link.shztrk.com/r/e/5XgRJiMAZ9Zt0l2zp?r=https://vidmails.com/v/EON8DxQGh4
301 Moved Permanently 0 B URL HTTP/1.1 link.shztrk.com/r/e/5XgRJiMAZ9Zt0l2zp?r=https://vidmails.com/v/EON8DxQGh4
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/e/5XgRJiMAZ9Zt0l2zp?r=https://vidmails.com/v/EON8DxQGh4 HTTP/1.1
Host: link.shztrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 08 Feb 2023 04:19:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 08 Feb 2023 05:19:46 GMT
Location: https://link.shztrk.com/r/e/5XgRJiMAZ9Zt0l2zp?r=https://vidmails.com/v/EON8DxQGh4
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vzo8CZl2aU8lEhx6Qt8uIKtw3rmFwGSIh6g5lg%2BVIVAXIJoc3yZxnrj%2FyVwFGkzPKwojJNLBijUDXCIb450pABk84acY4GhZi6GgKrSipq%2Fqq1TGOCkPCrvDADRfASaK6nY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 796191a85a42b4ee-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4198
Expires: Wed, 08 Feb 2023 05:29:44 GMT
Date: Wed, 08 Feb 2023 04:19:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12538
Expires: Wed, 08 Feb 2023 07:48:44 GMT
Date: Wed, 08 Feb 2023 04:19:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 03:36:34 GMT
content-type: application/json
age: 2592
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2414
Expires: Wed, 08 Feb 2023 05:00:00 GMT
Date: Wed, 08 Feb 2023 04:19:46 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6TdiHvJz1120bjpzTk6LmhHfUEId11GNQKcGAPDR25jDzWTzkyu/WrRuSNZ/TcCtmrFXQEsmzCo=
x-amz-request-id: 74KK9YKG39VAXT58
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 03:45:49 GMT
age: 2037
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash bddf7b7e3d7a8a4f9786bfb403fbfa16
9606da087eb54ce49901ddb2feef10a180c8e247
b1edcfcf1213106e2c9e784f013d3507ff66df35b78cd18c7eaed4135b38c2f5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=150411
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:19:46 GMT
Etag: "63e2cb6d-116"
Expires: Thu, 09 Feb 2023 22:06:37 GMT
Last-Modified: Tue, 07 Feb 2023 22:06:37 GMT
Server: nginx
Content-Length: 278
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:19:46 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 04:14:52 GMT
age: 295
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7502
Expires: Wed, 08 Feb 2023 06:24:49 GMT
Date: Wed, 08 Feb 2023 04:19:47 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 278 B IP
Hash bddf7b7e3d7a8a4f9786bfb403fbfa16
9606da087eb54ce49901ddb2feef10a180c8e247
b1edcfcf1213106e2c9e784f013d3507ff66df35b78cd18c7eaed4135b38c2f5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=150411
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:19:47 GMT
Etag: "63e2cb6d-116"
Expires: Thu, 09 Feb 2023 22:06:38 GMT
Last-Modified: Tue, 07 Feb 2023 22:06:37 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DZ6+bKn+EblXElCMX0AkMw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oaU1Btc5MdWJR1VW8KuA8gduOmk=
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 2589b5918fc715fc076f7ca5a7ecd81e
a5be5150d7eb85ad9eb07e76d230a1f4492185dd
844c6483240a990bbcff365e5fdae6a848286503cece9769571b93944557e9b2
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Wed, 08 Feb 2023 04:19:48 GMT
Etag: "63e234ee-1d7"
Server: ECS (dcb/7F5C)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: v8AFK1675AkjhVBn5i_pILMJOSlU_xfTLMTcpRweMES7rErKB78K1Q==
vidmails.com/v/EON8DxQGh4
200 OK 31 kB URL HTTP/2 vidmails.com/v/EON8DxQGh4
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4546), with CRLF, LF line terminators
Hash 86aca706b97b271a94a7dc20f35a005b
24b33f8b27f7646af45245ffb657bb09c522962a
99fd4b685545d8afb1e66582af70c1b3ca402509970e26002d7081a131274358
GET /v/EON8DxQGh4 HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/html; charset=UTF-8
content-length: 30948
server: Apache
set-cookie: cvaffiliate=dispatch%40classlogistics.com; expires=Wed, 06-Feb-2030 04:19:48 GMT; path=/
PHPSESSID=fql4o7f5vqq7371lbfldros342; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
code.jquery.com/jquery-1.11.2.min.js
200 OK 33 kB URL HTTP/2 code.jquery.com/jquery-1.11.2.min.js
IP
File type ASCII text, with very long lines (32047)
Hash b63c8cb1c4a495ed04e735d25beabd78
0ae68f1c55c227331286ad94403122a5ab4526e1
26ea04aa9c41767051276b819a4aa8c6aa337df4da89872d021862312d478d39
GET /jquery-1.11.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-encoding: gzip
content-length: 33262
