r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13013
Expires: Mon, 30 Jan 2023 01:59:59 GMT
Date: Sun, 29 Jan 2023 22:23:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12722
Expires: Mon, 30 Jan 2023 01:55:08 GMT
Date: Sun, 29 Jan 2023 22:23:06 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 21:35:38 GMT
content-type: application/json
age: 2848
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5516
Expires: Sun, 29 Jan 2023 23:55:02 GMT
Date: Sun, 29 Jan 2023 22:23:06 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: zl2m/Rkg5AKvM4fpT0AHJplZjH+D1BYmrBZK2VmHnPbQCfYELs6Xqf6qqatLYO8JHsZM/RxxCGg=
x-amz-request-id: ETAGC20ZBCQS9DQ1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 22:21:33 GMT
age: 93
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 22:23:06 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
abstract-sports.com/i/OuEs5oizxs/
188.114.97.1200 OK 447 B URL HTTP/1.1 abstract-sports.com/i/OuEs5oizxs/
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (420)
Hash 67e14d7e1dbae62ff38d5c505c8dfd02
c7bbdffa4b27642b561c574ea6b1743e2045b57f
26f4e2fc9710da963dcfc11c6ddcb35e333aa4738f8cc20f692731ae20b05cef
GET /i/OuEs5oizxs/ HTTP/1.1
Host: abstract-sports.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.6.36
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bxa2TR3rxz4H20fn9hL1t9JIp21j2UZvvGJhVn9MfqSxNTFNzS1U3p07HmaFSMyNtfzI8uZQVwfdGFhWvahbuzwsw8WOnBm0PXzrk3Bko1gpbvoib5NFnXRll5V0mxYwSZKvuhzN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79155ed27acbb518-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 21:41:41 GMT
age: 2486
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11239
Expires: Mon, 30 Jan 2023 01:30:26 GMT
Date: Sun, 29 Jan 2023 22:23:07 GMT
Connection: keep-alive
push.services.mozilla.com/
35.155.77.83101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.155.77.83:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: a/wFxwzC8AOU6LWlu+bRlA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Le/D4ZPh6Xtm7SUrOnNoAuUjPU4=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 9cea98a843749ab6ffcc1e4d554d70ee
4d4d4c548678ce5dc407a73f393a2abf1aae4cfb
478e8249f84da1fe4fc36c7f752dde2d61de74e5271e4be36c51a8e5ad1c2730
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6553
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:08 GMT
Last-Modified: Sun, 29 Jan 2023 20:33:56 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 280
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
142.250.74.138200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (32065)
Hash 6d973c8b7e2439d958e09c0a1ab9fe50
05ae0830200c20b9a2dfd5a825adc400481a60fb
f3c122dc227e829ed96b2a754296809201bd78abbad7ba50ef5079654e1cc894
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 06:58:32 GMT
expires: Sun, 28 Jan 2024 06:58:32 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 141876
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 935 B IP 93.184.220.29:0
File type gzip compressed data, from Unix\012- data
Hash 9ecc0ed6546629bba59a22faf2db570d
546a967c0f24c37a4050f2cf3312cc8c136150a1
a31417df8376ec3f7f872f5c34a350d3baff45931f5f5979c97afdbfb6b69e01
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6553
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:08 GMT
Last-Modified: Sun, 29 Jan 2023 20:33:56 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 280
www.googletagmanager.com/gtag/js?id=UA-42921757-19
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-42921757-19
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash 6e0becea436cff687360de28f9d949a8
35470b519c4031ab430d6a799118b801d2efe5d5
681b146495bf01bf0ead4cfb743d339a92560376b15c54890cffc244273c1bf7
GET /gtag/js?id=UA-42921757-19 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 22:23:08 GMT
expires: Sun, 29 Jan 2023 22:23:08 GMT
cache-control: private, max-age=900
last-modified: Sun, 29 Jan 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44098
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
embed.sendtonews.com/player3/embedcode.js?fk=tzVsifQ2&cid=11857&offsetx=0&offsety=0&floatwidth=400&floatposition=bottom-right
54.230.111.96302 Found 0 B URL HTTP/2 embed.sendtonews.com/player3/embedcode.js?fk=tzVsifQ2&cid=11857&offsetx=0&offsety=0&floatwidth=400&floatposition=bottom-right
IP 54.230.111.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player3/embedcode.js?fk=tzVsifQ2&cid=11857&offsetx=0&offsety=0&floatwidth=400&floatposition=bottom-right HTTP/1.1
Host: embed.sendtonews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: CloudFront
date: Sun, 29 Jan 2023 22:23:08 GMT
content-length: 0
location: https://embedcdn.sendtonews.com/easy-stn-player/7.12.2/embed.js
x-cache: FunctionGeneratedResponse from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 6yvHg5pR6gF_iIReJF8mPD77zcfVGJLBCAjPcoNchUyCVE8xGeNy4Q==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 578473db131b85b4b055a46571b61150
2ec28db96b257c50b12232181c467949c6904d91
06fce7f39bcffe58d441b361635af7423d6f8dc8fc892dde2b696223a425fd14
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "06FCE7F39BCFFE58D441B361635AF7423D6F8DC8FC892DDE2B696223A425FD14"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8628
Expires: Mon, 30 Jan 2023 00:46:56 GMT
Date: Sun, 29 Jan 2023 22:23:08 GMT
Connection: keep-alive
bucket1.mm-syringe.com/prod/injector/injector.1.5.3.js
23.36.76.202200 OK 4.2 kB URL HTTP/2 bucket1.mm-syringe.com/prod/injector/injector.1.5.3.js
IP 23.36.76.202:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (16217), with no line terminators
Hash 99e626e0e7724f91b3a853a900145e57
8251a49966dd9f0f55e4b51cd663fc2e631bc214
302228c846c19c7e6db62e6baf1594726c6efdc544dd7ed8fde5c1bc2e4d5334
GET /prod/injector/injector.1.5.3.js HTTP/1.1
Host: bucket1.mm-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Sun, 24 Nov 2019 14:18:34 GMT
etag: "3a91217800ebe0708f39c65080ffed30"
x-amz-version-id: KHVG.I1nmJrWxnRtJSl2y4iWEUR5wRHc
accept-ranges: bytes
content-encoding: gzip
content-length: 4206
unused62: 8096267
date: Sun, 29 Jan 2023 22:23:08 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash f24bdd32f708168d116ca01983a78c6f
c018c5b30266abfd0d52058bad30ca82b917ab2d
83ba824b76f68f68e5fdcb41bd74cc39e53b6f4ea8cf2fd4f9383f2de287fd88
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 29 Jan 2023 22:23:08 GMT
Last-Modified: Sun, 29 Jan 2023 22:11:45 GMT
Server: ECS (nyb/1D29)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LTrRGGXQxuENW-lJXESwHbtWl-MaCILFYJ0toFOU05NOLXV9ls8Ntg==
Age: 683
ads.themoneytizer.com/s/gen.js?type=3
185.76.9.18200 OK 2.9 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=3
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
Hash 34db6bfe123db7cc67e07030a125cc25
93b76ad8d8efae8135dea6d3a12f4c7e7ec82566
0215a8fe08fc293461965a2ddcc65b81e89a3b18e3d0002a78b0ddbf2204dc4f
GET /s/gen.js?type=3 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675400649
server: CDN77-Turbo
x-77-nzt: AblMCQ1csnj/g5YDAA
x-77-nzt-ray: c0a4cc288d406a90ccf1d663cbbd1133
x-cache: HIT
x-age: 235139
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash be9950c939642f6a54208970e926dc70
ac0f08479cd2937e2f6b290549c40ba8213c9e61
28f581943e9829a0fb9085fa00da1466d590d7ad1f627e5a7d39e62d217d1e8a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 29 Jan 2023 22:23:08 GMT
Etag: "63d5913c-1d7"
Last-Modified: Sun, 29 Jan 2023 22:09:15 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dd8tdNZFos4TEpjcsyKUx5m5rfFQaVsj0CIpMWkIoKTzvPOSU__a1w==
Age: 833
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7367
Expires: Mon, 30 Jan 2023 00:25:56 GMT
Date: Sun, 29 Jan 2023 22:23:09 GMT
Connection: keep-alive
ads.themoneytizer.com/s/requestform.js?siteId=94773&formatId=1
185.76.9.18200 OK 21 kB URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=94773&formatId=1
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
Hash 2bd3134d35c238a8ef9cc4f995f46645
4007c4dcfb2fa28e0804df194e418a3df3699a1a
d102baf7e2dd8923a18e3b0775afe162c351016b58f7d5b38f45bb9fcb0e5fa9
GET /s/requestform.js?siteId=94773&formatId=1 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675401428
server: CDN77-Turbo
x-77-nzt: AblMCQ1VAlX/eJMDAA
x-77-nzt-ray: c0a4cc288d406a90ccf1d663c4945033
x-cache: HIT
x-age: 234360
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7367
Expires: Mon, 30 Jan 2023 00:25:56 GMT
Date: Sun, 29 Jan 2023 22:23:09 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc62816c-5ae0-4a32-ad19-0aa70ed552c5.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc62816c-5ae0-4a32-ad19-0aa70ed552c5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1133381d25a3804d01148f332e4cdd7e
d0d0e9d7e8afbf5a4926c44d9fc9ff94bc276f5a
7dd9a03052e733f3418991f237cae7b9aa5d20c34dd661078199bd85d26a4d1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc62816c-5ae0-4a32-ad19-0aa70ed552c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8751
x-amzn-requestid: 28610adf-7206-4dff-9e34-c9441fdaf4b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkGHFixIAMF1jg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6f3-1de169331c105c35519fd34c;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vpkET9Ym44JpkXbIxIW7hH5afDO2COTnP4_l-65mJeIavP17a2w3FA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:51:22 GMT
age: 1907
etag: "d0d0e9d7e8afbf5a4926c44d9fc9ff94bc276f5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
tg1.playstream.media/api/adserver/spt?AV_TAGID=62cc284e6de5a91b2546bff9&AV_PUBLISHERID=62cbd680bf9c0b22ad4b5bb4
23.36.79.16200 OK 7.1 kB URL HTTP/1.1 tg1.playstream.media/api/adserver/spt?AV_TAGID=62cc284e6de5a91b2546bff9&AV_PUBLISHERID=62cbd680bf9c0b22ad4b5bb4
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2884)
Hash 7377337ae99cb69e4a1651dbea22b3d5
67eaddb89ae56d25581714bc15bd0800f17e4fa9
09782c59901781fc3a79378e5660cfcf0e68e895eff2752c29cb04b733aa81e2
GET /api/adserver/spt?AV_TAGID=62cc284e6de5a91b2546bff9&AV_PUBLISHERID=62cbd680bf9c0b22ad4b5bb4 HTTP/1.1
Host: tg1.playstream.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Access-Control-Allow-Methods: GET, POST, DELETE, PUT, OPTIONS, INDEX
Access-Control-Allow-Headers: Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Authorization,X-Bamboo-Token,Event-Id,X-Requested-With,avsptstaging
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Content-Length: 7053
Cache-Control: max-age=300
Expires: Sun, 29 Jan 2023 22:28:09 GMT
Date: Sun, 29 Jan 2023 22:23:09 GMT
Connection: keep-alive
Vary: Accept-Encoding
ads.themoneytizer.com/s/gen.js?type=6
185.76.9.18200 OK 10 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=6
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
Hash 053ff7a8abe607587efbdb282521fd55
e70bba9113c9d1c6b558f7890d1601dd33c3947b
8faac627e6aef4a7bcc6838bc85c1ea3ff49e660ca6de426b4b72803ad4488f3
GET /s/gen.js?type=6 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675400650
server: CDN77-Turbo
x-77-nzt: AblMCQ2H6Y7/gpYDAA
x-77-nzt-ray: c0a4cc288d406a90ccf1d66349dbec31
x-cache: HIT
x-age: 235138
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 17:35:56 GMT
age: 17233
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbe179e9-ed5b-474f-b131-5b5a63a84dfb.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbe179e9-ed5b-474f-b131-5b5a63a84dfb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ffefd279ef73e586048a7907c0425b8
53d3da3cdf647e619abe96c6af42f2374112f334
75d7034fd709cb69e15234a4de94cdd9b42de1e26e3a0b2cb107be3228575af2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffbe179e9-ed5b-474f-b131-5b5a63a84dfb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8414
x-amzn-requestid: 3ca84a59-6dce-45f8-919e-bd551d553a99
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj5EGvAIAMFtPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6a0-446d1dff705f17853e7d0a77;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hUnafsPNiSpfZcu0hzwVC3VOHbVjqwIHo2vuJuZUKT1Lj93l9NkVrQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:51:22 GMT
age: 1907
etag: "53d3da3cdf647e619abe96c6af42f2374112f334"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=1
185.76.9.18200 OK 13 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=1
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
Hash f275b70ece982ef0ae6ab4dc27c8463c
c23c26b885c0b486691fc7d84e5d59913682efb2
dc9ac6c47e8a65793b0cb86a889b65566cf90a202f5aa158688184cb5ec88ad6
GET /s/gen.js?type=1 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675400649
server: CDN77-Turbo
x-77-nzt: AblMCQ0FvbL/g5YDAA
x-77-nzt-ray: c0a4cc288d406a90ccf1d663fd13cc31
x-cache: HIT
x-age: 235139
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9169e1aa-278a-45ac-a3cb-92421681099d.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9169e1aa-278a-45ac-a3cb-92421681099d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 01f406ed5d9b17a7aa00015301bddf94
d78e18830fc6cf231f66f95cc0e01520cfeebddf
33245ea764fb634a01ee9657e529a30567588ecbb10fc0e6499aac14cd21fe81
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9169e1aa-278a-45ac-a3cb-92421681099d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7333
x-amzn-requestid: 7563c72f-e40d-4e96-a73f-8aa404ae0b25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhklyFK8IAMFzMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7be-7eb009311701187873f05b20;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -npeyE-5ETAaI6cs7oewWxVe4ZUrtmhvCNC4tMWT_3ab3hZ3tw060w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:51:22 GMT
age: 1907
etag: "d78e18830fc6cf231f66f95cc0e01520cfeebddf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash eae90cbd0657da9b0dbb473068c205c1
b3adc93c1fcb3bb11dbad62cfb22e405466d1dae
073d132eb8a956c92dc20461c60c8f7159bcac16ea7d9727276e437cdffa5649
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=85751
Date: Sun, 29 Jan 2023 22:23:09 GMT
Etag: "63d584af-1d7"
Expires: Mon, 30 Jan 2023 22:12:20 GMT
Last-Modified: Sat, 28 Jan 2023 20:25:19 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7QMETGnD6Z9VpI2zI0IBo51ZXgNxyN6g-4CkvlY8ERIxVHA4ESp6iQ==
Age: 6421
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 50e3de6812f535cb0f8e22ef48ce1feb
45b02656c0f79cb0b7c2579053d42325094c692b
6102a2549fe888f733cc482aa3473e029501d2aa0f4137cca6adfae03ed67aba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6102A2549FE888F733CC482AA3473E029501D2AA0F4137CCA6ADFAE03ED67ABA"
Last-Modified: Sat, 28 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8525
Expires: Mon, 30 Jan 2023 00:45:14 GMT
Date: Sun, 29 Jan 2023 22:23:09 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0767fc7ddb73f943b21009ddaeb45a82
89fe2f49fe2174f38851485ac6b62d9a05f0a70e
a877ad3e9d589362eb3b2616a05633f28955972c1123a76816842a2879ef89fc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1164
Cache-Control: max-age=133043
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:09 GMT
Etag: "63d651f5-117"
Expires: Tue, 31 Jan 2023 11:20:32 GMT
Last-Modified: Sun, 29 Jan 2023 11:01:09 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 642d7bd20466695d56b535c3d3e7a1bf
1989ed6de3b77947276ea5a816d43a2b4865cd72
06a882f0f3a52296d88c24cd4bfca74081faeb181d22ab2cfd81fcf8688e5579
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3367
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:09 GMT
Last-Modified: Sun, 29 Jan 2023 21:27:02 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 314
bucket1.mm-syringe.com/prod/configs/36737214-c9bb-a898-7b69-4060d4f5e9c3.js
23.36.76.202200 OK 3.5 kB URL HTTP/2 bucket1.mm-syringe.com/prod/configs/36737214-c9bb-a898-7b69-4060d4f5e9c3.js
IP 23.36.76.202:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (739)
Hash 6d3a11cdeac5c8e7812cb6d96e5a6fd3
6c4f4828408bb8e773318b614fdf1d90ac25d70b
c49c1bbe1b464d31496b7ef53dfb7e4ca68fc6d172809d7ba4b5f22023db34a5
GET /prod/configs/36737214-c9bb-a898-7b69-4060d4f5e9c3.js HTTP/1.1
Host: bucket1.mm-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 21 Apr 2022 16:50:12 GMT
etag: "b9c95a9182697b09c6947fc7c6f6c4cd"
x-amz-meta-edge-cache-tag: injectionssrv|crate-network,injectionssrv|36737214-c9bb-a898-7b69-4060d4f5e9c3
x-amz-version-id: w5ecrMxTYOcGz7KVMPDRNbmNKxZNSsEH
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: 2t_aIJPe1_1VXRHIMR086sEsELW8G5J29rgz9rNvX2KwpCPLOf6j-w==
vary: Accept-Encoding
content-encoding: gzip
date: Sun, 29 Jan 2023 22:23:09 GMT
content-length: 3541
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0ebd7edd444b92f4195dfbc2adb7ea51
cb18ee593609a8dc50057ad828492dde1f6ace1a
ecb59116991aa1f1b148d16141eb0791450593bcb84e65297bf5603914edf704
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECB59116991AA1F1B148D16141EB0791450593BCB84E65297BF5603914EDF704"
Last-Modified: Fri, 27 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18011
Expires: Mon, 30 Jan 2023 03:23:20 GMT
Date: Sun, 29 Jan 2023 22:23:09 GMT
Connection: keep-alive
www.crushthat.com/recent/?art%5B0%5D=ZX419TY8xlBlTqPL_xMAS9qI3w--&art%5B1%5D=IK_40gyfDuoqKw--&knd=Iqr2PoIrMBvxcuuHzBgOCnJDjnVoN1eoNnFPLDkgeOI-
172.67.157.204302 Found 47 kB URL HTTP/2 www.crushthat.com/recent/?art%5B0%5D=ZX419TY8xlBlTqPL_xMAS9qI3w--&art%5B1%5D=IK_40gyfDuoqKw--&knd=Iqr2PoIrMBvxcuuHzBgOCnJDjnVoN1eoNnFPLDkgeOI-
IP 172.67.157.204:0
File type gzip compressed data, from Unix\012- data
Hash 97b6675fea71c7e431a5903b331b3258
24a424a40e0c346a85efe047bd434c355a85d481
7fe2bb5c539a1fd0757fd69d2c6ae4da78ae5f5270dab59c728601f6e2acdf69
GET /recent/?art%5B0%5D=ZX419TY8xlBlTqPL_xMAS9qI3w--&art%5B1%5D=IK_40gyfDuoqKw--&knd=Iqr2PoIrMBvxcuuHzBgOCnJDjnVoN1eoNnFPLDkgeOI- HTTP/1.1
Host: www.crushthat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 29 Jan 2023 22:23:07 GMT
content-type: text/html; charset=UTF-8
location: https://www.crushthat.com/recent/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/
cf-ray: 79155ed61ef9fac4-OSL
cache-control: no-store, no-cache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cf-cache-status: DYNAMIC
pragma: no-cache
set-cookie: PHPSESSID=9kjq5s6mv4t3endn2h514hbp69; path=/recent
HAPPIDS1=s3|Y9bxz|Y9bxz; path=/
x-envoy-upstream-service-time: 12
x-powered-by: PHP/7.4.27
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I%2B%2F%2Bf0b28eAKBdsfaBtlPVk1G59%2BuPAMA6j%2F5buk38COYx1Op1mhdXMWeKvmTKrpmCtj%2FGQL47UXmyQh4AH0JzvZFeZPjSBO4djHyAIy5uPIT7SRS96yQ5p0iev%2FBO%2BcaaomIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0ebd7edd444b92f4195dfbc2adb7ea51
cb18ee593609a8dc50057ad828492dde1f6ace1a
ecb59116991aa1f1b148d16141eb0791450593bcb84e65297bf5603914edf704
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECB59116991AA1F1B148D16141EB0791450593BCB84E65297BF5603914EDF704"
Last-Modified: Fri, 27 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18011
Expires: Mon, 30 Jan 2023 03:23:20 GMT
Date: Sun, 29 Jan 2023 22:23:09 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.227200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 04:29:08 GMT
expires: Wed, 24 Jan 2024 04:29:08 GMT
cache-control: public, max-age=31536000
age: 496441
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.tmyzer.com/c/?s=94773&f=6&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=94773&f=6&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=94773&f=6&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 22:23:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:898B_36264064:01BB_63D6F1CD_25BA755:16E95
X-IPLB-Instance: 20687
c.tmyzer.com/c/?s=94773&f=1&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=94773&f=1&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=94773&f=1&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 22:23:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:A567_36264064:01BB_63D6F1CD_25A4847:1B90B
X-IPLB-Instance: 38437
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.227200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 10:25:03 GMT
expires: Mon, 29 Jan 2024 10:25:03 GMT
cache-control: public, max-age=31536000
age: 43086
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c.tmyzer.com/c/?s=94773&f=11&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=94773&f=11&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=94773&f=11&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 22:23:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:DE11_36264064:01BB_63D6F1CD_25A3336:2A935
X-IPLB-Instance: 41595
fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
216.58.207.227200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 47728, version 1.0\012- data
Hash b1581ddd77372ceb06eb14adfd1bea07
1a3b0fc96fa73b808aa1f91f122a3c9bdcf93ee8
97e82d8eac8d106b28abf1b716982c40c06fffe49cc2f34cd1c299266745ef73
GET /s/worksans/v18/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 18:28:53 GMT
expires: Mon, 29 Jan 2024 18:28:53 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Aug 2022 17:55:22 GMT
content-type: font/woff2
age: 14056
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 227700
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.crushthat.com/recent/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/
172.67.157.204200 OK 29 kB URL HTTP/2 www.crushthat.com/recent/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/
IP 172.67.157.204:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1076), with CRLF, LF line terminators
Hash eb42adf57c56039ccee77c696aa9e160
20b5d401acb719ddd20a4fd82070ecef36bbd80c
ecc85743c3bbbd1e6073bd968f17966bee257ac5008bb322840693e22be11e41
GET /recent/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/ HTTP/1.1
Host: www.crushthat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: PHPSESSID=9kjq5s6mv4t3endn2h514hbp69; HAPPIDS1=s3|Y9bxz|Y9bxz
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:08 GMT
content-type: text/html; charset=UTF-8
cf-ray: 79155eda2984fac4-OSL
cache-control: no-store, no-cache
expires: Thu, 19 Nov 1981 08:52:00 GMT
refresh: 25;url=https://www.crushthat.com/recent/2022/06/14/the-celtics-were-careless-with-the-ball-jwill-blames-bostons-turnovers-for-game-5-loss-kjm/
cf-cache-status: DYNAMIC
pragma: no-cache
x-envoy-upstream-service-time: 14
x-powered-by: PHP/7.4.27
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1I2Y9w6Ps9qtBVVyRqz6OxxlN01hdjs1Z5DztKpe6uhc7luN71eTHMLvXMme4EBaQjFbk3fXYEiHGFwNDANMcSoCCzTGFvnAjAlBuNOM4HwH0bIdMdebBIl2SAswAiQOVmwuXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
c.tmyzer.com/c/?s=94773&f=3&fi=99
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=94773&f=3&fi=99
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=94773&f=3&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 22:23:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:F811_36264064:01BB_63D6F1CD_25A5A7C:F273
X-IPLB-Instance: 24857
