999c20714393c74b02b4-1-webpack.js
104.26.7.6200 OK 0 B URL HTTP/2 cdn.jifo.co/js/dist/assets-embed_view-999c20714393c74b02b4-1-webpack.js
IP 104.26.7.6:0
GET /js/dist/assets-embed_view-999c20714393c74b02b4-1-webpack.js HTTP/1.1
Host: cdn.jifo.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://e.infogram.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:02 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-expose-headers: ETag
access-control-max-age: 3000
last-modified: Tue, 03 Jan 2023 15:11:58 GMT
etag: W/"9253a1280b20e0e9318ee1b9a28cff8c"
timing-allow-origin: *
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method, Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WKwGUM1kB55CF2G2GsI7HBAmhdFmfzPfkSo9X8GkGIIIgD3Bp-_6kA==
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4878
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LYfIzlbb6D67ku1x%2Fhx6ueU6oTxWi2jcyfuBBkBsFtowOtc6NOhnHQCHgc4NTFuq2HnhLi9DKAW1DEGHFTYcPSJPNpHZhYcwZaxxtFLJdGLNyzHFemIslgwcoNGj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7923fd65ee37b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.jifo.co/css/dist/embed_view-f1ab9572036801880aeb234a2b9804bd9287d7af.css
104.26.7.6200 OK 0 B URL HTTP/2 cdn.jifo.co/css/dist/embed_view-f1ab9572036801880aeb234a2b9804bd9287d7af.css
IP 104.26.7.6:0
GET /css/dist/embed_view-f1ab9572036801880aeb234a2b9804bd9287d7af.css HTTP/1.1
Host: cdn.jifo.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:02 GMT
content-type: text/css
last-modified: Tue, 22 Nov 2022 13:16:42 GMT
etag: W/"4f40d5da9bf2a2dd2301246292e12b03"
timing-allow-origin: *
x-cache: Miss from cloudfront
via: 1.1 d954dd318e06aa0e69375f36dcd819de.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA60-P1
x-amz-cf-id: nj6neCnSFJB8MwTAZWgcJXp2f5dS8WBoL1PgGKQLAMvly9RwkaWXJQ==
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6646
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QwUH6U9KrmCVS1rMjqlodd3zpvANGZirsCyJnklcNdNyxvnSq6nD5P2fr3nrJOLNeuwVNMyQ%2BjxleI%2BnJzfreaqlCA7ervtlZGQEId%2BmNUFGxTmDsTR8Wpm9rp5S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7923fd661e7ab50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
d15kdpgjg3unno.cloudfront.net/oPS.js?cid=68
54.230.245.142200 OK 0 B URL HTTP/2 d15kdpgjg3unno.cloudfront.net/oPS.js?cid=68
IP 54.230.245.142:0
GET /oPS.js?cid=68 HTTP/1.1
Host: d15kdpgjg3unno.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 25 Jan 2023 03:21:41 GMT
x-amz-version-id: yfhyKh3HeJFf_uCuze3FE5MW9E0Zbs3Y
server: AmazonS3
content-encoding: gzip
date: Tue, 31 Jan 2023 00:21:49 GMT
cache-control: max-age=84600
etag: W/"b6715974fe0acc4de79552e2f945bb08"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SDQAIPkvyoj56RYbaHn6bFblKeExE8dqyF4B5rAySfc-P82zkVMnfA==
age: 59775
X-Firefox-Spdy: h2
resources.infolinks.com/js/1845.006-3.025/in_search.js
172.66.41.9200 OK 0 B URL HTTP/2 resources.infolinks.com/js/1845.006-3.025/in_search.js
IP 172.66.41.9:0
GET /js/1845.006-3.025/in_search.js HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:07 GMT
content-type: application/javascript
last-modified: Wed, 25 Jan 2023 14:23:04 GMT
etag: W/"37760-5f3175edcf88e"
cache-control: max-age=2592000
expires: Thu, 02 Mar 2023 15:14:17 GMT
via: 1.1 google
cf-cache-status: HIT
age: 6230
vary: Accept-Encoding
server: cloudflare
cf-ray: 7923fd841d80b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-56ZZKBC
142.250.74.40200 OK 0 B URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-56ZZKBC
IP 142.250.74.40:0
GET /gtm.js?id=GTM-56ZZKBC HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 31 Jan 2023 16:58:01 GMT
expires: Tue, 31 Jan 2023 16:58:01 GMT
cache-control: private, max-age=900
last-modified: Tue, 31 Jan 2023 16:24:25 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 56955