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-176bb"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-sp-metadata: HS256.CPThjJ8GEoYBCiRjODI5MDc4Ny00NzM3LTRiNGQtYmEwNC03ZWVlMWE0ZmVkNjUQqKenrJKE/QIaBgjkxYyfBiIMOTEuOTAuNDIuMTU0KLs+MAM4BEIWVExTX0FFU18xMjhfR0NNX1NIQTI1NlogYzdkMmI0YzQ4NGE0MTNlMTkxZGU2YWNmZjJkYjIwMDkaLAgBEiQ0MmM0NzQ2YS03YWY1LTRmZWItOGUzMC1lMTY3NTU5NGI3YzgY7oMCIhgIAhIUY2RzMjY0LnNrMS5od2Nkbi5uZXQ=.5iGvVS+aaodbefFSmgADbJkVTVrxEYJ7m3Hv0o704Mo=
x-hw: 1675829988.dop022.sk1.t,1675829988.cds218.sk1.hn,1675829988.cds264.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 325a8a10ce2837a8c6820e30572d181c
195d6189f0f10fcb301fce3af4c27028bbcb9eaa
2f1a0e948582fa64266617acc77e9beb71c5031d9cffe1bed1393a554f259810
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:19:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8d5417d247d259e3c0186136b83d9f75
49fbcf99a352669aee2559579ef73fa60f46d38d
3c013921158ec27e44d5e80a5108557de80a27f38089ac3a52c6c1cf5636f585
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:19:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vidmails.com/new_backoffice/css/backOfficeMain.css
200 OK 1.8 kB URL HTTP/2 vidmails.com/new_backoffice/css/backOfficeMain.css
IP
File type assembler source, ASCII text, with CRLF line terminators
Hash 1798f5717de78336a7471432ad483d9c
104687ea9889e77eafd3a4150fba7b0e00d1df96
22ea256da8ed4b98dcba75caeb0b46577bfd3f1934d284aa16ba23df12e013f5
GET /new_backoffice/css/backOfficeMain.css HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/css
content-length: 1807
server: Apache
last-modified: Tue, 12 May 2020 19:20:59 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
vidmails.com/backoffice/whitelabel/covideo/css/playback.css
200 OK 68 B URL HTTP/2 vidmails.com/backoffice/whitelabel/covideo/css/playback.css
IP
Hash 5734cd88ebb2d0c7bd554c4251e5eb04
77555d92d6031eb4d7cdc71a7b63ef1666e74bb2
64f7c86584c4a8d46063639685a14f742ebe0029b9d356c36296de3e7e99db42
GET /backoffice/whitelabel/covideo/css/playback.css HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/css
content-length: 68
server: Apache
last-modified: Wed, 06 Oct 2021 21:05:39 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-27700410-5
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-27700410-5
IP
File type ASCII text, with very long lines (1759)
Hash 1881252df683cf26465a7bbfb24f7188
41aa8563c7a24378f675a580aafb0404158cdf94
c50d5955351697e14b58a288678a5d3318945874b893506fa14b053deae9f216
GET /gtag/js?id=UA-27700410-5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 Feb 2023 04:19:48 GMT
expires: Wed, 08 Feb 2023 04:19:48 GMT
cache-control: private, max-age=900
last-modified: Wed, 08 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44009
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
vidmails.com/new_backoffice/js/IE_alert.js
200 OK 584 B URL HTTP/2 vidmails.com/new_backoffice/js/IE_alert.js
IP
File type ASCII text, with CRLF line terminators
Hash 7013001d22acce8f899e46671659be2a
4130e7daf12c4dfbac424c6e778b52030334ed93
60c5b410b9be88ada70bc12cc3f5540fcce42958ac5f2816a8f0792eb7094b0e
GET /new_backoffice/js/IE_alert.js HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/javascript
content-length: 584
server: Apache
last-modified: Mon, 26 Oct 2020 16:36:21 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
vidmails.com/new_templates/global_overrides.css
200 OK 311 B URL HTTP/2 vidmails.com/new_templates/global_overrides.css
IP
File type ASCII text, with CRLF line terminators
Hash 50f776acb9e53d2d455e60b936812ca4
4e615cf1e6e3a308741105fb2f5726cb030b1e61
2c930abe7e88f3959b30316470b8001833494d54e8d441896426577cd2759650
GET /new_templates/global_overrides.css HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/css
content-length: 311
server: Apache
last-modified: Mon, 10 Feb 2020 20:10:37 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
vidmails.com/new_backoffice/css/ui-lightness/jquery-ui-1.8.7.custom.css
200 OK 5.7 kB URL HTTP/2 vidmails.com/new_backoffice/css/ui-lightness/jquery-ui-1.8.7.custom.css
IP
File type ASCII text, with very long lines (324), with CRLF line terminators
Hash 512ccd745dd88f9e00e6ff2a38375b90
8b72e49dbe75e2da5776fae2e6a012ad6cb3d8e0
ae2549e006912ce2049c85d36adb66209000ceec5366332ca6f5763bfd4a18b1
GET /new_backoffice/css/ui-lightness/jquery-ui-1.8.7.custom.css HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/css
content-length: 5702
server: Apache
last-modified: Mon, 10 Feb 2020 19:39:14 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 325a8a10ce2837a8c6820e30572d181c
195d6189f0f10fcb301fce3af4c27028bbcb9eaa
2f1a0e948582fa64266617acc77e9beb71c5031d9cffe1bed1393a554f259810