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4gaVI.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4gaVI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16696, version 1.0\012- data
Hash 851255bc75bbde5522202bc66bca47ad
aa7ef04a80507e95574269c293361d9c89d76dc1
e7cba74abd33c24cef9652915738c63c891c517e3f407d0894f11a7aec9c015e
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgshZ1x4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16696
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:06:28 GMT
expires: Sat, 27 Jan 2024 02:06:28 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:16:22 GMT
content-type: font/woff2
age: 245801
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tag.leadplace.fr/libJsLP.js
145.239.192.166200 OK 5.5 kB URL HTTP/1.1 tag.leadplace.fr/libJsLP.js
IP 145.239.192.166:0
Hash a0c24f993bc0901cfe62d1e801cb2b45
7eb2bdce06161ae486bc8e7ecd0b5c9c4f7b2984
80fccb00db57a177d26368cda09f8a540cf1aa641b8b6837047e86d3bd8d6333
GET /libJsLP.js HTTP/1.1
Host: tag.leadplace.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 29 Jan 2023 22:23:09 GMT
Content-Type: application/javascript
Content-Length: 5547
Last-Modified: Thu, 14 Oct 2021 07:27:53 GMT
ETag: "6167dbf9-15ab"
Accept-Ranges: bytes
X-IPLB-Request-ID: 5B5A2A9A:A33E_91EFC0A6:01BB_63D6F1CD_66A31BC0:6041
X-IPLB-Instance: 30196
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 8ca4549b8b3f32efdde32359d5a95a9a
6c55579af30b36d2e25b3ba211ca4b19fac7a07d
1ada7ee1ab5433d4824e58246188de7c8c482b78444e755483a282b2580027f0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 08:45:25 GMT
Expires: Sun, 05 Feb 2023 08:45:24 GMT
Etag: "6c55579af30b36d2e25b3ba211ca4b19fac7a07d"
Cache-Control: max-age=555134,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79155ee658e80b45-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
player.avplayer.com/script/2/v/avcplayer.js
69.16.175.42200 OK 61 kB URL HTTP/2 player.avplayer.com/script/2/v/avcplayer.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9dff0335699f04080269947f40c366ae
8447df4f8b168d9c506630f96ef95002c2c6eb28
157b5912ad26a879f38d0dafb1fce2def6df3168a08f991d6203463375fa32fc
GET /script/2/v/avcplayer.js HTTP/1.1
Host: player.avplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:09 GMT
etag: "1646327924"
cache-control: max-age=600
content-encoding: gzip
content-length: 61326
content-type: application/javascript
last-modified: Thu, 03 Mar 2022 17:18:44 GMT
accept-ranges: bytes
vary: X-Goog-Allowed-Resources
x-hw: 1675030989.dop014.sk1.t,1675030989.cds247.sk1.hn,1675030989.cds065.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
p.cpx.to/p/12777/px.js
54.75.168.203200 OK 2.0 kB IP 54.75.168.203:0
File type ASCII text, with very long lines (1990), with no line terminators
Hash 9bb215f4987ad765d840286341dc07ac
a9f8c4860a5611cc81c81365ba81ed0de3ee9706
20cb4041bd17f3ff36a3f2eeb0dfacc5e3c2432949f4c02982ac566401e4c47c
GET /p/12777/px.js HTTP/1.1
Host: p.cpx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2419200, public
Content-Type: application/javascript; charset=UTF-8
Date: Sun, 29 Jan 2023 22:23:09 GMT
Content-Length: 1990
Connection: keep-alive
ads.themoneytizer.com/lib_fs_close.js
185.76.9.18200 OK 4.8 kB URL HTTP/2 ads.themoneytizer.com/lib_fs_close.js
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
Hash deba328edbf958db077b1afd8c9a2b02
1691d228f358a9bb6fbefaf5c3ac3e315a4561fb
ab719b30b2a815a422bfa5e2f14c1d93febf657c3fc69c569113328915596350
GET /lib_fs_close.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:09 GMT
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 15:05:03 GMT
expires: Sat, 28 Jan 2023 05:04:08 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675055055
server: CDN77-Turbo
x-77-nzt: AblMCQ1mXRD/fvMAAA
x-77-nzt-ray: c0a4cc288d406a90cdf1d66334121c1d
x-cache: HIT
x-age: 62334
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/overlayscrollbars/1.13.1/css/OverlayScrollbars.min.css
104.17.24.14200 OK 4.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/overlayscrollbars/1.13.1/css/OverlayScrollbars.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (19782), with CRLF, LF line terminators
Hash 731690125f84d35b3714daecc46ed310
11850071f8f15e757f2a2caf96d6f532f6a34dea
1ed6cf2f1accf904304e5d6a4c0d094ddcc0ae39d2aae95fed10221d2d6876e4
GET /ajax/libs/overlayscrollbars/1.13.1/css/OverlayScrollbars.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:10 GMT
content-type: text/css; charset=utf-8
content-length: 4023
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5fda05e7-4e34"
last-modified: Wed, 16 Dec 2020 13:04:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 20311945
expires: Fri, 19 Jan 2024 22:23:10 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o2ryj20vPVL0tUhKF4QpoIQF95fPX7lkVMtXCeFje7gjOWBKKmUT7a8sQ4LUAwNXTQAUei0LxGp%2FSTZkJst46HIrgCU%2Fw99H1GjtIyHRpJrnWJ9opuyyKo%2FTq6I%2Bpy1u11dwebl7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79155ee7a9c3b505-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5d97de74ccf2a176dbb479781e670d3b
c7b9a2cc32b20ded7a7e51907ed35c5e864158f9
d1fc0a0068a630be8fd6e727903ba46edd91755a8ac9e8061a5d1662c8d80bc0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6087
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:10 GMT
Last-Modified: Sun, 29 Jan 2023 20:41:43 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 280
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 021600585c12ce1d48ddd036032615bb
7e7222d185c46e5d33f08a72758f95e9fac0d43a
4cca55190c537eae4c199ce334f41d9859cc627a82d14acafc6e65f9eece85ad
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=128013
Date: Sun, 29 Jan 2023 22:23:10 GMT
Etag: "63d63186-1d7"
Expires: Tue, 31 Jan 2023 09:56:43 GMT
Last-Modified: Sun, 29 Jan 2023 08:42:46 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: twF_TxbeOlRtvBeN-gSzSZK5jS0sc8dIlL9xhyWG7cmUH_epdV7fUg==
Age: 4437
adncdnend.azureedge.net/adtags/crushthat.adn.js
152.199.19.161200 OK 1.6 kB URL HTTP/2 adncdnend.azureedge.net/adtags/crushthat.adn.js
IP 152.199.19.161:0
File type ASCII text, with CRLF line terminators
Hash ac50715da4ed3be6d76c891e4aa545ee
74500aa43fcfd98f79f9335397c6a7be0bffe579
38f0e863fe140e07a28efcc7dfe08646551f002002efbdc275be2b5e1d37ab27
GET /adtags/crushthat.adn.js HTTP/1.1
Host: adncdnend.azureedge.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
cache-control: max-age=86400
content-md5: utpATmKO+uZCPC/mymv6tQ==
content-type: text/javascript
date: Sun, 29 Jan 2023 22:23:09 GMT
etag: 0x8D9F6A2C8E06153
expires: Mon, 30 Jan 2023 22:23:10 GMT
last-modified: Wed, 23 Feb 2022 08:02:06 GMT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
vary: Accept-Encoding
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 1afcb4fa-101e-004d-6130-34c7b1000000
x-ms-version: 2009-09-19
content-length: 1570
X-Firefox-Spdy: h2
powerad.ai/detect-aau?ch=2
3.94.188.247200 OK 2 B URL HTTP/2 powerad.ai/detect-aau?ch=2
IP 3.94.188.247:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /detect-aau?ch=2 HTTP/1.1
Host: powerad.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.crushthat.com/
Origin: https://www.crushthat.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:10 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: *
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
vary: Accept-Encoding
X-Firefox-Spdy: h2
powerad.ai/detect-aau?ch=1
3.94.188.247200 OK 2 B URL HTTP/2 powerad.ai/detect-aau?ch=1
IP 3.94.188.247:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /detect-aau?ch=1 HTTP/1.1
Host: powerad.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.crushthat.com/
Origin: https://www.crushthat.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:10 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: *
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
vary: Accept-Encoding
X-Firefox-Spdy: h2
script.4dex.io/localstore.js
172.67.75.241200 OK 268 B URL HTTP/1.1 script.4dex.io/localstore.js
IP 172.67.75.241:0
File type ASCII text, with very long lines (482)
Hash 58fe1f2623397cca72ecea6ee95d76b9
ac4d33ae761cf330574597936273a9c5d82f96d0
7cb0b5944c53bbacc5983fbef96aa0c1f514ec12da81666765610eae562a9020
GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public, max-age=1800
ETag: W/"922cffdd75f7192f75231d92684885aa"
Last-Modified: Wed, 23 Nov 2022 15:43:18 GMT
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 1486452
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kygORMvh8IQRNlleUkCdE0myOFVJvMXNt1wG3%2BraFUx2rv%2F2MoKnMNRz0GPi1FSfxe%2BuZ%2FnMB74yYc04FcUZ7SXpNMVArbr2laAOjGkqiAEE7t7jlzyjlk4hvKt9vbOt"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79155ee89a830b61-OSL
Content-Encoding: br
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 41ab76337e96fd11b0a165887d578231
9eb67543b5ae103fbf75f6bd2241a21391959a6d
f2bf0fcf13930db4d64ba35394d87a170f0fad4f94a6e6e108e428441df3b4cf
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 29 Jan 2023 22:23:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 29 Jan 2023 19:56:04 GMT
Expires: Mon, 30 Jan 2023 19:56:04 GMT
ETag: "9eb67543b5ae103fbf75f6bd2241a21391959a6d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
track1.aniview.com/track?pid=62cbd680bf9c0b22ad4b5bb4&cid=62cbd72a480063068c5c34f4&cb=1675030998917&r=www.crushthat.com&stagid=62cc284e6de5a91b2546bff9&stplid=62cc240ea6b6931b6741f0e7&d35=&d65=&d66=7&e=playerLoaded&str=viewable
52.204.220.125200 OK 0 B URL HTTP/2 track1.aniview.com/track?pid=62cbd680bf9c0b22ad4b5bb4&cid=62cbd72a480063068c5c34f4&cb=1675030998917&r=www.crushthat.com&stagid=62cc284e6de5a91b2546bff9&stplid=62cc240ea6b6931b6741f0e7&d35=&d65=&d66=7&e=playerLoaded&str=viewable
IP 52.204.220.125:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?pid=62cbd680bf9c0b22ad4b5bb4&cid=62cbd72a480063068c5c34f4&cb=1675030998917&r=www.crushthat.com&stagid=62cc284e6de5a91b2546bff9&stplid=62cc240ea6b6931b6741f0e7&d35=&d65=&d66=7&e=playerLoaded&str=viewable HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:10 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3e863faa386be5424a5d4a452860ccbd
ceee8a9b940473ca6678375d68b2989c074d5175
678aa5fb1efcb394a85ca175ef644b9585d8cb5dc1c55a2331a8af0f3a601571
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "678AA5FB1EFCB394A85CA175EF644B9585D8CB5DC1C55A2331A8AF0F3A601571"
Last-Modified: Sat, 28 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13754
Expires: Mon, 30 Jan 2023 02:12:24 GMT
Date: Sun, 29 Jan 2023 22:23:10 GMT
Connection: keep-alive
tag.leadplace.fr/wckr.php?ref=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&id=MTIZ
145.239.192.166200 OK 0 B URL HTTP/1.1 tag.leadplace.fr/wckr.php?ref=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&id=MTIZ
IP 145.239.192.166:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wckr.php?ref=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&id=MTIZ HTTP/1.1
Host: tag.leadplace.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 29 Jan 2023 22:23:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
X-IPLB-Request-ID: 5B5A2A9A:A33E_91EFC0A6:01BB_63D6F1CD_66A31BC9:6041
X-IPLB-Instance: 30196
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash c702f00c10d097bd154b92959b685a24
218ad527fc1bf7c9d74c0b9df17fe919107bffd7
4b3a421a71e9eb8011df87a1b7ac48eb5cf258147bfb1e3ff9cc6e37b8a949ff
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 288
Cache-Control: max-age=135422
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:10 GMT
Etag: "63d65eac-139"
Expires: Tue, 31 Jan 2023 12:00:12 GMT
Last-Modified: Sun, 29 Jan 2023 11:55:24 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash c702f00c10d097bd154b92959b685a24
218ad527fc1bf7c9d74c0b9df17fe919107bffd7
4b3a421a71e9eb8011df87a1b7ac48eb5cf258147bfb1e3ff9cc6e37b8a949ff
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 288
Cache-Control: max-age=135422
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:10 GMT
Etag: "63d65eac-139"
Expires: Tue, 31 Jan 2023 12:00:12 GMT
Last-Modified: Sun, 29 Jan 2023 11:55:24 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 313
id5-sync.com/api/config/prebid
162.19.138.118200 134 B URL HTTP/1.1 id5-sync.com/api/config/prebid
IP 162.19.138.118:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99be75395b3c89cdd6781761e5a85ad2
225a8b587c3545be2581aa9ac2b630b51679d7be
559ffc5fa5eadd77f8bfaaeb793648763e312a17391d8e6bbb7d8d3dec2147e1
POST /api/config/prebid HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 95
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.crushthat.com
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Sun, 29 Jan 2023 22:23:09 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
reporting.powerad.ai/
54.234.151.247200 OK 2 B IP 54.234.151.247:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST / HTTP/1.1
Host: reporting.powerad.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 238
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 29 Jan 2023 22:23:10 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash b4920677ce678bed6eefdb936f56b8f3
e16ae4f3827833eb37a8149baa9ce3f48d281282
b407414da6629997c2fdae61bcecf48332797cade739c0397f0841af3de0351e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 29 Jan 2023 22:23:10 GMT
Last-Modified: Sun, 29 Jan 2023 21:11:27 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 68CV0fD694w9GQO5Qw07z3YVa5h_Doug13vewApWa-aBeoDV3jHUCA==
Age: 4303
s2l.sendtonews.com/stn_trk.gif?session=y5yNL8pqw9Uq9N40&instance=286906&version=7.12.2&age=230129&cmd=PRE_INIT&key=tzVsifQ2&seq=1&order=1&absoluteTime=2941&relativeTime=0&canonical=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&EXTREF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&REF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&serverHost=embed.sendtonews.com
44.194.130.64200 OK 26 B URL HTTP/2 s2l.sendtonews.com/stn_trk.gif?session=y5yNL8pqw9Uq9N40&instance=286906&version=7.12.2&age=230129&cmd=PRE_INIT&key=tzVsifQ2&seq=1&order=1&absoluteTime=2941&relativeTime=0&canonical=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&EXTREF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&REF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&serverHost=embed.sendtonews.com
IP 44.194.130.64:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6a43099d5c8fe991a7aa7ebaca53069d
5bce2f0d57305c58c7b05bfce29ebb39a18f5570
3b7b8a4b411ddf8db9bacc2f3aabf406f8e4c0c087829b336ca331c40adfdff1
POST /stn_trk.gif?session=y5yNL8pqw9Uq9N40&instance=286906&version=7.12.2&age=230129&cmd=PRE_INIT&key=tzVsifQ2&seq=1&order=1&absoluteTime=2941&relativeTime=0&canonical=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&EXTREF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&REF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&serverHost=embed.sendtonews.com HTTP/1.1
Host: s2l.sendtonews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:10 GMT
content-type: image/gif
content-length: 26
server: Apache/2.4.41 (Ubuntu)
last-modified: Wed, 23 Dec 2020 21:38:39 GMT
etag: "1a-5b72883b37f80"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash aa79f831fbade48affa43928694677db
ddb17e61adc783e7a0fb0ae60c2f049e082c5097
abcc206a3c1727354a2371f825b9640133e8617f2a47f84a8cdcc9300357d654
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 19:14:51 GMT
Expires: Thu, 02 Feb 2023 19:14:50 GMT
Etag: "ddb17e61adc783e7a0fb0ae60c2f049e082c5097"
Cache-Control: max-age=333699,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79155ee96b700b45-OSL
script.4dex.io/adagio.js
172.67.75.241200 OK 23 kB IP 172.67.75.241:0
File type ASCII text, with very long lines (65354)
Hash 0ffb2c9b6dd933ae18ab7dc729d58e69
bb88b2f3fc47452873348d1cdcb7ea3d4a2bbc10
0cd0e55fa43693dfe4b04a225bf7774eb3f66e232828f8d661547728475a12f2
GET /adagio.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.crushthat.com/
Origin: https://www.crushthat.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=1800
ETag: W/"c56b6332dacf72f135afcd153ae22448"
Last-Modified: Wed, 23 Nov 2022 15:43:17 GMT
Vary: Origin, Accept-Encoding
Access-Control-Expose-Headers:
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sgErl1Lyz8Az%2BSD3ViXazG1q65t%2Fb4FpRxsDYZWgbMFsxiKV7xlGmQqn1kcGNS09PZXi4a4FYwfZYBTzraCq6Y0qpXg7G5CBM5LGrKX9h%2FYldxEcXyTER8cr6aNTzEpp"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79155ee8e9fafac4-OSL
Content-Encoding: br
s.cpx.to/fire.js?pid=12777&ref=&url=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&hn_ver=40&fid=689fed27-9f16-4c12-b37e-4bc6f7f2a75c
54.73.141.92200 OK 765 B URL HTTP/1.1 s.cpx.to/fire.js?pid=12777&ref=&url=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&hn_ver=40&fid=689fed27-9f16-4c12-b37e-4bc6f7f2a75c
IP 54.73.141.92:0
File type ASCII text, with very long lines (765), with no line terminators
Hash c334231ff5296c871ecb15553dd3504b
fefef2254de3b1b61068b73fae2d757c7c36ab86
c647b0fe5a5cedf89b9874b8108f8edcbd6f13cac9fa7bac9880e76ee17d87c0
GET /fire.js?pid=12777&ref=&url=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&hn_ver=40&fid=689fed27-9f16-4c12-b37e-4bc6f7f2a75c HTTP/1.1
Host: s.cpx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:10 GMT
Content-Type: application/javascript; charset=UTF-8
Content-Length: 765
Connection: keep-alive
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'self'
x-permitted-cross-domain-policies: none
cache-control: no-store, must-revalidate, private, max-age=0
pragma: no-cache
p3p: CP="NOI DEV ADM"
expires: Wed, 18 Jan 2023 19:16:50 UTC
set-cookie: cpSess=a014337128ef411; Expires=Mon, 29 Jan 2024 22:23:10 GMT; Domain=.cpx.to; Path=/; Secure; HttpOnly; SameSite=None
d29xw9s9x32j3w.cloudfront.net/players/library/prebid/prebid7.17.0.js
54.230.111.25200 OK 324 kB URL HTTP/2 d29xw9s9x32j3w.cloudfront.net/players/library/prebid/prebid7.17.0.js
IP 54.230.111.25:0
File type ASCII text, with very long lines (64910)
Size 324 kB (324393 bytes)
Hash a19a813f32186fcd556eb018968e7f37
06d306140391f0778659586c4c2d5c64c23759f2
922a293fce4c3fb1526e1a5d8816602ef86fd581c3e438989416bc5c56ce9f0f
GET /players/library/prebid/prebid7.17.0.js HTTP/1.1
Host: d29xw9s9x32j3w.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 324393
last-modified: Thu, 22 Dec 2022 18:40:05 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 29 Jan 2023 15:50:55 GMT
etag: "a19a813f32186fcd556eb018968e7f37"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ti9xUPVc5ywsepQDDpF_SWf4Kh8uiYSKsbKJADABK_MeWp-0xtTskA==
age: 23536
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0280336ed6c100d60f8e8d498050ca6d
06c87133d84a626fc382419f761a9d1e5c6ec0f0
0577f5b646d155db02d010f15be6a9fe590d44ebb2ff5ecd5fdfba3f49bd5d1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0577F5B646D155DB02D010F15BE6A9FE590D44EBB2FF5ECD5FDFBA3F49BD5D1C"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4054
Expires: Sun, 29 Jan 2023 23:30:44 GMT
Date: Sun, 29 Jan 2023 22:23:10 GMT
Connection: keep-alive
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 23ac62222c3e754b1c3450e799f82f12
43c163009cb973eaaa9c3c5b5bf3b19b0244edb2
8074909462a3aec32925a5020b3b3e63f3866ccff3bb251477b07e285f7bd6dc
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 29 Jan 2023 22:23:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 29 Jan 2023 19:26:05 GMT
Expires: Mon, 30 Jan 2023 19:26:05 GMT
ETag: "43c163009cb973eaaa9c3c5b5bf3b19b0244edb2"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
cdn.playstream.media/logo.png
138.199.37.229200 OK 1.3 kB URL HTTP/2 cdn.playstream.media/logo.png
IP 138.199.37.229:0
ASN #60068 Datacamp Limited
File type PNG image data, 32 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash b0fb81e9e278d867bb73f8a6cde236f2
ca10201696f69919ff9541bb549de2d0b065eb8e
875a318ebf906866ab16eb2e848924b12c38f7d33ae1c6e72244aba92faa9b7b
GET /logo.png HTTP/1.1
Host: cdn.playstream.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:10 GMT
content-type: image/png
content-length: 1265
server: BunnyCDN-DE1-865
cdn-pullzone: 1027527
cdn-uid: 6740a699-531f-4e34-81bd-7039b1357022
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 19 Jan 2021 07:48:16 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 11/21/2022 14:10:19
cdn-edgestorageid: 864
cdn-status: 200
cdn-requestid: 9d57d5251f4742daee95c9c23a57badf
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 23ac62222c3e754b1c3450e799f82f12
43c163009cb973eaaa9c3c5b5bf3b19b0244edb2
8074909462a3aec32925a5020b3b3e63f3866ccff3bb251477b07e285f7bd6dc
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 29 Jan 2023 22:23:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 29 Jan 2023 19:26:05 GMT
Expires: Mon, 30 Jan 2023 19:26:05 GMT
ETag: "43c163009cb973eaaa9c3c5b5bf3b19b0244edb2"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f439260b070cd7eee79ec34709ed0bc6
80d08c9560b094e3eb8bb97db43481cfa9c3727b
8dba27cdb26c0f93e641cf29d417fb84759f8c7178934c420813611aae8a0624
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8DBA27CDB26C0F93E641CF29D417FB84759F8C7178934C420813611AAE8A0624"
Last-Modified: Sun, 29 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15604
Expires: Mon, 30 Jan 2023 02:43:14 GMT
Date: Sun, 29 Jan 2023 22:23:10 GMT
Connection: keep-alive
kvt.sddan.com/api/v1/public/p/29567/d/50/s?callback=&gdpr=&gdpr_consent=&url=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F
212.83.160.162200 OK 148 B URL HTTP/1.1 kvt.sddan.com/api/v1/public/p/29567/d/50/s?callback=&gdpr=&gdpr_consent=&url=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F
IP 212.83.160.162:0
File type JSON data\012- , ASCII text, with very long lines (507), with no line terminators
Hash 867d8ac79fb483c1b9a76ffa51be7e2e
0178e99b8e387aee2e5d068304c7a8689d9e05de
e8266673e1120bbdd037e69160b04885449d8fe91c1069321cc79d4161098d2a
GET /api/v1/public/p/29567/d/50/s?callback=&gdpr=&gdpr_consent=&url=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F HTTP/1.1
Host: kvt.sddan.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Sun, 29 Jan 2023 22:23:10 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: https://www.crushthat.com
Cache-Control: private, max-age=60
Strict-Transport-Security: max-age=15724800; includeSubDomains; preload
Content-Encoding: gzip
analytics.vdo.ai/logger
144.217.66.206200 OK 0 B IP 144.217.66.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /logger HTTP/1.1
Host: analytics.vdo.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 232
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.2
Date: Sun, 29 Jan 2023 22:23:10 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
analytics.vdo.ai/logger
144.217.66.206200 OK 0 B IP 144.217.66.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /logger HTTP/1.1
