firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 04:15:30 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LYIecp7Ejfw6HK_9SViYoeSp8VxA9uQa7dkx1SKL2FQPiWo_VLbqHw==
Age: 1501
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17545
Expires: Tue, 27 Sep 2022 09:32:56 GMT
Date: Tue, 27 Sep 2022 04:40:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
date: Mon, 26 Sep 2022 09:17:07 GMT
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Jxtfi1tfsf_2LU2psIW8qa-nVlCJreHdQy-nSfo8F9JXyxqG2S0I4Q==
age: 69805
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 04:40:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 04:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 04:56:55 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vTo7gdWuzozVXTAZ-f8oW7ewVimJGShlcI1YMGQhcsPmwS9KkxX6jg==
Age: 1785
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5adb7eb1d103eadeeafac36e663ffdd3
23b784388dd634fa736cd60aed71570661e73d02
5c95ba48bc342887b4f7ef697bd4def50f6f2f472f654169179e5ac44df883d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5523
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 04:40:31 GMT
Last-Modified: Tue, 27 Sep 2022 03:08:28 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
badassgroup.net/
66.235.200.146200 OK 16 kB IP 66.235.200.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (10200), with CRLF, LF line terminators
Hash ca94d041a765c2194673bb8615fee86a
92067829e156a785d29122ddd464f2ea186461c2
397b6cc7e6d67ab662cf84cc609f6278c6852c7639d3becfc201ff2f7e9f071f
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: badassgroup.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 04:40:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-UA-Compatible: IE=edge
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Last-Modified: Tue, 27 Sep 2022 04:40:31 GMT
Set-Cookie: PHPSESSID=41884ac4cd0bbafe75b69bde0e5a2490; path=/
__cf_bm=2vVjSqq4Qf_NLTs8_cv537XASF7IA6O74zrA0v.7n8o-1664253631-0-AQdb61h9A7gTjzl85V2MbdvT9QpNPCxYpoNhbDiaEBQKc/9Nlf8F5CrMb5VgCv+y0jMdhkn1kcOH2IcsmfHilGDBiISmPPpJS9IU7+vcVYUM; path=/; expires=Tue, 27-Sep-22 05:10:31 GMT; domain=.clickfunnels.com; HttpOnly; Secure
CF-Cache-Status: MISS
Server: cloudflare
CF-RAY: 75118fc97f42b4ee-OSL
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 04:40:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
images.clickfunnels.com/3d/392630953c4119a324492bb1c05778/ClickfunnelsTag.png
104.16.16.194200 OK 5.3 kB URL HTTP/2 images.clickfunnels.com/3d/392630953c4119a324492bb1c05778/ClickfunnelsTag.png
IP 104.16.16.194:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d99a10ef5010513b3d30f7cf51614b5f
d60c1da11f05540f39632c7357c22b76c9ee1ed7
5dfa88a4dc8b6c0b834a62e45daee28a8dc37ed6ae7eb1545e4ed8b6382c0474
GET /3d/392630953c4119a324492bb1c05778/ClickfunnelsTag.png HTTP/1.1
Host: images.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://badassgroup.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 04:40:32 GMT
content-type: image/webp
content-length: 5276
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=9030
content-disposition: inline; filename="ClickfunnelsTag.webp"
etag: "a633777156a5ffeb58c92d3d59fa4e34"
last-modified: Fri, 03 Jan 2020 17:41:49 GMT
vary: Accept
x-amz-id-2: yDQ4lWX/DNGyt7YNpk7GEhfR78bYc0+VDD0URlhGFtdycdY6Jqdci9bK+xUyRGtUazQ8facJvao=
x-amz-request-id: KMP0WXXNVQ62KDV3
cf-cache-status: HIT
age: 1230
expires: Fri, 21 Oct 2022 04:40:32 GMT
cache-control: public, max-age=2073600
accept-ranges: bytes
set-cookie: __cf_bm=cKaz9UPrQh2lRpAF2KcE.hgWD8.zf.aFf.qrrSFK9Fo-1664253632-0-Ac4wss13KY2NxwpnIbstz2X8FSBEl7wO4NHWm9gIzj9eShn7kUDgdfEnWjMnQMiZ3jLtSg0OH/9/9sqeNoejNtZoNCEZQbRa1RKV1SSOMU5H; path=/; expires=Tue, 27-Sep-22 05:10:32 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 75118fd13a40b4f4-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 04:40:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.163.147.190101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.147.190:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4LbovZlz8dxg0HWLngcAsA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8mequkvKFSJ4YEPj5kG1APB9IBo=
app.clickfunnels.com/mailcheck.min.js
104.16.16.194200 OK 2.6 kB URL HTTP/2 app.clickfunnels.com/mailcheck.min.js
IP 104.16.16.194:0
File type C source, ASCII text, with very long lines (525)
Hash 458c2ed9be5307078ff551d3043c4299
8c29cb5bcf808d80cb42699380282a23e9566ec5
b57cf43da32b2e11ff215030b15d87d9a28d92aabe105897476d4b5624fc805f
GET /mailcheck.min.js HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://badassgroup.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 04:40:32 GMT
content-type: application/x-javascript
cf-ray: 75118fd0e9fcb4f4-OSL
access-control-allow-origin: *
age: 1594
etag: W/"632b3357-a8d"
last-modified: Wed, 21 Sep 2022 15:52:55 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=jyW4dqH79yqMW2U7sDdyWnx2m7MNpXFOdXMw9KezwGQ-1664253632-0-ATf2wrc/lCylh93GGDUGvArazPzR4P8EJ7fG2d1WeyvUql+DR/Xzv6dvsPB1Vg3gmEHJr2PXmxl5iWg8aw6MRpW6zTrG0GowFS3NqVIH6RBk; path=/; expires=Tue, 27-Sep-22 05:10:32 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
app.clickfunnels.com/assets/pushcrew.js
104.16.16.194200 OK 1.8 kB URL HTTP/2 app.clickfunnels.com/assets/pushcrew.js
IP 104.16.16.194:0
File type ASCII text, with very long lines (637), with no line terminators
Hash 2349d2f40cc8c45052dd2ec6d1e5684f
46a5e882477bc8bc3ff8395d30e2921bccb3c953
40db37b487f58b966cea905acdd8e60ab110610119b57b1519670df9df5dbc64
GET /assets/pushcrew.js HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://badassgroup.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 04:40:32 GMT
content-type: application/x-javascript
cf-ray: 75118fd0fa03b4f4-OSL
access-control-allow-origin: *
age: 1063
cache-control: public, max-age=1200
etag: W/"632b3356-27d"
expires: Tue, 27 Sep 2022 05:00:32 GMT
last-modified: Wed, 21 Sep 2022 15:52:54 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=j0lxcLWHDT1w6HsklQfUBZC5tLgrrwve5rG4CQCnPVA-1664253632-0-ASHEGXOSYPt6bV3zgAjwPA6mVDdafQCyphFd5V6EGLvIBPCCFkk0C1kASXvstaZJB5ttgXoJiyLVpSUZKr/svyT+zHV/UumfS9QLmifdu6zv; path=/; expires=Tue, 27-Sep-22 05:10:32 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
app.clickfunnels.com/images/email2.png
104.16.16.194200 OK 12 kB URL HTTP/2 app.clickfunnels.com/images/email2.png
IP 104.16.16.194:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash bad1617ddd56ab45b68f78277b535b9c
132352fb697926a16b84d2fb2a82e1178ca72f7b
fb8c5b4a236ba1f56ebe12c432457a7883761ada098249b32e57631cadc26721
GET /images/email2.png HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.clickfunnels.com/assets/lander.css
Cookie: __cf_bm=cKaz9UPrQh2lRpAF2KcE.hgWD8.zf.aFf.qrrSFK9Fo-1664253632-0-Ac4wss13KY2NxwpnIbstz2X8FSBEl7wO4NHWm9gIzj9eShn7kUDgdfEnWjMnQMiZ3jLtSg0OH/9/9sqeNoejNtZoNCEZQbRa1RKV1SSOMU5H
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 04:40:32 GMT
content-type: image/webp
cf-ray: 75118fd19a6fb4f4-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 1586547
cache-control: public, max-age=2678400
content-disposition: inline; filename="email2.webp"
etag: "630e9cfc-c80"
expires: Fri, 28 Oct 2022 04:40:32 GMT
last-modified: Tue, 30 Aug 2022 23:27:56 GMT
strict-transport-security: max-age=0
vary: Accept, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=3200
server: cloudflare
X-Firefox-Spdy: h2
badassgroup.net/cdn-cgi/rum?