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:19:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8d5417d247d259e3c0186136b83d9f75
49fbcf99a352669aee2559579ef73fa60f46d38d
3c013921158ec27e44d5e80a5108557de80a27f38089ac3a52c6c1cf5636f585
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:19:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vidmails.com/new_backoffice/js/jquery-1.11.3.min.js
200 OK 33 kB URL HTTP/2 vidmails.com/new_backoffice/js/jquery-1.11.3.min.js
IP
File type ASCII text, with very long lines (32038)
Hash 46ed104a51da58b1f8bff2ecab0e898b
3f6098bfd567710a5a5897879b680743d32205ae
7a0cdbe39e6a65c613bdea979908ad28c97eb01c91d576f254fe46ec401c8fd1
GET /new_backoffice/js/jquery-1.11.3.min.js HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/javascript
content-length: 33279
server: Apache
last-modified: Mon, 10 Feb 2020 19:47:14 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
vidmails.com/backoffice/appearance/appearance.css
200 OK 2.9 kB URL HTTP/2 vidmails.com/backoffice/appearance/appearance.css
IP
File type ASCII text, with CRLF line terminators
Hash c3b9347b5991e2b25b38a9940a1eda82
81dd78ffbb634dd790609835655aadfb91d017f3
a6811313f881c708bc00e739af5f1e78683c8dac7ee870f4225e6598f2686d05
GET /backoffice/appearance/appearance.css HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/css
content-length: 2882
server: Apache
last-modified: Thu, 02 Feb 2023 10:59:04 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
vidmails.com/backoffice/reactions/video_reactions.css
200 OK 1.7 kB URL HTTP/2 vidmails.com/backoffice/reactions/video_reactions.css
IP
File type ASCII text, with CRLF line terminators
Hash 26a6d011cb69ab59b484a22c97d96f01
9cb2e9977cdb7097e7b51e4a113e536553229722
00d34834eb8d1d292f173cf2de2b592b9bf9360b8bae47e7e3c487308688555d
GET /backoffice/reactions/video_reactions.css HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/css
content-length: 1735
server: Apache
last-modified: Wed, 23 Nov 2022 11:40:54 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
vidmails.com/backoffice/annotations/annotations-playback.css
200 OK 286 B URL HTTP/2 vidmails.com/backoffice/annotations/annotations-playback.css
IP
Hash 297de43436d1b7a0d9b335f32505e8c3
8c1bc34f8e89a9f4a5560b78cd902fb51da82dfa
630408824ab07ed1cd8d29ba74bbd6faf6460ee25ca8fd15da424676b044e9ff
GET /backoffice/annotations/annotations-playback.css HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/css
content-length: 286
server: Apache
last-modified: Tue, 11 Oct 2022 10:00:12 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
vidmails.com/backoffice/whitelabel/covideo/images/square-icon-dark.svg
200 OK 653 B URL HTTP/2 vidmails.com/backoffice/whitelabel/covideo/images/square-icon-dark.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text
Hash e1456b05508f3752cd7737ad693d17d0
65519cae95b8d184031d8dc6631aa8f853f5dfac
8f38cf75efdec0a1623f6337c87d9a6ad9d1a00319b01a8254f9788d57089d79
GET /backoffice/whitelabel/covideo/images/square-icon-dark.svg HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: image/svg+xml
content-length: 653
server: Apache
last-modified: Mon, 01 Feb 2021 18:10:25 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
vidmails.com/images/poweredby_white1.png
200 OK 4.6 kB URL HTTP/2 vidmails.com/images/poweredby_white1.png
IP
File type PNG image data, 95 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash cdbdbd50cc0919bce5efb411eb339cf5
0cb22dbb9f974fab5058572ebc12b644bc648c3b
c3f25e0a3c9fdcfc8f0ea9c4866c41505c821fd9d0882e4ccb9cdb699ff08ff7
GET /images/poweredby_white1.png HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: image/png
content-length: 4601
server: Apache
last-modified: Mon, 17 Feb 2020 16:06:11 GMT
etag: "86257-11f9-59ec7bbea1c1b"
accept-ranges: bytes
X-Firefox-Spdy: h2
vidmails.com/backoffice/security/security.css
200 OK 707 B URL HTTP/2 vidmails.com/backoffice/security/security.css
IP
Hash e79dd6b8f6d35be2e7942e14e1ef08f3
88e24f9bd1a0753a7bbd5c9007cbad43d003dd9d
c8fdfb26a6aa5cdb9ab8c48102fd060b261f36b480f5b46ebfcc07e95e00bbaa
GET /backoffice/security/security.css HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/css
content-length: 707
server: Apache
last-modified: Fri, 19 Feb 2021 17:05:30 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
vidmails.com/backoffice/basiclightbox/basicLightbox.min.css
200 OK 387 B URL HTTP/2 vidmails.com/backoffice/basiclightbox/basicLightbox.min.css
IP
File type ASCII text, with very long lines (1186), with no line terminators