Host: analytics.vdo.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 234
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.2
Date: Sun, 29 Jan 2023 22:23:10 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
track1.avplayer.com/ctrack?pt=2&cmid=&cwid=&cvid=&pid=62cbd680bf9c0b22ad4b5bb4&r=www.crushthat.com&sn=&cd1=&cd2=&cd3=&app=&wi=524&he=295&test=&vi=100&e=cpll&cb=1675030999602
44.193.104.96200 OK 0 B URL HTTP/2 track1.avplayer.com/ctrack?pt=2&cmid=&cwid=&cvid=&pid=62cbd680bf9c0b22ad4b5bb4&r=www.crushthat.com&sn=&cd1=&cd2=&cd3=&app=&wi=524&he=295&test=&vi=100&e=cpll&cb=1675030999602
IP 44.193.104.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ctrack?pt=2&cmid=&cwid=&cvid=&pid=62cbd680bf9c0b22ad4b5bb4&r=www.crushthat.com&sn=&cd1=&cd2=&cd3=&app=&wi=524&he=295&test=&vi=100&e=cpll&cb=1675030999602 HTTP/1.1
Host: track1.avplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:10 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
p.cpx.to/p/12967/px.js
54.75.168.203200 OK 2.0 kB IP 54.75.168.203:0
File type ASCII text, with very long lines (1990), with no line terminators
Hash 5dbddde1d9530a933894a8cefd6890d2
2539ba49075ba661adeaecb49aa4b88f75ce4959
f266acb707c5b2704c3b6e18e0888d7995bad0ba0ffec4a125146f7e3d058583
GET /p/12967/px.js HTTP/1.1
Host: p.cpx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Cookie: cpSess=a014337128ef411
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2419200, public
Content-Type: application/javascript; charset=UTF-8
Date: Sun, 29 Jan 2023 22:23:09 GMT
Content-Length: 1990
Connection: keep-alive
track1.avplayer.com/ctrack?pt=2&cmid=&cwid=&cvid=&pid=62cbd680bf9c0b22ad4b5bb4&r=www.crushthat.com&sn=&cd1=&cd2=&cd3=&app=&wi=524&he=295&test=&vi=100&e=cerr&cb=1675030999605
44.193.104.96200 OK 0 B URL HTTP/2 track1.avplayer.com/ctrack?pt=2&cmid=&cwid=&cvid=&pid=62cbd680bf9c0b22ad4b5bb4&r=www.crushthat.com&sn=&cd1=&cd2=&cd3=&app=&wi=524&he=295&test=&vi=100&e=cerr&cb=1675030999605
IP 44.193.104.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ctrack?pt=2&cmid=&cwid=&cvid=&pid=62cbd680bf9c0b22ad4b5bb4&r=www.crushthat.com&sn=&cd1=&cd2=&cd3=&app=&wi=524&he=295&test=&vi=100&e=cerr&cb=1675030999605 HTTP/1.1
Host: track1.avplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:10 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
54.230.111.210200 OK 80 kB URL HTTP/2 c.amazon-adsystem.com/bao-csm/aps-comm/aps_csm.js
IP 54.230.111.210:0
Hash 2481fa9925c75aec7ae0b69ad7681880
bb1ea156e2503f5a5981455f0d62d0bafb2fb281
f0eb4020bf53f45ba85b1dfb7ae9df5ff3814a4feb324a88c7919266258283aa
GET /bao-csm/aps-comm/aps_csm.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Fri, 23 Dec 2022 01:05:48 GMT
x-amz-version-id: 1R3b4YI9dI20q9Y7Gq1DHxVUnq3Fp2gn
server: AmazonS3
content-encoding: gzip
date: Sun, 29 Jan 2023 07:22:10 GMT
cache-control: public, max-age=86400
etag: W/"a4d296427fc806b21335359e398c025c"
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TEGt7qOSSjzeoLvMo9EPI7NIDrViIEen2_6hoc5ksfZq60HW2usxEQ==
age: 54061
X-Firefox-Spdy: h2
track1.avplayer.com/ctrack?pt=2&cmid=&cwid=&cvid=&pid=62cbd680bf9c0b22ad4b5bb4&r=www.crushthat.com&sn=&cd1=&cd2=&cd3=&app=&wi=524&he=295&test=&vi=100&e=cerr&cb=1675030999604
44.193.104.96200 OK 0 B URL HTTP/2 track1.avplayer.com/ctrack?pt=2&cmid=&cwid=&cvid=&pid=62cbd680bf9c0b22ad4b5bb4&r=www.crushthat.com&sn=&cd1=&cd2=&cd3=&app=&wi=524&he=295&test=&vi=100&e=cerr&cb=1675030999604
IP 44.193.104.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ctrack?pt=2&cmid=&cwid=&cvid=&pid=62cbd680bf9c0b22ad4b5bb4&r=www.crushthat.com&sn=&cd1=&cd2=&cd3=&app=&wi=524&he=295&test=&vi=100&e=cerr&cb=1675030999604 HTTP/1.1
Host: track1.avplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:10 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
player.aniview.com/script/6.1/AVmanager.js?v=1.0&type=s&pid=62cbd680bf9c0b22ad4b5bb4
69.16.175.10200 OK 121 kB URL HTTP/2 player.aniview.com/script/6.1/AVmanager.js?v=1.0&type=s&pid=62cbd680bf9c0b22ad4b5bb4
IP 69.16.175.10:0
File type Unicode text, UTF-8 text, with very long lines (44568), with LF, NEL line terminators
Size 121 kB (120595 bytes)
Hash 5145e0f668469f9fe764c64180ee2df7
8e0fc0f34deb9a3353e22dab8891ba66c00eef31
b74b3b1e81afce5eac92dbd571d8189c5918989d02c13001035ff869b50a9069
GET /script/6.1/AVmanager.js?v=1.0&type=s&pid=62cbd680bf9c0b22ad4b5bb4 HTTP/1.1
Host: player.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:10 GMT
etag: "1674998747"
cache-control: max-age=600
content-encoding: gzip
content-length: 120595
content-type: application/javascript
last-modified: Sun, 29 Jan 2023 13:25:47 GMT
accept-ranges: bytes
access-control-allow-origin: *
x-hw: 1675030990.dop022.sk1.t,1675030990.cds068.sk1.hn,1675030990.cds240.sk1.c
X-Firefox-Spdy: h2
tag.imonomy.com/script/14567612209/preload.js
104.22.24.207200 OK 77 kB URL HTTP/2 tag.imonomy.com/script/14567612209/preload.js
IP 104.22.24.207:0
File type ASCII text, with very long lines (482)
Hash 59f55b16f97b14a499748c359a3a7665
378d39d4c8e55b7f89d23172fc8a04b5c438e9c1
512f66282c68afc996f54edca504d742b8dc47c5218addd31754044f1abeb3be
GET /script/14567612209/preload.js HTTP/1.1
Host: tag.imonomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:10 GMT
content-type: application/javascript; charset=UTF-8
content-length: 77366
content-encoding: gzip
vary: Accept-Encoding
etag: "c37382912bfda0baab65d8d45543c2423f6be15c"
cache-control: public, max-age=86400
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 79155ee0ae200b3d-OSL
X-Firefox-Spdy: h2
s.cpx.to/fire.js?pid=12967&ref=&url=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&hn_ver=40&fid=ac219f83-2b5f-4461-9a64-29650a105d92&dsp=pub_common&dsp_uid=6fc8572c-407a-4331-baa7-2d0a5e585288
54.73.141.92200 OK 833 B URL HTTP/1.1 s.cpx.to/fire.js?pid=12967&ref=&url=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&hn_ver=40&fid=ac219f83-2b5f-4461-9a64-29650a105d92&dsp=pub_common&dsp_uid=6fc8572c-407a-4331-baa7-2d0a5e585288
IP 54.73.141.92:0
File type ASCII text, with very long lines (833), with no line terminators
Hash 187aaad149d2cb06c244fa8042b5597a
8119e8ea590ee76c97006a785441e2a3e826f5bc
114fcc332893e47de17083011167ba62d75ea69d067016b0c1e4ddd9be1384ee
GET /fire.js?pid=12967&ref=&url=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&hn_ver=40&fid=ac219f83-2b5f-4461-9a64-29650a105d92&dsp=pub_common&dsp_uid=6fc8572c-407a-4331-baa7-2d0a5e585288 HTTP/1.1
Host: s.cpx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Cookie: cpSess=a014337128ef411
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:10 GMT
Content-Type: application/javascript; charset=UTF-8
Content-Length: 833
Connection: keep-alive
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src 'self'
x-permitted-cross-domain-policies: none
cache-control: no-store, must-revalidate, private, max-age=0
pragma: no-cache
p3p: CP="NOI DEV ADM"
expires: Wed, 18 Jan 2023 19:16:50 UTC
set-cookie: cpSess=a014337128ef411; Expires=Mon, 29 Jan 2024 22:23:10 GMT; Domain=.cpx.to; Path=/; Secure; HttpOnly; SameSite=None
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 106e727e21134a2861ec35b7b08f3afd
3874ae244cbe7015692017912cffc53159f2bd81
1f00a9b8780b2ba60e270d17251c30551165b5e3d91539aaf5b93da20eef3eaa
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=85410
Date: Sun, 29 Jan 2023 22:23:11 GMT
Etag: "63d58d02-1d7"
Expires: Mon, 30 Jan 2023 22:06:41 GMT
Last-Modified: Sat, 28 Jan 2023 21:00:50 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: b6qdgjCLKLa8LqdMHTf4rWvLNFN7zhtZuE7EOPGQ0Kr8jas9hN1B2Q==
Age: 3952
pixel.zprk.io/v5/pixeljs/Hc6PdfQeAi.js?dne=1
18.213.217.104200 OK 2.8 kB URL HTTP/2 pixel.zprk.io/v5/pixeljs/Hc6PdfQeAi.js?dne=1
IP 18.213.217.104:0
File type C source, ASCII text, with very long lines (2658)
Hash bf5da1c2137a9f95540c5c865952c04b
d07a569ff37d68467841990cad5d2a99e1a2e37d
8e521ebeb6ce59914c54f532b1577efd671f4b02bb3c331e01b4a7e79a02cfea
GET /v5/pixeljs/Hc6PdfQeAi.js?dne=1 HTTP/1.1
Host: pixel.zprk.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:11 GMT
content-type: text/plain;charset=UTF-8
content-length: 2753
access-control-allow-methods: POST, GET, DELETE, PUT
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
track1.aniview.com/track?r=www.crushthat.com&sn=&ic=0&tgt=0&app=&wi=524&he=295&test=&d36=6.2.77&apppkg=&fv=1&proto=https&clsid=7b14ddf8-d8f4-457a-9f38-b28871afced4&rando=77&pid=62cbd680bf9c0b22ad4b5bb4&cid=62cbd72a480063068c5c34f4&stagid=62cc284e6de5a91b2546bff9&stplid=62cc240ea6b6931b6741f0e7&e=inventory&vi=100&cb=1675031000330
52.204.220.125200 OK 2.0 kB URL HTTP/2 track1.aniview.com/track?r=www.crushthat.com&sn=&ic=0&tgt=0&app=&wi=524&he=295&test=&d36=6.2.77&apppkg=&fv=1&proto=https&clsid=7b14ddf8-d8f4-457a-9f38-b28871afced4&rando=77&pid=62cbd680bf9c0b22ad4b5bb4&cid=62cbd72a480063068c5c34f4&stagid=62cc284e6de5a91b2546bff9&stplid=62cc240ea6b6931b6741f0e7&e=inventory&vi=100&cb=1675031000330
IP 52.204.220.125:0
Hash 7a688d87a3f3e5a53e989a991fbbe493
0194a82c5d3aac129881ec0831797ea327a380dc
537b8e0f7ed527050119095702c33edf2df696a7bfea2adac086d6626911ccaf
GET /track?r=www.crushthat.com&sn=&ic=0&tgt=0&app=&wi=524&he=295&test=&d36=6.2.77&apppkg=&fv=1&proto=https&clsid=7b14ddf8-d8f4-457a-9f38-b28871afced4&rando=77&pid=62cbd680bf9c0b22ad4b5bb4&cid=62cbd72a480063068c5c34f4&stagid=62cc284e6de5a91b2546bff9&stplid=62cc240ea6b6931b6741f0e7&e=inventory&vi=100&cb=1675031000330 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:11 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-V039BM4TWY>m=2oe1p0&_p=267524284&cid=898157704.1675031000&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675031000&sct=1&seg=0&dl=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&dt=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%E2%80%93%20Crush%20That%20Sports%20Crush%20That%20Sports&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-V039BM4TWY>m=2oe1p0&_p=267524284&cid=898157704.1675031000&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675031000&sct=1&seg=0&dl=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&dt=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%E2%80%93%20Crush%20That%20Sports%20Crush%20That%20Sports&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-V039BM4TWY>m=2oe1p0&_p=267524284&cid=898157704.1675031000&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675031000&sct=1&seg=0&dl=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&dt=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%E2%80%93%20Crush%20That%20Sports%20Crush%20That%20Sports&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.crushthat.com
date: Sun, 29 Jan 2023 22:23:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
go1.aniview.com/api/adserver/tag/?AV_TAGID=62cc284e6de5a91b2546bff9&AV_PUBLISHERID=62cbd680bf9c0b22ad4b5bb4&AV_SLOTT=-2&AV_SECURED=1&AV_LANGUAGE=en&AV_URL=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&AV_CHANNELID=62cbd72a480063068c5c34f4&tgt=0&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=&pce=1&npx=1&AV_DETDOMAIN=www.crushthat.com&AV_DADPOS=1&AV_TAG=62cc284e6de5a91b2546bff9&AV_TEMPLATE=62cc240ea6b6931b6741f0e7&d36=6.2.77&responsive=1&sver=4&avtoken=328&omv=1.0.1&clsid=7b14ddf8-d8f4-457a-9f38-b28871afced4&rando=77&AV_WIDTH=524&AV_HEIGHT=295&AV_DNT=0&cb=1675031000331&wfc=1
52.206.131.34200 OK 83 kB URL HTTP/2 go1.aniview.com/api/adserver/tag/?AV_TAGID=62cc284e6de5a91b2546bff9&AV_PUBLISHERID=62cbd680bf9c0b22ad4b5bb4&AV_SLOTT=-2&AV_SECURED=1&AV_LANGUAGE=en&AV_URL=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&AV_CHANNELID=62cbd72a480063068c5c34f4&tgt=0&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=&pce=1&npx=1&AV_DETDOMAIN=www.crushthat.com&AV_DADPOS=1&AV_TAG=62cc284e6de5a91b2546bff9&AV_TEMPLATE=62cc240ea6b6931b6741f0e7&d36=6.2.77&responsive=1&sver=4&avtoken=328&omv=1.0.1&clsid=7b14ddf8-d8f4-457a-9f38-b28871afced4&rando=77&AV_WIDTH=524&AV_HEIGHT=295&AV_DNT=0&cb=1675031000331&wfc=1
IP 52.206.131.34:0
Hash 43e7bd1550d81db0dd69c059550f55c9
cec54a21943d0803e7240ff8572610d2e6ba9f11
5107b0703837386dad4576aa9d5c7ccdbf24280fb21768d8f14aed2332daf324
GET /api/adserver/tag/?AV_TAGID=62cc284e6de5a91b2546bff9&AV_PUBLISHERID=62cbd680bf9c0b22ad4b5bb4&AV_SLOTT=-2&AV_SECURED=1&AV_LANGUAGE=en&AV_URL=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&AV_CHANNELID=62cbd72a480063068c5c34f4&tgt=0&AV_SUBID=&AV_CDIM1=&AV_CDIM2=&AV_CDIM3=&AV_ABT=&pce=1&npx=1&AV_DETDOMAIN=www.crushthat.com&AV_DADPOS=1&AV_TAG=62cc284e6de5a91b2546bff9&AV_TEMPLATE=62cc240ea6b6931b6741f0e7&d36=6.2.77&responsive=1&sver=4&avtoken=328&omv=1.0.1&clsid=7b14ddf8-d8f4-457a-9f38-b28871afced4&rando=77&AV_WIDTH=524&AV_HEIGHT=295&AV_DNT=0&cb=1675031000331&wfc=1 HTTP/1.1
Host: go1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:11 GMT
content-type: application/json
vary: Accept-Encoding
set-cookie: aniC=1675030991511-997041249947-001161-005-001543; Expires=Sat, 18-Feb-23 22:23:11 GMT; Max-Age=1728000; Domain=aniview.com; Path=/; Secure; HttpOnly; SameSite=None
aniC=; Expires=Sat, 18-Feb-23 22:23:11 GMT; Max-Age=1728000; Domain=aniview.com; Path=/; Secure; HttpOnly; SameSite=None
access-control-allow-origin: https://www.crushthat.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, DELETE, PUT, OPTIONS, INDEX
access-control-allow-headers: Keep-Alive,User-Agent,If-Modified-Since,Cache-Control,Content-Type,Authorization,X-Bamboo-Token,Event-Id,X-Requested-With
access-control-max-age: 1728000
x-bamboo-c-s: BYPASS
x-bamboo-c-skfe: 1
x-bamboo-c-skst: 1
expires: Wed, 18 Jan 2023 08:36:31 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/mux.js
23.36.76.154200 OK 79 kB URL HTTP/2 www.oo-syringe.com/prod/mux.js
IP 23.36.76.154:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (409)
Hash 504174b4be40a301ff0ce1730563e618
c92f183bff3c0a5beb0d96d3e22ee053b58070b2
8eec15d84a6aab8070d633ff1176e03cb8eed328384e3ae360142a0dfae3d4cc
GET /prod/mux.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 06 May 2021 12:05:42 GMT
etag: "6d13ad5f29e69baba39798f1074bc746"
x-amz-version-id: zKDr1tGTeMrjUohEczWF1VZiqUanfaXu
accept-ranges: bytes
content-encoding: gzip
content-length: 79352
unused62: 8096267
date: Sun, 29 Jan 2023 22:23:11 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/players/mplayer_anchor_plugin.4.4.63.js
23.36.76.154200 OK 2.3 kB URL HTTP/2 www.oo-syringe.com/prod/players/mplayer_anchor_plugin.4.4.63.js
IP 23.36.76.154:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (8201), with no line terminators
Hash 64aaeb14accd30591c191bbd0c12702f
cf50e3dcaff50d01e0e4d7184b1bd06ab35805b6
cb4b01ed011ddd4ba67192e504ebe5b5ad16399f06bedbbe005c10eaaabd3594
GET /prod/players/mplayer_anchor_plugin.4.4.63.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 13:00:14 GMT
etag: "98ab673ee5d4f705c67406f6fa0341e1"
x-amz-version-id: SBArybpueUcRrUfreRFoq2KVVqswujM.
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: ha2jlGDGZbFAb1lU6UvnmGvz4zS-hIaVKErucjgUY08OKNpgaXphMw==
vary: Accept-Encoding
content-encoding: gzip
date: Sun, 29 Jan 2023 22:23:11 GMT
content-length: 2265
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/players/mplayer_controls_plugin.4.4.63.js
23.36.76.154200 OK 18 kB URL HTTP/2 www.oo-syringe.com/prod/players/mplayer_controls_plugin.4.4.63.js
IP 23.36.76.154:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash d77ecd76e766c587717d6ef60b24863a
02103e5708eba7d4a965637fba66e96d3366309d
42efa9ce919fe54de95ba0e99ab71bb80b5678adda548feecd0e681d3c5067b0
GET /prod/players/mplayer_controls_plugin.4.4.63.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 13:00:13 GMT
etag: "545a11c9fa71219bb7349f0c58ea6260"
x-amz-version-id: 2P4o1Ek7I1.tockdEli2ygy32hamlb.E
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: mIt3x0rMUAyJ73nMr47TxRrD_VH6kwFnxCi4vI7S8Le8ijxyNdCThA==
content-encoding: gzip
content-length: 17916
date: Sun, 29 Jan 2023 22:23:11 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/players/mplayer_read_more_plugin.4.4.63.js
23.36.76.154200 OK 2.6 kB URL HTTP/2 www.oo-syringe.com/prod/players/mplayer_read_more_plugin.4.4.63.js
IP 23.36.76.154:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (6502), with no line terminators
Hash e5ae63af6983ffeeb9e30c861232bd42
4e8284359f0c591d55bf473db6266ab19bdd3c46
dc5302b2ebbeb7449f0827e224e6f7ad0d10b8500f7286cb7ea867412ffa6bf9
GET /prod/players/mplayer_read_more_plugin.4.4.63.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 13:00:13 GMT
etag: "ad3c096c212dc58232fd6da39d1feb54"
x-amz-version-id: 5a26d937bOW7P8SE_JunKDdIg8LXHxnC
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: 0d3os9ooz1I19tHmvklT3fvonkF7qc7meXTUtrC-3icJAM-1CLll1w==
content-encoding: gzip
content-length: 2564
date: Sun, 29 Jan 2023 22:23:11 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/players//mplayer_comscore_plugin.4.4.63.js
23.36.76.154200 OK 13 kB URL HTTP/2 www.oo-syringe.com/prod/players//mplayer_comscore_plugin.4.4.63.js
IP 23.36.76.154:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (40055), with no line terminators
Hash de57554ef959eebd327a48684efac8ca
0905f116da0580b7f1fa98e5b32ef2c61bfb33e4
4e1a0c52db2fe8237f5c2d3821e81627099de362f337502fdb4aa040b4d93611
GET /prod/players//mplayer_comscore_plugin.4.4.63.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 13:00:14 GMT
etag: "0a043d9b2c392a38aeacef4711665d58"
x-amz-version-id: XZBTpfdjLjRLPsn45IR71VgZZYTiygr0
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: NVxeUj_F-qezd9-rjOyx4i_uHxo8a50FQfyEzwgcImM59mweveAu3w==
content-encoding: gzip
content-length: 13431
date: Sun, 29 Jan 2023 22:23:11 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
216.58.207.227200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/lato/v23/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 10:58:23 GMT
expires: Thu, 25 Jan 2024 10:58:23 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 16:04:12 GMT
content-type: font/woff2
age: 386688
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/moat.js
23.36.76.154200 OK 819 B URL HTTP/2 www.oo-syringe.com/prod/moat.js
IP 23.36.76.154:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (512)
Hash 97adb33da684235cc6661698b63e575f
c4e103e7d71630e775635f8c1376204920e02236
50467fbe689b30b01578ce0b33bb0515b1af50880820e28a52c2192ad62d85ce
GET /prod/moat.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 15 Jun 2021 07:25:49 GMT
etag: "73ea42f8fec6a330dd719d2e3bf83b41"
x-amz-version-id: cqCb6oftCBR4g3kB01xepxAGq749bs6O
accept-ranges: bytes
content-encoding: gzip
unused62: 8096267
content-length: 819
date: Sun, 29 Jan 2023 22:23:11 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
www.oo-syringe.com/prod/players/mplayer_shaka_voltax.4.4.63.js
23.36.76.154200 OK 119 kB URL HTTP/2 www.oo-syringe.com/prod/players/mplayer_shaka_voltax.4.4.63.js
IP 23.36.76.154:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Size 119 kB (118732 bytes)
Hash f2c9e49158355fb6cb43ea5d63f9233a
300393a95254fe65f31f7b1abf9ee0b2fcf074e9
b44a4401e29126e2d0c2e37ffd581b10f18e9afe5934faaa50021c3080ac94a4
GET /prod/players/mplayer_shaka_voltax.4.4.63.js HTTP/1.1
Host: www.oo-syringe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 13:00:13 GMT
etag: "9deb651bfb4ab64c62edceb7a856c6ad"
x-amz-version-id: Ei66dKOt8TPdA5nodFNpFESgZNGN17M0
accept-ranges: bytes
x-amz-cf-pop: SEA19-C3
x-amz-cf-id: ANVl1Ld4hvUS2Frz4Ai14huu9ltzvkHd652OMdX856M03Goq64Uhbw==
content-encoding: gzip
content-length: 118732
date: Sun, 29 Jan 2023 22:23:11 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
51.38.120.206200 OK 41 B URL HTTP/2 onetag-sys.com/prebid-request
IP 51.38.120.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1c15203d1319c02fe2a06d78bc45eccf
40386992654bdda331c8f6eb21ac79de396119ee
cc81a9c5e7147dba347b0ffd34f64e9a7c40f25782569fec5c3fc68b4017badb
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 4314
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.crushthat.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 921bf1be16c18e45ef8ac98c7eac317c
9f22f710a83fd674b719c3cf8ffd2de5f42b578e
e29065661024031a5b6640514887d55671a3845a4f658a8b829d3cc00125dbfd
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 22:16:05 GMT
Expires: Sat, 04 Feb 2023 22:16:04 GMT
Etag: "9f22f710a83fd674b719c3cf8ffd2de5f42b578e"
Cache-Control: max-age=517371,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79155ef5689f0b51-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 921bf1be16c18e45ef8ac98c7eac317c
9f22f710a83fd674b719c3cf8ffd2de5f42b578e
e29065661024031a5b6640514887d55671a3845a4f658a8b829d3cc00125dbfd
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 22:16:05 GMT
Expires: Sat, 04 Feb 2023 22:16:04 GMT
Etag: "9f22f710a83fd674b719c3cf8ffd2de5f42b578e"
Cache-Control: max-age=517371,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79155ef61a68b4f7-OSL
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 27ed915334251d007990b9e0c6190dd8
f64137c1b70408280035592db121a92ab5701955
5c2b4466d832c3b140e2dbd1fff4135e8d9d1382c0f0d4059a3ef1fa4edb54dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 935
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:12 GMT
Last-Modified: Sun, 29 Jan 2023 22:07:37 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 280
d.vidoomy.com/api/rtbserver/prebid/?id=25165&adtype=banner&auc=26322&w=728&h=90&pos=1&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&l=en&dt=1&pid=62169&requestId=2015395eb4ae36c&schain=%5Bobject%20Object%5D&bidfloor=0&d=crushthat.com&sp=https%253A%252F%252Fwww.crushthat.com%252F2022%252F06%252F15%252Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%252F&usp=&coppa=false&videoContext=
3.67.234.120204 No Content 0 B URL HTTP/2 d.vidoomy.com/api/rtbserver/prebid/?id=25165&adtype=banner&auc=26322&w=728&h=90&pos=1&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&l=en&dt=1&pid=62169&requestId=2015395eb4ae36c&schain=%5Bobject%20Object%5D&bidfloor=0&d=crushthat.com&sp=https%253A%252F%252Fwww.crushthat.com%252F2022%252F06%252F15%252Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%252F&usp=&coppa=false&videoContext=
IP 3.67.234.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/rtbserver/prebid/?id=25165&adtype=banner&auc=26322&w=728&h=90&pos=1&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&l=en&dt=1&pid=62169&requestId=2015395eb4ae36c&schain=%5Bobject%20Object%5D&bidfloor=0&d=crushthat.com&sp=https%253A%252F%252Fwww.crushthat.com%252F2022%252F06%252F15%252Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%252F&usp=&coppa=false&videoContext= HTTP/1.1
Host: d.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 29 Jan 2023 22:23:12 GMT
access-control-allow-origin: https://www.crushthat.com
access-control-expose-headers: X-VD-C