66.235.200.146200 OK 0 B URL HTTP/1.1 badassgroup.net/cdn-cgi/rum?
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
POST /cdn-cgi/rum? HTTP/1.1
Host: badassgroup.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
content-type: application/json
Content-Length: 4284
Origin: http://badassgroup.net
Connection: keep-alive
Referer: http://badassgroup.net/
Cookie: PHPSESSID=41884ac4cd0bbafe75b69bde0e5a2490; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTYyMzY3NTY=:visited=true; cf:visitor_id=08f8f27d-5899-46de-8f35-3b2e6df721ca; addevent_track_cookie=8067e363-6dca-443b-d165-5c54dcecfc63
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 04:40:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: cloudflare
CF-RAY: 75118fd669a4b4ee-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
images.clickfunnels.com/cdn-cgi/image/fit=scale-down,width=1150,quality=75/https://images.clickfunnels.com/10/5c6682c1ac48689d734c9d43790c92/steps123.png
104.16.16.194200 OK 8.1 kB URL HTTP/2 images.clickfunnels.com/cdn-cgi/image/fit=scale-down,width=1150,quality=75/https://images.clickfunnels.com/10/5c6682c1ac48689d734c9d43790c92/steps123.png
IP 104.16.16.194:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 633x96, components 3\012- data
Hash 4382c50b983b0ebb2da1d1ef3e7fb270
db83bbc5e62b7702cb64ec28598abe1f54591466
dc488b1e29ef1814e0f2246de38268a742f8be636cc1374d8754d1f0ade4d019
GET /cdn-cgi/image/fit=scale-down,width=1150,quality=75/https://images.clickfunnels.com/10/5c6682c1ac48689d734c9d43790c92/steps123.png HTTP/1.1
Host: images.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://badassgroup.net/
Cookie: __cf_bm=cKaz9UPrQh2lRpAF2KcE.hgWD8.zf.aFf.qrrSFK9Fo-1664253632-0-Ac4wss13KY2NxwpnIbstz2X8FSBEl7wO4NHWm9gIzj9eShn7kUDgdfEnWjMnQMiZ3jLtSg0OH/9/9sqeNoejNtZoNCEZQbRa1RKV1SSOMU5H
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 04:40:33 GMT
content-type: image/jpeg
content-length: 8105
cf-ray: 75118fd5ad11b4f4-OSL
accept-ranges: bytes
cache-control: max-age=2073600
etag: "cfbtYqm2GA3ABb82RKbTKZ3Q:239a337af79a2433e2a49189c2ec6e7a"
last-modified: Fri, 14 Aug 2020 00:45:22 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:75,h2pri
cf-resized: internal=ok/h q=0 n=38 c=12 v=2022.9.6 l=8105
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents/?funnel_id=eFpYb25pTG92L0lqbE5YbG1meGdpQT09LS1PZXZzTHFjSkdSN0QyMkFtbGg0MFJBPT0%3D--c506de95956d640d1aa9a420ec1180392866d2fb&page_id=YkhFb3FFQWhpMlgvRDVyYzljT0k0UT09LS1KN2RBRU1YQWJsUTBTRkovNWxDc0N3PT0%3D--51430f7a9f4b319e8f6da3c4e738afad69f52be2&funnel_step_id=c3lyZkFrb2hBVWUxbW8yQWVGQzlwZz09LS1paWF6RGYzcWpJRTBZVTlqZHRORWRnPT0%3D--cdf8e0340abed5a7c8f99238686e9b6ad9475675&user_id=cnVOOUZ4MTAyUnJqZS9zQ01hYnZ4UT09LS1sWWRsc01LSXc3V0pxejN4RWZKTllnPT0%3D--c918ac70509b33ffb12f1de1062fd8eb7e63f729&account_id=LzFZa1A0QjkydCs3Uy9QSUZGVG5jdz09LS1GdGxVSjhwcjFPc1NaajAvYTFHT2lnPT0%3D--2a13ae5b4ad988940598c7c0552e2ac82a0f9ae1&page_code=NTYyMzY3NTY%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::PageviewsCreatedSummary&nonce=9c77e4cf-95b3-4e7d-b93f-dd25440131a8&url=http%3A%2F%2Fbadassgroup.net%2F
104.16.16.194301 Moved Permanently 1.4 kB URL HTTP/1.1 app.clickfunnels.com/userevents/?funnel_id=eFpYb25pTG92L0lqbE5YbG1meGdpQT09LS1PZXZzTHFjSkdSN0QyMkFtbGg0MFJBPT0%3D--c506de95956d640d1aa9a420ec1180392866d2fb&page_id=YkhFb3FFQWhpMlgvRDVyYzljT0k0UT09LS1KN2RBRU1YQWJsUTBTRkovNWxDc0N3PT0%3D--51430f7a9f4b319e8f6da3c4e738afad69f52be2&funnel_step_id=c3lyZkFrb2hBVWUxbW8yQWVGQzlwZz09LS1paWF6RGYzcWpJRTBZVTlqZHRORWRnPT0%3D--cdf8e0340abed5a7c8f99238686e9b6ad9475675&user_id=cnVOOUZ4MTAyUnJqZS9zQ01hYnZ4UT09LS1sWWRsc01LSXc3V0pxejN4RWZKTllnPT0%3D--c918ac70509b33ffb12f1de1062fd8eb7e63f729&account_id=LzFZa1A0QjkydCs3Uy9QSUZGVG5jdz09LS1GdGxVSjhwcjFPc1NaajAvYTFHT2lnPT0%3D--2a13ae5b4ad988940598c7c0552e2ac82a0f9ae1&page_code=NTYyMzY3NTY%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::PageviewsCreatedSummary&nonce=9c77e4cf-95b3-4e7d-b93f-dd25440131a8&url=http%3A%2F%2Fbadassgroup.net%2F
IP 104.16.16.194:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1422)
Hash 79ae71e4bd5bdeea6f227b7dca44e339
725934241f8af93ea6e50a666fb5cbafe8aca28c
376dc4566c63eb85a9824322c1097b5914c084d59ff3c50a6fd6fbfce8dfb6f7
GET /userevents/?funnel_id=eFpYb25pTG92L0lqbE5YbG1meGdpQT09LS1PZXZzTHFjSkdSN0QyMkFtbGg0MFJBPT0%3D--c506de95956d640d1aa9a420ec1180392866d2fb&page_id=YkhFb3FFQWhpMlgvRDVyYzljT0k0UT09LS1KN2RBRU1YQWJsUTBTRkovNWxDc0N3PT0%3D--51430f7a9f4b319e8f6da3c4e738afad69f52be2&funnel_step_id=c3lyZkFrb2hBVWUxbW8yQWVGQzlwZz09LS1paWF6RGYzcWpJRTBZVTlqZHRORWRnPT0%3D--cdf8e0340abed5a7c8f99238686e9b6ad9475675&user_id=cnVOOUZ4MTAyUnJqZS9zQ01hYnZ4UT09LS1sWWRsc01LSXc3V0pxejN4RWZKTllnPT0%3D--c918ac70509b33ffb12f1de1062fd8eb7e63f729&account_id=LzFZa1A0QjkydCs3Uy9QSUZGVG5jdz09LS1GdGxVSjhwcjFPc1NaajAvYTFHT2lnPT0%3D--2a13ae5b4ad988940598c7c0552e2ac82a0f9ae1&page_code=NTYyMzY3NTY%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents::PageviewsCreatedSummary&nonce=9c77e4cf-95b3-4e7d-b93f-dd25440131a8&url=http%3A%2F%2Fbadassgroup.net%2F HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://badassgroup.net