Hash 35dc85b092ab15c8bdd5af7de0df70a9
de61b396157f996ee61774059b02162dd599ae4a
775f9b896b5508dc4e7d87fead0a1b453a41cab3c641826773fe04870962994c
GET /backoffice/basiclightbox/basicLightbox.min.css HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/css
content-length: 387
server: Apache
last-modified: Mon, 25 Apr 2022 08:17:19 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
vidmails.com/backoffice/basiclightbox/basicLightbox.min.js
200 OK 1.3 kB URL HTTP/2 vidmails.com/backoffice/basiclightbox/basicLightbox.min.js
IP
File type ASCII text, with very long lines (3277), with no line terminators
Hash 70557468708f21087324a9549f219899
e79d6df4f2a721072fe27391bd4bea893883749d
45fb5ee0bce8036eeffc6a5de00facaeed08523eef266905a43e58b3ea67f5df
GET /backoffice/basiclightbox/basicLightbox.min.js HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/javascript
content-length: 1309
server: Apache
last-modified: Mon, 25 Apr 2022 08:17:21 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
vidmails.com/new_backoffice/js/HotSpotFunctionsHTML5.js?v=1.0.0
200 OK 1.2 kB URL HTTP/2 vidmails.com/new_backoffice/js/HotSpotFunctionsHTML5.js?v=1.0.0
IP
File type ASCII text, with very long lines (308)
Hash 9e936c9a6e1eb8f505fb2836fac03b95
166805b82dd85a5b7e3980a4fa2a31efef728a9b
3dc3cc86c6f448d2b7881da4451fec91b9337e3375913858285d2d963a16c455
GET /new_backoffice/js/HotSpotFunctionsHTML5.js?v=1.0.0 HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/javascript
content-length: 1204
server: Apache
last-modified: Mon, 10 Feb 2020 19:47:12 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
vidmails.com/backoffice/js/screenfull.min.js?v=1.0.0
200 OK 789 B URL HTTP/2 vidmails.com/backoffice/js/screenfull.min.js?v=1.0.0
IP
File type ASCII text, with very long lines (2144)
Hash 3fcb81288245cc418327613f6b038f89
487a50afcc57449b3fc9a95cede539cf982865a5
abed4808bec75d367503b8589ad6228f108d07dd8d01854fe71e276dbedccc2a
GET /backoffice/js/screenfull.min.js?v=1.0.0 HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/javascript
content-length: 789
server: Apache
last-modified: Wed, 10 Feb 2021 19:51:44 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
vidmails.com/images2/linkedInLogoSquare.png
200 OK 22 kB URL HTTP/2 vidmails.com/images2/linkedInLogoSquare.png
IP
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d173852f5898e0232910e3d2ae5a5d0
bf410e3dbd4895b007cadb0f7f9ace80a3e7775c
9eff5c28fd3ccc10267468e6020e05a1af09766b1a78eebe46614aa0bd9f1e1b
GET /images2/linkedInLogoSquare.png HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: image/png
content-length: 21586
server: Apache
last-modified: Mon, 17 Feb 2020 16:06:39 GMT
etag: "865ec-5452-59ec7bd876d9e"
accept-ranges: bytes
X-Firefox-Spdy: h2
www.covideo.com/new_templates/Winter_2020/Winter_2020.css
200 OK 2.5 kB URL HTTP/2 www.covideo.com/new_templates/Winter_2020/Winter_2020.css
IP
File type ASCII text, with CRLF line terminators
Hash 3239aed683114b4b26225974690fbf6a
6c550f919e3026f686c69a64143af9d0a062ada0
8da05a2446506a904199ec746802fa87fd8496c1d91124b0a9a75bdcfb31b9a0
GET /new_templates/Winter_2020/Winter_2020.css HTTP/1.1
Host: www.covideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/css
content-length: 2478
server: Apache
last-modified: Fri, 22 Jan 2021 15:18:46 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
vidmails.com/backoffice/whitelabel/covideo/css/vars.css
200 OK 490 B URL HTTP/2 vidmails.com/backoffice/whitelabel/covideo/css/vars.css
IP
Hash 2603141057e1d6a151d24dab5a946895
d75ea19c0d6871ed4790e84154970993a81a9304
13d7a26fed0e33e16f592d76acccd8a0137ca1515baf141ae77cb3e7649d5a05
GET /backoffice/whitelabel/covideo/css/vars.css HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/backoffice/whitelabel/covideo/css/playback.css
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/css
content-length: 490
server: Apache
last-modified: Thu, 02 Jun 2022 01:35:18 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
vidmails.com/backoffice/whitelabel/common/css/playback.css
200 OK 80 B URL HTTP/2 vidmails.com/backoffice/whitelabel/common/css/playback.css
IP
Hash 1a8571e5290ee1e04bef702e88ef4770
a9753b9c9bc1f2eb2c16e7351ad0d835e5eb4925
c9b0b81644c82477bf56d22e7541822f7d818b583bb34b30e8290213e28411d1
GET /backoffice/whitelabel/common/css/playback.css HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/backoffice/whitelabel/covideo/css/playback.css
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/css
