r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7786cd9bd97e024b3a1d16215defaad2
786ddbb74b0b6bd9270622dbe0258d6caee407c1
9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12326
Expires: Wed, 16 Nov 2022 05:38:50 GMT
Date: Wed, 16 Nov 2022 02:13:24 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4fe5a11c3ca8a150aad830b739f24b58
898b730b1a66dd49c6f018333ba828410f63f347
2c3a2a8a3dfa29808bd550718025fdf355e4a88235cb50ae978abc00ee5fd23b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6489
Cache-Control: max-age=122752
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:24 GMT
Etag: "63736a6b-1d7"
Expires: Thu, 17 Nov 2022 12:19:16 GMT
Last-Modified: Tue, 15 Nov 2022 10:31:07 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8c15cef160d1514fc977ed4c4e97086c
ffe4ce3199658a1fc7a45d1607df40ef3911621d
db1a82d8a2bacc0257b87efec0c365c1b769700fa27ce928321e082505f1d72a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB1A82D8A2BACC0257B87EFEC0C365C1B769700FA27CE928321E082505F1D72A"
Last-Modified: Sun, 13 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4699
Expires: Wed, 16 Nov 2022 03:31:43 GMT
Date: Wed, 16 Nov 2022 02:13:24 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 16 Nov 2022 01:44:43 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1721
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6Kdl1hb+XZ64ewbgNeh4xG7+G8QNVBE+sA+II3rHSqj/jKZendZ2avDzSg4E3AxUn+WAM+zzL/4=
x-amz-request-id: 5CPPSTCQNG7AMS5P
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 16 Nov 2022 01:14:29 GMT
age: 3535
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
acceleratorcoachingprogram.com/sources/fb0ac7a39a41a8fdd95677c00ba36e06/rlhq4e39b1ucrq94vgwxdqc5.php
192.64.119.53302 Found 43 B URL HTTP/1.1 acceleratorcoachingprogram.com/sources/fb0ac7a39a41a8fdd95677c00ba36e06/rlhq4e39b1ucrq94vgwxdqc5.php
IP 192.64.119.53:0
File type HTML document, ASCII text
Hash 0db24077ceaad0cc7bbf43dbf6142ffa
b2f6bdc65ed452f01990af59a29db2e861e7b395
b4d0833c01310c63d9920a52d5c6ea972feaac495835d3d2bc6bbe7f561a9724
Analyzer Verdict Alert fortinet Phishing
GET /sources/fb0ac7a39a41a8fdd95677c00ba36e06/rlhq4e39b1ucrq94vgwxdqc5.php HTTP/1.1
Host: acceleratorcoachingprogram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Wed, 16 Nov 2022 02:13:24 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 43
Connection: keep-alive
Location: https://frnation.com
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 16 Nov 2022 02:13:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Retry-After, ETag, Alert, Expires, Backoff, Content-Type, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 16 Nov 2022 01:44:48 GMT
cache-control: public,max-age=3600
age: 1717
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash de57a2d376db743a3987c454889f1f21
0defab699bdb1b158026f93c2dd105bcd65f6764
b1c47a81ac45af6f756a8eca8ef14a82f0113ea8f09dae7a285a4491963ae2ff
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6585
Cache-Control: max-age=117795
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:25 GMT
Etag: "637356af-1d7"
Expires: Thu, 17 Nov 2022 10:56:40 GMT
Last-Modified: Tue, 15 Nov 2022 09:06:55 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.165.176.211101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.176.211:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dHcmW7WElmktznzYaC0/ZQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ojBT9FKTfSrshx7slwF7QkhaSrw=
frnation.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
190.92.156.77200 OK 848 B URL HTTP/2 frnation.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 190.92.156.77:0
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 22:10:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 848
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/includes/ext/infusionsoft_infusionbar/css/style.css?ver=6.0.3
190.92.156.77200 OK 3.1 kB URL HTTP/2 frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/includes/ext/infusionsoft_infusionbar/css/style.css?ver=6.0.3
IP 190.92.156.77:0
File type ASCII text, with very long lines (532)
Hash 9b0959b3d28c6bcdc216e5d9f367f1fc
2d3ba1cee27f858265d031e2b8a5c221d46d23fe
e99c213878cc7feffae00493f6cf8d9f45e8bb155a9cdec6b754cc98ae694ad0
GET /wp-content/plugins/infusionsoft-official-opt-in-forms/includes/ext/infusionsoft_infusionbar/css/style.css?ver=6.0.3 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: text/css
last-modified: Fri, 28 Oct 2022 01:11:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3067
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/css/style.css?ver=1.0.9
190.92.156.77200 OK 10 kB URL HTTP/2 frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/css/style.css?ver=1.0.9
IP 190.92.156.77:0
File type ASCII text, with very long lines (1119)
Hash 7a313fde1f4086a57a5006c564651a89
2be84664b6fdca87ae43bcfc201c9eef4e1c5ce4
5b9740f6cc725a5b8f8a3073cda50bbbb23ff9bf0adeff5b384885deddd9deef
GET /wp-content/plugins/infusionsoft-official-opt-in-forms/css/style.css?ver=1.0.9 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: text/css
last-modified: Fri, 28 Oct 2022 01:11:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10433
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/responsive-youtube-vimeo-popup/assets/css/wp-video-popup.css?ver=2.9.4
190.92.156.77200 OK 291 B URL HTTP/2 frnation.com/wp-content/plugins/responsive-youtube-vimeo-popup/assets/css/wp-video-popup.css?ver=2.9.4
IP 190.92.156.77:0
File type ASCII text, with very long lines (849)
Hash a7101821d1382f327e5222da577bb88a
aeaa986be38bbe741f38b281b0d05b4c01b6ebf4
01583c9b563ae225c238e265f158870dacae2dc356697abb384c6132c0af8bf8
GET /wp-content/plugins/responsive-youtube-vimeo-popup/assets/css/wp-video-popup.css?ver=2.9.4 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: text/css
last-modified: Sat, 12 Nov 2022 01:11:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 291
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/popups-for-divi/styles/front.min.css?ver=3.0.5
190.92.156.77200 OK 1.5 kB URL HTTP/2 frnation.com/wp-content/plugins/popups-for-divi/styles/front.min.css?ver=3.0.5
IP 190.92.156.77:0
File type ASCII text, with very long lines (7327), with no line terminators
Hash cf6dadf9dd1cd472e49afc687b24e512
d7a7d49389db20338ba83321cb6069889eabbabf
993a1a37f7649745a9d4902dea6cefb67dd04d18b3adc1fe8a5176030a762313
GET /wp-content/plugins/popups-for-divi/styles/front.min.css?ver=3.0.5 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: text/css
last-modified: Mon, 27 Jun 2022 10:59:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1494
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/themes/Divi%20Child/style.css?ver=4.19.0
190.92.156.77200 OK 3.7 kB URL HTTP/2 frnation.com/wp-content/themes/Divi%20Child/style.css?ver=4.19.0