Connection: keep-alive
Referer: http://badassgroup.net/
HTTP/1.1 301 Moved Permanently
Date: Tue, 27 Sep 2022 04:40:33 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://app.clickfunnels.com/userevents?funnel_id=eFpYb25pTG92L0lqbE5YbG1meGdpQT09LS1PZXZzTHFjSkdSN0QyMkFtbGg0MFJBPT0%3D--c506de95956d640d1aa9a420ec1180392866d2fb&page_id=YkhFb3FFQWhpMlgvRDVyYzljT0k0UT09LS1KN2RBRU1YQWJsUTBTRkovNWxDc0N3PT0%3D--51430f7a9f4b319e8f6da3c4e738afad69f52be2&funnel_step_id=c3lyZkFrb2hBVWUxbW8yQWVGQzlwZz09LS1paWF6RGYzcWpJRTBZVTlqZHRORWRnPT0%3D--cdf8e0340abed5a7c8f99238686e9b6ad9475675&user_id=cnVOOUZ4MTAyUnJqZS9zQ01hYnZ4UT09LS1sWWRsc01LSXc3V0pxejN4RWZKTllnPT0%3D--c918ac70509b33ffb12f1de1062fd8eb7e63f729&account_id=LzFZa1A0QjkydCs3Uy9QSUZGVG5jdz09LS1GdGxVSjhwcjFPc1NaajAvYTFHT2lnPT0%3D--2a13ae5b4ad988940598c7c0552e2ac82a0f9ae1&page_code=NTYyMzY3NTY%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents%3A%3APageviewsCreatedSummary&nonce=9c77e4cf-95b3-4e7d-b93f-dd25440131a8&url=http%3A%2F%2Fbadassgroup.net%2F
CF-Ray: 75118fd4ba7bb506-OSL
Access-Control-Allow-Origin: *
Cache-Control: no-cache
Vary: Accept-Encoding
CF-Cache-Status: MISS
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
Access-Control-Allow-Methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
Status: 301 Moved Permanently
X-Powered-By: Phusion Passenger Enterprise 6.0.7
X-Rack-Cache: miss
X-Request-Id: 1fb94ef91b1b466622c96c522c0108b2
X-Runtime: 0.227390
Set-Cookie: __cf_bm=AVd9n8Shr9XOBvJCpR0NzcNgCDzbIuS_f.xNcYDgYJ0-1664253633-0-AfgiZzGZ+0coVC0nLAsEQKGTKtVQqLhyO5tOJhjZZA4yYhBK8WhCa+9EJkLUB8l7PHZwYVzLtI3FtoPowofqgAsNcHi3UhOjQBkK6GQ8W7q/; path=/; expires=Tue, 27-Sep-22 05:10:33 GMT; domain=.clickfunnels.com; HttpOnly; SameSite=None
Server: cloudflare
alt-svc: h2=":443"; ma=60
app.clickfunnels.com/userevents?funnel_id=eFpYb25pTG92L0lqbE5YbG1meGdpQT09LS1PZXZzTHFjSkdSN0QyMkFtbGg0MFJBPT0%3D--c506de95956d640d1aa9a420ec1180392866d2fb&page_id=YkhFb3FFQWhpMlgvRDVyYzljT0k0UT09LS1KN2RBRU1YQWJsUTBTRkovNWxDc0N3PT0%3D--51430f7a9f4b319e8f6da3c4e738afad69f52be2&funnel_step_id=c3lyZkFrb2hBVWUxbW8yQWVGQzlwZz09LS1paWF6RGYzcWpJRTBZVTlqZHRORWRnPT0%3D--cdf8e0340abed5a7c8f99238686e9b6ad9475675&user_id=cnVOOUZ4MTAyUnJqZS9zQ01hYnZ4UT09LS1sWWRsc01LSXc3V0pxejN4RWZKTllnPT0%3D--c918ac70509b33ffb12f1de1062fd8eb7e63f729&account_id=LzFZa1A0QjkydCs3Uy9QSUZGVG5jdz09LS1GdGxVSjhwcjFPc1NaajAvYTFHT2lnPT0%3D--2a13ae5b4ad988940598c7c0552e2ac82a0f9ae1&page_code=NTYyMzY3NTY%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents%3A%3AUniquePageviewsCreatedSummary&nonce=3accb749-6b5f-4e3b-a47b-2dfb95bfa778&url=http%3A%2F%2Fbadassgroup.net%2F
104.16.16.194202 Accepted 503 B URL HTTP/2 app.clickfunnels.com/userevents?funnel_id=eFpYb25pTG92L0lqbE5YbG1meGdpQT09LS1PZXZzTHFjSkdSN0QyMkFtbGg0MFJBPT0%3D--c506de95956d640d1aa9a420ec1180392866d2fb&page_id=YkhFb3FFQWhpMlgvRDVyYzljT0k0UT09LS1KN2RBRU1YQWJsUTBTRkovNWxDc0N3PT0%3D--51430f7a9f4b319e8f6da3c4e738afad69f52be2&funnel_step_id=c3lyZkFrb2hBVWUxbW8yQWVGQzlwZz09LS1paWF6RGYzcWpJRTBZVTlqZHRORWRnPT0%3D--cdf8e0340abed5a7c8f99238686e9b6ad9475675&user_id=cnVOOUZ4MTAyUnJqZS9zQ01hYnZ4UT09LS1sWWRsc01LSXc3V0pxejN4RWZKTllnPT0%3D--c918ac70509b33ffb12f1de1062fd8eb7e63f729&account_id=LzFZa1A0QjkydCs3Uy9QSUZGVG5jdz09LS1GdGxVSjhwcjFPc1NaajAvYTFHT2lnPT0%3D--2a13ae5b4ad988940598c7c0552e2ac82a0f9ae1&page_code=NTYyMzY3NTY%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents%3A%3AUniquePageviewsCreatedSummary&nonce=3accb749-6b5f-4e3b-a47b-2dfb95bfa778&url=http%3A%2F%2Fbadassgroup.net%2F
IP 104.16.16.194:0
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
GET /userevents?funnel_id=eFpYb25pTG92L0lqbE5YbG1meGdpQT09LS1PZXZzTHFjSkdSN0QyMkFtbGg0MFJBPT0%3D--c506de95956d640d1aa9a420ec1180392866d2fb&page_id=YkhFb3FFQWhpMlgvRDVyYzljT0k0UT09LS1KN2RBRU1YQWJsUTBTRkovNWxDc0N3PT0%3D--51430f7a9f4b319e8f6da3c4e738afad69f52be2&funnel_step_id=c3lyZkFrb2hBVWUxbW8yQWVGQzlwZz09LS1paWF6RGYzcWpJRTBZVTlqZHRORWRnPT0%3D--cdf8e0340abed5a7c8f99238686e9b6ad9475675&user_id=cnVOOUZ4MTAyUnJqZS9zQ01hYnZ4UT09LS1sWWRsc01LSXc3V0pxejN4RWZKTllnPT0%3D--c918ac70509b33ffb12f1de1062fd8eb7e63f729&account_id=LzFZa1A0QjkydCs3Uy9QSUZGVG5jdz09LS1GdGxVSjhwcjFPc1NaajAvYTFHT2lnPT0%3D--2a13ae5b4ad988940598c7c0552e2ac82a0f9ae1&page_code=NTYyMzY3NTY%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents%3A%3AUniquePageviewsCreatedSummary&nonce=3accb749-6b5f-4e3b-a47b-2dfb95bfa778&url=http%3A%2F%2Fbadassgroup.net%2F HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: http://badassgroup.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Tue, 27 Sep 2022 04:40:33 GMT
content-type: text/html
cf-ray: 75118fd7ae58b4f4-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 87bf00ecca2418b37c7abca2df3b2852
x-runtime: 0.034054