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,PATCH,OPTIONS
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 63560ad03393252986b13e2806235f6c
60688946ba84a4006755d5eddc14e079b5212b7f
e7927cf46618c0b601058c3119f12be4a2d04337e4b860b849461f3a8cc6f215
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E7927CF46618C0B601058C3119F12BE4A2D04337E4B860B849461F3A8CC6F215"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6009
Expires: Mon, 30 Jan 2023 00:03:21 GMT
Date: Sun, 29 Jan 2023 22:23:12 GMT
Connection: keep-alive
prebid.a-mo.net/a/c
147.75.85.234204 No Content 0 B IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3823
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://www.crushthat.com
cache-control: max-age=0, private, must-revalidate
date: Sun, 29 Jan 2023 22:23:11 GMT
server: envoy
vary: origin, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 1
X-Firefox-Spdy: h2
c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fwww.crushthat.com&pubid=6c3f03cd-6fa8-4477-ac05-2c0f4f8da092
54.230.111.210200 OK 248 B URL HTTP/2 c.amazon-adsystem.com/cdn/prod/config?src=600&u=https%3A%2F%2Fwww.crushthat.com&pubid=6c3f03cd-6fa8-4477-ac05-2c0f4f8da092
IP 54.230.111.210:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3004e1ee3b8e3b0d18ebd19b4a54cd3a
613d1261a6e0e26f88b3f8d7c8c9dcfeb1377964
7beb96ef759b267b4159270a64ca009646a2e9a725882896b3dd431198b92058
GET /cdn/prod/config?src=600&u=https%3A%2F%2Fwww.crushthat.com&pubid=6c3f03cd-6fa8-4477-ac05-2c0f4f8da092 HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
content-length: 248
access-control-allow-origin: https://www.crushthat.com
access-control-allow-credentials: true
cache-control: max-age=21550, s-maxage=21600
date: Sun, 29 Jan 2023 22:23:11 GMT
server: Server
x-cache: Miss from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: k0qrStm6txQjNtJ9-bQ6alyGM81ZQVgupK9Mb47YDDBt_eqqrF-wgQ==
X-Firefox-Spdy: h2
content.voltaxservices.io/playlists/01g16gf8ns3ggbmjh9/videos?url=jvvru%253C11yyy0etwujvjcv0eqo142441281371ond%252Fworktg%252Fvqonkpuqp%252Figvu%252Fjqurkvcnk%257Cgf%252Fchvgt%252Fdgkpi%252Fuvtwem%252Fpgct%252Fjku%252Fg%257Bg%252Fd%257B%252Fdtqmgp%252Fdcv1&origin=www.crushthat.com
23.36.76.218200 OK 4.8 kB URL HTTP/2 content.voltaxservices.io/playlists/01g16gf8ns3ggbmjh9/videos?url=jvvru%253C11yyy0etwujvjcv0eqo142441281371ond%252Fworktg%252Fvqonkpuqp%252Figvu%252Fjqurkvcnk%257Cgf%252Fchvgt%252Fdgkpi%252Fuvtwem%252Fpgct%252Fjku%252Fg%257Bg%252Fd%257B%252Fdtqmgp%252Fdcv1&origin=www.crushthat.com
IP 23.36.76.218:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (19505), with no line terminators
Hash 2cdb8192a9cde3f902120cdf2519a875
1cb3134b51b7fde3288f7baa7d3465185ba13cd7
b32912211fb26f0d0acadf0395e49c1f340d4dcedd0cb3ebf78b635309fcc9fa
GET /playlists/01g16gf8ns3ggbmjh9/videos?url=jvvru%253C11yyy0etwujvjcv0eqo142441281371ond%252Fworktg%252Fvqonkpuqp%252Figvu%252Fjqurkvcnk%257Cgf%252Fchvgt%252Fdgkpi%252Fuvtwem%252Fpgct%252Fjku%252Fg%257Bg%252Fd%257B%252Fdtqmgp%252Fdcv1&origin=www.crushthat.com HTTP/1.1
Host: content.voltaxservices.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.crushthat.com/
Origin: https://www.crushthat.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-headers: X-Client-Key, Origin, Content-Type, Accept, Authorization, MM-Tenant, MM-Ad-Server-Historical-Data
access-control-allow-methods: PUT, POST, DELETE, PATCH
access-control-allow-origin: *
restricted-videos-ids:
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=86400
date: Sun, 29 Jan 2023 22:23:12 GMT
content-length: 4838
set-cookie: stateCode=NA; expires=Sun, 05-Feb-2023 22:23:12 GMT
countryCode=NO; expires=Sun, 05-Feb-2023 22:23:12 GMT
cityCode=OSLO; expires=Sun, 05-Feb-2023 22:23:12 GMT
akaas_default=2147483647~rv=80~id=45b1155d0559f271d8e59a637aa99138~rn=; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
s2l.sendtonews.com/stn_trk.gif?session=y5yNL8pqw9Uq9N40&instance=269286906&version=7.12.2&age=230129&cmd=GET&key=tzVsifQ2&c_id=11857&seq=1&order=2&absoluteTime=5318&relativeTime=2377&canonical=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&EXTREF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&REF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&playerCfg=FL
44.194.130.64200 OK 26 B URL HTTP/2 s2l.sendtonews.com/stn_trk.gif?session=y5yNL8pqw9Uq9N40&instance=269286906&version=7.12.2&age=230129&cmd=GET&key=tzVsifQ2&c_id=11857&seq=1&order=2&absoluteTime=5318&relativeTime=2377&canonical=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&EXTREF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&REF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&playerCfg=FL
IP 44.194.130.64:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6a43099d5c8fe991a7aa7ebaca53069d
5bce2f0d57305c58c7b05bfce29ebb39a18f5570
3b7b8a4b411ddf8db9bacc2f3aabf406f8e4c0c087829b336ca331c40adfdff1
POST /stn_trk.gif?session=y5yNL8pqw9Uq9N40&instance=269286906&version=7.12.2&age=230129&cmd=GET&key=tzVsifQ2&c_id=11857&seq=1&order=2&absoluteTime=5318&relativeTime=2377&canonical=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&EXTREF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&REF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&playerCfg=FL HTTP/1.1
Host: s2l.sendtonews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: image/gif
content-length: 26
server: Apache/2.4.41 (Ubuntu)
last-modified: Wed, 23 Dec 2020 21:38:39 GMT
etag: "1a-5b72883b37f80"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 921bf1be16c18e45ef8ac98c7eac317c
9f22f710a83fd674b719c3cf8ffd2de5f42b578e
e29065661024031a5b6640514887d55671a3845a4f658a8b829d3cc00125dbfd
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 22:16:05 GMT
Expires: Sat, 04 Feb 2023 22:16:04 GMT
Etag: "9f22f710a83fd674b719c3cf8ffd2de5f42b578e"
Cache-Control: max-age=517371,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79155ef5f9150b51-OSL
a.vdo.ai/core/b-crushthat/vdo.ai.banner.js
172.64.105.3200 OK 3.4 kB URL HTTP/2 a.vdo.ai/core/b-crushthat/vdo.ai.banner.js
IP 172.64.105.3:0
File type ASCII text, with very long lines (1495)
Hash c1ee177a9cad425989cbd42baf51a36c
ca5c093c332e4bfb1c21f000c3a32d1a61fcbe73
d1b37b15f3041558bde08b5eb7d34c572221e97b943923362ae3f9cc48f0bb5e
GET /core/b-crushthat/vdo.ai.banner.js HTTP/1.1
Host: a.vdo.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:09 GMT
content-type: text/javascript;charset=UTF-8
vary: Accept-Encoding
vdo-server: Tag3
cache-control: public, max-age=1800
x-cache: HIT
cf-cache-status: EXPIRED
last-modified: Sun, 29 Jan 2023 07:34:47 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bcF96NGpv92wREp%2BwPzWamsU%2FYA1Nk8yRH%2Bn08AtMYNYIpDBflnA4bDjObYZCzpK76A2MtYziOs1ku0eFfOufPR%2BvIJzXpgBHoq3T50EPUkXkglstblik73zYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79155ee59fcc2406-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=94773&adid=11&formatid=video&size=desktop
185.76.9.18200 OK 83 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=94773&adid=11&formatid=video&size=desktop
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
File type JSON data\012- , ASCII text, with no line terminators
Hash 59886bfe7436dc02e40554b550fbca01
f23c2cf8d65bba790a7156f3fd96a0a806b87a63
65cd100b03b7e7ab2dd66f05d797e476e25247e07003a790de9cecbcef9e5460
GET /bidder1/moneybid.js?siteid=94773&adid=11&formatid=video&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.crushthat.com
cache-control: max-age=604800
x-accel-expires: @1675415232
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ3bYM/vkF0DAA
x-77-nzt-ray: c0a4cc288d406a90d0f1d6638891b201
x-cache: HIT
x-age: 220560
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
s2l.sendtonews.com/stn_trk.gif?session=y5yNL8pqw9Uq9N40&instance=269286906&version=7.12.2&age=230129&cmd=RTP&key=tzVsifQ2&c_id=11857&seq=1&order=3&absoluteTime=5366&relativeTime=2425&sC_ID=4735&sm_id=2510748&load=1&status=LVFDLNIY&ac_id=2008&EXTREF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&REF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&playerCfg=FL
44.194.130.64200 OK 26 B URL HTTP/2 s2l.sendtonews.com/stn_trk.gif?session=y5yNL8pqw9Uq9N40&instance=269286906&version=7.12.2&age=230129&cmd=RTP&key=tzVsifQ2&c_id=11857&seq=1&order=3&absoluteTime=5366&relativeTime=2425&sC_ID=4735&sm_id=2510748&load=1&status=LVFDLNIY&ac_id=2008&EXTREF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&REF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&playerCfg=FL
IP 44.194.130.64:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6a43099d5c8fe991a7aa7ebaca53069d
5bce2f0d57305c58c7b05bfce29ebb39a18f5570
3b7b8a4b411ddf8db9bacc2f3aabf406f8e4c0c087829b336ca331c40adfdff1
POST /stn_trk.gif?session=y5yNL8pqw9Uq9N40&instance=269286906&version=7.12.2&age=230129&cmd=RTP&key=tzVsifQ2&c_id=11857&seq=1&order=3&absoluteTime=5366&relativeTime=2425&sC_ID=4735&sm_id=2510748&load=1&status=LVFDLNIY&ac_id=2008&EXTREF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&REF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&playerCfg=FL HTTP/1.1
Host: s2l.sendtonews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: image/gif
content-length: 26
server: Apache/2.4.41 (Ubuntu)
last-modified: Wed, 23 Dec 2020 21:38:39 GMT
etag: "1a-5b72883b37f80"
accept-ranges: bytes
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=94773&adid=6&formatid=26328&size=desktop
185.76.9.18200 OK 736 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=94773&adid=6&formatid=26328&size=desktop
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
File type JSON data\012- HTML document text\012- HTML document, ASCII text, with very long lines (984), with no line terminators
Hash f18922e945498e2aab3ff6295729601e
a3171a38d67af23656b2881a48872a1ce31a605f
5a4e1737efcbb1d41dc812d4a3579ed5212a53cedc39091708963ec9cdebecea
GET /bidder1/moneybid.js?siteid=94773&adid=6&formatid=26328&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.crushthat.com
cache-control: max-age=604800
x-accel-expires: @1675415232
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ1+6GvvkF0DAA
x-77-nzt-ray: c0a4cc288d406a90d0f1d663322ce501
x-cache: HIT
x-age: 220560
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ef814a86b2900174c7eaed123ef1df4
a7d92fb4a690a74ca1590523b69dfb7323d5d346
86d82d6076686da059304bce23b40de5a052a2ec5ac12fea4b73609bb8ba13ab
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "86D82D6076686DA059304BCE23B40DE5A052A2EC5AC12FEA4B73609BB8BA13AB"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16208
Expires: Mon, 30 Jan 2023 02:53:20 GMT
Date: Sun, 29 Jan 2023 22:23:12 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 571578fe8105fb9db1d98412455228cd
06ffedbca8683a0bb6fb9ba9c034d390fe7badfe
76470b9660bda8693c9180aefc7168be548dfc6f392dc9f03e0dcedc64621ba7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:12 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 15:11:55 GMT
Expires: Sat, 04 Feb 2023 15:11:54 GMT
Etag: "06ffedbca8683a0bb6fb9ba9c034d390fe7badfe"
Cache-Control: max-age=491921,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79155ef74c32b4f7-OSL
cdn.mmctsvc.com/.mc/geo
23.36.77.24200 OK 74 B IP 23.36.77.24:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash c8609aaa7e973bc0db88b137f453280c
6ddae9a73030d10f539a69e69e231319d46855ee
ee3a8276be30d08f642ba53d27f6f68910e7df9cbd07e4564b476f671242f776
GET /.mc/geo HTTP/1.1
Host: cdn.mmctsvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.crushthat.com/
Origin: https://www.crushthat.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
last-modified: 2017-01-13
vary: Accept-Encoding
content-encoding: gzip
content-length: 74
date: Sun, 29 Jan 2023 22:23:12 GMT
set-cookie: stateCode=NA; expires=Sun, 05-Feb-2023 22:23:12 GMT; secure; SameSite=None
countryCode=NO; expires=Sun, 05-Feb-2023 22:23:12 GMT; secure; SameSite=None
userPlatform=desktop; expires=Sun, 05-Feb-2023 22:23:12 GMT; secure; SameSite=None
access-control-max-age: 6000
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b279d00e3fe506fa55ae410fca0c901
c88d705cf5d6d692ec6104dcc4690c8817afebab
11f31abefac6551a99c0d4fc1fcb303b678cc50b7616d5cdb53c0a6382f024a5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "11F31ABEFAC6551A99C0D4FC1FCB303B678CC50B7616D5CDB53C0A6382F024A5"
Last-Modified: Sat, 28 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13701
Expires: Mon, 30 Jan 2023 02:11:33 GMT
Date: Sun, 29 Jan 2023 22:23:12 GMT
Connection: keep-alive
ib.adnxs.com/ut/v3/prebid
37.252.173.215200 OK 315 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 37.252.173.215:0
File type JSON data\012- , ASCII text, with very long lines (843), with no line terminators
Hash e65fd50d1c4fab9ae788cb1d743c6b03
2cb90f796c050f8e9c8684de1c92f87caa62d457
ecac1856bbed451822b1e959c801badbfc39ea0a1ef80d91c7013d8730cb83c8
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2924
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sun, 29 Jan 2023 22:23:12 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.crushthat.com
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: e80a6040-2086-4b4b-9e9e-9bd173e8ea9a
Set-Cookie: icu=ChkIusWAARAKGAEgASgBMNDj254GOAFAAUgBENDj254GGAA.; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 29-Apr-2023 22:23:12 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=5174252285165282726; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 29-Apr-2023 22:23:12 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 867.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 33c70933b0cd866a9f4fe4d8329fbb28
d775c612f4422bb2cb80ba48441d2d065bbc3d97
2ac64bbd3905b2c4519990ea9c02f7451d1049f6e39728db0389b89d9f6167aa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4442
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:12 GMT
Last-Modified: Sun, 29 Jan 2023 21:09:10 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
cdn.resonate.com/analytics.js/v1/200302733/analytics.min.js
104.18.12.242204 No Content 0 B URL HTTP/2 cdn.resonate.com/analytics.js/v1/200302733/analytics.min.js
IP 104.18.12.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /analytics.js/v1/200302733/analytics.min.js HTTP/1.1
Host: cdn.resonate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 29 Jan 2023 22:23:12 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 79155ef7b8520b59-OSL
X-Firefox-Spdy: h2
d.vidoomy.com/api/rtbserver/prebid/?id=25161&adtype=banner&auc=26328&w=1&h=1&pos=1&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&l=en&dt=1&pid=62169&requestId=18ce3f405ed12c48&schain=%5Bobject%20Object%5D&bidfloor=0&d=crushthat.com&sp=https%253A%252F%252Fwww.crushthat.com%252F2022%252F06%252F15%252Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%252F&usp=&coppa=false&videoContext=
3.67.234.120204 No Content 0 B URL HTTP/2 d.vidoomy.com/api/rtbserver/prebid/?id=25161&adtype=banner&auc=26328&w=1&h=1&pos=1&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&l=en&dt=1&pid=62169&requestId=18ce3f405ed12c48&schain=%5Bobject%20Object%5D&bidfloor=0&d=crushthat.com&sp=https%253A%252F%252Fwww.crushthat.com%252F2022%252F06%252F15%252Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%252F&usp=&coppa=false&videoContext=
IP 3.67.234.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/rtbserver/prebid/?id=25161&adtype=banner&auc=26328&w=1&h=1&pos=1&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&l=en&dt=1&pid=62169&requestId=18ce3f405ed12c48&schain=%5Bobject%20Object%5D&bidfloor=0&d=crushthat.com&sp=https%253A%252F%252Fwww.crushthat.com%252F2022%252F06%252F15%252Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%252F&usp=&coppa=false&videoContext= HTTP/1.1
Host: d.vidoomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 29 Jan 2023 22:23:12 GMT
access-control-allow-origin: https://www.crushthat.com
access-control-expose-headers: X-VD-C
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,PATCH,OPTIONS
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash efb4169177a74924e499d444ba151fbf
13543c77c41c997caab4314e39a3c5bdb30cb974
38e57dd50d837b352b9df3c47863369ba093bf57efefa14e5ec19f1ea2dfbae4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=97967
Date: Sun, 29 Jan 2023 22:23:12 GMT
Etag: "63d5bfba-1d7"
Expires: Tue, 31 Jan 2023 01:35:59 GMT
Last-Modified: Sun, 29 Jan 2023 00:37:14 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0FCI3am5jod8IpmH21J9IsTkbjVdPy8rbyIXEEi_n5tK20Q4_9EM4w==
Age: 3525
lb.eu-1-id5-sync.com/lb/v1
162.19.138.118200 33 B URL HTTP/1.1 lb.eu-1-id5-sync.com/lb/v1
IP 162.19.138.118:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0fdaa04da054c607d65b4101f387bd12
d2d05ba0eb468865c519f0f02482a54b89fe043a
bf7bea081a01b7b2f89fb1aac79582934c7be4a73b2c226eaf69c7421df01c5f
GET /lb/v1 HTTP/1.1
Host: lb.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.crushthat.com
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Sun, 29 Jan 2023 22:23:11 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
hb-api.omnitagjs.com/hb-api/prebid/v1?RefererUrl=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&PageUrl=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&PageReferrer=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F
185.255.84.150200 OK 1.3 kB URL HTTP/2 hb-api.omnitagjs.com/hb-api/prebid/v1?RefererUrl=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&PageUrl=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&PageReferrer=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F
IP 185.255.84.150:0
ASN #200271 Iguane Solutions SAS
File type JSON data\012- , ASCII text, with very long lines (1257)
Hash b71ca43bfba93812c3f5c895bf894707
59c7c786e54af6c7aec874c2edac4515bbe33a0f
0abf20d18f7f416b82dadd35daa3ab9675e0bf3a4c4c1060adb0a52f1ec0e6be
POST /hb-api/prebid/v1?RefererUrl=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&PageUrl=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&PageReferrer=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F HTTP/1.1
Host: hb-api.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2115
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Accept-Encoding, Content-Type
access-control-allow-methods: OPTIONS, POST
access-control-allow-origin: https://www.crushthat.com
access-control-max-age: 3600
cache-control: no-cache, no-store, must-revalidate
content-type: application/json; charset=utf-8
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=a222c0e4c8b0cdb869f22549bb1b5217; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Sun, 29 Jan 2023 22:23:12 GMT
content-length: 1258
x-envoy-upstream-service-time: 23
server: ayl-lb-fra02
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash d4c8efefacdae00dbc2aa138ca34f954
17f86510acdcb3f727aa5f425ac80d45ded164d6
30bd2fb9ef311eb688777854ee3dd2451c05b5f3b789d4895aa47910c2b693b4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5414
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:12 GMT
Last-Modified: Sun, 29 Jan 2023 20:52:58 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 313
pbjs.e-planning.net/hb/1/2a156/1/www.crushthat.com/ROS?ct=1&r=pbjs&rnd=0.3940132455911194&e=video%3A300x250%2C300x50%2C355x50%2C640x480%2B26328%3A300x250%2C728x90%2C970x90%2C1x1%2C1000x90%2C1000x30%2C990x90%2C950x90%2B26323%3A300x250%2C300x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168%2B26322%3A728x90%2C320x50%2C300x50%2C320x100%2C300x100%2B26706%3A160x600&ur=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&pbv=7.28.0&ncb=1&vs=FFFFFFF&crs=UTF-8&fr=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&e_pubcid=cb7bd55b-25f8-4666-a192-39c3e8d7b855
185.172.90.252200 OK 143 B URL HTTP/2 pbjs.e-planning.net/hb/1/2a156/1/www.crushthat.com/ROS?ct=1&r=pbjs&rnd=0.3940132455911194&e=video%3A300x250%2C300x50%2C355x50%2C640x480%2B26328%3A300x250%2C728x90%2C970x90%2C1x1%2C1000x90%2C1000x30%2C990x90%2C950x90%2B26323%3A300x250%2C300x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168%2B26322%3A728x90%2C320x50%2C300x50%2C320x100%2C300x100%2B26706%3A160x600&ur=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&pbv=7.28.0&ncb=1&vs=FFFFFFF&crs=UTF-8&fr=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&e_pubcid=cb7bd55b-25f8-4666-a192-39c3e8d7b855
IP 185.172.90.252:0
ASN #49981 WorldStream B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash cfadad507cac42839fdeb6eaa34532a0
67c6601e73fc093ecb4dae38b479ba63979426a6
ec7d708aa448619b3bfd58d9f3b449671abd14b4cfe32535e0ac9e898efcc334
GET /hb/1/2a156/1/www.crushthat.com/ROS?ct=1&r=pbjs&rnd=0.3940132455911194&e=video%3A300x250%2C300x50%2C355x50%2C640x480%2B26328%3A300x250%2C728x90%2C970x90%2C1x1%2C1000x90%2C1000x30%2C990x90%2C950x90%2B26323%3A300x250%2C300x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168%2B26322%3A728x90%2C320x50%2C300x50%2C320x100%2C300x100%2B26706%3A160x600&ur=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&pbv=7.28.0&ncb=1&vs=FFFFFFF&crs=UTF-8&fr=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&e_pubcid=cb7bd55b-25f8-4666-a192-39c3e8d7b855 HTTP/1.1
Host: pbjs.e-planning.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Content-Type: text/plain
Referer: https://www.crushthat.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: application/json
access-control-allow-credentials: true
p3p: policyref="http://ads.us.e-planning.net/p3p/eplanning.p3p", CP="NOI DSP COR NID CURa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
expires: Sun, 29 Jan 2023 22:23:12 GMT
content-length: 143
access-control-allow-origin: https://www.crushthat.com
cache-control: max-age=0, no-cache
x-sid: AMS-928
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 316 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 3ff77cdffd4a62e83b3b5ddd220cfd29
092af0315055618d0844489157c3484ab66d8ebe
8dc04205dd63ddd9a31be3bdfb7342312db6f8d91168088bdc22469e918b4ce4
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:12 GMT
Content-Type: application/ocsp-response
Content-Length: 316
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 08:00:25 GMT
Expires: Sat, 04 Feb 2023 08:00:24 GMT
Etag: "092af0315055618d0844489157c3484ab66d8ebe"
Cache-Control: max-age=466031,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79155ef7cfdc0b69-OSL
ad.360yield.com/pb
52.57.33.86204 No Content 0 B IP 52.57.33.86:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pb HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2982
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 29 Jan 2023 22:23:12 GMT
access-control-allow-origin: https://www.crushthat.com
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 921bf1be16c18e45ef8ac98c7eac317c
9f22f710a83fd674b719c3cf8ffd2de5f42b578e
e29065661024031a5b6640514887d55671a3845a4f658a8b829d3cc00125dbfd