IP 190.92.156.77:0
Hash 3bc01ee95e3580852cf3a98dc7519bf7
c1c10f98424c55d68689f1829658be5f3c68423a
326e1a747bcfc6091705a3ebc07d1847d96717563452a1fe1baa1f580b294ef4
GET /wp-content/themes/Divi%20Child/style.css?ver=4.19.0 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: text/css
last-modified: Mon, 14 Nov 2022 00:54:23 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3655
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 3dc58f0dcba4ac9021f62c5c1c862e91
d67cf5a8968b75d0d6893054f5201e015be19ecc
75d4e57dc6c25d2456a7513572a97de5f1c1caead2822c8a985da9b8dfa55f89
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
frnation.com/wp-content/et-cache/15978/et-divi-dynamic-tb-16032-15978.css?ver=1668541708
190.92.156.77200 OK 3.0 kB URL HTTP/2 frnation.com/wp-content/et-cache/15978/et-divi-dynamic-tb-16032-15978.css?ver=1668541708
IP 190.92.156.77:0
File type ASCII text, with very long lines (14024)
Hash 3a27c01ddd27ca7e357b098b72a70f79
603db8f50343c421591198231a1711d285a2f999
97626081a1f9dcd795e07a4d09c6810778802302eb2723ad99710dd637286160
GET /wp-content/et-cache/15978/et-divi-dynamic-tb-16032-15978.css?ver=1668541708 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: text/css
last-modified: Tue, 15 Nov 2022 19:48:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2985
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 73f5a5f64f86c457cc2558f44bbfbcd2
15c6a1f60ed86b20886f2b2025002b9392395880
04e20d91462edac11a6a3f2c9bb6a6de9ba23463f54a39c818d8f3f6d5d9be23
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 5b80883a318b116e8b967c4e7c5fb219
4d7a8f63edad447a8b46f7816b950d90e01c7872
2b1bf5e0056b5d2dabc4a7ce5da47044293386d238e666abfa8c9c6d25da44aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-66677749-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-66677749-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash e0f114afc5e2c88ddd3697244ab77cff
44c4acb024c32955624a2eda01592fd168b71bc3
fc0b3579b601c6adf37dc2f1cc933608dfcab499cf6e8381228719eccf6ee87b
GET /gtag/js?id=UA-66677749-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Nov 2022 02:13:26 GMT
expires: Wed, 16 Nov 2022 02:13:26 GMT
cache-control: private, max-age=900
last-modified: Wed, 16 Nov 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43724
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?onload=onloadInfusionRecaptchaCallback&render=explicit
142.250.74.132200 OK 589 B URL HTTP/2 www.google.com/recaptcha/api.js?onload=onloadInfusionRecaptchaCallback&render=explicit
IP 142.250.74.132:0
File type ASCII text, with very long lines (926), with no line terminators
Hash b0ed59f8287e25db778226214631c6df
571b12fb5c0c3c5856148ca76f68de120b43ba2e
99b7c6ea377a695bcbc86c9737a5d18f1d2041ef8629467999778d372071f02d
GET /recaptcha/api.js?onload=onloadInfusionRecaptchaCallback&render=explicit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 16 Nov 2022 02:13:26 GMT
date: Wed, 16 Nov 2022 02:13:26 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 589
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/optimizePressPlugin/lib/assets/default.min.css?ver=2.5.22
190.92.156.77200 OK 54 kB URL HTTP/2 frnation.com/wp-content/plugins/optimizePressPlugin/lib/assets/default.min.css?ver=2.5.22
IP 190.92.156.77:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 879247c844d252c6cd1c9b295251aaa1
25cd18c80cb0991fcc8f79f727980c8d62d5654f
3166d9334e9051f61e6a83af88a4ff1d5575b324058f268ce3755d7b48d3654f
GET /wp-content/plugins/optimizePressPlugin/lib/assets/default.min.css?ver=2.5.22 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: text/css
last-modified: Tue, 15 Feb 2022 08:36:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 54105
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
190.92.156.77200 OK 30 kB URL HTTP/2 frnation.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 190.92.156.77:0
File type ASCII text, with very long lines (65447)
Hash 34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: application/javascript
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
x-robots-tag: noindex
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 73f5a5f64f86c457cc2558f44bbfbcd2
15c6a1f60ed86b20886f2b2025002b9392395880
04e20d91462edac11a6a3f2c9bb6a6de9ba23463f54a39c818d8f3f6d5d9be23
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 3dc58f0dcba4ac9021f62c5c1c862e91
d67cf5a8968b75d0d6893054f5201e015be19ecc
75d4e57dc6c25d2456a7513572a97de5f1c1caead2822c8a985da9b8dfa55f89
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
frnation.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
190.92.156.77200 OK 4.0 kB URL HTTP/2 frnation.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 190.92.156.77:0
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: application/javascript
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
x-robots-tag: noindex
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/optimizePressPlugin/lib/js/op-jquery-base-all.min.js?ver=2.5.22
190.92.156.77200 OK 16 kB URL HTTP/2 frnation.com/wp-content/plugins/optimizePressPlugin/lib/js/op-jquery-base-all.min.js?ver=2.5.22
IP 190.92.156.77:0
File type ASCII text, with very long lines (32006)
Hash 8805d2a1b558c0961f06bf1841dd09d8
37ec2b35aba83dc7ad052cc84d5af04a2ee36230
f64dff2c5951cd39693825978deb5f3b1e7b02e90b5da8e2a4829454838c6775
GET /wp-content/plugins/optimizePressPlugin/lib/js/op-jquery-base-all.min.js?ver=2.5.22 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: application/javascript
last-modified: Tue, 15 Feb 2022 08:36:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15732
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/popups-for-divi/scripts/ie-compat.min.js?ver=3.0.5
190.92.156.77200 OK 3.5 kB URL HTTP/2 frnation.com/wp-content/plugins/popups-for-divi/scripts/ie-compat.min.js?ver=3.0.5
IP 190.92.156.77:0
File type ASCII text, with very long lines (10001)
Hash 36b6f953c666f7d9bc1ed611107da68d
daff082219f4dd57b76ce14cf614b011c5e725fa
9607a3beb893fc84ffd38b05231c8c9a1956290a4f719566007f3f7e812955f3
GET /wp-content/plugins/popups-for-divi/scripts/ie-compat.min.js?ver=3.0.5 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: application/javascript
last-modified: Mon, 27 Jun 2022 10:59:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3531
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4620
Expires: Wed, 16 Nov 2022 03:30:26 GMT
Date: Wed, 16 Nov 2022 02:13:26 GMT
Connection: keep-alive
frnation.com/wp-content/uploads/2022/01/Journey-ICON.png.webp
190.92.156.77200 OK 9.1 kB URL HTTP/2 frnation.com/wp-content/uploads/2022/01/Journey-ICON.png.webp
IP 190.92.156.77:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash ee7729d3c9624bd443e44c0f648ed427
7bea4cb06ba390190edb24534cc1015daf34a748
d15b2788e175d0c1524b6fe76d41282d8d916a3c593f10acd61c9a778afb92ba