content-length: 80
server: Apache
last-modified: Thu, 11 Aug 2022 14:21:31 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
vidmails.com/new_backoffice/js/jquery-ui-1.11.4.custom/jquery-ui.min.js
200 OK 64 kB URL HTTP/2 vidmails.com/new_backoffice/js/jquery-ui-1.11.4.custom/jquery-ui.min.js
IP
Hash 57e836cf42c120e24c7d4cce85d8c053
7e771c07c6770a7f88e9f46dafc6f314e3935c15
fe084d1145595828dc9aed2e8250f6e538c6285de19e0aedd80ddff51bfccf8b
GET /new_backoffice/js/jquery-ui-1.11.4.custom/jquery-ui.min.js HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/javascript
server: Apache
last-modified: Mon, 10 Feb 2020 19:49:20 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19261
Expires: Wed, 08 Feb 2023 09:40:50 GMT
Date: Wed, 08 Feb 2023 04:19:49 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19261
Expires: Wed, 08 Feb 2023 09:40:50 GMT
Date: Wed, 08 Feb 2023 04:19:49 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a9c2a9eee923b84d4e06438a8b2acaff
520b122e3ce52220af153fee26bb7067283f9075
9ff4236fdcd05210a9c8bb48ea68179e142b1b05c8b19dd66282590dff69fa22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10058
x-amzn-requestid: 94374454-1e89-4c43-895b-0a90f39b851d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O5vEgcoAMFctg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c50a-0bf11cad4b0818c36188ba91;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: riOms0gHUSORGsYmbsQ95pKZckJUQRfCLtL3W5gGQn9kAG2vk7nM5w==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 04:11:10 GMT
age: 519
etag: "520b122e3ce52220af153fee26bb7067283f9075"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92b2ed55-154e-4ed7-a7ab-1418742cdf6e.jpeg
200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92b2ed55-154e-4ed7-a7ab-1418742cdf6e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7543be9bef0afb8f61344286b7136dd7
e1537aa408cde39d2a314cc2a14f7f7a04a84eb1
162f0898f88d84c8d06542e48e8ff6a903e638f2a837f32681ae1f5e28ae40d7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92b2ed55-154e-4ed7-a7ab-1418742cdf6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7303
x-amzn-requestid: 081c79e9-2b23-47ad-8b7d-7197c5515c0c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f58kdHMvIAMFdzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a7b5-66fca524070e374310920915;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:09:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CV8Q0EwlleoBURF3IvwUGDm_ANrg_SINlUR3cl6OhqySJPejP6T0hg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 07:41:21 GMT
age: 74308
etag: "e1537aa408cde39d2a314cc2a14f7f7a04a84eb1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qwSN-ztVJgRfu3bFIjYaVYV8Cnx77j1ugkRjqhRtRXdPju7AhEMg-A==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 07:15:46 GMT
age: 75843
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg
200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 726928e5de19ef978faebbe933c34008
bdaba3ed0c7efb65de88af96063d830683c8499b
c6d208fcee052da80de1bf2dcccbbc48853511b8888c4777799ee676abba51b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8644
x-amzn-requestid: d6d71f42-f887-4ad0-a2b7-9073d3857b03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OjRHBFoAMF4_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c47b-57490f255d8d30a561fdcd3a;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:36:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xU_uVO78ZQRKon3Cz-fVcHJuPEMMgzDsVuY8BXoKL6ntJwkl-SLeQA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:42:03 GMT
age: 23866
etag: "bdaba3ed0c7efb65de88af96063d830683c8499b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg
200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5129898de057eb92808f18d120eb7a70
eb0a900843beac5c4ee46686b89b3e8b8d77f80f
7ce3e4f7be652895e93cb8c1a9019b70d699c0a9da013d311395a6440b4e9f96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7847
x-amzn-requestid: 60759e32-ac58-4dda-8ea3-fd80413c0deb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkkEpMoAMFnGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c483-61b8715a0da73f4526215649;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TCX7ZFhV73kN0UBshXeb0qdSkY-8qdeNN6EgioqOUmSAnraEhAohMQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:42:11 GMT
age: 23858
etag: "eb0a900843beac5c4ee46686b89b3e8b8d77f80f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg
200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f31c82179856e39ee5fc43d7f0b685
5b37f807a19ffc80c0b9334e6d24d5bb717496ce