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 22:16:05 GMT
Expires: Sat, 04 Feb 2023 22:16:04 GMT
Etag: "9f22f710a83fd674b719c3cf8ffd2de5f42b578e"
Cache-Control: max-age=517371,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79155ef5693b0b3d-OSL
srv.imonomy.com/script/layer/serve?v=2&format=1&img=true&cid=layer_fr&isps=false&cbs=0.4348958234342982&ln=en&sid=14567612209&terms=&httpsite=true&keywords=&dm=crushthat.com&charset=UTF-8&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&adl=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&rtb_highest_price=
167.114.35.7200 OK 6.5 kB URL HTTP/1.1 srv.imonomy.com/script/layer/serve?v=2&format=1&img=true&cid=layer_fr&isps=false&cbs=0.4348958234342982&ln=en&sid=14567612209&terms=&httpsite=true&keywords=&dm=crushthat.com&charset=UTF-8&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&adl=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&rtb_highest_price=
IP 167.114.35.7:0
File type ASCII text, with very long lines (4566)
Hash 95eeb6d1cf3ad8109a8736b495302c9f
afddbb0dd5b7af82afcbd6f73d7f41cbff4d7ca8
2ba64b75d7278e4d23303f21ca9557d07875f0f9755b30b7cba58f7051fa29cc
GET /script/layer/serve?v=2&format=1&img=true&cid=layer_fr&isps=false&cbs=0.4348958234342982&ln=en&sid=14567612209&terms=&httpsite=true&keywords=&dm=crushthat.com&charset=UTF-8&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&adl=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&rtb_highest_price= HTTP/1.1
Host: srv.imonomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:12 GMT
Content-Type: application/javascript
Content-Length: 6520
Connection: close
Content-Encoding: gzip
Set-Cookie: imonomy_gry_lock_count=--; Path=/
uid=a59f007fbf3384ccc33cc586d5d348f0; expires=Wed, 26 Jan 2033 22:23:12 GMT; Path=/
srv.imonomy.com=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Vary: Accept-Encoding
Etag: "b0f70e2108701deebfba0ad77437e8b07982b40a"
Cache-Control: public, max-age=360
P3p: CP="CAO DSP COR CURa ADMa DEVa PSAa PSDa IVAi IVDi CONi OUR OTRi IND PHY ONL UNI FIN COM NAV INT DEM STA"
dnacdn.net/dna
178.250.2.146200 OK 0 B IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:12 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=yCN9g180M0RITmhlJTJCZkMwOUJGQlhaMUN2c3cwNnVSbmJLYmZ5TlRVajZENSUyRjd3YXZVRG5tR3laOGQ4UFlnTFByJTJGaTdD; expires=Fri, 23 Feb 2024 22:23:12 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://www.crushthat.com
server-processing-duration-in-ticks: 361447
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
d29xw9s9x32j3w.cloudfront.net/players/library/streamsense/6.3.4.190424/comScore.gt.min.js
54.230.111.25200 OK 61 kB URL HTTP/2 d29xw9s9x32j3w.cloudfront.net/players/library/streamsense/6.3.4.190424/comScore.gt.min.js
IP 54.230.111.25:0
Hash c347ff5fbb8cc2d7b8d84343f207cf09
f40747f4a0c7afcb9a984c9b83c35b0ab8a7f666
06ae5012e860b238f569f000cecef0cf9300abc29b80b599f0a852380aa52f83
GET /players/library/streamsense/6.3.4.190424/comScore.gt.min.js HTTP/1.1
Host: d29xw9s9x32j3w.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 23 Dec 2022 13:58:03 GMT
server: AmazonS3
content-encoding: gzip
date: Sun, 29 Jan 2023 21:17:04 GMT
etag: W/"4a51b8991a6b67323936c2eb62e3518e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eqCcommGZcbg6lkCzKeHtSXQTIN5OYOcBAUW-lOO0lB6r2fVUdJbpA==
age: 3975
X-Firefox-Spdy: h2
ghb.adtelligent.com/v2/auction/
185.239.173.210200 OK 1.2 kB URL HTTP/1.1 ghb.adtelligent.com/v2/auction/
IP 185.239.173.210:0
File type JSON data\012- , ASCII text, with very long lines (11708), with no line terminators
Hash 976325cc27c551d0c0c1cce195d12d71
5aa3b491cd078c02a7a34a3b21622df4b96cecad
d718c1afc88f6b277e684fc4e5b8675c4ec5b790fddfb5feb17477c712f2d86f
POST /v2/auction/ HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1262
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Adtelligent
Date: Sun, 29 Jan 2023 22:23:12 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 1173
Access-Control-Allow-Origin: https://www.crushthat.com
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
X-Robots-Tag: noindex
Content-Encoding: gzip
b1h.zemanta.com/api/bidder/prebid/bid/
64.74.236.159204 No Content 0 B URL HTTP/1.1 b1h.zemanta.com/api/bidder/prebid/bid/
IP 64.74.236.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/bidder/prebid/bid/ HTTP/1.1
Host: b1h.zemanta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1067
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.crushthat.com
ads.themoneytizer.com/bidder1/moneybid.js?siteid=94773&adid=3&formatid=26323&size=desktop
185.76.9.18200 OK 436 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=94773&adid=3&formatid=26323&size=desktop
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
File type JSON data\012- HTML document, ASCII text, with very long lines (628), with no line terminators
Hash c076103e4de92ca43d2f1fa198bccb7c
4632567e73c44ba90486187d39628d306445f149
307bdb9dc7de9cbcb31506be9218051536596c626f6ba74ea7091a39df6ad578
GET /bidder1/moneybid.js?siteid=94773&adid=3&formatid=26323&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.crushthat.com
cache-control: max-age=604800
x-accel-expires: @1675415232
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ1SEnnvkF0DAA
x-77-nzt-ray: c0a4cc288d406a90d0f1d663872f4702
x-cache: HIT
x-age: 220560
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/bidder1/moneybid.js?siteid=94773&adid=1&formatid=26322&size=desktop
185.76.9.18200 OK 436 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=94773&adid=1&formatid=26322&size=desktop
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
File type JSON data\012- HTML document, ASCII text, with very long lines (624), with no line terminators
Hash 75ee1fcf071020ef1daa4b7da0f10572
c8b78a2c72b85cdd20fc8b21caa9e81d6b5bd789
be6781f257572654c7a55b95152fcdb32894900abda755c1aef389c89e909ae7
GET /bidder1/moneybid.js?siteid=94773&adid=1&formatid=26322&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.crushthat.com
cache-control: max-age=604800
x-accel-expires: @1675415232
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ1vRAPvkF0DAA
x-77-nzt-ray: c0a4cc288d406a90d0f1d663d09e9e02
x-cache: HIT
x-age: 220560
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
analytics.vdo.ai/logger
144.217.66.206200 OK 0 B IP 144.217.66.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /logger HTTP/1.1
Host: analytics.vdo.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 285
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.2
Date: Sun, 29 Jan 2023 22:23:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
analytics.vdo.ai/logger
144.217.66.206200 OK 0 B IP 144.217.66.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /logger HTTP/1.1
Host: analytics.vdo.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 289
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.2
Date: Sun, 29 Jan 2023 22:23:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
ads.themoneytizer.com/bidder1/moneybid.js?siteid=94773&adid=20&formatid=26706&size=desktop
185.76.9.18200 OK 444 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=94773&adid=20&formatid=26706&size=desktop
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
File type JSON data\012- HTML document, ASCII text, with very long lines (633), with no line terminators
Hash e11ac8784c917370ad0b8679f4cd0fe4
ba378ab441e757dd8c88a10138317eedeb835aac
15bd0528df8ee64680496e981c9dcdcabdf0b8b0eb40dd3e6fc9a34617820f6e
GET /bidder1/moneybid.js?siteid=94773&adid=20&formatid=26706&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.crushthat.com
cache-control: max-age=604800
x-accel-expires: @1675415232
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ2XPoTvkF0DAA
x-77-nzt-ray: c0a4cc288d406a90d0f1d663c068ee02
x-cache: HIT
x-age: 220560
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
timber.sendtonews.com/timber/data_stn_l.php?CMD=RTP&ESG_key=tzVsifQ2&ES_key=tzVsifQ2&ES_ID=30296&S_RKEY=gzsHiZGSEL&USR_ID=269286906&ST_usrKey=y5yNL8pqw9Uq9N40&SM_ID=2510748&C_ID=11857&C_companyName=Crate%20Network%20&version=70120020&sC_ID=4735&AC_ID=2008&TYPE=FLOAT&EXTREF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&REF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&PLAYERCODE=LVFDLN&OGSET=1&REFONLY=0&STRIPQUERY=1
52.20.28.118200 OK 0 B URL HTTP/2 timber.sendtonews.com/timber/data_stn_l.php?CMD=RTP&ESG_key=tzVsifQ2&ES_key=tzVsifQ2&ES_ID=30296&S_RKEY=gzsHiZGSEL&USR_ID=269286906&ST_usrKey=y5yNL8pqw9Uq9N40&SM_ID=2510748&C_ID=11857&C_companyName=Crate%20Network%20&version=70120020&sC_ID=4735&AC_ID=2008&TYPE=FLOAT&EXTREF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&REF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&PLAYERCODE=LVFDLN&OGSET=1&REFONLY=0&STRIPQUERY=1
IP 52.20.28.118:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /timber/data_stn_l.php?CMD=RTP&ESG_key=tzVsifQ2&ES_key=tzVsifQ2&ES_ID=30296&S_RKEY=gzsHiZGSEL&USR_ID=269286906&ST_usrKey=y5yNL8pqw9Uq9N40&SM_ID=2510748&C_ID=11857&C_companyName=Crate%20Network%20&version=70120020&sC_ID=4735&AC_ID=2008&TYPE=FLOAT&EXTREF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&REF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&PLAYERCODE=LVFDLN&OGSET=1&REFONLY=0&STRIPQUERY=1 HTTP/1.1
Host: timber.sendtonews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: text/html; charset=UTF-8
content-length: 0
server: Apache
access-control-allow-origin: *
cache-control: max-age=1
expires: Sun, 29 Jan 2023 22:23:13 GMT
X-Firefox-Spdy: h2
timber.sendtonews.com/timber/data_stn_l.php?CMD=GET&ESG_key=tzVsifQ2&ES_key=tzVsifQ2&ES_ID=30296&S_RKEY=gzsHiZGSEL&USR_ID=269286906&ST_usrKey=y5yNL8pqw9Uq9N40&SM_ID=2510748&C_ID=11857&C_companyName=Crate%20Network%20&version=70120020&sC_ID=4735&AC_ID=2008&TYPE=FLOAT&EXTREF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&REF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&PLAYERCODE=LVFDLN&OGSET=1&REFONLY=0&STRIPQUERY=1&serverHost=embed.sendtonews.com
52.20.28.118200 OK 0 B URL HTTP/2 timber.sendtonews.com/timber/data_stn_l.php?CMD=GET&ESG_key=tzVsifQ2&ES_key=tzVsifQ2&ES_ID=30296&S_RKEY=gzsHiZGSEL&USR_ID=269286906&ST_usrKey=y5yNL8pqw9Uq9N40&SM_ID=2510748&C_ID=11857&C_companyName=Crate%20Network%20&version=70120020&sC_ID=4735&AC_ID=2008&TYPE=FLOAT&EXTREF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&REF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&PLAYERCODE=LVFDLN&OGSET=1&REFONLY=0&STRIPQUERY=1&serverHost=embed.sendtonews.com
IP 52.20.28.118:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /timber/data_stn_l.php?CMD=GET&ESG_key=tzVsifQ2&ES_key=tzVsifQ2&ES_ID=30296&S_RKEY=gzsHiZGSEL&USR_ID=269286906&ST_usrKey=y5yNL8pqw9Uq9N40&SM_ID=2510748&C_ID=11857&C_companyName=Crate%20Network%20&version=70120020&sC_ID=4735&AC_ID=2008&TYPE=FLOAT&EXTREF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&REF=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&PLAYERCODE=LVFDLN&OGSET=1&REFONLY=0&STRIPQUERY=1&serverHost=embed.sendtonews.com HTTP/1.1
Host: timber.sendtonews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: text/html; charset=UTF-8
content-length: 0
server: Apache
access-control-allow-origin: *
cache-control: max-age=1
expires: Sun, 29 Jan 2023 22:23:13 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4e21a6faa727ff2db6720864a4297290
7a0e89cda1cfd161aeabd894ddf1d44030b6ed7b
184e85e339002470637acd01c652ae068b4c86744393ea227180329f90ee30a7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184E85E339002470637ACD01C652AE068B4C86744393EA227180329F90EE30A7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8893
Expires: Mon, 30 Jan 2023 00:51:25 GMT
Date: Sun, 29 Jan 2023 22:23:12 GMT
Connection: keep-alive
fqtag.com/tag/implement-r.js?org=F0PcXB03ZlblukgOY2nw&rt=display&fmt=banner&p=14567612209&a=&rd=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&applng=en&sl=1&fq=1
35.190.72.161200 OK 2.8 kB URL HTTP/2 fqtag.com/tag/implement-r.js?org=F0PcXB03ZlblukgOY2nw&rt=display&fmt=banner&p=14567612209&a=&rd=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&applng=en&sl=1&fq=1
IP 35.190.72.161:0
File type ASCII text, with very long lines (2817), with no line terminators
Hash 71907c96e6c8b35771660a22d5f62a38
f0a1c9c430cf57eefd68d718d493191ae51d8780
bdb9b7541895d0fec89524560daeb3bf8e737df0d410768c08057bca97a98bf7
GET /tag/implement-r.js?org=F0PcXB03ZlblukgOY2nw&rt=display&fmt=banner&p=14567612209&a=&rd=https://www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&applng=en&sl=1&fq=1 HTTP/1.1
Host: fqtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: 0
cache-control: no-cache, no-store, must-revalidate
x-xss-protection: 0
pragma: no-cache
date: Sun, 29 Jan 2023 22:23:13 GMT
access-control-allow-origin: *
content-type: application/javascript
content-length: 2817
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4e21a6faa727ff2db6720864a4297290
7a0e89cda1cfd161aeabd894ddf1d44030b6ed7b
184e85e339002470637acd01c652ae068b4c86744393ea227180329f90ee30a7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184E85E339002470637ACD01C652AE068B4C86744393EA227180329F90EE30A7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8892
Expires: Mon, 30 Jan 2023 00:51:25 GMT
Date: Sun, 29 Jan 2023 22:23:13 GMT
Connection: keep-alive
player.aniview.com/script/6.1/libs/prebid/avpb7.12.0.js
69.16.175.10200 OK 56 kB URL HTTP/2 player.aniview.com/script/6.1/libs/prebid/avpb7.12.0.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 79a36295070983c0b8c18a8fba19f554
3753cbdd265f930a8ea7bba1e211ccf3bfa0adc2
7db491f1d1d4775c7dcc9efc69e4f5880c40e653ab0fa4354ec38909c3f487ce
GET /script/6.1/libs/prebid/avpb7.12.0.js HTTP/1.1
Host: player.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Cookie: aniC=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:13 GMT
etag: "1674998748"
cache-control: max-age=600
content-encoding: gzip
content-length: 55924
content-type: application/javascript
last-modified: Sun, 29 Jan 2023 13:25:48 GMT
accept-ranges: bytes
access-control-allow-origin: *
x-hw: 1675030993.dop022.sk1.t,1675030993.cds068.sk1.hn,1675030993.cds225.sk1.c
X-Firefox-Spdy: h2
player.aniview.com/script/6.1/libs/prebid/avpb7.12.0a4.js
69.16.175.10200 OK 21 kB URL HTTP/2 player.aniview.com/script/6.1/libs/prebid/avpb7.12.0a4.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (65297), with no line terminators
Hash 5471fbedb5004a2173ec94a9c4e079ad
c9e73e21b9c83b8afedcfcf7d20e2899bd2b1dd6
10e6693f1d82290659c27149dc0896ad535f52c665596b10890fd2c89d7505c5
GET /script/6.1/libs/prebid/avpb7.12.0a4.js HTTP/1.1
Host: player.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Cookie: aniC=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:13 GMT
etag: "1674998748"
cache-control: max-age=600
content-encoding: gzip
content-length: 21089
content-type: application/javascript
last-modified: Sun, 29 Jan 2023 13:25:48 GMT
accept-ranges: bytes
access-control-allow-origin: *
x-hw: 1675030993.dop022.sk1.t,1675030993.cds068.sk1.hn,1675030993.cds203.sk1.c
X-Firefox-Spdy: h2
analytics.vdo.ai/logger
144.217.66.206200 OK 0 B IP 144.217.66.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /logger HTTP/1.1
Host: analytics.vdo.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 273
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.2
Date: Sun, 29 Jan 2023 22:23:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
analytics.vdo.ai/logger
144.217.66.206200 OK 0 B IP 144.217.66.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /logger HTTP/1.1
Host: analytics.vdo.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 271
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.2
Date: Sun, 29 Jan 2023 22:23:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
ads.themoneytizer.com/bidder1/moneybid.js?siteid=94773&adid=2&formatid=26300&size=desktop
185.76.9.18200 OK 632 B URL HTTP/2 ads.themoneytizer.com/bidder1/moneybid.js?siteid=94773&adid=2&formatid=26300&size=desktop
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
Hash 09e48aea76d6719508fea356a7577239
7009e94a1987ba9d925c7659d2d4cc2e8d8ee0f1
c2bfefa2534378909e49f78024278efb0684b96e41f0854f842cee49fbefd955
GET /bidder1/moneybid.js?siteid=94773&adid=2&formatid=26300&size=desktop HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.crushthat.com
cache-control: max-age=604800
x-accel-expires: @1675415232
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCQ190qrvkF0DAA
x-77-nzt-ray: c0a4cc288d406a90d0f1d663942d8103
x-cache: HIT
x-age: 220560
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
srv.imonomy.com/internal/reporter?v=2&subid=&format=728x90&ai=983&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=imonomy_sticky&ab=&cbs=0.3229116091938631&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&timepreload=1675031000263&ptaken=1853&ttaken=1853&ttkan_x=0&sum_ttkan_x=0&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&cqt=99&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&rtb_highest_price=&rim=true
167.114.35.7200 OK 43 B URL HTTP/1.1 srv.imonomy.com/internal/reporter?v=2&subid=&format=728x90&ai=983&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=imonomy_sticky&ab=&cbs=0.3229116091938631&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&timepreload=1675031000263&ptaken=1853&ttaken=1853&ttkan_x=0&sum_ttkan_x=0&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&cqt=99&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&rtb_highest_price=&rim=true
IP 167.114.35.7:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 89b9dfd2cf52f5d100a1803656e6756d
ad6fdcd6bc9b5969566123ca061bde27f6f197cf
9327663db171e3c01e351f3f5562ee5ed8f3d6bde6a7da57d966997f1a4b7a57
GET /internal/reporter?v=2&subid=&format=728x90&ai=983&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=imonomy_sticky&ab=&cbs=0.3229116091938631&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&timepreload=1675031000263&ptaken=1853&ttaken=1853&ttkan_x=0&sum_ttkan_x=0&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&cqt=99&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&rtb_highest_price=&rim=true HTTP/1.1
Host: srv.imonomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:13 GMT
Content-Type: image/gif
Content-Length: 43
Connection: close
Set-Cookie: tid=i-727768786811642811675030993.22215; Path=/
uid=a59f007fbf3384ccc33cc586d5d348f0; expires=Wed, 26 Jan 2033 22:23:13 GMT; Path=/
srv.imonomy.com=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Vary: Accept-Encoding
Etag: "ad6fdcd6bc9b5969566123ca061bde27f6f197cf"
Cache-Control: public, max-age=86400
analytics.vdo.ai/logger
144.217.66.206200 OK 0 B IP 144.217.66.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /logger HTTP/1.1
Host: analytics.vdo.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 272
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.2
Date: Sun, 29 Jan 2023 22:23:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
srv.imonomy.com/internal/serve?v=2&format=6&img=true&cid=imonomy_sticky&ab=&isps=false&rdn=imonomy_image_$$fid$$&fid=0&cb=imonomy.sticky.hook_sticky_action($$fid$$,%20imonomy_image_$$fid$$,%20undefined)&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&timepreload=1675031000263&ptaken=1846&ttaken=1846&ttkan_x=0&sum_ttkan_x=0&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&cqt=99&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&rtb_highest_price=
167.114.35.7200 OK 2.6 kB URL HTTP/1.1 srv.imonomy.com/internal/serve?v=2&format=6&img=true&cid=imonomy_sticky&ab=&isps=false&rdn=imonomy_image_$$fid$$&fid=0&cb=imonomy.sticky.hook_sticky_action($$fid$$,%20imonomy_image_$$fid$$,%20undefined)&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&timepreload=1675031000263&ptaken=1846&ttaken=1846&ttkan_x=0&sum_ttkan_x=0&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&cqt=99&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&rtb_highest_price=
IP 167.114.35.7:0
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (7965), with no line terminators
Hash 77edf9af06f53e4ff9760bbdc0cbb54a
e54d0e38e948ee1644b997c228edcb9d05019b4c
83c52843f1065b935f76d5b68cfa70452a7490e3c2f85547073dd6d14532665e
GET /internal/serve?v=2&format=6&img=true&cid=imonomy_sticky&ab=&isps=false&rdn=imonomy_image_$$fid$$&fid=0&cb=imonomy.sticky.hook_sticky_action($$fid$$,%20imonomy_image_$$fid$$,%20undefined)&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&timepreload=1675031000263&ptaken=1846&ttaken=1846&ttkan_x=0&sum_ttkan_x=0&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&cqt=99&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&rtb_highest_price= HTTP/1.1
Host: srv.imonomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:13 GMT
Content-Type: application/javascript
Content-Length: 2593
Connection: close
Content-Encoding: gzip
Set-Cookie: tid=i-6650454868624258151675030993.24329; Path=/
uid=a59f007fbf3384ccc33cc586d5d348f0; expires=Wed, 26 Jan 2033 22:23:13 GMT; Path=/
srv.imonomy.com=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Vary: Accept-Encoding
Etag: "20c74c66cfb296f21582346406cd66808ec5e606"
Cache-Control: max-age=5
cdn.fqtag.com/1.27.339-ccfb11a/pixel.js
35.190.36.172200 OK 90 kB URL HTTP/2 cdn.fqtag.com/1.27.339-ccfb11a/pixel.js
IP 35.190.36.172:0
File type ASCII text, with very long lines (31986)
Hash e0eff30579598f76147c9ea12f490d21
f0bf2ef576db440b275bdae3d6abac35e59a33b2
e70a34c5f232fa80328a361630a994cf847c54deb926f13d40be4807291b657b
GET /1.27.339-ccfb11a/pixel.js HTTP/1.1
Host: cdn.fqtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtxcS6ureAd0L7CEEUiM2QupkeoNSDHac6v0bd0DzGxwyq12DHuOt2RANTSlhkxJDlSgIg6oGzgpXJAoa6pq3WhXA
x-goog-generation: 1611776924905378
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 89647
content-language: en
x-goog-hash: crc32c=YwE4YA==, md5=4O/zBXlZj3YUfJ6hL0kNIQ==
x-goog-expiration: Sun, 11 Nov 2294 19:48:44 GMT
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 89647
server: UploadServer
date: Sun, 29 Jan 2023 21:28:58 GMT
expires: Sun, 29 Jan 2023 22:28:58 GMT
cache-control: public, max-age=3600
age: 3255
last-modified: Wed, 27 Jan 2021 19:48:44 GMT
etag: "e0eff30579598f76147c9ea12f490d21"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
srv.imonomy.com/internal/reporter?v=2&subid=&format=0&ai=990&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=46,57&ab=&cbs=0.5585909039950405&sid=14567612209&terms=&httpsite=true&keywords=&dm=crushthat.com&charset=UTF-8&timepreload=1675031000263&ptaken=1838&ttaken=1838&ttkan_x=0&sum_ttkan_x=0&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&cqt=99&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&rtb_highest_price=&rim=true