GET /wp-content/uploads/2022/01/Journey-ICON.png.webp HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: image/webp
last-modified: Thu, 03 Feb 2022 15:53:31 GMT
accept-ranges: bytes
content-length: 9108
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4620
Expires: Wed, 16 Nov 2022 03:30:26 GMT
Date: Wed, 16 Nov 2022 02:13:26 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 9d9493125a22b98bd2ac3a1b11cc0a12
8334175b79551b1e0592f63eb606543c915983a2
a583076207a416f2ccbb70821bc5185bb6b8e86180221014638af5af3b34a7fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4620
Expires: Wed, 16 Nov 2022 03:30:26 GMT
Date: Wed, 16 Nov 2022 02:13:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667acc-25d7-4d63-8fab-1711f6b4988c.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667acc-25d7-4d63-8fab-1711f6b4988c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 98802857df59f8eacd9211811cc59ae6
87e277a627c1085cad5c6e38bdd5100aa0a9ecee
102e73f690a972da6d3ab609ffab5f29884185d85c4230a19ec74d74c7320cf1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a667acc-25d7-4d63-8fab-1711f6b4988c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8235
x-amzn-requestid: e8a91ec0-fa93-45b6-8dc8-a405c00242fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqY4_HANoAMFSvw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63740839-3ebbd38b0e3e774923ad019e;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:44:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QoxGYkibw1jcAuQl98jD4TlKooUlL6ojdOVzQ7khiF0pMwY4_0IO9Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:48:37 GMT
age: 15889
etag: "87e277a627c1085cad5c6e38bdd5100aa0a9ecee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
app.clickfunnels.com/assets/cfpop.js?ver=1.0.0
104.16.13.194200 OK 8.1 kB URL HTTP/2 app.clickfunnels.com/assets/cfpop.js?ver=1.0.0
IP 104.16.13.194:0
File type ASCII text, with very long lines (4128), with no line terminators
Hash 41378682e4e2ba73de8672e196b2e70e
0b0f415922dc81d19ef50c072fb973deb526e906
6851e1ce8b99bc3913f5532d53c2066e8f7c675ed9129951a52eb867382f0569
GET /assets/cfpop.js?ver=1.0.0 HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 16 Nov 2022 02:13:26 GMT
content-type: application/x-javascript
cf-ray: 76acb5185a28b512-OSL
access-control-allow-origin: *
age: 576
cache-control: public, max-age=1200
etag: W/"6359dae3-1020"
expires: Wed, 16 Nov 2022 02:33:26 GMT
last-modified: Thu, 27 Oct 2022 01:12:03 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
set-cookie: __cf_bm=7wbCu2b1hlc8WSuSN0cgmwnTeZWUcNCmiS_bDCpAU9c-1668564806-0-AUsTNiJ0AeZvdREKt171P0Q2hJ+X7EGHp0V/GX4lX6hBerwP2BOPkb+l5obAg7PCVXTkUfu6jrJrTOmIv0O9mOPxKzNA0zm65zEsTeWIEWmu; path=/; expires=Wed, 16-Nov-22 02:43:26 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9426341bb128c1b6ba16e64df78152b4
08859a30ed6dee233cde4d77f2a04f058991502b
209a0520d5fb1eeb6dfa7d2f4c334a7109cc885cf4be8605bfe5a8f52232306d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209A0520D5FB1EEB6DFA7D2F4C334A7109CC885CF4BE8605BFE5A8F52232306D"
Last-Modified: Tue, 15 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4620
Expires: Wed, 16 Nov 2022 03:30:26 GMT
Date: Wed, 16 Nov 2022 02:13:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b3656a0-c710-454f-bc65-08e79655337e.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b3656a0-c710-454f-bc65-08e79655337e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ab111b9ccae10f32271dc6218b48c06
eaf84a2f21a67a8a819581137e782e7dec393198
99ef25da6153945477ab46450cd03fcdea31251c25d1e995c98c34c7cb96d1ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b3656a0-c710-454f-bc65-08e79655337e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6634
x-amzn-requestid: 9120c059-65f4-47a7-bc8b-9914e27e53ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqZK_E24IAMF3kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637408ac-53b5d53863ad2cbf2dd2cd96;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:46:20 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nYRtvSvkQl2R24KuApqjGvRMstZscZpixWbLFN44NfDdeNXfKiYWVg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:48:37 GMT
age: 15889
etag: "eaf84a2f21a67a8a819581137e782e7dec393198"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe91b23d2-975c-41ce-a4cd-62ca16662f15.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe91b23d2-975c-41ce-a4cd-62ca16662f15.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7e673e582e83e0572d97dd45676406d
7e34946fcdc1d7a736bf0ad2f53d897fb8caab3c
4508c0896ee058f87a941b2de690cd217970845975274a32be3acecbcb49f173
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe91b23d2-975c-41ce-a4cd-62ca16662f15.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6819
x-amzn-requestid: cc5ef526-ada4-4b72-8dfc-9b59abfd1075
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ3boETdIAMFtzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d6c4a-1202b7dc5d210a5a152c2f9f;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 21:25:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FoF1Vr-VWVYkKhoFuHl2zb_rwJdR7jL7_795w8rSlUaIhmKPAmC7fw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 03:39:33 GMT
age: 81233
etag: "7e34946fcdc1d7a736bf0ad2f53d897fb8caab3c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZLWa-RphwZqiAmeqffmEE8Mmfsfs9ZYz0bmANBEc5Ru1--VKDL4Fsw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 22:17:19 GMT
age: 14167
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
frnation.com/wp-content/uploads/2022/01/FR-Logo-Wide-2.png.webp
190.92.156.77200 OK 72 kB URL HTTP/2 frnation.com/wp-content/uploads/2022/01/FR-Logo-Wide-2.png.webp
IP 190.92.156.77:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 90a9989bd7432a5b08150050950dd467
bb219919bf0dc80557f0a77fd81d9062eb74ebf4
8adf35699ee9527e345997cd41c1544da45977de70079f6b3e9a6bd26742fece
GET /wp-content/uploads/2022/01/FR-Logo-Wide-2.png.webp HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: image/webp
last-modified: Thu, 03 Feb 2022 15:53:30 GMT
accept-ranges: bytes
content-length: 71894
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49e55852-45bd-4ea6-98bd-7cf863b088c9.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49e55852-45bd-4ea6-98bd-7cf863b088c9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba648c440393de8ff1e9912204461a96
103dbdc3e18ff05f3dd61ad0ab1164786e8fa125
d7a414856c394028119f8ef496466a120eecc6044955562cb4745b90b5275391
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49e55852-45bd-4ea6-98bd-7cf863b088c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10381