c099c91c6f2125a8a89ee6e9dc0e37e2c2c9914adadb2c8b77795063baa62037
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6805
x-amzn-requestid: 9f067f0c-2991-41ae-8dd0-5719a5438abc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PHwEn4IAMFvFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c564-730d01807c13643373d64897;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:40:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: eSU1CSydRTodwnN5DNTXbYD3d3kYFCHiCvPRq5DZTTDSTH2L-GV_1g==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:19:17 GMT
age: 21632
etag: "5b37f807a19ffc80c0b9334e6d24d5bb717496ce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
vidmails.com/backoffice/whitelabel/common/css/style.css
200 OK 382 B URL HTTP/2 vidmails.com/backoffice/whitelabel/common/css/style.css
IP
Hash b6e3d132481813ca94f6f439cd304f0c
8bfddea47fd1837fb916164a358ba1aeaa196616
beb654fba55c3fddf47f569bd9f815c66923aeace435c2567bdb3835699b0ef3
GET /backoffice/whitelabel/common/css/style.css HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/backoffice/whitelabel/covideo/css/vars.css
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/css
content-length: 382
server: Apache
last-modified: Mon, 30 May 2022 03:05:15 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash b24b85b6e7961b15d4e86117055a0873
667d77ee949a9b32f53ac3d4f8b89cbf4871767a
ae6328984e2bcee51f25efea599c9ff77e7ea5e9da7ae74cc46d614a615dd9dd
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=110836
Date: Wed, 08 Feb 2023 04:19:48 GMT
Etag: "63e230d8-1d7"
Expires: Thu, 09 Feb 2023 11:07:05 GMT
Last-Modified: Tue, 07 Feb 2023 11:07:04 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6VGFvDAyBjnqy0-vDXvn7uu-rVQ8rN6zPykrKOj3j3G9FCiUGKClCw==
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:19:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:19:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 25372, version 1.0\012- data
Hash fe424f96cb627d8b835cb001af17f56e
c5b4368fed99812a99036fba86d01367b5549505
35c92598a5f32c018dc630f57b183b0284c211ce9c222e5b36840a62115262f1
GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vidmails.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Feb 2023 21:46:45 GMT
expires: Tue, 06 Feb 2024 21:46:45 GMT
cache-control: public, max-age=31536000
age: 109984
last-modified: Mon, 18 Jul 2022 19:24:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:19:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vidmails.com/backoffice/annotations/annotations-playback.js?v=1.0.0
200 OK 3.3 kB URL HTTP/2 vidmails.com/backoffice/annotations/annotations-playback.js?v=1.0.0
IP
File type ASCII text, with very long lines (2042)
Hash bc8752eff3a180949f3b7cb1bd6eafcf
118de902b499699b5b87aee81c2bd5e4712da160
85c86bef9aadfaf643566c63a50da636792f2d43167a5cd944858457bd34b358
GET /backoffice/annotations/annotations-playback.js?v=1.0.0 HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:49 GMT
content-type: text/javascript
content-length: 3327
server: Apache
last-modified: Wed, 23 Nov 2022 11:09:53 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:49 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.covideo.com/new_templates/Winter_2020/winter.jpg
200 OK 2.9 MB URL HTTP/2 www.covideo.com/new_templates/Winter_2020/winter.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=2755, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=4592], baseline, precision 8, 2000x1200, components 3\012- data
Size 2.9 MB (2856153 bytes)
Hash 80191d35e65a7fe4ecc032cbe42c3428
11590271cf56430f934517f3192a50656c127fe9
b7393edbf6fc2892f031e5f3bb2e070d98b50c4591882feff1458958dc4b9527
GET /new_templates/Winter_2020/winter.jpg HTTP/1.1
Host: www.covideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.covideo.com/new_templates/Winter_2020/Winter_2020.css
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:49 GMT
content-type: image/jpeg
content-length: 2856153
server: Apache
last-modified: Fri, 22 Jan 2021 15:18:50 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:49 GMT
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
video.covideo.com/thumbnails/183586_57161_f6ulneg4te1675792868_0001.png
200 OK 80 kB URL HTTP/2 video.covideo.com/thumbnails/183586_57161_f6ulneg4te1675792868_0001.png
IP
File type PNG image data, 169 x 300, 8-bit/color RGB, non-interlaced\012- data
Hash b400e2fd8495bd71f361483b4b692847
d41822d16d165181c803af6016fbdf9c49ebc690
c576f06b96e4614e6dfc262e9cb037578216d30705f44594f8f06de0a2adb767