167.114.35.7200 OK 43 B URL HTTP/1.1 srv.imonomy.com/internal/reporter?v=2&subid=&format=0&ai=990&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=46,57&ab=&cbs=0.5585909039950405&sid=14567612209&terms=&httpsite=true&keywords=&dm=crushthat.com&charset=UTF-8&timepreload=1675031000263&ptaken=1838&ttaken=1838&ttkan_x=0&sum_ttkan_x=0&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&cqt=99&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&rtb_highest_price=&rim=true
IP 167.114.35.7:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 89b9dfd2cf52f5d100a1803656e6756d
ad6fdcd6bc9b5969566123ca061bde27f6f197cf
9327663db171e3c01e351f3f5562ee5ed8f3d6bde6a7da57d966997f1a4b7a57
GET /internal/reporter?v=2&subid=&format=0&ai=990&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=46,57&ab=&cbs=0.5585909039950405&sid=14567612209&terms=&httpsite=true&keywords=&dm=crushthat.com&charset=UTF-8&timepreload=1675031000263&ptaken=1838&ttaken=1838&ttkan_x=0&sum_ttkan_x=0&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&cqt=99&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&rtb_highest_price=&rim=true HTTP/1.1
Host: srv.imonomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:13 GMT
Content-Type: image/gif
Content-Length: 43
Connection: close
Set-Cookie: tid=i-7135685509518250371675030993.26873; Path=/
uid=a59f007fbf3384ccc33cc586d5d348f0; expires=Wed, 26 Jan 2033 22:23:13 GMT; Path=/
uiddate990=*; expires=Wed, 26 Jan 2033 22:23:13 GMT; Path=/
srv.imonomy.com=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Vary: Accept-Encoding
Etag: "ad6fdcd6bc9b5969566123ca061bde27f6f197cf"
Cache-Control: public, max-age=86400
analytics.vdo.ai/logger
144.217.66.206200 OK 0 B IP 144.217.66.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /logger HTTP/1.1
Host: analytics.vdo.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 286
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.2
Date: Sun, 29 Jan 2023 22:23:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
bidder.criteo.com/cdb?profileId=207&av=34&wv=7.12.0&cb=82273269009&lsavail=0
178.250.0.165204 No Content 0 B URL HTTP/2 bidder.criteo.com/cdb?profileId=207&av=34&wv=7.12.0&cb=82273269009&lsavail=0
IP 178.250.0.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdb?profileId=207&av=34&wv=7.12.0&cb=82273269009&lsavail=0 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 827
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 29 Jan 2023 22:23:12 GMT
vary: Origin
server: Finatra
timing-allow-origin: *
access-control-allow-origin: https://www.crushthat.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.crushthat.com&rs=www.crushthat.com&sid=55438&t=1675030991&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=524&he=295&app=&AV_PUBLISHERID=62cbd680bf9c0b22ad4b5bb4&test=&d64=338e96fbb2166a8a399cbe03b363a8ab&d63=338e96fbb2166a8a399cbe03b363a8ab&aafaid=&proto=https&uid=1675030991511-997041249947-001161-005-001543&cha=0.7&stagid=62cc284e6de5a91b2546bff9&stplid=62cc240ea6b6931b6741f0e7&d35=&d36=6.2.77&cb=23017691224&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=524&AV_HEIGHT=295&&ppid=62cbd680bf9c0b22ad4b5bb4&nid=5e7b9048180bd02ded4b0937&pcid=62cbd72a480063068c5c34f4&ncid=62ce87bbb66d7e24da7fe854&pasid=62ce88158e50366a7c592f34&e=request&cb=1675031002345&asid=62d572a5f1e57c26142dea1a%2C62e8f7a820912c615e73f725%2C62d6b001b618235b5c2b28b9%2C62e8f7cca47c032b3b54e834%2C62cc1b77d6ae89119e29d527%2C62d6afd224683922af48f706%2C62d6afa079eaed65e960e8c7%2C62d6af7e6b636d0768566794%2C62d572b6392dca17d83b8b24%2C62bd8370074c1e17d571cd95&ofpr=%2C%2C%2C%2C%2C%2C%2C%2C%2C0.01&fpo=%2C%2C%2C%2C%2C%2C%2C%2C%2C&ri=1%2C1%2C1%2C1%2C1%2C1%2C1%2C1%2C1%2C1
52.204.220.125200 OK 0 B URL HTTP/2 track1.aniview.com/track?d=Firefox&cou=NO&cos=Windows&r=www.crushthat.com&rs=www.crushthat.com&sid=55438&t=1675030991&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=524&he=295&app=&AV_PUBLISHERID=62cbd680bf9c0b22ad4b5bb4&test=&d64=338e96fbb2166a8a399cbe03b363a8ab&d63=338e96fbb2166a8a399cbe03b363a8ab&aafaid=&proto=https&uid=1675030991511-997041249947-001161-005-001543&cha=0.7&stagid=62cc284e6de5a91b2546bff9&stplid=62cc240ea6b6931b6741f0e7&d35=&d36=6.2.77&cb=23017691224&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=524&AV_HEIGHT=295&&ppid=62cbd680bf9c0b22ad4b5bb4&nid=5e7b9048180bd02ded4b0937&pcid=62cbd72a480063068c5c34f4&ncid=62ce87bbb66d7e24da7fe854&pasid=62ce88158e50366a7c592f34&e=request&cb=1675031002345&asid=62d572a5f1e57c26142dea1a%2C62e8f7a820912c615e73f725%2C62d6b001b618235b5c2b28b9%2C62e8f7cca47c032b3b54e834%2C62cc1b77d6ae89119e29d527%2C62d6afd224683922af48f706%2C62d6afa079eaed65e960e8c7%2C62d6af7e6b636d0768566794%2C62d572b6392dca17d83b8b24%2C62bd8370074c1e17d571cd95&ofpr=%2C%2C%2C%2C%2C%2C%2C%2C%2C0.01&fpo=%2C%2C%2C%2C%2C%2C%2C%2C%2C&ri=1%2C1%2C1%2C1%2C1%2C1%2C1%2C1%2C1%2C1
IP 52.204.220.125:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?d=Firefox&cou=NO&cos=Windows&r=www.crushthat.com&rs=www.crushthat.com&sid=55438&t=1675030991&cip=91.90.42.154&sn=&tgt=0&osv=10&bv=105.0&brn=Firefox&wi=524&he=295&app=&AV_PUBLISHERID=62cbd680bf9c0b22ad4b5bb4&test=&d64=338e96fbb2166a8a399cbe03b363a8ab&d63=338e96fbb2166a8a399cbe03b363a8ab&aafaid=&proto=https&uid=1675030991511-997041249947-001161-005-001543&cha=0.7&stagid=62cc284e6de5a91b2546bff9&stplid=62cc240ea6b6931b6741f0e7&d35=&d36=6.2.77&cb=23017691224&d39=&d65=&d66=&apppkg=&d9=1000&d37=realtime&pt=2&cmid=&cwid=&cvid=&AV_WIDTH=524&AV_HEIGHT=295&&ppid=62cbd680bf9c0b22ad4b5bb4&nid=5e7b9048180bd02ded4b0937&pcid=62cbd72a480063068c5c34f4&ncid=62ce87bbb66d7e24da7fe854&pasid=62ce88158e50366a7c592f34&e=request&cb=1675031002345&asid=62d572a5f1e57c26142dea1a%2C62e8f7a820912c615e73f725%2C62d6b001b618235b5c2b28b9%2C62e8f7cca47c032b3b54e834%2C62cc1b77d6ae89119e29d527%2C62d6afd224683922af48f706%2C62d6afa079eaed65e960e8c7%2C62d6af7e6b636d0768566794%2C62d572b6392dca17d83b8b24%2C62bd8370074c1e17d571cd95&ofpr=%2C%2C%2C%2C%2C%2C%2C%2C%2C0.01&fpo=%2C%2C%2C%2C%2C%2C%2C%2C%2C&ri=1%2C1%2C1%2C1%2C1%2C1%2C1%2C1%2C1%2C1 HTTP/1.1
Host: track1.aniview.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Cookie: aniC=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:13 GMT
content-length: 0
cache-control: max-age=0, no-cache, no-store
X-Firefox-Spdy: h2
tag.imonomy.com/script/internal/passback/prebid4.40.0.js
104.22.24.207200 OK 56 kB URL HTTP/2 tag.imonomy.com/script/internal/passback/prebid4.40.0.js
IP 104.22.24.207:0
Hash d2cf3fb13f8c21fde320c9967a2796f4
6977ef29785e0401f61c8cf470055ed8fc65af2c
c5275ac868f1a1b4cd56bca1f8b0e0f2dfa1a6c1b089924e86da036d6c511d03
GET /script/internal/passback/prebid4.40.0.js HTTP/1.1
Host: tag.imonomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:13 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=181141
etag: W/"f576aad59c2f575069ffe18b76507c48"
last-modified: Wed, 13 Jul 2022 07:28:41 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 39877
server: cloudflare
cf-ray: 79155efcaf910b3d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.googletagservices.com/tag/js/gpt.js
142.250.74.162200 OK 28 kB URL HTTP/2 www.googletagservices.com/tag/js/gpt.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (39378)
Hash 36f3b8325d96bc127739ab121ba15fbe
3a96ba0ed8f10a0a054d5b48c5a73f87dc8616b6
fd04baa2b988c712168994c365c47c364a129270f317d40107b9e55942ab52b6
GET /tag/js/gpt.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27630
date: Sun, 29 Jan 2023 22:23:13 GMT
expires: Sun, 29 Jan 2023 22:23:13 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1467 / 933 of 1000 / last-modified: 1674860850"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
onetag-sys.com/prebid-request
51.38.120.206200 OK 41 B URL HTTP/2 onetag-sys.com/prebid-request
IP 51.38.120.206:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1c15203d1319c02fe2a06d78bc45eccf
40386992654bdda331c8f6eb21ac79de396119ee
cc81a9c5e7147dba347b0ffd34f64e9a7c40f25782569fec5c3fc68b4017badb
POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 846
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.crushthat.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 122 kB IP 142.250.74.131:0
Size 122 kB (121999 bytes)
Hash c767f5c08a216c351790c5b2a050b84d
0ac8419bc21e6a1c30135b2025ee7e72b77daf62
25127e97d1cfbb2df4dd14b2ba465065617dcecd5a451b7b84039806adf3be4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b5f5b4d6925248fc5513627cdf20721c
e78e624ac5e8923182a20fdd14b7ff9a517aee33
2ee7c29e2c31431671a8ad8381b521b191c546e2f0e1549da1bd23bf3701ba0f
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1386
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:13 GMT
Last-Modified: Sun, 29 Jan 2023 22:00:07 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
imonomy-d.openx.net/w/1.0/arj?ju=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&ch=UTF-8&res=1280x1024x24&ifr=true&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=09a6079f-1656-4b59-a3d2-194d2f6ac5f2&nocache=1675031002737&aus=728x90&divIds=%252F36653869%252C270787323%252Fdfp_sticky_pb_crate_728x90_6128&auid=541176906&aumfs=1000
34.98.64.218200 OK 79 B URL HTTP/2 imonomy-d.openx.net/w/1.0/arj?ju=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&ch=UTF-8&res=1280x1024x24&ifr=true&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=09a6079f-1656-4b59-a3d2-194d2f6ac5f2&nocache=1675031002737&aus=728x90&divIds=%252F36653869%252C270787323%252Fdfp_sticky_pb_crate_728x90_6128&auid=541176906&aumfs=1000
IP 34.98.64.218:0
File type JSON data\012- , ASCII text
Hash 0e96c94f90c8eaa20ead34f38c041d32
7d58ce18a0b8e2b72a9d52b5964653356eb86fb5
41578d7cf390c0f24088984b29d38d5127a1ead5cb77f21ccd9fa05682cde025
GET /w/1.0/arj?ju=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&ch=UTF-8&res=1280x1024x24&ifr=true&tz=0&tws=1280x939&be=1&bc=hb_pb_3.0.3&dddid=09a6079f-1656-4b59-a3d2-194d2f6ac5f2&nocache=1675031002737&aus=728x90&divIds=%252F36653869%252C270787323%252Fdfp_sticky_pb_crate_728x90_6128&auid=541176906&aumfs=1000 HTTP/1.1
Host: imonomy-d.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept, Accept-Encoding
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Sun, 29 Jan 2023 22:23:13 GMT
content-type: application/json
content-length: 79
content-encoding: gzip
cache-control: private, max-age=0, no-cache
access-control-allow-origin: https://www.crushthat.com
access-control-allow-credentials: true
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 34b13a1cd75bb56a763015683e471535
be685e901ab8bd7f920f66ca5d299e84fabcb14c
37c14e3c999ac90527f4f62b71a81a7724dce082228886005c6b57bde12d89f2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 29 Jan 2023 22:23:13 GMT
Last-Modified: Sun, 29 Jan 2023 21:30:30 GMT
Server: ECS (bsa/EB11)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YRq4uWby9695Two7SvsMIaSiiCJhk8zSPVZSUPZz6QIBz37Vr6YMng==
Age: 3163
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b5f5b4d6925248fc5513627cdf20721c
e78e624ac5e8923182a20fdd14b7ff9a517aee33
2ee7c29e2c31431671a8ad8381b521b191c546e2f0e1549da1bd23bf3701ba0f
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1658
Cache-Control: max-age=147551
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:13 GMT
Etag: "63d688b6-1d7"
Expires: Tue, 31 Jan 2023 15:22:24 GMT
Last-Modified: Sun, 29 Jan 2023 14:54:46 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
player.sendtonews.com/bidderFiles/0.js
54.230.111.68200 OK 2.4 kB URL HTTP/2 player.sendtonews.com/bidderFiles/0.js
IP 54.230.111.68:0
File type ASCII text, with very long lines (1590), with CRLF line terminators
Hash da74268a03866ae371d740d679d5f849
549969524d828c7aed739c89234fd61806f72c3b
9d6c27b36e70ba17254feb9e06f676e5366c84c686139e138cb1cd15e9e94790
GET /bidderFiles/0.js HTTP/1.1
Host: player.sendtonews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://embed.sendtonews.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST
access-control-expose-headers: Access-Control-Allow-Origin, Access-Control-Allow-Credentials
last-modified: Thu, 15 Dec 2022 19:57:28 GMT
x-amz-version-id: R1seq2Z_z8JGW4oF8VGqO4_69qZCLOzx
server: AmazonS3
content-encoding: gzip
via: 1.1 6f32a39163a1e36ace7a71a85e2d2884.cloudfront.net (CloudFront), 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
date: Sun, 29 Jan 2023 07:08:29 GMT
etag: W/"7cf0333618ae77b3dfe7d27466506fa8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA56-P7, OSL50-P1
x-amz-cf-id: vZ2Fnatp20ZKb6nPWDaCOpGdRLxAHda5Te5m1SuizOsNkL875osH4Q==
age: 54884
X-Firefox-Spdy: h2
hb.emxdgt.com/?t=2000&ts=1675031002741&src=pbjs
3.124.40.241204 No Content 0 B URL HTTP/2 hb.emxdgt.com/?t=2000&ts=1675031002741&src=pbjs
IP 3.124.40.241:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /?t=2000&ts=1675031002741&src=pbjs HTTP/1.1
Host: hb.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 614
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 29 Jan 2023 22:23:13 GMT
cache-control: no-cache
access-control-allow-credentials: true
access-control-allow-origin: https://www.crushthat.com
access-control-allow-headers: security, Content-Type
X-Firefox-Spdy: h2
secure.cdn.fastclick.net/js/pubcid/latest/pubcid.min.js
23.46.116.133200 OK 17 kB URL HTTP/2 secure.cdn.fastclick.net/js/pubcid/latest/pubcid.min.js
IP 23.46.116.133:0
File type Unicode text, UTF-8 text, with very long lines (36525), with NEL line terminators
Hash 65875d9adc4599663a61e744c57d3e08
da7689e79bd92cd1c676badf0fb897f045d48653
830050c7e3b735c29efa65defb4de8dc42969a8cbb12e520479f9d067a90f4bf
GET /js/pubcid/latest/pubcid.min.js HTTP/1.1
Host: secure.cdn.fastclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
last-modified: Thu, 13 Oct 2022 18:14:48 GMT
etag: "d4ed-5eaee7c12df48-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 17131
content-type: application/javascript
cache-control: max-age=900
expires: Sun, 29 Jan 2023 22:38:13 GMT
date: Sun, 29 Jan 2023 22:23:13 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 3b9ff1694b3d02683b604d79652705cf
48e7aee84c060dcbf70c1659f5795d4db6ef4e15
5093c69a189f335aabfd38187d1d46f08277ed44c14984b9c518f1d126bf64d8
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 29 Jan 2023 22:23:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 29 Jan 2023 21:34:47 GMT
Expires: Mon, 30 Jan 2023 21:34:47 GMT
ETag: "48e7aee84c060dcbf70c1659f5795d4db6ef4e15"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
151.101.66.133200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 151.101.66.133:0
Hash dd9730a24fb276c36d32f14c23675e33
69eb5870d9fa6ce806468ce3c093ab5ae19e16e4
89c2babf048e7734a5b12d192c245f0d9bb4dfec650b447ab55a60c530bca4e3
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1462
Content-Type: application/ocsp-response
Etag: "07E438848E0429A63E9C8B798CD6F48A2A05D629"
Expires: Mon, 30 Jan 2023 09:00:00 UTC
Last-Modified: Sun, 29 Jan 2023 21:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
Accept-Ranges: bytes
Date: Sun, 29 Jan 2023 22:23:13 GMT
Via: 1.1 varnish
Age: 3127
X-Served-By: cache-bma1658-BMA
X-Cache: HIT
X-Cache-Hits: 5
X-Timer: S1675030994.790082,VS0,VE0
aux.fqtag.com/aux/d
35.190.13.203204 No Content 0 B IP 35.190.13.203:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /aux/d HTTP/1.1
Host: aux.fqtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=utf-8
Content-Length: 322
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
date: Sun, 29 Jan 2023 22:23:13 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mp.4dex.io/prebid
104.18.3.114200 OK 408 B IP 104.18.3.114:0
Hash 7ea525cde573755c94b83337905acac3
ddaf63622730fe9e71a2aff4156b748286566cf3
5ef33e2f0e03b55be49f48891e46c36c98d08949347a30c058bedf0b06057a7c
POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 10526
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: application/json; charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://www.crushthat.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Shapings: no adunits with size and seat and mapping
x-version: 3.0.0-gcp-ams
x-warn: Process Floors. 5 inventory rules not found for mediatype: banner and adUnitCode: 26328, Process Floors. 1 inventory rules not found for mediatype: banner and adUnitCode: 26711, Process Floors. 1 inventory rules not found for mediatype: banner and adUnitCode: 26300, Process Seats Booster. unable to get the seat booster engine for organization: 1015
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79155ef68ca9b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
c.tmyzer.com/c/?s=94773&f=1&fi=0
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=94773&f=1&fi=0
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=94773&f=1&fi=0 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 22:23:13 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:A567_36264064:01BB_63D6F1CD_25A485E:1B90B
X-IPLB-Instance: 38437
c.tmyzer.com/c/?s=94773&f=3&fi=0
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=94773&f=3&fi=0
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=94773&f=3&fi=0 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 22:23:13 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:DE11_36264064:01BB_63D6F1CD_25A3346:2A935
X-IPLB-Instance: 41595
c.tmyzer.com/c/?s=94773&f=6&fi=0
54.38.64.100200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=94773&f=6&fi=0
IP 54.38.64.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=94773&f=6&fi=0 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 22:23:13 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:8AD8_36264064:01BB_63D6F1CD_25A34CA:3D72
X-IPLB-Instance: 38438
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash d85f2ef261a99f61bfe4b0770bce1bdd
a6463bf5319e5e0271324642abc2c5e66ac1f61d
700914e11d46bf3bef0b9ab8048a1049f071c4d1ac3708640b8f31659e6df789
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 01:06:22 GMT
Expires: Fri, 03 Feb 2023 01:06:21 GMT
Etag: "a6463bf5319e5e0271324642abc2c5e66ac1f61d"
Cache-Control: max-age=354787,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79155efeca4b0b51-OSL
ap.lijit.com/rtb/bid?src=prebid_prebid_4.40.0
72.251.249.9200 OK 99 B URL HTTP/1.1 ap.lijit.com/rtb/bid?src=prebid_prebid_4.40.0
IP 72.251.249.9:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6e8a9e17dcdfce0930f2d6ac34daafee
76a54f22a9aa05872654101b423999f178ad572e
a24d8d7d9d3ea142497988c220af30bc108ee7a3e7bb541acc885297383f391f
POST /rtb/bid?src=prebid_prebid_4.40.0 HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 390
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:13 GMT
Content-Type: application/json
Access-Control-Allow-Origin: https://www.crushthat.com
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
Vary: Accept-Encoding, User-Agent
Content-Encoding: gzip
Content-Length: 99
X-Sovrn-Pod: ad_ap3ams1
id5-sync.com/g/v2/12.json
162.19.138.118200 216 B URL HTTP/1.1 id5-sync.com/g/v2/12.json
IP 162.19.138.118:0
File type JSON data\012- , ASCII text, with no line terminators
Hash dc491c10eb975e23425b6683c7af77d0
83cbdd28eda8a766b645a19c4a1c491289561baa
ff691f645ec789a2bd303874e29be2a49ad4975c5517f38ce455d2a523b26edd
POST /g/v2/12.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 427
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.crushthat.com
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Sun, 29 Jan 2023 22:23:13 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
imasdk.googleapis.com/js/sdkloader/ima3.js
216.58.211.10200 OK 126 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 216.58.211.10:0
File type ASCII text, with very long lines (2846)
Size 126 kB (126544 bytes)
Hash 08170b094847c66f3b89d5a577c739ea
ea3f55dae751aaa5fb5b0fd0d74354c26d76dccd
598ef4c4803f256ff79120afe545bc162d0d84bc1224acff09a1dcd2f0bd9b35
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 126544
date: Sun, 29 Jan 2023 22:23:13 GMT
expires: Sun, 29 Jan 2023 22:23:13 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
reporting.powerad.ai/
54.234.151.247200 OK 2 B IP 54.234.151.247:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST / HTTP/1.1
Host: reporting.powerad.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 137
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 29 Jan 2023 22:23:14 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/pagead/ppub_config?ippd=www.crushthat.com
142.250.74.130200 OK 262 B URL HTTP/2 securepubads.g.doubleclick.net/pagead/ppub_config?ippd=www.crushthat.com
IP 142.250.74.130:0
File type JSON data\012- , ASCII text, with very long lines (911), with no line terminators
Hash b8a1b1192ad1f239f262b21fea5adaaa
57087e810d515cb637a5287883c53db2d0448856
4410a6052dcae9fe1b034d61ad3848780f7468955496179d0859fd9dbf530447
GET /pagead/ppub_config?ippd=www.crushthat.com HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
date: Sun, 29 Jan 2023 22:23:14 GMT
expires: Sun, 29 Jan 2023 22:23:14 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 262
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 29-Jan-2023 22:38:14 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/gpt/pubads_impl_2023011901.js
142.250.74.130200 OK 133 kB URL HTTP/2 securepubads.g.doubleclick.net/gpt/pubads_impl_2023011901.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (65395)
Size 133 kB (133253 bytes)
Hash 7b9a06dc1065c57999c41007d6156374
a72a063166413b60de20ba8639c41e9a39f309d4
200d5b946446ce49bf169938879e90dbaff02275ddd43aa4bfc39e365fe641ea
GET /gpt/pubads_impl_2023011901.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 133253
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 19:37:09 GMT
expires: Wed, 24 Jan 2024 19:37:09 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 19 Jan 2023 09:34:48 GMT
content-type: text/javascript
age: 441965
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
b.imonomy.com/openrtb/hb/14567612209
207.244.100.47204 No Content 0 B URL HTTP/1.1 b.imonomy.com/openrtb/hb/14567612209
IP 207.244.100.47:0
ASN #30633 LEASEWEB-USA-WDC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /openrtb/hb/14567612209 HTTP/1.1
Host: b.imonomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 369
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Sun, 29 Jan 2023 22:23:14 GMT
Access-Control-Request-Headers: X-Custom-Header
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.crushthat.com
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d12e9ff2f182d3ce52d59d589ab5a61d
1d39c5eed0a766cbee2fe1f0729eab7472f56d7f
e675272e9b74782eb09ee52be90da7a92ba0cbe71fccba9bd8c4416e4817b13b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d12e9ff2f182d3ce52d59d589ab5a61d
1d39c5eed0a766cbee2fe1f0729eab7472f56d7f
e675272e9b74782eb09ee52be90da7a92ba0cbe71fccba9bd8c4416e4817b13b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bqstreamer.com/tr/
104.26.3.103200 OK 17 kB IP 104.26.3.103:0
Hash cb5039d73b1593e21fe99662dbfca05a