x-amzn-requestid: 07399c7d-2033-4fbf-b4d3-20289b1abaac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqYFjHlBoAMFo2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637406f0-0e5cb3c95668b5a31f6ec404;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:38:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FIZdY-ifSCB-OVNRGQW6Y_Q2DR0ZQr14PcgJUKG1Xfb703CJvhdXqA==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:54:52 GMT
etag: "103dbdc3e18ff05f3dd61ad0ab1164786e8fa125"
content-type: image/jpeg
age: 15514
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
frnation.com/wp-content/uploads/2022/01/FR-FBAS-Graphic-Final.png.webp
190.92.156.77200 OK 91 kB URL HTTP/2 frnation.com/wp-content/uploads/2022/01/FR-FBAS-Graphic-Final.png.webp
IP 190.92.156.77:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3f58499f0849a3e74d4e3356db175845
fb03ca1d80a6d782b253d6490ceaa63e95d08568
6752899394d73ba4ed136d260ef06fc648cb987d04324dd09a9586a4d4a54fb6
GET /wp-content/uploads/2022/01/FR-FBAS-Graphic-Final.png.webp HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: image/webp
last-modified: Thu, 03 Feb 2022 15:53:30 GMT
accept-ranges: bytes
content-length: 91310
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/akismet/_inc/akismet-frontend.js?ver=1664414061
190.92.156.77200 OK 2.8 kB URL HTTP/2 frnation.com/wp-content/plugins/akismet/_inc/akismet-frontend.js?ver=1664414061
IP 190.92.156.77:0
Hash 14bb19f1cdc7df7b838cd16600cbacb7
8b61b1183f890f4888bea2e00c11536827fd8f48
d831665de6965cd37fedc73a215332c90cbbe36d96f986fbc9fe6bb0553b26ca
GET /wp-content/plugins/akismet/_inc/akismet-frontend.js?ver=1664414061 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: application/javascript
last-modified: Thu, 29 Sep 2022 01:14:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2820
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
190.92.156.77200 OK 2.8 kB URL HTTP/2 frnation.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 190.92.156.77:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash 4317b1c024df372435f6482deadddeb3
5c8824a17e40a44ea8fc51568b98bdb1e2e7fab5
3798fb16289ba55459fb6d3b2efa915e3c019c5942759abb7bd19a0ef622b85d
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 22:10:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2817
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
190.92.156.77200 OK 3.7 kB URL HTTP/2 frnation.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 190.92.156.77:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash dc6411bfa6891b75944f0074c945752d
03c1a8b686c287068c61ab90f58d905496d65085
96abeabc9cc7b4c2b7d46579f2827c67ccd02fbaef0343ae052f71accd381b0d
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 22:10:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3706
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/includes/ext/infusionsoft_infusionbar/js/infusion.js?ver=1.0
190.92.156.77200 OK 2.0 kB URL HTTP/2 frnation.com/wp-content/plugins/infusionsoft-official-opt-in-forms/includes/ext/infusionsoft_infusionbar/js/infusion.js?ver=1.0
IP 190.92.156.77:0
Hash b2257a11c97a4e73a88d17599b8f77e5
c5f2da3859d99d439a9f08275949436190c0292c
fc91818ce69bca8f8d0f8ebe263a1e25e138e0030d5666d1ae8f76ab90fcd04f
GET /wp-content/plugins/infusionsoft-official-opt-in-forms/includes/ext/infusionsoft_infusionbar/js/infusion.js?ver=1.0 HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 23 Nov 2022 02:13:26 GMT
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 01:11:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2025
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 83b2cc8ea40190737f2d7ebb9681df7c
c4e86e12dad1281f1bd8647d39745e4727fbd29e
c24433a6381b52df17e3cf1cb16f7e3c75e9a57c1174e720a091f4c485c53dbb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ubsystems.infusionsoft.app/app/webform/overwriteRefererJs
104.18.6.173200 OK 637 B URL HTTP/2 ubsystems.infusionsoft.app/app/webform/overwriteRefererJs
IP 104.18.6.173:0
Hash 0d7401041d0a2abc8814837b4eb4c949
604b705622670d478d58d7c771281936bff05dc0
b2cf291aadfa1ba4f2f4db895fb654b808d0d3cfe152368978d117e4adb35d97
GET /app/webform/overwriteRefererJs HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 16 Nov 2022 02:13:26 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Wed, 16 Nov 2022 02:13:26 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=17049811759AC839D5262D3C0AB99F23; Path=/; Secure; HttpOnly
GCLB=CPeR0rivk8idPQ; path=/; HttpOnly; expires=Wed, 16-Nov-2022 14:13:26 GMT
__cf_bm=Ol.MKxIxgAVPdNEdkGRLxMWdCyk4iY8BNoqnUUzAGng-1668564806-0-AV1qjgfopViQZGwl0H/MU2C25aKB8xa6edsAhQoI1VgsOvig4bS8sryp/3gffbmvAgcXn4oqXaBjvUjl1SXKR2c092lUdSW4jWLSJfuw0oOq; path=/; expires=Wed, 16-Nov-22 02:43:26 GMT; domain=.infusionsoft.app; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76acb517fa000b45-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXo.woff2
172.217.21.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXo.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 12820, version 1.0\012- data
Hash 3f2f6d9e64a95a40ea5dedfc91f42a95
9cd9f5a2f86f1d42390141d91619a0aa41a276b7
ed121b1a8fbf30998a4ed0a7c8343abe9091ac4744f1c24b602b5d3f962bdb78
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtZ6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 06:05:51 GMT
expires: Fri, 10 Nov 2023 06:05:51 GMT
cache-control: public, max-age=31536000
age: 504455
last-modified: Mon, 11 Jul 2022 18:56:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 83b2cc8ea40190737f2d7ebb9681df7c
c4e86e12dad1281f1bd8647d39745e4727fbd29e
c24433a6381b52df17e3cf1cb16f7e3c75e9a57c1174e720a091f4c485c53dbb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXo.woff2
172.217.21.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXo.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 12700, version 1.0\012- data
Hash e571167fbcce8d5081bce96a09930063
e12420f5e4da3ccdc75a58ce744e7d5a0c6cf79e
98be19bc78b5bc5d419e4fa6ea055ebd4671a963e2cc644aeed4362f15d14c31
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Nov 2022 01:44:11 GMT
expires: Sun, 12 Nov 2023 01:44:11 GMT
cache-control: public, max-age=31536000
age: 347355
last-modified: Mon, 11 Jul 2022 18:56:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 83b2cc8ea40190737f2d7ebb9681df7c
c4e86e12dad1281f1bd8647d39745e4727fbd29e
c24433a6381b52df17e3cf1cb16f7e3c75e9a57c1174e720a091f4c485c53dbb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ee088afc22d9edecee7fc8f9a677d1c8
015b4d5b0037edc07838843b4eac9062fe092fae
61a4cd5e8a0a10a77ea15f3344b522b9b20455f02002eb56d4543d9d0b8aa450
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkaVI.woff2
172.217.21.163200 OK 59 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkaVI.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 59400, version 1.0\012- data
Hash 5904cf8b4636f030874b859a75b1ee62
425ce8516a97451825d31e96b63498b2d93f26ca
0feb67b40a66a3aa0e8ed60f04577fefdf24869fb35b8929ef1e7293f8eaee1c
GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 59400