set-cookie: __cf_bm=gEojGC4YCcXwCPl9pR8DX.3RjrAoVDb1qW4X4r5ceW8-1664253633-0-ASm7r6Gff0g2xLYV0zEIgQY6qkD935Pl8mzysMGiM5SKo4yk/CrBVytSc/5RGKRSPT6iPWJG0qV8GsLLF7vxLx4kVF+zGtdyYfQNDajt1H/m; path=/; expires=Tue, 27-Sep-22 05:10:33 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents?funnel_id=eFpYb25pTG92L0lqbE5YbG1meGdpQT09LS1PZXZzTHFjSkdSN0QyMkFtbGg0MFJBPT0%3D--c506de95956d640d1aa9a420ec1180392866d2fb&page_id=YkhFb3FFQWhpMlgvRDVyYzljT0k0UT09LS1KN2RBRU1YQWJsUTBTRkovNWxDc0N3PT0%3D--51430f7a9f4b319e8f6da3c4e738afad69f52be2&funnel_step_id=c3lyZkFrb2hBVWUxbW8yQWVGQzlwZz09LS1paWF6RGYzcWpJRTBZVTlqZHRORWRnPT0%3D--cdf8e0340abed5a7c8f99238686e9b6ad9475675&user_id=cnVOOUZ4MTAyUnJqZS9zQ01hYnZ4UT09LS1sWWRsc01LSXc3V0pxejN4RWZKTllnPT0%3D--c918ac70509b33ffb12f1de1062fd8eb7e63f729&account_id=LzFZa1A0QjkydCs3Uy9QSUZGVG5jdz09LS1GdGxVSjhwcjFPc1NaajAvYTFHT2lnPT0%3D--2a13ae5b4ad988940598c7c0552e2ac82a0f9ae1&page_code=NTYyMzY3NTY%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents%3A%3AUniqueVisitorsCreatedSummary&nonce=db2b40b4-d463-4e80-965b-159dc336259f&url=http%3A%2F%2Fbadassgroup.net%2F
104.16.16.194202 Accepted 503 B URL HTTP/2 app.clickfunnels.com/userevents?funnel_id=eFpYb25pTG92L0lqbE5YbG1meGdpQT09LS1PZXZzTHFjSkdSN0QyMkFtbGg0MFJBPT0%3D--c506de95956d640d1aa9a420ec1180392866d2fb&page_id=YkhFb3FFQWhpMlgvRDVyYzljT0k0UT09LS1KN2RBRU1YQWJsUTBTRkovNWxDc0N3PT0%3D--51430f7a9f4b319e8f6da3c4e738afad69f52be2&funnel_step_id=c3lyZkFrb2hBVWUxbW8yQWVGQzlwZz09LS1paWF6RGYzcWpJRTBZVTlqZHRORWRnPT0%3D--cdf8e0340abed5a7c8f99238686e9b6ad9475675&user_id=cnVOOUZ4MTAyUnJqZS9zQ01hYnZ4UT09LS1sWWRsc01LSXc3V0pxejN4RWZKTllnPT0%3D--c918ac70509b33ffb12f1de1062fd8eb7e63f729&account_id=LzFZa1A0QjkydCs3Uy9QSUZGVG5jdz09LS1GdGxVSjhwcjFPc1NaajAvYTFHT2lnPT0%3D--2a13ae5b4ad988940598c7c0552e2ac82a0f9ae1&page_code=NTYyMzY3NTY%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents%3A%3AUniqueVisitorsCreatedSummary&nonce=db2b40b4-d463-4e80-965b-159dc336259f&url=http%3A%2F%2Fbadassgroup.net%2F
IP 104.16.16.194:0
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
GET /userevents?funnel_id=eFpYb25pTG92L0lqbE5YbG1meGdpQT09LS1PZXZzTHFjSkdSN0QyMkFtbGg0MFJBPT0%3D--c506de95956d640d1aa9a420ec1180392866d2fb&page_id=YkhFb3FFQWhpMlgvRDVyYzljT0k0UT09LS1KN2RBRU1YQWJsUTBTRkovNWxDc0N3PT0%3D--51430f7a9f4b319e8f6da3c4e738afad69f52be2&funnel_step_id=c3lyZkFrb2hBVWUxbW8yQWVGQzlwZz09LS1paWF6RGYzcWpJRTBZVTlqZHRORWRnPT0%3D--cdf8e0340abed5a7c8f99238686e9b6ad9475675&user_id=cnVOOUZ4MTAyUnJqZS9zQ01hYnZ4UT09LS1sWWRsc01LSXc3V0pxejN4RWZKTllnPT0%3D--c918ac70509b33ffb12f1de1062fd8eb7e63f729&account_id=LzFZa1A0QjkydCs3Uy9QSUZGVG5jdz09LS1GdGxVSjhwcjFPc1NaajAvYTFHT2lnPT0%3D--2a13ae5b4ad988940598c7c0552e2ac82a0f9ae1&page_code=NTYyMzY3NTY%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents%3A%3AUniqueVisitorsCreatedSummary&nonce=db2b40b4-d463-4e80-965b-159dc336259f&url=http%3A%2F%2Fbadassgroup.net%2F HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: http://badassgroup.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Tue, 27 Sep 2022 04:40:33 GMT
content-type: text/html
cf-ray: 75118fd7ae5ab4f4-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 6761c6310ce81665bf76ab0180310779
x-runtime: 0.029471
set-cookie: __cf_bm=PNijO58WKC_FfxMD.l5L6ZhKZxizSO6uQk4v3IHR.rk-1664253633-0-Ad9zvTWEe4bPpfpq+M7csdVZOCsQoknpq1KlgrAIbrnlo1ffJmbnSpFNg/LxDGpcZBd9vQaD/nLTPCV+WqOSuE/uHyBtmwTHNXmfuLk9uU57; path=/; expires=Tue, 27-Sep-22 05:10:33 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=k8yiF7L__.x3LO3KTQH6_F4L2lR11oVCy7x4niJ4EU8-1664253633-0-ASffCLslIMByPWffZbvyZwHhe8SroaOzxN9Nv08HzWtlH7Pm9tuhjhKRuOBW3hWlmXDrWqWO8RGpAlaxasOJZK5bM-B9C2dwqODNr2kcIuBH"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=k8yiF7L__.x3LO3KTQH6_F4L2lR11oVCy7x4niJ4EU8-1664253633-0-ASffCLslIMByPWffZbvyZwHhe8SroaOzxN9Nv08HzWtlH7Pm9tuhjhKRuOBW3hWlmXDrWqWO8RGpAlaxasOJZK5bM-B9C2dwqODNr2kcIuBH; report-to cf-csp-endpoint
server: cloudflare
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12731
Expires: Tue, 27 Sep 2022 08:12:44 GMT
Date: Tue, 27 Sep 2022 04:40:33 GMT
Connection: keep-alive
app.clickfunnels.com/v1/track?_unique=0.4076747546594276&_uniqueVisitorID=null&_type=WINDOW&_location=ttp%3A//badassgroup.net/&_title=ClickFunnels%20Landing%20Page&_key=3mlex4e6&_page_key=kknzutuie63omu6r&_fid=12421229&_fspos=1&_fvrs=1&_funnel_stat=1&_location=http://badassgroup.net/&_referrer=
104.16.16.194200 OK 595 B URL HTTP/2 app.clickfunnels.com/v1/track?_unique=0.4076747546594276&_uniqueVisitorID=null&_type=WINDOW&_location=ttp%3A//badassgroup.net/&_title=ClickFunnels%20Landing%20Page&_key=3mlex4e6&_page_key=kknzutuie63omu6r&_fid=12421229&_fspos=1&_fvrs=1&_funnel_stat=1&_location=http://badassgroup.net/&_referrer=
IP 104.16.16.194:0
File type ASCII text, with no line terminators
Hash 30b277f8d3917293b55e7ae96651b674
2e6793b4febc1c82dc6b8511fb782d6594f0fd74
31bd351a38968223ffcce64d651f390335a8c24c7f84016421a7d2b1d973c292