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fnationaltoday.com%2F&domain=nationaltoday.com&cw=1&lsw=1
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fnationaltoday.com%2F&domain=nationaltoday.com&cw=1&lsw=1
IP 178.250.2.146:0
GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Fnationaltoday.com%2F&domain=nationaltoday.com&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:05 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://nationaltoday.com
server-processing-duration-in-ticks: 1432479
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.optmn.cloud/hb/publisherdeskcom-adapter.js
172.67.173.126200 OK 0 B URL HTTP/2 cdn.optmn.cloud/hb/publisherdeskcom-adapter.js
IP 172.67.173.126:0
GET /hb/publisherdeskcom-adapter.js HTTP/1.1
Host: cdn.optmn.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:02 GMT
content-type: text/javascript
x-guploader-uploadid: ADPycdt7GjMqn72n2xQYucxc-vauR-SNaElLod4upGgODvSwt9yTKyAWFiK5WYrw6p1XVNmJn7yNssPtfZ2yysa9B9r4Ph9vKqCL
x-goog-generation: 1670099295023181
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 113062
x-goog-hash: crc32c=v6eb8A==, md5=LGOycCsVKfI2yYxDM3VWJg==
x-goog-storage-class: STANDARD
last-modified: Sat, 03 Dec 2022 20:28:15 GMT
etag: W/"2c63b2702b1529f236c98c4333755626"
age: 3554
cache-control: public, max-age=14400
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RF9BVjix4kA9Di5%2Bu5WMOn6X%2FLw4ZXt8NrgTfNyKUEJsiLjln0mX1uauHRbWnEC6%2FP1MHyGV7nCzf5nKHKIKzEEV8gd0ZzphG%2BIhSHglZQr5DIOoOxiaaSONsMzZESPL2D8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7923fd642c3ab4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
e.infogram.com/js/dist/embed-loader-min.js
54.230.111.103200 OK 0 B URL HTTP/2 e.infogram.com/js/dist/embed-loader-min.js
IP 54.230.111.103:0
GET /js/dist/embed-loader-min.js HTTP/1.1
Host: e.infogram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
server: nginx
x-dns-prefetch-control: off
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-download-options: noopen
x-content-type-options: nosniff
referrer-policy: no-referrer
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
timing-allow-origin: *
last-modified: Tue, 31 Jan 2023 14:18:08 GMT
content-encoding: gzip
date: Tue, 31 Jan 2023 16:00:29 GMT
expires: Wed, 01 Feb 2023 16:00:27 GMT
cache-control: max-age=86400, public
etag: W/"363f-18608313500"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: S07_DutJNQEYa3XIq2TbkKJAOxacSYW19UUN9FbLHzNDJc2A6bEZGw==
age: 3454
X-Firefox-Spdy: h2
www.youtube.com/embed/R5JEoz6gXy0?feature=oembed
142.250.74.14200 OK 0 B URL HTTP/2 www.youtube.com/embed/R5JEoz6gXy0?feature=oembed
IP 142.250.74.14:0
GET /embed/R5JEoz6gXy0?feature=oembed HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 31 Jan 2023 16:58:01 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=F1vWQ3Mi1ws; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=A7jwzf8lq10; Domain=.youtube.com; Expires=Sun, 30-Jul-2023 16:58:01 GMT; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TkRnMk1UY3dNVGMwTlRBNU5qUTJNdz09EJmR5Z4GGJmR5Z4G; Domain=.youtube.com; Expires=Sun, 30-Jul-2023 16:58:01 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+030; expires=Thu, 30-Jan-2025 16:58:01 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sb.scorecardresearch.com/beacon.js
54.230.111.73200 OK 0 B URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 54.230.111.73:0
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 31 Jan 2023 01:20:12 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UzHw1HK1mo_XObW4QVSrFTPq8zHEqsEMclBqmzBIClAqR76EIpi6pQ==
age: 56275
X-Firefox-Spdy: h2