GET /thumbnails/183586_57161_f6ulneg4te1675792868_0001.png HTTP/1.1
Host: video.covideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 79893
date: Wed, 08 Feb 2023 04:19:50 GMT
last-modified: Tue, 07 Feb 2023 18:01:10 GMT
etag: "b400e2fd8495bd71f361483b4b692847"
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hXWIEMe5ycbjfeEAurKccO5eJ66OiTivVEeyRGVk9iBAa2Hv6UyXPQ==
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 5eab0dd3e929f4726f20de04a03e3f0b
1df310f6c8c15f88327d2a66ce247d0784d9c761
ffb1125b66a5f71b8d491ca82f359d82ad7db1a420028034d695dec9565292e5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4982
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:19:49 GMT
Last-Modified: Wed, 08 Feb 2023 02:56:47 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 08 Feb 2023 03:45:20 GMT
expires: Wed, 08 Feb 2023 05:45:20 GMT
cache-control: public, max-age=7200
age: 2069
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
vidmails.com/backoffice/whitelabel/covideo/images/favicon/android-icon-192x192.png
200 OK 6.9 kB URL HTTP/2 vidmails.com/backoffice/whitelabel/covideo/images/favicon/android-icon-192x192.png
IP
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash d35abc214e78fecd272274f5cffdd847
b5eb65ef566d89247f464f11d5f9919b09f5c52e
cec6ecce4e48902318d302b972fe81fe6d756202f886c56e4f4d62a6899f7137
GET /backoffice/whitelabel/covideo/images/favicon/android-icon-192x192.png HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:49 GMT
content-type: image/png
content-length: 6923
server: Apache
last-modified: Wed, 26 Aug 2020 21:04:32 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:49 GMT
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
vidmails.com/backoffice/whitelabel/covideo/images/favicon/favicon-16x16.png
200 OK 1.4 kB URL HTTP/2 vidmails.com/backoffice/whitelabel/covideo/images/favicon/favicon-16x16.png
IP
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash bbd0e618a9a0aa501dc8803f592f9f54
4e1ce02de0c9da422f1744123ef975bf26587a47
53a175931c4420164494a9fcce4c62d2e1f1b60de37540b5a64f61877ab18aea
GET /backoffice/whitelabel/covideo/images/favicon/favicon-16x16.png HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:49 GMT
content-type: image/png
content-length: 1415
server: Apache
last-modified: Wed, 26 Aug 2020 21:04:33 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:49 GMT
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7ec32dff957003dae195c36ca9e3bd6c
6761a20819b0d5a48216d74782e3ea752af7257a
953a3a2d35250df7b506b42f7d1d8813301dd1f9f9bcc30d2d100bd0788e4c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:19:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-27700410-5&cid=890321587.1675830043&jid=2059883116&gjid=1044457738&_gid=1524590807.1675830043&_u=YEBAAUAAAAAAACAAI~&z=2044297081
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-27700410-5&cid=890321587.1675830043&jid=2059883116&gjid=1044457738&_gid=1524590807.1675830043&_u=YEBAAUAAAAAAACAAI~&z=2044297081
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-27700410-5&cid=890321587.1675830043&jid=2059883116&gjid=1044457738&_gid=1524590807.1675830043&_u=YEBAAUAAAAAAACAAI~&z=2044297081 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://vidmails.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://vidmails.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 08 Feb 2023 04:19:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7ec32dff957003dae195c36ca9e3bd6c
6761a20819b0d5a48216d74782e3ea752af7257a
953a3a2d35250df7b506b42f7d1d8813301dd1f9f9bcc30d2d100bd0788e4c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:19:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 5bcb9125c18e4ed3562ceb950dc6eaad
a6c6944804b772de3a487723e3e866c0219de230
94947430d745a6648a2e87f163bf474b4fd4513519360bf4bfecfabc141e5ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:19:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2ccbef7dcf1b1d32956833f5127c1ad5
af220576c82f064130ee7bfa3ea966d033e51707
f6eceec81f5b6deb7005fa9f3855ecb54e4bd6b3159c705decf0921e3a49067d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:19:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
browser-update.org/update.min.js
200 OK 4.1 kB URL HTTP/2 browser-update.org/update.min.js
IP
File type ASCII text, with very long lines (9225), with CRLF line terminators
Hash 56df2a92a1734a2f5974fdba3889feca
2dd5f42faadfc154a424f50f6612652b513eb382
93b071f93af8592c99a427d6956038611cb324eef3ec6cc55e99438be50c1043
GET /update.min.js HTTP/1.1