GET /v1/track?_unique=0.4076747546594276&_uniqueVisitorID=null&_type=WINDOW&_location=ttp%3A//badassgroup.net/&_title=ClickFunnels%20Landing%20Page&_key=3mlex4e6&_page_key=kknzutuie63omu6r&_fid=12421229&_fspos=1&_fvrs=1&_funnel_stat=1&_location=http://badassgroup.net/&_referrer= HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://badassgroup.net
Connection: keep-alive
Referer: http://badassgroup.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 04:40:33 GMT
content-type: text/javascript; charset=utf-8
cf-ray: 75118fd5bd20b4f4-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
status: 200 OK
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: ab63ccc6ee32d1fe767cd7dbfa70b8d9
x-runtime: 0.020772
set-cookie: __cf_bm=IkFtJywLWN0mGrSJbsn9_E5qPNT5iZbHc_sHi00z1DU-1664253633-0-AabS9WD0N6PBpmvGDT8IHZG5+iov7PZ4eKquMisahlLj2ysD10xDEyUtMWg7vlPhj6ZSqc2TN43q3/F/udopvgfQ2ZVmfyhqorZ4E4q9hFs0; path=/; expires=Tue, 27-Sep-22 05:10:33 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12731
Expires: Tue, 27 Sep 2022 08:12:44 GMT
Date: Tue, 27 Sep 2022 04:40:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffffd9a36-7835-4249-a213-06720f62ce54.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffffd9a36-7835-4249-a213-06720f62ce54.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f9bc23ab347b5f2e2ec15d69f41f0cf0
a92af0438aa2b6637c0f69dabd0be00b3a43caf8
4382f21ee6727d4b4d21bd7d16b1821a57d9fec6c78dbf7e74bfdfbde51ec206
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffffd9a36-7835-4249-a213-06720f62ce54.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4327
x-amzn-requestid: 59493149-3c46-42c6-96aa-92c945fb4c40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlA1HzioAMFzxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9e-5bd13d5719a119a25650f405;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5XQYaLxNwxhN9NCIoDYRbt8U-2Tsxcx-2SqPNr64Z4YV8Bk7Eayjfg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:38:57 GMT
age: 25296
etag: "a92af0438aa2b6637c0f69dabd0be00b3a43caf8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a2c481a-abce-43aa-89a3-95cd7559102c.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a2c481a-abce-43aa-89a3-95cd7559102c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b1f571f5fdf5233ffa70132a4504d4fe
1b5f002272083d5e19b5bd18d503f49635b771e5
4563ffe63e1d043c159648a72d9f4c59a3b0fe40379254848a52c11a4f1a6511
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a2c481a-abce-43aa-89a3-95cd7559102c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6518
x-amzn-requestid: 6dfcf2e6-a528-47aa-8ae8-7857f08dac7c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y13ElHLzIAMFetw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632bd21d-1317b6f73d15a209545f80d6;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 03:10:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Eh_pKXNcEmAVXN5vl2i9chmz6U-PtBHTLfS04OSmkuYa7-e2vVl7nw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 18:10:41 GMT
age: 37792
etag: "1b5f002272083d5e19b5bd18d503f49635b771e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14ab4d12-a7de-4708-a657-df4600198640.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14ab4d12-a7de-4708-a657-df4600198640.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fa70ece15044b7318cb11ae5e37a64e7
04a0665f771562c3e56ac3542abe5bd3c4c1a6b5
8c974283b2ba0058114404af3e4818daa8cc56f270cb8a46f5f2f54de9d2f0e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14ab4d12-a7de-4708-a657-df4600198640.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8255
x-amzn-requestid: 3bf29c4a-406a-4645-ad18-44cd6f05d457
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4VnFEV-IAMFQMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ccfc6-3eaa337d1e1c1b6d5e951419;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:12:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: X-6P09-hgjmDFe4Y7P1KnXtJAuvJNen8XsBVIexf521SOxMivJ4t7A==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 17:53:33 GMT
age: 38820
etag: "04a0665f771562c3e56ac3542abe5bd3c4c1a6b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bf02f4e-91c0-455b-8378-5eae82174db7.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bf02f4e-91c0-455b-8378-5eae82174db7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3140ec95f33c36599de95b25cdade940
932c74fa24b61ee1b1c672b6c19b1e736caab8d3
f7488246ca75fddc504812f4c5944a5a2494cdb14b6ef1db5fb28beca5cff194
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5bf02f4e-91c0-455b-8378-5eae82174db7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9737
x-amzn-requestid: a06488e4-22bb-4149-adac-b6696ab91923
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlATHzUIAMFtcw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9b-238f1b945a8b549872c85f2a;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qkfz02g1BMeZhFonJAWyqyQ9jBnZC4i-2ZHzO2wgJBVjC4YfvtlxCA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:38:57 GMT
age: 25296