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 14 Nov 2022 18:53:55 GMT
expires: Tue, 14 Nov 2023 18:53:55 GMT
cache-control: public, max-age=31536000
age: 112771
last-modified: Mon, 15 Aug 2022 18:17:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0C4i.woff2
172.217.21.163200 OK 56 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0C4i.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 56348, version 1.0\012- data
Hash 441a81103fda7f9c3b41cffd77d8c65c
3a2d883b3fc09a347376088e206f5e0fd17aab72
52a27a6a1c1821efdf20d91ece59d5f29ba3ba28cc8480e2f73f3007216e7729
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0C4i.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 56348
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 08:27:40 GMT
expires: Thu, 09 Nov 2023 08:27:40 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:12:25 GMT
content-type: font/woff2
age: 582346
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
172.217.21.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 05:42:51 GMT
expires: Fri, 10 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 505835
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXo.woff2
172.217.21.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXo.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 12848, version 1.0\012- data
Hash f0b3206d02a2f684530117ce1d7e8ce0
f3708b707b65e241b0f1c819d5f7bf7da8412653
f31b80562610135edd91a86ec7f243c5eeaec2ec08337e6a20c2d135d8e217da
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12848
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 16:43:34 GMT
expires: Fri, 10 Nov 2023 16:43:34 GMT
cache-control: public, max-age=31536000
age: 466192
last-modified: Mon, 11 Jul 2022 18:56:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
172.217.21.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Hash b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 06:06:20 GMT
expires: Fri, 10 Nov 2023 06:06:20 GMT
cache-control: public, max-age=31536000
age: 504426
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 83b2cc8ea40190737f2d7ebb9681df7c
c4e86e12dad1281f1bd8647d39745e4727fbd29e
c24433a6381b52df17e3cf1cb16f7e3c75e9a57c1174e720a091f4c485c53dbb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserratalternates/v17/mFTiWacfw6zH4dthXcyms1lPpC8I_b0juU0xUILFB7xG.woff2
172.217.21.163200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/montserratalternates/v17/mFTiWacfw6zH4dthXcyms1lPpC8I_b0juU0xUILFB7xG.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 20480, version 1.0\012- data
Hash 141810686d58c9d8f8a130a09da03ace
a7942a1364de22c44790ec3014be74bf8f19c23e
05310548a7b194d49ef3df5f58787d39dd53930f140ef2d649642562d5f000bc
GET /s/montserratalternates/v17/mFTiWacfw6zH4dthXcyms1lPpC8I_b0juU0xUILFB7xG.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20480
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 00:53:03 GMT
expires: Wed, 15 Nov 2023 00:53:03 GMT
cache-control: public, max-age=31536000
age: 91224
last-modified: Tue, 26 Apr 2022 15:45:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCvC73w5aXo.woff2
172.217.21.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCvC73w5aXo.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 12048, version 1.0\012- data
Hash 2f0591f47be65bab6a3cad2738688dcd
e1bc2e5c486bb85a87d4461cc4b689742c0acc3f
c783f924dc83b1990b7d490eade941b7d4676b799702e2fc6c7fe78a739fbe37
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCvC73w5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 08:29:29 GMT
expires: Thu, 09 Nov 2023 08:29:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:56:03 GMT
content-type: font/woff2
age: 582238
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq3p6WXh0pg.woff2
172.217.21.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq3p6WXh0pg.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 13208, version 1.0\012- data
Hash 7fbbbe850238487410c46f573cae30ee
bd8a3b619d7c2d579aae6333241d8e70a9eece8f
aebd114b1afb4eea989cf8360e39a351efc478de4b2a08836e55e22a23389836
GET /s/montserrat/v25/JTUFjIg1_i6t8kCHKm459Wx7xQYXK0vOoz6jq3p6WXh0pg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 01:17:26 GMT
expires: Wed, 15 Nov 2023 01:17:26 GMT
cache-control: public, max-age=31536000
age: 89761
last-modified: Mon, 11 Jul 2022 18:54:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw5aXo.woff2
172.217.21.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw5aXo.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 12580, version 1.0\012- data
Hash f95c32e0a411f4ca6aaac8a2b94fa34e
5080c3364ddfb436f2717fba8da36226d03d8539
11dd041d74737fc472cedef6bbadd0062120f17ea5e5195eb1490eaaa0475812
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCs16Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 14 Nov 2022 02:57:45 GMT
expires: Tue, 14 Nov 2023 02:57:45 GMT
cache-control: public, max-age=31536000
age: 170142
last-modified: Mon, 11 Jul 2022 18:58:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 16 Nov 2022 00:41:09 GMT
expires: Wed, 16 Nov 2022 02:41:09 GMT
cache-control: public, max-age=7200
age: 5538
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6ea606a3c83b6b14b9375c84e37870d8
d73a898c2f3eba8e71d6d4f675c47107df0a5795
0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js
142.250.74.163200 OK 409 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (668)
Size 409 kB (408610 bytes)
Hash 5e4857e008de71aa0e33e9cd123d008e
307c748fabe2497c790a20dcacde300ff7e20749
fdfeba02862c96c6d6fa5c6ecc5db0b1f9c04b93941ffa0dd47b23e66a7f9e8f
GET /recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 408610
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 14 Nov 2022 23:36:34 GMT
expires: Tue, 14 Nov 2023 23:36:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 07 Nov 2022 23:32:29 GMT
content-type: text/javascript
age: 95813
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 6ea606a3c83b6b14b9375c84e37870d8
d73a898c2f3eba8e71d6d4f675c47107df0a5795
0dc0268899f946356be887d4ee84b411136f373200ce90464b331697b6cd9487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html
54.230.111.85200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-c6ca1c87e308a39aabb76b56ba54398b.html
IP 54.230.111.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash b6d25d1350d6a014d80689f389e76f97
a957e3d99790759f71a4d9e2fdaf819f60e8c569
fb2a1528b99d3eb4c9374642b5045efaf6e06666fdd48a55560a375449b01079
GET /box-c6ca1c87e308a39aabb76b56ba54398b.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Fri, 04 Nov 2022 12:22:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "b6d25d1350d6a014d80689f389e76f97"
last-modified: Fri, 04 Nov 2022 12:21:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Z1z7Qhq1Zqo7VDUMQfwXN1LCU_DlUnua2dThQw_cjyvG-wchvW6bYg==