rt3055.infolinks.com/action/getads.htm?hks=%5B%7B%22lid%22%3A%22d_IL_INSEARCH%22%2C%22bdc%22%3A1%2C%22prod_t%22%3A%22d%22%2C%22garc%22%3A0%2C%22sdata%22%3A%22blood%22%2C%22scs%22%3A%22TWFyHmYCMn%22%7D%5D&rid=30f4e320-8457-4d31-883c-db516238f2c6&jsv=1845.006-3.025&sr=1280X1002&rts=1675184305048&cfv=-1&cb=getAdsResponse&os=Windows&ov=10&br=Firefox&bv=105.0&dv=p&ce=t&purl=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&tzo=-0000&c=c&strg=true&rsd=dlqB2Tbg1iLUwzu9trK2aR7egRzM3maeEKRDPxfpQ8K23ijnEhXZ7NkQqfScrng5AmFMVMPQo4PyANS1Ihf0l1L2f0atUnG_kykcr4bygHgZmT1l8AgJAiYtOgB3hQG2p_UkvqSEnLXBtgFi6C_YxVEjtnODosTk&rsk=81&rcs=G9DiO1fnPuMHUYfXdYUQSw&cuid=d17d8d6a-a456-4217-b8a4-28c9af5b4e53&hbnr=false
172.66.41.9200 OK 0 B URL HTTP/2 rt3055.infolinks.com/action/getads.htm?hks=%5B%7B%22lid%22%3A%22d_IL_INSEARCH%22%2C%22bdc%22%3A1%2C%22prod_t%22%3A%22d%22%2C%22garc%22%3A0%2C%22sdata%22%3A%22blood%22%2C%22scs%22%3A%22TWFyHmYCMn%22%7D%5D&rid=30f4e320-8457-4d31-883c-db516238f2c6&jsv=1845.006-3.025&sr=1280X1002&rts=1675184305048&cfv=-1&cb=getAdsResponse&os=Windows&ov=10&br=Firefox&bv=105.0&dv=p&ce=t&purl=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&tzo=-0000&c=c&strg=true&rsd=dlqB2Tbg1iLUwzu9trK2aR7egRzM3maeEKRDPxfpQ8K23ijnEhXZ7NkQqfScrng5AmFMVMPQo4PyANS1Ihf0l1L2f0atUnG_kykcr4bygHgZmT1l8AgJAiYtOgB3hQG2p_UkvqSEnLXBtgFi6C_YxVEjtnODosTk&rsk=81&rcs=G9DiO1fnPuMHUYfXdYUQSw&cuid=d17d8d6a-a456-4217-b8a4-28c9af5b4e53&hbnr=false
IP 172.66.41.9:0
GET /action/getads.htm?hks=%5B%7B%22lid%22%3A%22d_IL_INSEARCH%22%2C%22bdc%22%3A1%2C%22prod_t%22%3A%22d%22%2C%22garc%22%3A0%2C%22sdata%22%3A%22blood%22%2C%22scs%22%3A%22TWFyHmYCMn%22%7D%5D&rid=30f4e320-8457-4d31-883c-db516238f2c6&jsv=1845.006-3.025&sr=1280X1002&rts=1675184305048&cfv=-1&cb=getAdsResponse&os=Windows&ov=10&br=Firefox&bv=105.0&dv=p&ce=t&purl=https%3A%2F%2Fnationaltoday.com%2Fnational-drink-wine-day%2F&tzo=-0000&c=c&strg=true&rsd=dlqB2Tbg1iLUwzu9trK2aR7egRzM3maeEKRDPxfpQ8K23ijnEhXZ7NkQqfScrng5AmFMVMPQo4PyANS1Ihf0l1L2f0atUnG_kykcr4bygHgZmT1l8AgJAiYtOgB3hQG2p_UkvqSEnLXBtgFi6C_YxVEjtnODosTk&rsk=81&rcs=G9DiO1fnPuMHUYfXdYUQSw&cuid=d17d8d6a-a456-4217-b8a4-28c9af5b4e53&hbnr=false HTTP/1.1
Host: rt3055.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:07 GMT
content-type: text/html;charset=UTF-8
x-application-context: application:prod
cache-control: no-cache,no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP NID OUR COR"
content-language: en-US
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7923fd84ded2b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
prebid.media.net/rtb/prebid?cid=8CUWH6QD2
34.107.148.139200 OK 0 B URL HTTP/2 prebid.media.net/rtb/prebid?cid=8CUWH6QD2
IP 34.107.148.139:0
POST /rtb/prebid?cid=8CUWH6QD2 HTTP/1.1
Host: prebid.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 5067
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 16:58:04 GMT
content-type: application/json;charset=UTF-8
cache-control: max-age=0, no-cache, no-store, must-revalidate
pragma: no-cache
accept-ch: Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model
expires: Tue, 31 Jan 2023 16:58:04 GMT
access-control-allow-origin: https://nationaltoday.com
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.2.146:0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nationaltoday.com/
x-crto-bundle: uoT_Kl9QVTZvMVBITjNHUzJQWFN0c3dtVVVuczJIdnRNdTRtSlhRQXpvbkRXajhxTFlhbUdOcWxkZ3B4aVU3Nmlkd3dSUnM1VUclMkZIM2Y5OUkwTzIzbUVMVVZ1aUcxUzYyTllwS1V2RnB2ZnZwMWJYc3p6c3VzRWwlMkI4WmVpQVBIZ1l3V0s
Origin: https://nationaltoday.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:06 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://nationaltoday.com
server-processing-duration-in-ticks: 1472244
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
get.geojs.io/v1/ip/country.json
172.67.70.233200 OK 0 B URL HTTP/2 get.geojs.io/v1/ip/country.json
IP 172.67.70.233:0
GET /v1/ip/country.json HTTP/1.1