etag: "932c74fa24b61ee1b1c672b6c19b1e736caab8d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: fe9ec409-2757-4910-8443-5b4d3be7efd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlATEp8oAMFd9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9b-3230e97a4fe34413285eb578;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kRSg9NTTAgeAJgIZ_C9_rRodCX4bzGduJEvNPNHUya0Moa2vsmWSoQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:38:57 GMT
age: 25296
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff092f2d0-abd6-40d2-ad33-9fb0ded1ec0a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff092f2d0-abd6-40d2-ad33-9fb0ded1ec0a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91d97447a6a35813e57d942f685544c4
3b660de9902fbfcf2efb477f40480b08545ebc5f
08c1ea19c4918273da12c9a2e962edf4463c486a30f60c8a279a45e5edcf972a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff092f2d0-abd6-40d2-ad33-9fb0ded1ec0a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11881
x-amzn-requestid: 584a2270-56ef-4f46-8ab2-dc0e519b5f45
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YshLfEfoIAMFX9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328157c-12f8e8e31318d2da70796520;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 07:08:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: bDpP2pZgrMz5bH_vy76SvyPojDGhPIHfOtv2i4dfHCs1GUuSZVC87w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 22:33:24 GMT
age: 22029
etag: "3b660de9902fbfcf2efb477f40480b08545ebc5f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
app.clickfunnels.com/userevents?funnel_id=eFpYb25pTG92L0lqbE5YbG1meGdpQT09LS1PZXZzTHFjSkdSN0QyMkFtbGg0MFJBPT0%3D--c506de95956d640d1aa9a420ec1180392866d2fb&page_id=YkhFb3FFQWhpMlgvRDVyYzljT0k0UT09LS1KN2RBRU1YQWJsUTBTRkovNWxDc0N3PT0%3D--51430f7a9f4b319e8f6da3c4e738afad69f52be2&funnel_step_id=c3lyZkFrb2hBVWUxbW8yQWVGQzlwZz09LS1paWF6RGYzcWpJRTBZVTlqZHRORWRnPT0%3D--cdf8e0340abed5a7c8f99238686e9b6ad9475675&user_id=cnVOOUZ4MTAyUnJqZS9zQ01hYnZ4UT09LS1sWWRsc01LSXc3V0pxejN4RWZKTllnPT0%3D--c918ac70509b33ffb12f1de1062fd8eb7e63f729&account_id=LzFZa1A0QjkydCs3Uy9QSUZGVG5jdz09LS1GdGxVSjhwcjFPc1NaajAvYTFHT2lnPT0%3D--2a13ae5b4ad988940598c7c0552e2ac82a0f9ae1&page_code=NTYyMzY3NTY%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents%3A%3APageviewsCreatedSummary&nonce=9c77e4cf-95b3-4e7d-b93f-dd25440131a8&url=http%3A%2F%2Fbadassgroup.net%2F
104.16.16.194202 Accepted 14 kB URL HTTP/2 app.clickfunnels.com/userevents?funnel_id=eFpYb25pTG92L0lqbE5YbG1meGdpQT09LS1PZXZzTHFjSkdSN0QyMkFtbGg0MFJBPT0%3D--c506de95956d640d1aa9a420ec1180392866d2fb&page_id=YkhFb3FFQWhpMlgvRDVyYzljT0k0UT09LS1KN2RBRU1YQWJsUTBTRkovNWxDc0N3PT0%3D--51430f7a9f4b319e8f6da3c4e738afad69f52be2&funnel_step_id=c3lyZkFrb2hBVWUxbW8yQWVGQzlwZz09LS1paWF6RGYzcWpJRTBZVTlqZHRORWRnPT0%3D--cdf8e0340abed5a7c8f99238686e9b6ad9475675&user_id=cnVOOUZ4MTAyUnJqZS9zQ01hYnZ4UT09LS1sWWRsc01LSXc3V0pxejN4RWZKTllnPT0%3D--c918ac70509b33ffb12f1de1062fd8eb7e63f729&account_id=LzFZa1A0QjkydCs3Uy9QSUZGVG5jdz09LS1GdGxVSjhwcjFPc1NaajAvYTFHT2lnPT0%3D--2a13ae5b4ad988940598c7c0552e2ac82a0f9ae1&page_code=NTYyMzY3NTY%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents%3A%3APageviewsCreatedSummary&nonce=9c77e4cf-95b3-4e7d-b93f-dd25440131a8&url=http%3A%2F%2Fbadassgroup.net%2F
IP 104.16.16.194:0
File type gzip compressed data, from Unix\012- data
Hash b7c09cc097b2847f9edc784adba62dcb
5aa648623cf5e3b4b215fe5d068a7904c59f2925
6da450b6a3ba53bdab36f6529e987a245cdfca9a37b77790f06dfd8d5797bdaa
GET /userevents?funnel_id=eFpYb25pTG92L0lqbE5YbG1meGdpQT09LS1PZXZzTHFjSkdSN0QyMkFtbGg0MFJBPT0%3D--c506de95956d640d1aa9a420ec1180392866d2fb&page_id=YkhFb3FFQWhpMlgvRDVyYzljT0k0UT09LS1KN2RBRU1YQWJsUTBTRkovNWxDc0N3PT0%3D--51430f7a9f4b319e8f6da3c4e738afad69f52be2&funnel_step_id=c3lyZkFrb2hBVWUxbW8yQWVGQzlwZz09LS1paWF6RGYzcWpJRTBZVTlqZHRORWRnPT0%3D--cdf8e0340abed5a7c8f99238686e9b6ad9475675&user_id=cnVOOUZ4MTAyUnJqZS9zQ01hYnZ4UT09LS1sWWRsc01LSXc3V0pxejN4RWZKTllnPT0%3D--c918ac70509b33ffb12f1de1062fd8eb7e63f729&account_id=LzFZa1A0QjkydCs3Uy9QSUZGVG5jdz09LS1GdGxVSjhwcjFPc1NaajAvYTFHT2lnPT0%3D--2a13ae5b4ad988940598c7c0552e2ac82a0f9ae1&page_code=NTYyMzY3NTY%3D&mode_id=1&time_zone=America%2FNew_York&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1280&type=Userevents%3A%3APageviewsCreatedSummary&nonce=9c77e4cf-95b3-4e7d-b93f-dd25440131a8&url=http%3A%2F%2Fbadassgroup.net%2F HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: http://badassgroup.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Tue, 27 Sep 2022 04:40:33 GMT
content-type: text/html
cf-ray: 75118fd80e9cb4f4-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 54e0719c77de87e6a2a7088fb492fcf2
x-runtime: 0.036851