age: 1000281
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash e3b3d84f92dfdc1b5f8bf85a3eeec9f3
c3b5f40036fcbdf2afdbc2bbb73cd64cd0b93015
338e9c7faa6f84064082980c77166c5aa9d74cb3c19ce5d0230d9b281e03067c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=137827
Date: Wed, 16 Nov 2022 02:13:27 GMT
Etag: "6373af61-1d7"
Expires: Thu, 17 Nov 2022 16:30:34 GMT
Last-Modified: Tue, 15 Nov 2022 15:25:21 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9C8QW2es8ijtbcZKylIiiQuXITg7xWxcULfrZlSpkJnbOV0nNaFFcQ==
Age: 3914
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 68a04663a52ab4272c25f5afcc09a92d
48b0722227353d06cb1dfd4480b644be6e6fc030
892ba18611f372b6bf390d3628b66efc4a721f0f2bde61ae22546a0948935b7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-66677749-1&cid=666193899.1668564807&jid=1886008862&gjid=1625106995&_gid=704431779.1668564807&_u=YEBAAUAAAAAAACAAI~&z=547650306
142.250.150.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-66677749-1&cid=666193899.1668564807&jid=1886008862&gjid=1625106995&_gid=704431779.1668564807&_u=YEBAAUAAAAAAACAAI~&z=547650306
IP 142.250.150.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-66677749-1&cid=666193899.1668564807&jid=1886008862&gjid=1625106995&_gid=704431779.1668564807&_u=YEBAAUAAAAAAACAAI~&z=547650306 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://frnation.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 16 Nov 2022 02:13:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 68a04663a52ab4272c25f5afcc09a92d
48b0722227353d06cb1dfd4480b644be6e6fc030
892ba18611f372b6bf390d3628b66efc4a721f0f2bde61ae22546a0948935b7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 1ace154d0f6419b5db4372cb2a996458
d559bb7e807a774add25cc092313aeb49f41eb17
3407a2e91eb3e6253f6cf3f4a5be401884c9409738734a468c30c9cfcdac1662
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66677749-1&cid=666193899.1668564807&jid=1886008862&_u=YEBAAUAAAAAAACAAI~&z=1764577837
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66677749-1&cid=666193899.1668564807&jid=1886008862&_u=YEBAAUAAAAAAACAAI~&z=1764577837
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-66677749-1&cid=666193899.1668564807&jid=1886008862&_u=YEBAAUAAAAAAACAAI~&z=1764577837 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 16 Nov 2022 02:13:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 3a9734f9f93c8158e73e4491e35f56bd
e57dc6ee66918ae45ce20c6dea942d2e786ff17c
171dfb208dfcaa849595e79c07f998833a5560ae06c736f9f4c45f445e121ada
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 16 Nov 2022 02:13:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ws14.hotjar.com/api/v2/client/ws
52.17.163.71101 Switching Protocols 0 B URL HTTP/1.1 ws14.hotjar.com/api/v2/client/ws
IP 52.17.163.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v2/client/ws HTTP/1.1
Host: ws14.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://frnation.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3oTBiez3KRUlCVwHF6H9ug==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Wed, 16 Nov 2022 02:13:28 GMT
Content-Type: application/octet-stream
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1OCfcrUTakXY6f9bgO+ZLcNxI3w=
Sec-WebSocket-Extensions: permessage-deflate
ubsystems.infusionsoft.app/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1668556800
104.18.6.173200 OK 34 kB URL HTTP/2 ubsystems.infusionsoft.app/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1668556800
IP 104.18.6.173:0
Hash b16c777ca4c4a819bd9b85a36c26e47f
08aacd0be4b765c8f9ae3a8acd6756ca73f4af5b
67d9f65ac23a4ff8c443630f25bd5480e66e4d254b50441937d77bc6825f26b9
GET /cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1668556800 HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __cf_bm=DPQ0SRm1OpT6cgCDKiU55LvUtlR6s1l0D4gOT5NyQ9s-1668564806-0-ASwfVo+gv3ZYLXAT7RgEuKwKU0WzOAdL4Qv/Z/I49IusellbduyVvXkBMahh8SP0EkVW1+VtK9UsxYN7GwgXaE/tC+TlAY9h+JFdQZRYSKiO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 02:13:28 GMT
content-type: application/javascript; charset=UTF-8
x-control-type-options: nosniff
cache-control: max-age=14400, public
vary: accept-encoding
content-encoding: gzip
server: cloudflare
cf-ray: 76acb524bd8d0b45-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/app/webTracking/websiteTriggerIframe
104.18.6.173200 OK 42 kB URL HTTP/2 ubsystems.infusionsoft.app/app/webTracking/websiteTriggerIframe
IP 104.18.6.173:0
Hash ac9b13fa22eae7d7479dda0614342d00
e91c3f3fd262ca48032d171fda2e0575d41ae70c
44bf4c89efc9654e70aebeffa50e435eb948480af1e01ebb31813401c4972a0e
GET /app/webTracking/websiteTriggerIframe HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Cookie: __cf_bm=DPQ0SRm1OpT6cgCDKiU55LvUtlR6s1l0D4gOT5NyQ9s-1668564806-0-ASwfVo+gv3ZYLXAT7RgEuKwKU0WzOAdL4Qv/Z/I49IusellbduyVvXkBMahh8SP0EkVW1+VtK9UsxYN7GwgXaE/tC+TlAY9h+JFdQZRYSKiO
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 02:13:28 GMT
content-type: text/html;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Wed, 16 Nov 2022 02:13:28 GMT
set-cookie: JSESSIONID=478D5DEFD75DC2ED9929E9DCA445C976; Path=/; Secure; HttpOnly
GCLB=CKHM6L6hzMO2gQE; path=/; HttpOnly; expires=Wed, 16-Nov-2022 14:13:28 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-language: en-US
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76acb5237d1f0b45-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2a8dfbf-2c3c-4ab5-8a3b-95f6ac66a9c6.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2a8dfbf-2c3c-4ab5-8a3b-95f6ac66a9c6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0bd75eb0a1c5ebb6fe28deeaa5c3800a
efa92081b217c950cd8fc47cabe4b8e59d7610a0
320b90ef497e9068188f9bb184922c75c36667493614837ba53931edda9e7ebc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2a8dfbf-2c3c-4ab5-8a3b-95f6ac66a9c6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 3990
x-amzn-requestid: 8c57530b-d858-4ccf-b501-54a6020fbe7c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bqZTIGb2oAMFY4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637408e0-2c9d73c64e9f1b88474caffa;Sampled=0
x-amzn-remapped-date: Tue, 15 Nov 2022 21:47:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: mrluj-sgaTEYp6AC-gxsuUZgwZ0hAUWYat04bg0RsQgUSyTbxpkqEQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 15 Nov 2022 21:54:48 GMT
age: 15525
etag: "efa92081b217c950cd8fc47cabe4b8e59d7610a0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/app/webform/overwriteRefererJs?b=1.70.0.472965-hf-202206200731
104.18.6.173200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.app/app/webform/overwriteRefererJs?b=1.70.0.472965-hf-202206200731
IP 104.18.6.173:0
GET /app/webform/overwriteRefererJs?b=1.70.0.472965-hf-202206200731 HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 02:13:26 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Wed, 16 Nov 2022 02:13:26 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=CA9BDFC050630A78290CA8BA798576F2; Path=/; Secure; HttpOnly