Host: get.geojs.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nationaltoday.com/
Origin: https://nationaltoday.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:02 GMT
content-type: application/json
x-request-id: 512de2c97f12a6222d29bd492ded838e-AMS
strict-transport-security: max-age=15552000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, private, max-age=0
x-geojs-location: AMS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mv7ca1KXyWf6IDRY0Qj8cmvaWpWvnMNd9NncqRNmtR%2BgV25M0%2BZ0n4viIilJNsrUGBFsIqDh8KvX92IHRWU5VdBkIUL86ZhyyTzysrYpKVdcMWh6PhgfGVUstf4DAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7923fd662d510b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
services.brid.tv/player/build/brid.min.js
54.230.111.121200 OK 0 B URL HTTP/2 services.brid.tv/player/build/brid.min.js
IP 54.230.111.121:0
GET /player/build/brid.min.js HTTP/1.1
Host: services.brid.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 13:28:47 GMT
server: AmazonS3
content-encoding: br
date: Tue, 31 Jan 2023 16:50:50 GMT
cache-control: max-age=1200, public
etag: W/"e3cc40967b2572f305a9951986a80f39"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: XBiG1NEcxE6asMNhugxYk20pbwdLWt4uWGp-2NFFSz7i34dk9rxkig==
age: 431
X-Firefox-Spdy: h2
a.omappapi.com/app/js/api.min.css
194.242.11.186200 OK 0 B URL HTTP/2 a.omappapi.com/app/js/api.min.css
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /app/js/api.min.css HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:02 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"fdfc47d7f4872c3530f2516e9f42a6ed"
last-modified: Wed, 25 Jan 2023 19:57:44 GMT
cdn-storagebalancer: SE-344
perma-cache: MISS
x-amz-id-2: hCl9A0EOAceuF/0h1Wh4Q6HP//UPWqE08yoUV8q1DJ0d0yDROE9rl+YK6JA0g3E3sGxYYNMXJro=
x-amz-request-id: WAGGGKF60KDHYFCP
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/25/2023 19:57:54
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: d4affd2388e814e7c662fae62e53236e
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
resources.infolinks.com/js/1845.006-3.025/ice.js
172.66.41.9200 OK 0 B URL HTTP/2 resources.infolinks.com/js/1845.006-3.025/ice.js
IP 172.66.41.9:0
GET /js/1845.006-3.025/ice.js HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:06 GMT
content-type: application/javascript
last-modified: Wed, 25 Jan 2023 14:23:04 GMT
etag: W/"2d3a3-5f3175edcfc76"
cache-control: max-age=2592000
expires: Thu, 02 Mar 2023 15:01:47 GMT
via: 1.1 google
cf-cache-status: HIT
age: 6979
vary: Accept-Encoding
server: cloudflare
cf-ray: 7923fd7ebe6fb524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.jifo.co/js/dist/bundle_vendor-df99a81d08bbec95a491-1-webpack.js
104.26.7.6200 OK 0 B URL HTTP/2 cdn.jifo.co/js/dist/bundle_vendor-df99a81d08bbec95a491-1-webpack.js
IP 104.26.7.6:0
GET /js/dist/bundle_vendor-df99a81d08bbec95a491-1-webpack.js HTTP/1.1
Host: cdn.jifo.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://e.infogram.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:02 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-expose-headers: ETag
access-control-max-age: 3000
last-modified: Mon, 21 Nov 2022 16:00:56 GMT
etag: W/"ec273ecb1dd989640f8600ccea9e788a"
timing-allow-origin: *
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method, Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0XCMN8AQfCIXMPxw8J9ZSAeJz8eZPJrYSWnjzHtl2etZcsj3pkN_Ig==
cache-control: max-age=31536000
cf-cache-status: HIT
age: 609
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V3URdp6kNwgzDCiI%2FYFSY%2B5Lb8nUZ%2B91q5I2ZEX1LOHmQ1OB80EH%2BraSu12KCu54b8Ql24Q2U2QM2B7bPorMYaDg%2Bw4ZlP%2BsE9BLqJ%2FWZwYH2b%2BXWjAYE%2FbaXQUI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7923fd65de21b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.5.0/css/all.css