set-cookie: __cf_bm=Imx2m3K6v9GDO02VRbqbvGgA2aPQ0P93uqsPTfRFiLE-1664253633-0-AQ+rALs4zy+nwv0KQsT6G1612Zs8nxEdgRrmddBQrWvRsbBy16vS/utXjV+ah4jPzutDskECP19V0WDSpYG6P/RcABm6a/c1xBeT0j925svK; path=/; expires=Tue, 27-Sep-22 05:10:33 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=6W.Vwhi7LPr2EYI5I6b76jx_yXyV4GVDce6gYzyuVKE-1664253633-0-AYGx8cvJ43Oeg05AfCsRHGyBSFIjs7MY1ZXH4OXBBOtZs_ssyzKzrWCLv8pr2gZtYDiFF08OwlVSAbGvGv23Qfbd-vCvfoYCP-kel7TyAM5t"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=6W.Vwhi7LPr2EYI5I6b76jx_yXyV4GVDce6gYzyuVKE-1664253633-0-AYGx8cvJ43Oeg05AfCsRHGyBSFIjs7MY1ZXH4OXBBOtZs_ssyzKzrWCLv8pr2gZtYDiFF08OwlVSAbGvGv23Qfbd-vCvfoYCP-kel7TyAM5t; report-to cf-csp-endpoint
server: cloudflare
X-Firefox-Spdy: h2
bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=2631&ck=1&ref=http://badassgroup.net/&ap=255&be=1188&fe=2011&dc=1849&perf=%7B%22timing%22:%7B%22of%22:1664253628867,%22n%22:0,%22f%22:-7,%22dn%22:-7,%22dne%22:1,%22c%22:1,%22ce%22:2,%22rq%22:70,%22rp%22:1013,%22rpe%22:1013,%22dl%22:1037,%22di%22:1834,%22ds%22:1849,%22de%22:1937,%22dc%22:2011,%22l%22:2011,%22le%22:2124%7D,%22navigation%22:%7B%7D%7D&fcp=1397&jsonp=NREUM.setToken
162.247.241.14200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=2631&ck=1&ref=http://badassgroup.net/&ap=255&be=1188&fe=2011&dc=1849&perf=%7B%22timing%22:%7B%22of%22:1664253628867,%22n%22:0,%22f%22:-7,%22dn%22:-7,%22dne%22:1,%22c%22:1,%22ce%22:2,%22rq%22:70,%22rp%22:1013,%22rpe%22:1013,%22dl%22:1037,%22di%22:1834,%22ds%22:1849,%22de%22:1937,%22dc%22:2011,%22l%22:2011,%22le%22:2124%7D,%22navigation%22:%7B%7D%7D&fcp=1397&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=2631&ck=1&ref=http://badassgroup.net/&ap=255&be=1188&fe=2011&dc=1849&perf=%7B%22timing%22:%7B%22of%22:1664253628867,%22n%22:0,%22f%22:-7,%22dn%22:-7,%22dne%22:1,%22c%22:1,%22ce%22:2,%22rq%22:70,%22rp%22:1013,%22rpe%22:1013,%22dl%22:1037,%22di%22:1834,%22ds%22:1849,%22de%22:1937,%22dc%22:2011,%22l%22:2011,%22le%22:2124%7D,%22navigation%22:%7B%7D%7D&fcp=1397&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://badassgroup.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 04:40:33 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 75118fd9ba3ab50c-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=bc0a0c21bf5a9fbd; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
badassgroup.net/cdn-cgi/rum?
66.235.200.146200 OK 0 B URL HTTP/1.1 badassgroup.net/cdn-cgi/rum?
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
POST /cdn-cgi/rum? HTTP/1.1
Host: badassgroup.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Content-Length: 373
Origin: http://badassgroup.net
Connection: keep-alive
Referer: http://badassgroup.net/
Cookie: PHPSESSID=41884ac4cd0bbafe75b69bde0e5a2490; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTYyMzY3NTY=:visited=true; cf:visitor_id=08f8f27d-5899-46de-8f35-3b2e6df721ca; addevent_track_cookie=8067e363-6dca-443b-d165-5c54dcecfc63; is_eu=false; kknzutuie63omu6r=true; 12421229_viewed_1=1
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 04:40:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: cloudflare
CF-RAY: 75119002ac70b4ee-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700
IP 142.250.74.10:0
GET /css?family=Open+Sans:400,700%7COswald:400,700%7CDroid+Sans:400,700%7CRoboto:400,700%7CLato:400,700%7CPT+Sans:400,700%7CSource+Sans+Pro:400,600,700%7CNoto+Sans:400,700%7CPT+Sans:400,700%7CUbuntu:400,700%7CBitter:400,700%7CPT+Serif:400,700%7CRokkitt:400,700%7CDroid+Serif:400,700%7CRaleway:400,700%7CInconsolata:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://badassgroup.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Sep 2022 04:40:32 GMT
date: Tue, 27 Sep 2022 04:40:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.clickfunnels.com/assets/lander.css
104.16.16.194200 OK 0 B URL HTTP/2 app.clickfunnels.com/assets/lander.css
IP 104.16.16.194:0
GET /assets/lander.css HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://badassgroup.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 04:40:32 GMT
content-type: text/css
cf-ray: 75118fd0c9e3b4f4-OSL
access-control-allow-origin: *
age: 402
cache-control: public, max-age=1200
etag: W/"632b3357-6a514"
expires: Tue, 27 Sep 2022 05:00:32 GMT
last-modified: Wed, 21 Sep 2022 15:52:55 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=J.KcAEzVXzAaqtkypqX5bUPpkkOQSPoBAC5Sp5p5G60-1664253632-0-AbU9AiNYGk0Mn00nystHDmlOyM3VxwdrdwNwx0IplNOdSRrt93ssnhEaEKktxORb0vJRRyTzv5j+QqAL/2rdP5bUV5m+Y7Jqv3/5lUMOH9YJ; path=/; expires=Tue, 27-Sep-22 05:10:32 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=kcTrlpAaO6fq8.XaOGrJ8ZMLG1XX8APQ4UMO4SsBckw-1664253632-0-AVZn6Qe4bODHlqlqtNKkgCoYIwaji_OhbbAbhRMolMOxPB4-F9rohoKSzBVLuNvlP5bqt_pV4oCq7jmp9xh4jr-bs0rTWgwmRvR3Gkdqf89p"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=kcTrlpAaO6fq8.XaOGrJ8ZMLG1XX8APQ4UMO4SsBckw-1664253632-0-AVZn6Qe4bODHlqlqtNKkgCoYIwaji_OhbbAbhRMolMOxPB4-F9rohoKSzBVLuNvlP5bqt_pV4oCq7jmp9xh4jr-bs0rTWgwmRvR3Gkdqf89p; report-to cf-csp-endpoint
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
app.clickfunnels.com/assets/userevents/application.js
104.16.16.194200 OK 0 B URL HTTP/2 app.clickfunnels.com/assets/userevents/application.js
IP 104.16.16.194:0