GCLB=CMTAhrekptPUoAE; path=/; HttpOnly; expires=Wed, 16-Nov-2022 14:13:26 GMT
__cf_bm=dqPqof1gmG_BHRrt5G_PnIidPshQ09fsiqnZxOcHOKg-1668564806-0-AZZpi2FTGjdjbdsU4LiUeJ3Yh4MD4h2/4giZXNGGJHj9I9cp2ihw8C5uDMI6rXypQ0dUFIfOvFLBv+N89Kf+0UhvcCJZWuTwIAo8Dor0NOwS; path=/; expires=Wed, 16-Nov-22 02:43:26 GMT; domain=.infusionsoft.app; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76acb517e9fa0b45-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/app/webTracking/contact/1668564806322?contactId=0&screenResolution=1280x1024&plugins=&javaEnabled=false&domain=frnation.com&location=https://frnation.com/&referrer=
104.18.6.173302 Found 0 B URL HTTP/2 ubsystems.infusionsoft.app/app/webTracking/contact/1668564806322?contactId=0&screenResolution=1280x1024&plugins=&javaEnabled=false&domain=frnation.com&location=https://frnation.com/&referrer=
IP 104.18.6.173:0
GET /app/webTracking/contact/1668564806322?contactId=0&screenResolution=1280x1024&plugins=&javaEnabled=false&domain=frnation.com&location=https://frnation.com/&referrer= HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Cookie: __cf_bm=DPQ0SRm1OpT6cgCDKiU55LvUtlR6s1l0D4gOT5NyQ9s-1668564806-0-ASwfVo+gv3ZYLXAT7RgEuKwKU0WzOAdL4Qv/Z/I49IusellbduyVvXkBMahh8SP0EkVW1+VtK9UsxYN7GwgXaE/tC+TlAY9h+JFdQZRYSKiO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 16 Nov 2022 02:13:28 GMT
pragma: no-cache, no-cache
cache-control: no-cache, no-store, no-cache, no-store
expires: Wed, 16 Nov 2022 02:13:28 GMT, -1
set-cookie: JSESSIONID=7576AF58FF1120F2DE7DFC953A65CB53; Path=/; Secure; HttpOnly
InfusionsoftTrackingCookie=6889d3e0bba1aeb82603e29a1a5144de; Max-Age=31536000; Path=/; SameSite=None; Secure
GCLB=CKGJluiEzdjYowE; path=/; HttpOnly; expires=Wed, 16-Nov-2022 14:13:28 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
location: /slices/spacer.gif
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76acb5255dc30b45-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/app/timezone/timezoneInputJs?xid=67df0631b852a240c96e2d22cc05b192
104.18.25.54200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/app/timezone/timezoneInputJs?xid=67df0631b852a240c96e2d22cc05b192
IP 104.18.25.54:0
GET /app/timezone/timezoneInputJs?xid=67df0631b852a240c96e2d22cc05b192 HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 02:13:26 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Wed, 16 Nov 2022 02:13:26 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=92D16369E4E0CC93C383223644853C99; Path=/; Secure; HttpOnly
GCLB=CKfvvY--wJX1Bw; path=/; HttpOnly; expires=Wed, 16-Nov-2022 14:13:26 GMT
__cf_bm=3L_HQLeKfWsdyo_3Ks_57KoLDLULZx2ri6YUS59Fztw-1668564806-0-AS5DtHNlnmZmLPeUD9goj2QONoLKisGeZLARSavVtBHts0lpA8HUUWMf/SSPTXT7MC630IX0Th9sdRWy3xL9zcM=; path=/; expires=Wed, 16-Nov-22 02:43:26 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76acb517c948b527-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/app/webTracking/getTrackingCode?b=1.70.0.472965-hf-202206200731
104.18.6.173200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.app/app/webTracking/getTrackingCode?b=1.70.0.472965-hf-202206200731
IP 104.18.6.173:0
GET /app/webTracking/getTrackingCode?b=1.70.0.472965-hf-202206200731 HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 16 Nov 2022 02:13:26 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Wed, 16 Nov 2022 02:13:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=453B666AC94BCC22DDDB156D674C778A; Path=/; Secure; HttpOnly
GCLB=CNWe4LLFgNHeag; path=/; HttpOnly; expires=Wed, 16-Nov-2022 14:13:26 GMT
__cf_bm=3F7D4gc4ZQDTFLY27d4qEDuQQBPgwN3FRJxFkKc8svk-1668564806-0-ATE2y3oOxarHrNrlEn6xHbFLrJvuc97ixLjSCchF8HR6xcdrr1rd9SbOg2JWeSdI3mf4wxquMb5ZZWy1z8utu9YOrkAxO7RV2tD/V/qktw/B; path=/; expires=Wed, 16-Nov-22 02:43:26 GMT; domain=.infusionsoft.app; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76acb517d9f30b45-OSL
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/2963454/visit-data?sv=6
52.48.139.15200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/2963454/visit-data?sv=6
IP 52.48.139.15:0
POST /api/v2/client/sites/2963454/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 112
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 16 Nov 2022 02:13:27 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2963454.js?sv=6
54.230.111.8200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2963454.js?sv=6
IP 54.230.111.8:0
GET /c/hotjar-2963454.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 16 Nov 2022 02:13:27 GMT
cache-control: max-age=60
etag: W/05378d4e691422b8383ba0bbe5304f98
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eFYvNwQ_LhHiXwaZfGrpBGAUVvGl4agDnGcQTpBgDlCB1JjJrG4_nQ==
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/app/webTracking/getTrackingCode
104.18.6.173200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.app/app/webTracking/getTrackingCode
IP 104.18.6.173:0
GET /app/webTracking/getTrackingCode HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Cookie: __cf_bm=DPQ0SRm1OpT6cgCDKiU55LvUtlR6s1l0D4gOT5NyQ9s-1668564806-0-ASwfVo+gv3ZYLXAT7RgEuKwKU0WzOAdL4Qv/Z/I49IusellbduyVvXkBMahh8SP0EkVW1+VtK9UsxYN7GwgXaE/tC+TlAY9h+JFdQZRYSKiO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 16 Nov 2022 02:13:26 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Wed, 16 Nov 2022 02:13:26 GMT
set-cookie: JSESSIONID=4E550828A5583A80109ADB6ACD77FD0B; Path=/; Secure; HttpOnly
GCLB=CLvN4r2Wtr7nvQE; path=/; HttpOnly; expires=Wed, 16-Nov-2022 14:13:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76acb519aa880b45-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/app/webTracking/getTrackingCode
104.18.25.54200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/app/webTracking/getTrackingCode
IP 104.18.25.54:0
GET /app/webTracking/getTrackingCode HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 16 Nov 2022 02:13:26 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Wed, 16 Nov 2022 02:13:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=984F0712F0D91B1F5CF0E63AB7E57DBA; Path=/; Secure; HttpOnly
GCLB=CL2h0IjWlZC3xgE; path=/; HttpOnly; expires=Wed, 16-Nov-2022 14:13:26 GMT
__cf_bm=6vy.1Y7F69IU_OM42EMutzUpaGhrdKO7UQJ8WJGxNJ0-1668564806-0-AVIaV16mpWDfIcvDrQS8bWB8erpTNT91I3wLcnBa77RbDQcnZyUwof8MuK5SwZVw7wL3LZAk6FgHJ4mlRcaCoJk=; path=/; expires=Wed, 16-Nov-22 02:43:26 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76acb517c947b527-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/resources/external/recaptcha/production/recaptcha.js?b=1.70.0.438779-hf-202202181712
104.18.25.54200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/resources/external/recaptcha/production/recaptcha.js?b=1.70.0.438779-hf-202202181712