172.64.133.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.5.0/css/all.css
IP 172.64.133.15:0
GET /releases/v5.5.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nationaltoday.com
Connection: keep-alive
Referer: https://nationaltoday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:01 GMT
content-type: text/css
x-amz-id-2: zWQi0yu7M8PJGks2sSzELa8+dXOqkKpDd2R4X0pF4KewcuVv/zldG2vhRmwZZR/K70tO552uXhE=
x-amz-request-id: RQKHZG1KH72ZYQJ1
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:43:32 GMT
etag: W/"1cc6c92172d124fbd305ba3d8e263333"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 358774
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5Qt3YHKhjqiwuKLwTlE6%2FQTnVuZQpLUxbmeTby%2FupL8B4i%2BEO0KTl%2FTbfRUB115kZRyV0plQ85U43kdz7uKGgDcaTZWni%2FTDSQjccvCV7hRmwhil2QbtuGVCCB%2BUzIYGQIrUBb%2FM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7923fd5fdb0b71cf-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gfonts.jifo.co/css?family=Montserrat:400,700,400i,700i%7COpen+Sans:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7COpen+Sans:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7COpen+Sans:400,700,400i,700i%7COpen+Sans:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7COpen+Sans:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7CRoboto:400,500,700,400i,500i,700i&subset=latin,latin-ext,cyrillic
104.26.7.6200 OK 0 B URL HTTP/2 gfonts.jifo.co/css?family=Montserrat:400,700,400i,700i%7COpen+Sans:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7COpen+Sans:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7COpen+Sans:400,700,400i,700i%7COpen+Sans:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7COpen+Sans:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7CRoboto:400,500,700,400i,500i,700i&subset=latin,latin-ext,cyrillic
IP 104.26.7.6:0
GET /css?family=Montserrat:400,700,400i,700i%7COpen+Sans:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7COpen+Sans:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7COpen+Sans:400,700,400i,700i%7COpen+Sans:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7COpen+Sans:400,700,400i,700i%7CMontserrat:400,700,400i,700i%7CRoboto:400,500,700,400i,500i,700i&subset=latin,latin-ext,cyrillic HTTP/1.1
Host: gfonts.jifo.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 16:58:04 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15552000; includeSubDomains; preload
cache-control: max-age=31560000
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: MISS
last-modified: Tue, 31 Jan 2023 16:58:04 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hPpLV%2BhgoFM7ea04rnBQAJy0jZyrBORnqlPPc%2Bm1woCVg7GPpPqtURTXetConzbr0Igd8CrukopLYTUGaCh4wYKiTA59R1k1bNU5PluunBpMdvS9YEeNF3wsfdCkcFzZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7923fd6e09d6b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
sync.1rx.io/usersync2/rmpssp?sub=infolinks
213.19.147.44302 Found 0 B URL HTTP/2 sync.1rx.io/usersync2/rmpssp?sub=infolinks
IP 213.19.147.44:0
GET /usersync2/rmpssp?sub=infolinks HTTP/1.1
Host: sync.1rx.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://router.infolinks.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 31 Jan 2023 16:58:07 GMT
content-type: text/html
cache-control: no-store, no-cache, must-revalidate
expires: 0
pragma: no-cache
set-cookie: _rxuuid=%7B%22rx_uuid%22%3A%22RX-0e53333f-3dbd-451f-8411-e2d19b80c7ce-003%22%2C%22zdxidn%22%3A%222069.56%22%7D; path=/; expires=Wed, 31 Jan 2024 16:58:07 GMT; domain=.1rx.io; samesite=none; secure; httponly
p3p: CP="This is not a P3P policy! See https://www.rhythmone.com/p3p to learn why"
location: https://sync.1rx.io/usersync2/rmpssp?sub=infolinks&zcc=1&cb=1675184287943
etag: RX0e53333f3dbd451f8411e2d19b80c7ce003
X-Firefox-Spdy: h2