GET /assets/userevents/application.js HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://badassgroup.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 04:40:32 GMT
content-type: application/x-javascript
cf-ray: 75118fd0e9f8b4f4-OSL
access-control-allow-origin: *
age: 402
cache-control: public, max-age=1200
etag: W/"632b3357-1353"
expires: Tue, 27 Sep 2022 05:00:32 GMT
last-modified: Wed, 21 Sep 2022 15:52:55 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=1pibpfYQTCMcEi7ASYlteoQ3LbZJI_be.zYYuH83uuY-1664253632-0-ATkze4Q3C9koFSvnndiT7cllz+VAFeZTngZhN1YrIdcaniXQm1QP2OliaZYzNzVJJh1qrLhD39uXwaE0KovX6CVhvI47r0PmoOIzkE95RDUW; path=/; expires=Tue, 27-Sep-22 05:10:32 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.9.0/css/all.css
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.9.0/css/all.css
IP 172.64.132.15:0
GET /releases/v5.9.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://badassgroup.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 04:40:32 GMT
content-type: text/css
x-amz-id-2: D5Mo7exQT5WqZ1JWwMwvE+13saBvWzx81R04KHDQjke+Km4QbzD5I5t54BEw/JqTRB/hjVxPUSs=
x-amz-request-id: 48X5PPB0148RGJHT
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"dbf9d822cefe851ba6f66e1ad57e8987"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 29020651
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VnssKC%2Bm8LJpynel%2FWDfD%2BAvjhllofjYSB44GhotAXj4h2TsgDpDFPNEopu8KaGgvWuvP6ySp%2F5eCNTeBES8BTdJAL8q1toxlu9tMNRnSImu7UjI7BgGfVJH7%2FApRRted9wL1QBA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75118fd10c8f75d8-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
104.18.47.230200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
IP 104.18.47.230:0
GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://badassgroup.net
Connection: keep-alive
Referer: http://badassgroup.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 04:40:32 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 75118fd0eb9cfabc-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
app.clickfunnels.com/assets/lander.js
104.16.16.194200 OK 0 B URL HTTP/2 app.clickfunnels.com/assets/lander.js
IP 104.16.16.194:0
GET /assets/lander.js HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://badassgroup.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 04:40:32 GMT
content-type: application/x-javascript
cf-ray: 75118fd0d9e8b4f4-OSL
access-control-allow-origin: *
age: 402
cache-control: public, max-age=1200
etag: W/"632b33c5-238fd1"
expires: Tue, 27 Sep 2022 05:00:32 GMT
last-modified: Wed, 21 Sep 2022 15:54:45 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=lqeotprn1WwHOZVYqcxmpgdo8GqOQS4mG15qvmCb9dY-1664253632-0-AdyqiahjXLfHPeabG3XNyiwJNkXKT5K+DskwiHggJZ1lNFwBZI1BSo8rd2Jgo5JqiDcZ1zfQfmRnWfvOQHxOKA8REL1U8sPWp6BKxcS4vvWn; path=/; expires=Tue, 27-Sep-22 05:10:32 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.9.0/css/v4-shims.css
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.9.0/css/v4-shims.css
IP 172.64.132.15:0
GET /releases/v5.9.0/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://badassgroup.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Sep 2022 04:40:32 GMT
content-type: text/css
x-amz-id-2: ChvavqXk4dTUCPMn6FkPgV+eEk+I8QeJyB2yWs6IlFvHBTzu99qI/vw5iTcAXbAfQrEFpY/Y1x8=
x-amz-request-id: 48XFPJVPSZ46EFY4
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"e140a7d32f343530f016095df3cc2ae4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 29020651
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OGHdujkqKv6ri3YYGOQ1ql6olbElQo0kz0JYgCMqNDPVZ3GF17ceo8v32rR4E%2BjyffngtEM%2Bt4rs%2B%2FdlQ1nU2uUZJZ65p74JVoMIQXS2gbVsvZfSvpDGnJn7bnrC9ioaUv4t6wYO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75118fd0fc8e75d8-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.clickfunnels.com/favicon.ico
104.16.16.194200 OK 0 B URL HTTP/2 www.clickfunnels.com/favicon.ico
IP 104.16.16.194:0
GET /favicon.ico HTTP/1.1
Host: www.clickfunnels.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://badassgroup.net/
Cookie: __cf_bm=cKaz9UPrQh2lRpAF2KcE.hgWD8.zf.aFf.qrrSFK9Fo-1664253632-0-Ac4wss13KY2NxwpnIbstz2X8FSBEl7wO4NHWm9gIzj9eShn7kUDgdfEnWjMnQMiZ3jLtSg0OH/9/9sqeNoejNtZoNCEZQbRa1RKV1SSOMU5H
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Sep 2022 04:40:33 GMT
content-type: image/x-icon
cf-ray: 75118fd91f2fb4f4-OSL
access-control-allow-origin: *
age: 1106
etag: W/"632b3357-3aee"
last-modified: Wed, 21 Sep 2022 15:52:55 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=AuiZ.0KHMvacqmjW0IkMuG7H5uNWdDvVXsC2vaQC0NY-1664253633-0-AfdL8DhB82aQt7YJbYDzeHMVg-RN-475py5u80JV8vglcU-xAxeqJBpQbLuW5cKWIsw2puwElV3Sn6pUoAPr7cKeU-UKe6oG_N-PEfeLwyWR"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=AuiZ.0KHMvacqmjW0IkMuG7H5uNWdDvVXsC2vaQC0NY-1664253633-0-AfdL8DhB82aQt7YJbYDzeHMVg-RN-475py5u80JV8vglcU-xAxeqJBpQbLuW5cKWIsw2puwElV3Sn6pUoAPr7cKeU-UKe6oG_N-PEfeLwyWR; report-to cf-csp-endpoint
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2