b586964603f7fa5052458d2b222260a048a0ad23
dc0cfeb5dc2b477d01feaeba4626ebef9986451d551d08dbf0f64cbd11cdd2d0
POST /tr/ HTTP/1.1
Host: bqstreamer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 870
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:14 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8XqW8gy3Oy8ezymc3haoOWFu5rtm23IxaBEd8pyQuNGTyk3s%2BtXqOk%2BaDE%2FlFgLZgAj9Y3z4rDlZfD4Uq2%2BgD2Ktl1X57pikP3HPSktlDvQIAf8X%2BfsdOthLY%2BctqVh0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79155efffedfb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1141ae65ad448fb3438690d5042af728
aa8b236bb1099c9440bfe3e98530939623250c03
e55eeaf5cd454042706c3e2d7d2b0211e91087b430cb5bae6b9e030392f57b4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=www.crushthat.com
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.crushthat.com
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.crushthat.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 29 Jan 2023 22:23:14 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d12e9ff2f182d3ce52d59d589ab5a61d
1d39c5eed0a766cbee2fe1f0729eab7472f56d7f
e675272e9b74782eb09ee52be90da7a92ba0cbe71fccba9bd8c4416e4817b13b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
factor-service.prod.voltaxservices.io/factors?mmPlayerLvl1=no:desktop:www.crushthat.com:firefox:windows%2010:%2f175840252270787323%2fmmplus%2fcratenetwork%2fcrushthat%2fvideo:01g16gevav0wk9a818:4.4.63
23.36.76.216200 OK 58 B URL HTTP/2 factor-service.prod.voltaxservices.io/factors?mmPlayerLvl1=no:desktop:www.crushthat.com:firefox:windows%2010:%2f175840252270787323%2fmmplus%2fcratenetwork%2fcrushthat%2fvideo:01g16gevav0wk9a818:4.4.63
IP 23.36.76.216:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash 83f8735d919af3b580663df86b42c5cd
a925f8e6bfa46e729dd2ab416b69507cb7155f33
957d15e5b39314212900924a1eb38bb28203a18645380cb5cef576ed96ef752a
GET /factors?mmPlayerLvl1=no:desktop:www.crushthat.com:firefox:windows%2010:%2f175840252270787323%2fmmplus%2fcratenetwork%2fcrushthat%2fvideo:01g16gevav0wk9a818:4.4.63 HTTP/1.1
Host: factor-service.prod.voltaxservices.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.crushthat.com/
Origin: https://www.crushthat.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-headers: X-Client-Key, Origin, Content-Type, Accept, Authorization, MM-Tenant, MM-Ad-Server-Historical-Data
access-control-allow-methods: PUT, POST, DELETE, PATCH
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=600
date: Sun, 29 Jan 2023 22:23:14 GMT
content-length: 58
set-cookie: stateCode=NA; expires=Sun, 05-Feb-2023 22:23:14 GMT
countryCode=NO; expires=Sun, 05-Feb-2023 22:23:14 GMT
cityCode=OSLO; expires=Sun, 05-Feb-2023 22:23:14 GMT
akaas_default=2147483647~rv=43~id=de40e4755a2bf6c1efb6bfcc4a7f2384~rn=; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
drm.mmvideosvc.com/v1.0/regulation/01gpp72c5k913t635bqz?origin=www.crushthat.com
23.36.77.41200 OK 84 B URL HTTP/2 drm.mmvideosvc.com/v1.0/regulation/01gpp72c5k913t635bqz?origin=www.crushthat.com
IP 23.36.77.41:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash 10c9d3d3b90f76be481f1251752bbed4
799ea1f4844d5802f529e3917358338cbb61d0db
7d59fcc0a46c24fa4d5bb07b8ad3b46fdbe2f5ffc2cd34fc47633fcb95f86927
GET /v1.0/regulation/01gpp72c5k913t635bqz?origin=www.crushthat.com HTTP/1.1
Host: drm.mmvideosvc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.crushthat.com/
Origin: https://www.crushthat.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-headers: X-Client-Key, Origin, Content-Type, Accept, Authorization, MM-Tenant, MM-Ad-Server-Historical-Data
access-control-allow-methods: PUT, POST, DELETE, PATCH
access-control-allow-origin: *
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, max-age=3600
expires: Sun, 29 Jan 2023 23:23:14 GMT
date: Sun, 29 Jan 2023 22:23:14 GMT
content-length: 84
set-cookie: stateCode=NA; expires=Sun, 05-Feb-2023 22:23:14 GMT
countryCode=NO; expires=Sun, 05-Feb-2023 22:23:14 GMT
cityCode=OSLO; expires=Sun, 05-Feb-2023 22:23:14 GMT
akaas_default=2147483647~rv=83~id=c46ab4a994b88b6e23a297afa7ea366f~rn=; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1141ae65ad448fb3438690d5042af728
aa8b236bb1099c9440bfe3e98530939623250c03
e55eeaf5cd454042706c3e2d7d2b0211e91087b430cb5bae6b9e030392f57b4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
srv.imonomy.com/internal/reporter?v=2&subid=carousel&format=0&ai=990&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=1&ab=undefined&cbs=0.27470203749208444&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&adl=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&subid=carousel&rim=true
167.114.35.7200 OK 43 B URL HTTP/1.1 srv.imonomy.com/internal/reporter?v=2&subid=carousel&format=0&ai=990&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=1&ab=undefined&cbs=0.27470203749208444&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&adl=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&subid=carousel&rim=true
IP 167.114.35.7:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 89b9dfd2cf52f5d100a1803656e6756d
ad6fdcd6bc9b5969566123ca061bde27f6f197cf
9327663db171e3c01e351f3f5562ee5ed8f3d6bde6a7da57d966997f1a4b7a57
GET /internal/reporter?v=2&subid=carousel&format=0&ai=990&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=1&ab=undefined&cbs=0.27470203749208444&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&adl=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&subid=carousel&rim=true HTTP/1.1
Host: srv.imonomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:14 GMT
Content-Type: image/gif
Content-Length: 43
Connection: close
Set-Cookie: tid=i-700180332821198721675030994.82669; Path=/
uid=a59f007fbf3384ccc33cc586d5d348f0; expires=Wed, 26 Jan 2033 22:23:14 GMT; Path=/
uiddate990=*; expires=Wed, 26 Jan 2033 22:23:14 GMT; Path=/
srv.imonomy.com=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Vary: Accept-Encoding
Etag: "ad6fdcd6bc9b5969566123ca061bde27f6f197cf"
Cache-Control: public, max-age=86400
srv.imonomy.com/internal/reporter?v=2&subid=carousel&format=300x250&ai=4103&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=vimo_14567612209_carousel&ab=undefined&cbs=0.7814970812861562&is_client=true&tier=0&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&adl=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&subid=carousel&rim=true
167.114.35.7200 OK 43 B URL HTTP/1.1 srv.imonomy.com/internal/reporter?v=2&subid=carousel&format=300x250&ai=4103&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=vimo_14567612209_carousel&ab=undefined&cbs=0.7814970812861562&is_client=true&tier=0&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&adl=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&subid=carousel&rim=true
IP 167.114.35.7:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 89b9dfd2cf52f5d100a1803656e6756d
ad6fdcd6bc9b5969566123ca061bde27f6f197cf
9327663db171e3c01e351f3f5562ee5ed8f3d6bde6a7da57d966997f1a4b7a57
GET /internal/reporter?v=2&subid=carousel&format=300x250&ai=4103&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=vimo_14567612209_carousel&ab=undefined&cbs=0.7814970812861562&is_client=true&tier=0&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&adl=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&subid=carousel&rim=true HTTP/1.1
Host: srv.imonomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:14 GMT
Content-Type: image/gif
Content-Length: 43
Connection: close
Set-Cookie: tid=i-6804973029104182011675030994.8447; Path=/
imonomy_ucnp=4103x1x29%2F01%2F23+22%3A23; Path=/
uid=a59f007fbf3384ccc33cc586d5d348f0; expires=Wed, 26 Jan 2033 22:23:14 GMT; Path=/
srv.imonomy.com=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Vary: Accept-Encoding
Etag: "ad6fdcd6bc9b5969566123ca061bde27f6f197cf"
Cache-Control: public, max-age=86400
srv.imonomy.com/internal/serve?httpsite=None&ab=&terms=None&w=None&format=1&cb=%24%24cachebuster%24%24&ppi=None&v=2&isps=false&dm=crushthat.com&ttl=&keywords=None&pxr=None&ct=3&rtbclient=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&img=true&cid=vimo_14567612209_carousel&ln=&h=None&charset=UTF-8&tr=0&fid=%24%24fid%24%24&sid=14567612209&cqt=None
167.114.35.7200 OK 1.5 kB URL HTTP/1.1 srv.imonomy.com/internal/serve?httpsite=None&ab=&terms=None&w=None&format=1&cb=%24%24cachebuster%24%24&ppi=None&v=2&isps=false&dm=crushthat.com&ttl=&keywords=None&pxr=None&ct=3&rtbclient=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&img=true&cid=vimo_14567612209_carousel&ln=&h=None&charset=UTF-8&tr=0&fid=%24%24fid%24%24&sid=14567612209&cqt=None
IP 167.114.35.7:0
File type ASCII text, with very long lines (5464)
Hash 0308ec7520c202b9b49a49ca5b7b5b79
9e9d6f1602c22a9c952cbb5cb300f21dd67c5429
d987cf662af6b1623ba9dfd1cebcad3136a5c636d1a2756c85d164658a976445
GET /internal/serve?httpsite=None&ab=&terms=None&w=None&format=1&cb=%24%24cachebuster%24%24&ppi=None&v=2&isps=false&dm=crushthat.com&ttl=&keywords=None&pxr=None&ct=3&rtbclient=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&img=true&cid=vimo_14567612209_carousel&ln=&h=None&charset=UTF-8&tr=0&fid=%24%24fid%24%24&sid=14567612209&cqt=None HTTP/1.1
Host: srv.imonomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:14 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 1544
Connection: close
Content-Encoding: gzip
Vary: Accept-Encoding
Etag: "7c6a69ebad079635cca49b1f2c634a8434063ab8"
Cache-Control: max-age=5
Set-Cookie: uid=a59f007fbf3384ccc33cc586d5d348f0; expires=Wed, 26 Jan 2033 22:23:14 GMT; Path=/
srv.imonomy.com=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
srv.imonomy.com/internal/reporter?v=2&subid=carousel&format=300x250&ai=4103&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=vimo_14567612209_carousel&ab=undefined&cbs=0.39614602354245476&is_client=true&tier=0&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&adl=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&subid=carousel&rim=true
167.114.35.7200 OK 43 B URL HTTP/1.1 srv.imonomy.com/internal/reporter?v=2&subid=carousel&format=300x250&ai=4103&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=vimo_14567612209_carousel&ab=undefined&cbs=0.39614602354245476&is_client=true&tier=0&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&adl=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&subid=carousel&rim=true
IP 167.114.35.7:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 89b9dfd2cf52f5d100a1803656e6756d
ad6fdcd6bc9b5969566123ca061bde27f6f197cf
9327663db171e3c01e351f3f5562ee5ed8f3d6bde6a7da57d966997f1a4b7a57
GET /internal/reporter?v=2&subid=carousel&format=300x250&ai=4103&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=vimo_14567612209_carousel&ab=undefined&cbs=0.39614602354245476&is_client=true&tier=0&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&adl=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&subid=carousel&rim=true HTTP/1.1
Host: srv.imonomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:14 GMT
Content-Type: image/gif
Content-Length: 43
Connection: close
Set-Cookie: tid=i-721487397016944151675030994.85904; Path=/
imonomy_ucnp=4103x1x29%2F01%2F23+22%3A23; Path=/
uid=a59f007fbf3384ccc33cc586d5d348f0; expires=Wed, 26 Jan 2033 22:23:14 GMT; Path=/
srv.imonomy.com=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Vary: Accept-Encoding
Etag: "ad6fdcd6bc9b5969566123ca061bde27f6f197cf"
Cache-Control: public, max-age=86400
srv.imonomy.com/internal/reporter?v=2&subid=carousel&format=300x250&ai=4103&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=vimo_14567612209_carousel&ab=undefined&cbs=0.37475027397954275&is_client=true&tier=0&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&adl=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&subid=carousel&rim=true
167.114.35.7200 OK 43 B URL HTTP/1.1 srv.imonomy.com/internal/reporter?v=2&subid=carousel&format=300x250&ai=4103&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=vimo_14567612209_carousel&ab=undefined&cbs=0.37475027397954275&is_client=true&tier=0&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&adl=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&subid=carousel&rim=true
IP 167.114.35.7:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 89b9dfd2cf52f5d100a1803656e6756d
ad6fdcd6bc9b5969566123ca061bde27f6f197cf
9327663db171e3c01e351f3f5562ee5ed8f3d6bde6a7da57d966997f1a4b7a57
GET /internal/reporter?v=2&subid=carousel&format=300x250&ai=4103&ctxu=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&fb=false&cid=vimo_14567612209_carousel&ab=undefined&cbs=0.37475027397954275&is_client=true&tier=0&sid=14567612209&terms=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&httpsite=true&keywords=mlb%20umpire%2C%20umpire%20tomlinson%2C%20tomlinson%20hospitalized%2C%20struck%20near%2C%20near%20eye&dm=crushthat.com&charset=UTF-8&ttl=MLB%20Umpire%20Tomlinson%20Hospitalized%20After%20Being%20Struck%20Near%20Eye%20By%20Broken%20Bat%20%u2013%20Crush%20That%20Sports%20Crush%20That%20Sports&ln=en&ct=0&w=1280&h=1024&pxr=1&ppi=96&adl=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&dm=www.crushthat.com&subid=carousel&rim=true HTTP/1.1
Host: srv.imonomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:14 GMT
Content-Type: image/gif
Content-Length: 43
Connection: close
Set-Cookie: tid=i-6650454868624239311675030994.86655; Path=/
imonomy_ucnp=4103x1x29%2F01%2F23+22%3A23; Path=/
uid=a59f007fbf3384ccc33cc586d5d348f0; expires=Wed, 26 Jan 2033 22:23:14 GMT; Path=/
srv.imonomy.com=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Vary: Accept-Encoding
Etag: "ad6fdcd6bc9b5969566123ca061bde27f6f197cf"
Cache-Control: public, max-age=86400
prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fsync.hhkld.com%2Ftools%2Fsync%3Fdsp%3D26%26uid%3D
147.75.85.234302 Found 0 B URL HTTP/2 prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fsync.hhkld.com%2Ftools%2Fsync%3Fdsp%3D26%26uid%3D
IP 147.75.85.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=&cb=https%3A%2F%2Fsync.hhkld.com%2Ftools%2Fsync%3Fdsp%3D26%26uid%3D HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: max-age=0, private, must-revalidate
content-length: 0
date: Sun, 29 Jan 2023 22:23:15 GMT
location: https://sync.hhkld.com/tools/sync?dsp=26&uid=b58fca6b-db4d-4fba-a8eb-0939a8a5b1bd&gdpr=0&gdpr_consent=&us_privacy=
server: envoy
x-envoy-upstream-service-time: 1
X-Firefox-Spdy: h2
srv.imonomy.com/internal/serve?httpsite=None&ab=&terms=None&w=None&format=1&cb=%24%24cachebuster%24%24&ppi=None&v=2&isps=false&dm=crushthat.com&ttl=&keywords=None&pxr=None&ct=3&rtbclient=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&img=true&cid=vimo_14567612209_carousel&ln=&h=None&charset=UTF-8&tr=0&fid=%24%24fid%24%24&sid=14567612209&cqt=None
167.114.35.7304 Not Modified 0 B URL HTTP/1.1 srv.imonomy.com/internal/serve?httpsite=None&ab=&terms=None&w=None&format=1&cb=%24%24cachebuster%24%24&ppi=None&v=2&isps=false&dm=crushthat.com&ttl=&keywords=None&pxr=None&ct=3&rtbclient=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&img=true&cid=vimo_14567612209_carousel&ln=&h=None&charset=UTF-8&tr=0&fid=%24%24fid%24%24&sid=14567612209&cqt=None
IP 167.114.35.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /internal/serve?httpsite=None&ab=&terms=None&w=None&format=1&cb=%24%24cachebuster%24%24&ppi=None&v=2&isps=false&dm=crushthat.com&ttl=&keywords=None&pxr=None&ct=3&rtbclient=true&loc=https%3A//www.crushthat.com/2022/06/15/mlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat/&img=true&cid=vimo_14567612209_carousel&ln=&h=None&charset=UTF-8&tr=0&fid=%24%24fid%24%24&sid=14567612209&cqt=None HTTP/1.1
Host: srv.imonomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: "7c6a69ebad079635cca49b1f2c634a8434063ab8"
HTTP/1.1 304 Not Modified
Date: Sun, 29 Jan 2023 22:23:15 GMT
Connection: close
Vary: Accept-Encoding
Etag: "7c6a69ebad079635cca49b1f2c634a8434063ab8"
Cache-Control: max-age=5
Set-Cookie: uid=a59f007fbf3384ccc33cc586d5d348f0; expires=Wed, 26 Jan 2033 22:23:15 GMT; Path=/
srv.imonomy.com=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
vms-players.minutemediaservices.com/mplayer-bridge.html
95.101.11.25200 OK 437 B URL HTTP/2 vms-players.minutemediaservices.com/mplayer-bridge.html
IP 95.101.11.25:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5b6f88785c2468cad5fb5f81875b3ed0
b9b6efe64f02216e71bf855b655d8e80cc6c1aa4
23d5d6daf3c6d984e04f38ffe65bcc7f9327b7875a0cca730f974978feecacb6
GET /mplayer-bridge.html HTTP/1.1
Host: vms-players.minutemediaservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 20 Dec 2022 11:11:02 GMT
etag: "e97239360af3389bafb536d4d0bdb35f"
x-amz-version-id: .9RAF9XlHfXzYtZBMnFKExfBF741L2yh
accept-ranges: bytes
content-type: text/html
content-encoding: gzip
content-length: 437
date: Sun, 29 Jan 2023 22:23:15 GMT
vary: Accept-Encoding
cache-control: private, max-age=1800
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
151.101.66.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 151.101.66.133:0
Hash 4afce1a2f3d5a06deed296987a4d5816
977979108533a58cfc08f7c4f056a8de8b2517d6
6931e2e27475a045754b1544b92d6648e8391d071faf7ba3a5d7c72dd68843d2
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1414
Server: nginx
Content-Type: application/ocsp-response
Expires: Thu, 02 Feb 2023 21:16:51 GMT
ETag: "977979108533a58cfc08f7c4f056a8de8b2517d6"
Last-Modified: Sun, 29 Jan 2023 21:16:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sun, 29 Jan 2023 22:23:15 GMT
Age: 2216
X-Served-By: cache-qpg1235-QPG, cache-bma1658-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 3, 43
X-Timer: S1675030995.341905,VS0,VE0
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash 20f5df6116f5cd15a8bbfdec5adceacf
8633cf73376fdf07f18485c61f612ce44e457d30
2dedce4ad40804e714dc81b6b2a0f3df71813e602a5d987669ec691db1c5ce5f
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:15 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Thu, 02 Feb 2023 20:30:19 GMT
ETag: "8633cf73376fdf07f18485c61f612ce44e457d30"
Last-Modified: Sun, 29 Jan 2023 20:30:20 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2937
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79155f08eb27b4ed-OSL
ads.pubmatic.com/AdServer/js/pwt/157577/2378//pwt.js
2.18.172.200200 OK 77 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/pwt/157577/2378//pwt.js
IP 2.18.172.200:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash a7a2adda7125d7a51fe8d28683a84910
6978851206abcd5d2557c8ccccdb518034db53c2
f0c5ab3d98382d370b1327ac7c09e87850106805193516c25411dfdd0c9903f9
GET /AdServer/js/pwt/157577/2378//pwt.js HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 15:50:05 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-type: application/javascript
content-length: 77322
cache-control: max-age=115571
expires: Tue, 31 Jan 2023 06:29:26 GMT
date: Sun, 29 Jan 2023 22:23:15 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
adserver.latinon.com/revive/www/delivery/asyncspc.php?zones=793&prefix=revive-0-&loc=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F
64.227.27.145200 OK 740 B URL HTTP/1.1 adserver.latinon.com/revive/www/delivery/asyncspc.php?zones=793&prefix=revive-0-&loc=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F
IP 64.227.27.145:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- HTML document, ASCII text, with very long lines (740), with no line terminators
Hash 6a7adacb7f386856d207507f89ddf514
b429eb121f54338c5d24d0c1f96746e1df06d8fd
0cdf4abb5a3303ab747742810f3afb04076bc471e455e856edb6c5d55e7dde6a
GET /revive/www/delivery/asyncspc.php?zones=793&prefix=revive-0-&loc=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F HTTP/1.1
Host: adserver.latinon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Cookie: OAGEO=2%7CNO%7CEU%7C%7COslo%7C0109%7C59.8636%7C10.7961%7C1000%7CEurope%2FOslo%7C%7C03%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C%7C
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 22:23:15 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
P3P: CP="CUR ADM OUR NOR STA NID"
Set-Cookie: OAID=01000111010001000101000001010010; expires=Mon, 29-Jan-2024 22:23:15 GMT; Max-Age=31536000; path=/; secure; SameSite=none
Access-Control-Allow-Origin: https://www.crushthat.com
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
match.adsrvr.org/track/rid?ttd_pid=casale&fmt=json&p=187621
15.197.193.217200 OK 63 B URL HTTP/2 match.adsrvr.org/track/rid?ttd_pid=casale&fmt=json&p=187621
IP 15.197.193.217:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 43a42a9a4fc5ca03b76eeabaec01b632
1dba7bfe277360414140475ff317b00253e92d8f
0faf6b88c51e6f30394b3f5efd1ea5cdceb022184604472f24a9baa60f75432e
GET /track/rid?ttd_pid=casale&fmt=json&p=187621 HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:15 GMT
content-type: application/json; charset=utf-8
content-length: 63
cache-control: private
expires: Tue, 28 Feb 2023 22:23:15 GMT
vary: Origin
access-control-allow-origin: https://www.crushthat.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Content-Length, Content-Encoding, Vary, Cache-Control, Accept
x-aspnet-version: 4.0.30319
X-Firefox-Spdy: h2
sync.dmp.otm-r.com/match/vibe
159.69.72.5204 No Content 0 B URL HTTP/2 sync.dmp.otm-r.com/match/vibe
IP 159.69.72.5:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/vibe HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.17.0
date: Sun, 29 Jan 2023 22:23:15 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
sync.hhkld.com/tools/sync?dsp=26&uid=b58fca6b-db4d-4fba-a8eb-0939a8a5b1bd&gdpr=0&gdpr_consent=&us_privacy=
141.94.202.176200 OK 43 B URL HTTP/2 sync.hhkld.com/tools/sync?dsp=26&uid=b58fca6b-db4d-4fba-a8eb-0939a8a5b1bd&gdpr=0&gdpr_consent=&us_privacy=
IP 141.94.202.176:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /tools/sync?dsp=26&uid=b58fca6b-db4d-4fba-a8eb-0939a8a5b1bd&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: sync.hhkld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.crushthat.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 22:23:15 GMT
content-type: image/gif
content-length: 43
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Accept
access-control-allow-methods: GET, POST
access-control-allow-origin: *
last-modified: Sun, 29 Jan 2023 22:23:15 GMT
expires: Wed, 11 Nov 1998 11:11:11 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: uid=cfbf3kv2tal8j9ershsgXx; expires=Mon, 29 Jan 2024 22:23:15 GMT; domain=.hhkld.com; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
vms-players.minutemediaservices.com/01g16gevav0wk9a818.js
95.101.11.25200 OK 140 kB URL HTTP/2 vms-players.minutemediaservices.com/01g16gevav0wk9a818.js
IP 95.101.11.25:0
ASN #20940 Akamai International B.V.