IP 104.18.25.54:0
GET /resources/external/recaptcha/production/recaptcha.js?b=1.70.0.438779-hf-202202181712 HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 16 Nov 2022 02:13:26 GMT
content-type: application/javascript;charset=UTF-8
expires: Tue, 14 Nov 2023 19:11:44 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
etag: W/"7740-1668273229112"
last-modified: Sat, 12 Nov 2022 17:13:49 GMT
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: HIT
age: 1133
cache-control: public, max-age=31424298
set-cookie: __cf_bm=jlvDeJLaYnh0CUkfdAOWgL6XH8TdIV7LfE.bVnmEcVU-1668564806-0-AcftWl+7g0R2igIaKjyB3uWs3T8lwbC6gFtqK5Gj7+WL4EBl7lUuQlLVcCGGOdhgTDP7rq3ny4FCQ2r5QhP20yM=; path=/; expires=Wed, 16-Nov-22 02:43:26 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76acb5180969b527-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700
IP 142.250.74.10:0
GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 16 Nov 2022 02:13:26 GMT
date: Wed, 16 Nov 2022 02:13:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/app/timezone/timezoneInputJs?xid=4fa3b523d0e294cc9218e62e5ac13c17
104.18.25.54200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/app/timezone/timezoneInputJs?xid=4fa3b523d0e294cc9218e62e5ac13c17
IP 104.18.25.54:0
GET /app/timezone/timezoneInputJs?xid=4fa3b523d0e294cc9218e62e5ac13c17 HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 16 Nov 2022 02:13:26 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Wed, 16 Nov 2022 02:13:26 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=62B28421E2F0958192FDF8AE68104D86; Path=/; Secure; HttpOnly
GCLB=CKLD0aC7vc_sVw; path=/; HttpOnly; expires=Wed, 16-Nov-2022 14:13:26 GMT
__cf_bm=Uy596ba1wYfDwWZ5FUQxeN5whvgDjCJR_xAAMZ2ojAA-1668564806-0-AWJ6krlEKBe+/HqUuF4kNGDhecJuTwTpiwxmoJDWLJooW7xwuGw58DZjxZX3ta6uY4iTbM0TRxnSa4DxTQHkx6A=; path=/; expires=Wed, 16-Nov-22 02:43:26 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76acb517e954b527-OSL
X-Firefox-Spdy: h2
frnation.com/
190.92.156.77200 OK 0 B IP 190.92.156.77:0
GET / HTTP/1.1
Host: frnation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
content-type: text/html; charset=UTF-8
link: <https://frnation.com/wp-json/>; rel="https://api.w.org/", <https://frnation.com/wp-json/wp/v2/pages/15978>; rel="alternate"; type="application/json", <https://frnation.com/>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Wed, 16 Nov 2022 02:13:26 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/js/infusionsoft.js
104.18.25.54200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/js/infusionsoft.js
IP 104.18.25.54:0
GET /js/infusionsoft.js HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 16 Nov 2022 02:13:26 GMT
content-type: application/javascript;charset=UTF-8
expires: Wed, 15 Nov 2023 08:55:26 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
etag: W/"6925-1668273228512"
last-modified: Sat, 12 Nov 2022 17:13:48 GMT
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: HIT
age: 80280
cache-control: public, max-age=31473720
set-cookie: __cf_bm=PSKi7nVWtNqRqCkrRjSOneCpO35sxMjxQ.TJDz4wdJ0-1668564806-0-AUlwtyQ7PM1STg/e/44VTVAByrpXIVo2JwMnqtMUGCtZd9n7y7i3UCbE04xDoEMS+ooCs8JW5b6j1Gvl36LM0Go=; path=/; expires=Wed, 16-Nov-22 02:43:26 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76acb517e958b527-OSL
X-Firefox-Spdy: h2
ws14.hotjar.com/api/v2/sites/2963454/recordings/content
52.17.163.71200 OK 0 B URL HTTP/2 ws14.hotjar.com/api/v2/sites/2963454/recordings/content
IP 52.17.163.71:0
POST /api/v2/sites/2963454/recordings/content HTTP/1.1
Host: ws14.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 420017
Origin: https://frnation.com
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 16 Nov 2022 02:13:28 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
ubsystems.infusionsoft.app/app/webTracking/getTrackingCode
104.18.6.173200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.app/app/webTracking/getTrackingCode
IP 104.18.6.173:0
GET /app/webTracking/getTrackingCode HTTP/1.1
Host: ubsystems.infusionsoft.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 16 Nov 2022 02:13:26 GMT
content-type: text/javascript;charset=UTF-8
pragma: no-cache
cache-control: no-cache, no-store
expires: Wed, 16 Nov 2022 02:13:26 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: JSESSIONID=04933C3BDA004B0F7AC2E802713419A3; Path=/; Secure; HttpOnly
GCLB=COnWp_rDhKOgTg; path=/; HttpOnly; expires=Wed, 16-Nov-2022 14:13:26 GMT
__cf_bm=DPQ0SRm1OpT6cgCDKiU55LvUtlR6s1l0D4gOT5NyQ9s-1668564806-0-ASwfVo+gv3ZYLXAT7RgEuKwKU0WzOAdL4Qv/Z/I49IusellbduyVvXkBMahh8SP0EkVW1+VtK9UsxYN7GwgXaE/tC+TlAY9h+JFdQZRYSKiO; path=/; expires=Wed, 16-Nov-22 02:43:26 GMT; domain=.infusionsoft.app; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76acb517e9fe0b45-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/js/jquery/jquery-3.3.1.js
104.18.25.54200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/js/jquery/jquery-3.3.1.js
IP 104.18.25.54:0
GET /js/jquery/jquery-3.3.1.js HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 16 Nov 2022 02:13:26 GMT
content-type: application/javascript;charset=UTF-8
expires: Tue, 14 Nov 2023 19:11:44 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
etag: W/"85855-1668273228512"
last-modified: Sat, 12 Nov 2022 17:13:48 GMT
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: HIT
age: 80280
cache-control: public, max-age=31424298
set-cookie: __cf_bm=GeabDbIa4VnBB8SXy6_VLHosSVhzD_PH10U9QOopmSs-1668564806-0-AQH32PETtrWIc73zGikvdhdqP3PdPpOu+eoG8ra70VW3i9no3zYQzGKIgJ8HET7F0T81Ow9e0JlRe9OZHXK34B0=; path=/; expires=Wed, 16-Nov-22 02:43:26 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76acb517e95bb527-OSL
X-Firefox-Spdy: h2
ubsystems.infusionsoft.com/resources/component/calendar/calendar.js
104.18.25.54200 OK 0 B URL HTTP/2 ubsystems.infusionsoft.com/resources/component/calendar/calendar.js
IP 104.18.25.54:0
GET /resources/component/calendar/calendar.js HTTP/1.1
Host: ubsystems.infusionsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://frnation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 16 Nov 2022 02:13:26 GMT
content-type: application/javascript;charset=UTF-8
expires: Thu, 16 Nov 2023 02:41:42 GMT
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
etag: W/"1388-1668273228751"
last-modified: Sat, 12 Nov 2022 17:13:48 GMT
vary: accept-encoding
content-encoding: gzip
via: 1.1 google
cf-cache-status: HIT
age: 1133
cache-control: public, max-age=31537696
set-cookie: __cf_bm=oK1FuQZ2jzh.miVWDdwJ2CVt1YbIOSfBMfm.hX7cM98-1668564806-0-AR1GMZoK1vIFVBGT8pbEGCklHk8ia7Gxp1EQ1w7RGKC1nLaC/ce6w5Xs+VSvaw2n1uI0hm0aDhAfyrXuGOaOVDM=; path=/; expires=Wed, 16-Nov-22 02:43:26 GMT; domain=.infusionsoft.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76acb518196fb527-OSL
X-Firefox-Spdy: h2