Host: browser-update.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:49 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=86400
content-disposition: inline; filename=update.min.js
expires: Tue, 31 Jan 2023 09:45:30 GMT
last-modified: Mon, 05 Dec 2022 09:45:21 GMT
cf-cache-status: HIT
age: 758059
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iovLm%2F8oNNCq56SQejdYh0N7u%2B5MyLlkrd9PQKIFnZhWjHtVzbyYKkQW2cpYGvqykpnRkz6%2FLA4Lw%2BC1YXR6tUFxWuoNs7%2BsEWKPwXgxdSxtSC8bhN4kp6R4EqagvX7DqbOZCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 796191bca995b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-27700410-5&cid=890321587.1675830043&jid=2059883116&_u=YEBAAUAAAAAAACAAI~&z=657539699
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-27700410-5&cid=890321587.1675830043&jid=2059883116&_u=YEBAAUAAAAAAACAAI~&z=657539699
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-27700410-5&cid=890321587.1675830043&jid=2059883116&_u=YEBAAUAAAAAAACAAI~&z=657539699 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 04:19:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2ccbef7dcf1b1d32956833f5127c1ad5
af220576c82f064130ee7bfa3ea966d033e51707
f6eceec81f5b6deb7005fa9f3855ecb54e4bd6b3159c705decf0921e3a49067d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:19:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ed3f32fef9b843f5511bb882c0a38358
a1a60921f7cb6ab14b645c77bb7d77c20b8201ef
9a4b9e269aa66258c1d9b10fb1af899a3e669de3e244dcfd843a0bce87646f8e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:19:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
link.shztrk.com/r/e/5XgRJiMAZ9Zt0l2zp?r=https://vidmails.com/v/EON8DxQGh4
307 Temporary Redirect 0 B URL HTTP/2 link.shztrk.com/r/e/5XgRJiMAZ9Zt0l2zp?r=https://vidmails.com/v/EON8DxQGh4
IP
GET /r/e/5XgRJiMAZ9Zt0l2zp?r=https://vidmails.com/v/EON8DxQGh4 HTTP/1.1
Host: link.shztrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 307 Temporary Redirect
date: Wed, 08 Feb 2023 04:19:47 GMT
content-type: text/html; charset=UTF-8
location: https://vidmails.com/v/EON8DxQGh4
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I4fclemX5jOKumYmeiEdrNOohfexU6UubfPZF0dSNiTgNhSEj5a3%2BCjR7ld8KhUD%2Bu48Ch5uAM6pKgKPYvBt9lfEC2RrdLipchiy%2FFudXl4z%2FrsTNS1ARtOvFNFcPGTwRY8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 796191aaafdab509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans|Roboto
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans|Roboto
IP
GET /css?family=Open+Sans|Roboto HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 Feb 2023 04:19:48 GMT
date: Wed, 08 Feb 2023 04:19:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
vidmails.com/backoffice/appearance/appearance.js?v=1.0.1
200 OK 0 B URL HTTP/2 vidmails.com/backoffice/appearance/appearance.js?v=1.0.1
IP
GET /backoffice/appearance/appearance.js?v=1.0.1 HTTP/1.1
Host: vidmails.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vidmails.com/v/EON8DxQGh4
Connection: keep-alive
Cookie: cvaffiliate=dispatch%40classlogistics.com; PHPSESSID=fql4o7f5vqq7371lbfldros342
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:19:48 GMT
content-type: text/javascript
content-length: 4620
server: Apache
last-modified: Thu, 02 Feb 2023 10:31:34 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Thu, 16 Feb 2023 04:19:48 GMT
vary: Accept-Encoding
content-encoding: gzip
x-xss-protection: 1
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' covideo.com *.covideo.com vidmails.com *.vidmails.com eleadcrm.com *.eleadcrm.com forddirectcrm.com *.forddirectcrm.com usherpa.com *.usherpa.com *.autoipacket.com *.autoipacket.net *.ipacket.us *.ipacket.info;
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
videos.covideo.com/videos/183586_57161_f6ulneg4te1675792868.mp4
206 Partial Content 0 B URL HTTP/2 videos.covideo.com/videos/183586_57161_f6ulneg4te1675792868.mp4
IP
GET /videos/183586_57161_f6ulneg4te1675792868.mp4 HTTP/1.1
Host: videos.covideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://vidmails.com/
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
content-type: video/mp4
content-length: 1306737
date: Wed, 08 Feb 2023 04:19:50 GMT
last-modified: Tue, 07 Feb 2023 18:01:16 GMT
etag: "cdc2ce290bd26233f47698979209f306"
accept-ranges: bytes
server: AmazonS3
content-range: bytes 0-1306736/1306737
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Xt0NgO_HiWV12ALDPbm_bNXIXcuHO2Q5fec8hVUrmjBxwyfiHb9luQ==
X-Firefox-Spdy: h2
188.114.96.1
216.58.207.227
23.33.119.10
93.184.220.29