Size 140 kB (140045 bytes)
Hash 0dca051939d81f0853f6eb855d78fee2
a0b926f3b8abed9e32665dac5bfe40655e6f0bb4
2f0f6818f41c7522fc143790ae6836a5e44a3bffa67ad0a4969ec18afedf757d
GET /01g16gevav0wk9a818.js HTTP/1.1
Host: vms-players.minutemediaservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 13:15:09 GMT
etag: "30a26e89de04527d329e6629fea2a837"
x-amz-version-id: VrrogvBjV2b_nzRVolKpnFdXEYmPws5Z
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Sun, 29 Jan 2023 22:23:11 GMT
cache-control: private, max-age=1800
content-type: text/javascript
X-Firefox-Spdy: h2
srv.imonomy.com/script/main.js
167.114.35.7200 OK 5.2 kB URL HTTP/1.1 srv.imonomy.com/script/main.js
IP 167.114.35.7:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (19937), with no line terminators
Hash 8344eec90f9bd89316faaf3271a187f4
7cb93de467bbe7c9001052db038ce80b95412ef2
a2647ea788e44240a23c95677d80d258322a10609accfcf2cd76cd24d92b72ba
GET /script/main.js HTTP/1.1
Host: srv.imonomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 22:23:15 GMT
Content-Type: application/javascript
Content-Length: 5237
Connection: close
Content-Encoding: gzip
Vary: Accept-Encoding
Etag: "0932b89a380fa9c51b164ade98938620ec6a7637"
Cache-Control: public, max-age=86400
Set-Cookie: srv.imonomy.com=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 4db6ed1c61dbaed31516621ea0b9b871
0b829a67ee473b701743b796b2376fbd2c0a0b40
26c3935167560c495ab3e23bbee5d3015a5bd21496bbb13f3b5b932803498601
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=144300
Date: Sun, 29 Jan 2023 22:23:15 GMT
Etag: "63d677fa-1d7"
Expires: Tue, 31 Jan 2023 14:28:15 GMT
Last-Modified: Sun, 29 Jan 2023 13:43:22 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IEP_V5V1TmDa0F1bwQ2q7dcwZewN2PcpBl7j4GVHfJkcQduoAS_uWA==
Age: 2693
ocsp.godaddy.com/
192.124.249.22200 OK 5 B IP 192.124.249.22:0
Hash 5bfa51f3a417b98e7443eca90fc94703
8c015d80b8a23f780bdd215dc842b0f5551f63bd
bebe2853a3485d1c2e5c5be4249183e0ddaff9f87de71652371700a89d937128
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sun, 29 Jan 2023 22:23:15 GMT
Content-Type: application/ocsp-response
Content-Length: 5
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
Cache-Control: public, no-transform, must-revalidate
cookies.nextmillmedia.com/sync?gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fsync.hhkld.com%2Ftools%2Fsync%3Fdsp%3D67%26uid%3D[NMUID]
107.21.32.32200 OK 1.8 kB URL HTTP/2 cookies.nextmillmedia.com/sync?gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fsync.hhkld.com%2Ftools%2Fsync%3Fdsp%3D67%26uid%3D[NMUID]
IP 107.21.32.32:0
Hash 1adb8f9aef2aadd9e95bc0703f43bfc1
815e02e93518a5d7d2da69d71d83b43bea5f0a06
8cfbd148cc23e380ce1670df2f67ccff24d605749866aa0e18caa48262ba7192
GET /sync?gdpr=0&gdpr_consent=&us_privacy=&redirect=https%3A%2F%2Fsync.hhkld.com%2Ftools%2Fsync%3Fdsp%3D67%26uid%3D[NMUID] HTTP/1.1
Host: cookies.nextmillmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:15 GMT
content-type: text/html
content-length: 1751
server: fasthttp
set-cookie: NMUID=dfdc682b-5d01-498d-b5fb-a76994c3c4f5; max-age=604800; secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a369a4445d1fccf2ce045c3c4c3f3d67
d6f618e6150a4f9ac6eb5df4a503141a635605a2
d62c7913686c10d4c4b8d691d533256534da77cecc9fcf3f8aa885380dcc148b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.crushthat.com
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.crushthat.com
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.crushthat.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 29 Jan 2023 22:23:15 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tag.imonomy.com/inpage/14567612209/carousel.js?dm=crushthat.com
104.22.24.207200 OK 67 kB URL HTTP/2 tag.imonomy.com/inpage/14567612209/carousel.js?dm=crushthat.com
IP 104.22.24.207:0
Hash a33158719b1c8c96c84f89d8d84e4b90
e1ec5d191161ab7772c91c4fbbbce357b663cc41
ad79ff5343d9f8669b3193244e7333eb12ba67348d3ff0b2d6bfb8157078af0b
GET /inpage/14567612209/carousel.js?dm=crushthat.com HTTP/1.1
Host: tag.imonomy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:14 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: public, max-age=86400
cf-cache-status: MISS
server: cloudflare
cf-ray: 79155ef88bcf0b3d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
prebid.smilewanted.com/
104.22.68.131403 Forbidden 2.2 kB IP 104.22.68.131:0
Hash 8e1a41e198f5845082e6b142c00c32d9
84fd0de8e9b0c764e52031723d0b4097664920fc
833ea129c749424c79c462b7bed1a1bac1cccf73e97bb0021377fa2846c808d0
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 464
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 79155ef75fc00a1c-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a369a4445d1fccf2ce045c3c4c3f3d67
d6f618e6150a4f9ac6eb5df4a503141a635605a2
d62c7913686c10d4c4b8d691d533256534da77cecc9fcf3f8aa885380dcc148b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 22:23:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.crushthat.com%2F&domain=www.crushthat.com&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.crushthat.com%2F&domain=www.crushthat.com&cw=1&lsw=1
IP 178.250.0.157:0
OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.crushthat.com%2F&domain=www.crushthat.com&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.crushthat.com/
Origin: https://www.crushthat.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:09 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://www.crushthat.com
server-processing-duration-in-ticks: 479861
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
stats.systems/js/stracker.js
188.114.97.1200 OK 0 B URL HTTP/2 stats.systems/js/stracker.js
IP 188.114.97.1:0
GET /js/stracker.js HTTP/1.1
Host: stats.systems
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:08 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=28584
etag: W/"6fa8-57babb3fed640"
last-modified: Tue, 27 Nov 2018 20:57:53 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 552
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UUPMcKTnCmDz6ls0KJ9uf2U1m8yM1i0KxcLo6lLVj5Y%2B5YYWd0nooCszjoa1MCUStR7xI930obG9c%2BTQy17qpG2rGL90nMZlTxAt%2Bvo7LIErKRaXq8tfkL%2BQAOBImseX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79155edf9ca5b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
prebid.smilewanted.com/
104.22.68.131403 Forbidden 0 B IP 104.22.68.131:0
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 414
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 79155ef6df790a1c-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
hb.brainlyads.com/prebid.js
23.20.158.212200 OK 0 B URL HTTP/2 hb.brainlyads.com/prebid.js
IP 23.20.158.212:0
GET /prebid.js HTTP/1.1
Host: hb.brainlyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 29 Jan 2023 22:23:15 GMT
content-type: application/javascript
last-modified: Tue, 06 Dec 2022 17:27:37 GMT
vary: Accept-Encoding
etag: W/"638f7b89-91d51"
expires: Sun, 05 Feb 2023 22:23:15 GMT
cache-control: max-age=604800
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=94773&formatId=6
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=94773&formatId=6
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=94773&formatId=6 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675401426
server: CDN77-Turbo
x-77-nzt: AblMCQ20YrD/epMDAA
x-77-nzt-ray: c0a4cc288d406a90ccf1d6631c671b32
x-cache: HIT
x-age: 234362
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/moneybid7_28/build_noconsent/dist/prebid.js
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/moneybid7_28/build_noconsent/dist/prebid.js
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /moneybid7_28/build_noconsent/dist/prebid.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:09 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 21:13:59 GMT
expires: Sat, 28 Jan 2023 05:04:25 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675055083
server: CDN77-Turbo
x-77-nzt: AblMCQ082Vb/YvMAAA
x-77-nzt-ray: c0a4cc288d406a90cdf1d663f121261e
x-cache: HIT
x-age: 62306
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
c.amazon-adsystem.com/aax2/apstag.js
54.230.111.210200 OK 0 B URL HTTP/2 c.amazon-adsystem.com/aax2/apstag.js
IP 54.230.111.210:0
GET /aax2/apstag.js HTTP/1.1
Host: c.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sun, 29 Jan 2023 21:25:24 GMT
last-modified: Wed, 25 Jan 2023 21:28:25 GMT
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600
server: AmazonS3
content-encoding: gzip
via: 1.1 a49c26e403f2dac09629dceb6dac5740.cloudfront.net (CloudFront), 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
etag: W/"8a6d0f2d51de2b80e524e04684f71215"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: FRA60-P1, OSL50-P1
x-amz-cf-id: llkN-dZxdquGxlcmz8TFbHlEFbyLDpWoaUYX179xm3x9iUmYZG72tg==
age: 3467
X-Firefox-Spdy: h2
ads.betweendigital.com/adjson?t=prebid
188.42.196.115200 OK 0 B URL HTTP/2 ads.betweendigital.com/adjson?t=prebid
IP 188.42.196.115:0
POST /adjson?t=prebid HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3091
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
access-control-allow-origin: https://www.crushthat.com
access-control-allow-credentials: true
set-cookie: dc=lux1; Max-Age=31536000; Expires=Mon, 29 Jan 2024 22:23:13 GMT; Path=/; Domain=.betweendigital.com
tuuid=d15d6020-b11c-521e-9207-56d8f1d1a709; Max-Age=31536000; Expires=Mon, 29 Jan 2024 22:23:13 GMT; Path=/; Domain=.betweendigital.com
ut=Y9bx0QABV8ANlZIxMwawx2lszRn5gRCG-utwrw==; Max-Age=31536000; Expires=Mon, 29 Jan 2024 22:23:13 GMT; Path=/; Domain=.betweendigital.com
unm=1; Max-Age=31536000; Expires=Mon, 29 Jan 2024 22:23:13 GMT; Path=/; Domain=.betweendigital.com
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.crushthat.com%2F&domain=www.crushthat.com&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.crushthat.com%2F&domain=www.crushthat.com&cw=1&lsw=1
IP 178.250.0.157:0
GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.crushthat.com%2F&domain=www.crushthat.com&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:10 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://www.crushthat.com
server-processing-duration-in-ticks: 1205217
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=94773&formatId=2
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=94773&formatId=2
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=94773&formatId=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675401428
server: CDN77-Turbo
x-77-nzt: AblMCQ3xJUf/eJMDAA
x-77-nzt-ray: c0a4cc288d406a90ccf1d663bda54e32
x-cache: HIT
x-age: 234360
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=94773&formatId=3
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=94773&formatId=3
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=94773&formatId=3 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675401773
server: CDN77-Turbo
x-77-nzt: AblMCQ2r1l//H5IDAA
x-77-nzt-ray: c0a4cc288d406a90ccf1d66325151833
x-cache: HIT
x-age: 234015
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
c.tmyzer.com/c/?s=94773&f=2&fi=0
54.38.64.100502 Bad Gateway 0 B URL HTTP/1.0 c.tmyzer.com/c/?s=94773&f=2&fi=0
IP 54.38.64.100:0
GET /c/?s=94773&f=2&fi=0 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.0 502 Bad Gateway
Cache-Control: no-cache
Connection: close
Content-Type: text/html
powerad.ai/vid_script.js
3.94.188.247200 OK 0 B IP 3.94.188.247:0
GET /vid_script.js HTTP/1.1
Host: powerad.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Cookie: 12331dcr-g=1; 12593dcr-g=1; 12594dcr-g=1; 12595dcr-g=1; 12940dcr-g=1; 13127dcr-g=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:15 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-headers: *
accept-ranges: bytes
cache-control: public, max-age=259200
last-modified: Sun, 29 Jan 2023 12:46:33 GMT
etag: W/"c504-185fd90a550"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
prebid.smilewanted.com/
104.22.68.131403 Forbidden 0 B IP 104.22.68.131:0
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 414
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 79155ef6df760a1c-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
prebid.smilewanted.com/
104.22.68.131403 Forbidden 0 B IP 104.22.68.131:0
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 514
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 79155ef72fb00a1c-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=94773&formatId=11
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=94773&formatId=11
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=94773&formatId=11 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:08 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675401428
server: CDN77-Turbo
x-77-nzt: AblMCQ3t83P/eJMDAA
x-77-nzt-ray: c0a4cc288d406a90ccf1d663d74ff431
x-cache: HIT
x-age: 234360
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
pixel.adsafeprotected.com/jload?anId=931034&advId=dogpack&campId=ctr&pubId=
54.228.69.204200 OK 0 B URL HTTP/2 pixel.adsafeprotected.com/jload?anId=931034&advId=dogpack&campId=ctr&pubId=
IP 54.228.69.204:0
GET /jload?anId=931034&advId=dogpack&campId=ctr&pubId= HTTP/1.1
Host: pixel.adsafeprotected.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:09 GMT
content-type: application/javascript;charset=utf-8
pragma: no-cache
cache-control: no-cache
expires: Wed, 31 Dec 1969 23:59:59 GMT
access-control-allow-origin: pixel.adsafeprotected.com
access-control-allow-credentials: true
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
resources.infolinks.com/js/infolinks_main.js
172.66.42.247200 OK 0 B URL HTTP/2 resources.infolinks.com/js/infolinks_main.js
IP 172.66.42.247:0
GET /js/infolinks_main.js HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:08 GMT
content-type: application/javascript
last-modified: Wed, 25 Jan 2023 14:25:23 GMT
etag: W/"e24-5f3176724d164"
cache-control: max-age=3600
expires: Sun, 29 Jan 2023 19:26:27 GMT
via: 1.1 google
cf-cache-status: HIT
age: 14201
vary: Accept-Encoding
server: cloudflare
cf-ray: 79155edf9c441c06-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald:400,700|Lato:400,700|Work+Sans:900|Montserrat:400,700|Open+Sans:800|Playfair+Display:400,700,900|Quicksand|Raleway:200,400,700|Roboto+Slab:400,700|Work+Sans:100,200,300,400,500,600,700,800,900|Montserrat:100,200,300,400,500,600,700,800,900|Work+Sans:100,200,300,400,400italic,500,600,700,700italic,800,900|Lato:100,200,300,400,400italic,500,600,700,700italic,800,900|Montserrat:100,200,300,400,500,600,700,800,900&subset=latin,latin-ext,cyrillic,cyrillic-ext,greek-ext,greek,vietnamese
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald:400,700|Lato:400,700|Work+Sans:900|Montserrat:400,700|Open+Sans:800|Playfair+Display:400,700,900|Quicksand|Raleway:200,400,700|Roboto+Slab:400,700|Work+Sans:100,200,300,400,500,600,700,800,900|Montserrat:100,200,300,400,500,600,700,800,900|Work+Sans:100,200,300,400,400italic,500,600,700,700italic,800,900|Lato:100,200,300,400,400italic,500,600,700,700italic,800,900|Montserrat:100,200,300,400,500,600,700,800,900&subset=latin,latin-ext,cyrillic,cyrillic-ext,greek-ext,greek,vietnamese
IP 142.250.74.106:0
GET /css?family=Oswald:400,700|Lato:400,700|Work+Sans:900|Montserrat:400,700|Open+Sans:800|Playfair+Display:400,700,900|Quicksand|Raleway:200,400,700|Roboto+Slab:400,700|Work+Sans:100,200,300,400,500,600,700,800,900|Montserrat:100,200,300,400,500,600,700,800,900|Work+Sans:100,200,300,400,400italic,500,600,700,700italic,800,900|Lato:100,200,300,400,400italic,500,600,700,700italic,800,900|Montserrat:100,200,300,400,500,600,700,800,900&subset=latin,latin-ext,cyrillic,cyrillic-ext,greek-ext,greek,vietnamese HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 22:23:08 GMT
date: Sun, 29 Jan 2023 22:23:08 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
netdna.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.css
104.18.11.207200 OK 0 B URL HTTP/2 netdna.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.css
IP 104.18.11.207:0
GET /font-awesome/4.7.0/css/font-awesome.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:08 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 601, 617
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 2021-03-10 20:26:31
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: c44f8bcfa4de0b33355df52d479cfae3
cdn-cache: HIT
cf-cache-status: HIT
age: 23141249
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 79155edfdd2fb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
amer.hhkld.com/tag/load-104540.js
141.94.202.176200 OK 0 B URL HTTP/2 amer.hhkld.com/tag/load-104540.js
IP 141.94.202.176:0
GET /tag/load-104540.js HTTP/1.1
Host: amer.hhkld.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 22:23:08 GMT
content-type: application/javascript
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: true
set-cookie: uid=jV7KsGPW8cyY+RDSYkguAg==; expires=Mon, 29-Jan-24 22:23:08 GMT; domain=.hhkld.com; path=/
p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
content-encoding: gzip
X-Firefox-Spdy: h2
embedcdn.sendtonews.com/easy-stn-player/7.12.2/embed.js
54.230.111.96200 OK 0 B URL HTTP/2 embedcdn.sendtonews.com/easy-stn-player/7.12.2/embed.js
IP 54.230.111.96:0
GET /easy-stn-player/7.12.2/embed.js HTTP/1.1
Host: embedcdn.sendtonews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.crushthat.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Sun, 29 Jan 2023 22:22:22 GMT
last-modified: Thu, 22 Dec 2022 20:28:48 GMT
x-amz-version-id: AjkJoJv3SbIBvaDT0J0m08ThGjZSvzi2
server: AmazonS3
content-encoding: br
etag: W/"b2969b9e0593f36355cdac4e8a424da7"
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 4nB6GX0VnHLQzqeMSZ8WPa-c2pQlVVqJ33i6A-BhT49uF5ZGxbB3xQ==
age: 47
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
104.22.25.87200 OK 0 B URL HTTP/2 spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
IP 104.22.25.87:0
GET /?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:09 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://www.crushthat.com
set-cookie: zc=bcb2e772-039b-4be3-6fa4-d5d2ab9f9358; Path=/; Domain=.zeotap.com; Max-Age=31536000; SameSite=None; Secure
zsc=%8F%2C%AB%99.%8D%2F%DD%17%FE%1F48%81%02%8C%2A%A9%3Cg%27%C4%28%C0%60%F5%CE%DF%10%08%E1s%5E%D9%FE%0B%DD%27C%28%3C%16y%E1+%8EZ%88%D5%8B%D0%F5%EF0mS%96%86%B5o%E7%D1%FA%BE%E0%60L%02%1Act%B2%2A%0AB5%B0J%A4Q%CCH%CF; Path=/; Domain=.zeotap.com; Max-Age=86400; SameSite=None; Secure
vary: Origin
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79155ee66adb1c16-OSL
content-encoding: br
X-Firefox-Spdy: h2
pbjs.e-planning.net/pbjs/1/2a156/1/www.crushthat.com/ROS?rnd=0.3940132455911194&e=video%3A300x250%2C300x50%2C355x50%2C640x480%2B26328%3A300x250%2C728x90%2C970x90%2C1x1%2C1000x90%2C1000x30%2C990x90%2C950x90%2B26323%3A300x250%2C300x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168%2B26322%3A728x90%2C320x50%2C300x50%2C320x100%2C300x100%2B26706%3A160x600&ur=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&pbv=7.28.0&ncb=1&vs=FFFFFFF&crs=UTF-8&fr=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&e_pubcid=cb7bd55b-25f8-4666-a192-39c3e8d7b855
185.172.90.252302 Found 0 B URL HTTP/2 pbjs.e-planning.net/pbjs/1/2a156/1/www.crushthat.com/ROS?rnd=0.3940132455911194&e=video%3A300x250%2C300x50%2C355x50%2C640x480%2B26328%3A300x250%2C728x90%2C970x90%2C1x1%2C1000x90%2C1000x30%2C990x90%2C950x90%2B26323%3A300x250%2C300x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168%2B26322%3A728x90%2C320x50%2C300x50%2C320x100%2C300x100%2B26706%3A160x600&ur=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&pbv=7.28.0&ncb=1&vs=FFFFFFF&crs=UTF-8&fr=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&e_pubcid=cb7bd55b-25f8-4666-a192-39c3e8d7b855
IP 185.172.90.252:0
ASN #49981 WorldStream B.V.
GET /pbjs/1/2a156/1/www.crushthat.com/ROS?rnd=0.3940132455911194&e=video%3A300x250%2C300x50%2C355x50%2C640x480%2B26328%3A300x250%2C728x90%2C970x90%2C1x1%2C1000x90%2C1000x30%2C990x90%2C950x90%2B26323%3A300x250%2C300x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168%2B26322%3A728x90%2C320x50%2C300x50%2C320x100%2C300x100%2B26706%3A160x600&ur=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&pbv=7.28.0&ncb=1&vs=FFFFFFF&crs=UTF-8&fr=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&e_pubcid=cb7bd55b-25f8-4666-a192-39c3e8d7b855 HTTP/1.1
Host: pbjs.e-planning.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: text/html; charset=iso-8859-1
access-control-allow-credentials: true
p3p: policyref="http://ads.us.e-planning.net/p3p/eplanning.p3p", CP="NOI DSP COR NID CURa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
set-cookie: CT=1; path=/; SameSite=None; Secure
location: /hb/1/2a156/1/www.crushthat.com/ROS?ct=1&r=pbjs&rnd=0.3940132455911194&e=video%3A300x250%2C300x50%2C355x50%2C640x480%2B26328%3A300x250%2C728x90%2C970x90%2C1x1%2C1000x90%2C1000x30%2C990x90%2C950x90%2B26323%3A300x250%2C300x600%2B26711%3A300x250%2C300x168%2B26300%3A300x250%2C300x168%2B26322%3A728x90%2C320x50%2C300x50%2C320x100%2C300x100%2B26706%3A160x600&ur=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&pbv=7.28.0&ncb=1&vs=FFFFFFF&crs=UTF-8&fr=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&e_pubcid=cb7bd55b-25f8-4666-a192-39c3e8d7b855
access-control-allow-origin: https://www.crushthat.com
x-sid: AMS-928
X-Firefox-Spdy: h2
prebid.smilewanted.com/
104.22.68.131403 Forbidden 0 B IP 104.22.68.131:0
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 414
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 79155ef71fa50a1c-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
hb.brainlyads.com/pbjs_wrapper.v2.0.js
23.20.158.212200 OK 0 B URL HTTP/2 hb.brainlyads.com/pbjs_wrapper.v2.0.js
IP 23.20.158.212:0
GET /pbjs_wrapper.v2.0.js HTTP/1.1
Host: hb.brainlyads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 29 Jan 2023 22:23:15 GMT
content-type: application/javascript
last-modified: Tue, 24 Jan 2023 04:29:39 GMT
vary: Accept-Encoding
etag: W/"63cf5eb3-c93c"
expires: Sun, 05 Feb 2023 22:23:15 GMT
cache-control: max-age=604800
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
prebid.smilewanted.com/
104.22.68.131403 Forbidden 0 B IP 104.22.68.131:0
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 395
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 79155ef6df7d0a1c-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
prebid.smilewanted.com/
104.22.68.131403 Forbidden 0 B IP 104.22.68.131:0
POST / HTTP/1.1
Host: prebid.smilewanted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 448
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Sun, 29 Jan 2023 22:23:12 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 79155ef73fb70a1c-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
powerad.ai/pubPls/?width=1268&url=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F
3.94.188.247200 OK 0 B URL HTTP/2 powerad.ai/pubPls/?width=1268&url=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F
IP 3.94.188.247:0
GET /pubPls/?width=1268&url=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F HTTP/1.1
Host: powerad.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:09 GMT
content-type: text/html; charset=utf-8
x-powered-by: Express
access-control-allow-credentials: true
access-control-allow-origin: https://www.crushthat.com
access-control-allow-headers: *
set-cookie: 12331dcr-g=1; Path=/; Secure; SameSite=None
12593dcr-g=1; Path=/; Secure; SameSite=None
12594dcr-g=1; Path=/; Secure; SameSite=None
12595dcr-g=1; Path=/; Secure; SameSite=None
12940dcr-g=1; Path=/; Secure; SameSite=None
13127dcr-g=1; Path=/; Secure; SameSite=None
etag: W/"7b2e-S5MJPVaZYxOTJkigrC8cKgN+6/I"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/IIQUniversalID.js
185.76.9.18200 OK 0 B URL HTTP/2 ads.themoneytizer.com/IIQUniversalID.js
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /IIQUniversalID.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:09 GMT
content-type: application/javascript
last-modified: Wed, 12 Oct 2022 18:48:43 GMT
expires: Sat, 28 Jan 2023 05:04:09 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675055051
server: CDN77-Turbo
x-77-nzt: AblMCQ0r+IL/gvMAAA
x-77-nzt-ray: c0a4cc288d406a90cdf1d66355e36c1b
x-cache: HIT
x-age: 62338
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
js-sec.indexww.com/ht/p/187621-164323601241456.js
104.18.36.94200 OK 0 B URL HTTP/2 js-sec.indexww.com/ht/p/187621-164323601241456.js
IP 104.18.36.94:0
GET /ht/p/187621-164323601241456.js HTTP/1.1
Host: js-sec.indexww.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:14 GMT
content-type: text/javascript
cf-ray: 79155f065aaa0b02-OSL
age: 589
cache-control: public, max-age=14400
etag: W/"7648e5-9a4f-5f36e608a6837"
expires: Mon, 30 Jan 2023 02:23:14 GMT
last-modified: Sun, 29 Jan 2023 22:11:15 GMT
vary: Accept-Encoding
cf-cache-status: HIT
edge-control: cache-maxage=1h
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
targeting.vdo.ai/allowed_url.php?type=json&url=crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&tag=b-crushthat&domain=crushthat.com
172.64.104.3200 OK 0 B URL HTTP/2 targeting.vdo.ai/allowed_url.php?type=json&url=crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&tag=b-crushthat&domain=crushthat.com
IP 172.64.104.3:0
GET /allowed_url.php?type=json&url=crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&tag=b-crushthat&domain=crushthat.com HTTP/1.1
Host: targeting.vdo.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.crushthat.com
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:10 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D8tVi9OcMC4b003g0xrL%2F1k5B%2FZ5u5VtSEHSa372JZSDfnxJVI0vExd4PQI0G3FWAXTFRmi354WBMFFHkjHUlOMFTqG4%2FG9DM2LuDSbILXQoHCCx%2F%2BQxnuhX4bQkbYZ2x%2FYA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79155ee9bbee72c0-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
a.ad.gt/api/v1/u/matches/251?url=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&ref=
104.22.5.69200 OK 0 B URL HTTP/2 a.ad.gt/api/v1/u/matches/251?url=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&ref=
IP 104.22.5.69:0
GET /api/v1/u/matches/251?url=https%3A%2F%2Fwww.crushthat.com%2F2022%2F06%2F15%2Fmlb-umpire-tomlinson-gets-hospitalized-after-being-struck-near-his-eye-by-broken-bat%2F&ref= HTTP/1.1
Host: a.ad.gt
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.crushthat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 22:23:11 GMT
content-type: application/javascript
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 29 Jan 2023 22:23:11 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 79155eed0d9cb4ff-OSL
X-Firefox-Spdy: h2